Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-30 | CVE-2024-28875 | Use of Hard-coded Credentials vulnerability in Level1 Wbr-6012 Firmware R0.40E6 A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. | 8.1 |
| 2024-10-30 | CVE-2024-31152 | Allocation of Resources Without Limits or Throttling vulnerability in Level1 Wbr-6012 Firmware R0.40E6 The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation within its web application, where a series of crafted HTTP requests can cause a reboot. | 7.5 |
| 2024-10-30 | CVE-2024-33623 | Unspecified vulnerability in Level1 Wbr-6012 Firmware R0.40E6 A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR-6012 R0.40e6. | 7.5 |
| 2024-10-30 | CVE-2024-33699 | Unspecified vulnerability in Level1 Wbr-6012 Firmware R0.40E6 The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password. | 8.8 |
| 2024-10-30 | CVE-2024-10108 | The WPAdverts – Classifieds Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's adverts_add shortcode in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. | 7.2 |
| 2024-10-30 | CVE-2024-10506 | SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0 A vulnerability classified as critical has been found in code-projects Blood Bank System 1.0. | 7.2 |
| 2024-10-30 | CVE-2024-9846 | Code Injection vulnerability in Aftabhusain Enable Shortcodes Inside Widgets,Comments and Experts The The Enable Shortcodes inside Widgets,Comments and Experts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0.0. | 7.3 |
| 2024-10-30 | CVE-2024-10505 | Code Injection vulnerability in Wuzhicms 4.1.0 A vulnerability was found in wuzhicms 4.1.0. | 7.2 |
| 2024-10-30 | CVE-2024-10500 | SQL Injection vulnerability in Esafenet CDG 5 A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. | 8.8 |
| 2024-10-30 | CVE-2024-10501 | SQL Injection vulnerability in Esafenet CDG 5 A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. | 8.8 |