Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-29	CVE-2024-29726	SQL Injection vulnerability in Sportsnet 4.0.1 SQL injection vulnerabilities in SportsNET affecting version 4.0.1. network low complexity sportsnet CWE-89 critical	9.8
2024-08-29	CVE-2024-29727	SQL Injection vulnerability in Sportsnet 4.0.1 SQL injection vulnerabilities in SportsNET affecting version 4.0.1. network low complexity sportsnet CWE-89 critical	9.8
2024-08-29	CVE-2024-29728	SQL Injection vulnerability in Sportsnet 4.0.1 SQL injection vulnerabilities in SportsNET affecting version 4.0.1. network low complexity sportsnet CWE-89 critical	9.8
2024-08-29	CVE-2024-29729	SQL Injection vulnerability in Sportsnet 4.0.1 SQL injection vulnerabilities in SportsNET affecting version 4.0.1. network low complexity sportsnet CWE-89 critical	9.8
2024-08-29	CVE-2024-29730	SQL Injection vulnerability in Sportsnet 4.0.1 SQL injection vulnerabilities in SportsNET affecting version 4.0.1. network low complexity sportsnet CWE-89 critical	9.8
2024-08-29	CVE-2024-29731	SQL Injection vulnerability in Sportsnet 4.0.1 SQL injection vulnerabilities in SportsNET affecting version 4.0.1. network low complexity sportsnet CWE-89 critical	9.8
2024-08-29	CVE-2024-4428	Unspecified vulnerability in Menulux Managment Portal Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal allows Collect Data as Provided by Users.This issue affects Managment Portal: through 21.05.2024. network low complexity menulux critical	9.8
2024-08-29	CVE-2024-8294	Unrestricted Upload of File with Dangerous Type vulnerability in Feehi Feehicms A vulnerability, which was classified as critical, was found in FeehiCMS up to 2.1.1. network low complexity feehi CWE-434 critical	9.8
2024-08-29	CVE-2024-45435	Unspecified vulnerability in Chartist Chartist 1.x through 1.3.0 allows Prototype Pollution via the extend function. network low complexity chartist critical	9.8
2024-08-29	CVE-2024-7857	The Media Library Folders plugin for WordPress is vulnerable to second order SQL Injection via the 'sort_type' parameter of the 'mlf_change_sort_type' AJAX action in all versions up to, and including, 8.2.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. network low complexity CWE-89 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical