Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-01 CVE-2024-10615 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability was found in Tongda OA 2017 up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-11-01 CVE-2024-10607 SQL Injection vulnerability in Carmelogarcia Courier Management System 1.0
A vulnerability was found in code-projects Courier Management System 1.0.
network
low complexity
carmelogarcia CWE-89
critical
 9.8
9.8
2024-11-01 CVE-2024-10608 SQL Injection vulnerability in Carmelogarcia Courier Management System 1.0
A vulnerability was found in code-projects Courier Management System 1.0.
network
low complexity
carmelogarcia CWE-89
critical
 9.8
9.8
2024-11-01 CVE-2024-10609 SQL Injection vulnerability in Angeljudesuarez Tailoring Management System 1.0
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System Project 1.0.
network
low complexity
angeljudesuarez CWE-89
critical
 9.8
9.8
2024-11-01 CVE-2024-10602 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10600 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.6.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10601 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability has been found in Tongda OA 2017 up to 11.10 and classified as critical.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10595 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10597 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability classified as critical has been found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10392 The AI Power: Complete AI Pack plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handle_image_upload' function in all versions up to, and including, 1.8.89.
network
low complexity
CWE-434
critical
 9.8
9.8