Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-17 | CVE-2024-52363 | Path Traversal vulnerability in IBM Infosphere Information Server 11.7 IBM InfoSphere Information Server 11.7 could allow a remote attacker to traverse directories on the system. | 7.5 |
| 2025-01-17 | CVE-2025-21325 | Unspecified vulnerability in Microsoft products Windows Secure Kernel Mode Elevation of Privilege Vulnerability | 7.8 |
| 2025-01-16 | CVE-2024-57704 | Out-of-bounds Write vulnerability in Tenda AC8 Firmware 16.03.34.06 Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability. | 8.8 |
| 2025-01-16 | CVE-2024-57578 | Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19 Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the funcpara1 parameter in the formSetCfm function. | 8.8 |
| 2025-01-16 | CVE-2024-41746 | IBM CICS TX Advanced 10.1, 11.1, and Standard 11.1 is vulnerable to stored cross-site scripting. | 7.2 |
| 2025-01-16 | CVE-2024-57769 | SQL Injection vulnerability in Jfinaloa Project Jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component borrowmoney/listData?applyUser. | 8.8 |
| 2025-01-16 | CVE-2024-57770 | SQL Injection vulnerability in Jfinaloa Project Jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/save#oaContractApply.id. | 8.8 |
| 2025-01-16 | CVE-2024-57775 | SQL Injection vulnerability in Jfinaloa Project Jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component getWorkFlowHis?insid. | 8.8 |
| 2025-01-16 | CVE-2024-57162 | SQL Injection vulnerability in Campcodes Cybercafe Management System 1.0 Campcodes Cybercafe Management System v1.0 is vulnerable to SQL Injection in /ccms/view-user-detail.php. | 7.2 |
| 2025-01-16 | CVE-2018-25108 | An unauthenticated remote attacker can cause a DoS in the controller due to uncontrolled resource consumption. | 7.5 |