Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-01-04 CVE-2024-41766 Unspecified vulnerability in IBM Engineering Lifecycle Optimization Publishing 7.0.2/7.0.3
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause a denial of service using a complex regular expression.
network
low complexity
ibm
7.5
7.5
2025-01-04 CVE-2024-41767 SQL Injection vulnerability in IBM Engineering Lifecycle Optimization Publishing 7.0.2/7.0.3
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 is vulnerable to SQL injection.
network
low complexity
ibm CWE-89
7.3
7.3
2025-01-04 CVE-2025-0206 Unspecified vulnerability in Code-Projects Online Shoe Store 1.0
A vulnerability classified as critical was found in code-projects Online Shoe Store 1.0.
network
low complexity
code-projects
8.8
8.8
2025-01-04 CVE-2024-10932 The Backup Migration plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.6 via deserialization of untrusted input in the 'recursive_unserialize_replace' function.
network
low complexity
CWE-502
8.8
8.8
2025-01-03 CVE-2024-11733 The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0.
network
low complexity
CWE-94
7.3
7.3
2025-01-03 CVE-2025-0176 SQL Injection vulnerability in Code-Projects Point of Sales and Inventory Management System 1.0
A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0.
network
low complexity
code-projects CWE-89
7.5
7.5
2025-01-02 CVE-2025-0173 SQL Injection vulnerability in Oretnom23 Online Eyewear Shop 1.0
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0 and classified as critical.
network
low complexity
oretnom23 CWE-89
7.5
7.5
2025-01-02 CVE-2024-55540 Uncontrolled Search Path Element vulnerability in Acronis Cyber Protect 15/16
Local privilege escalation due to DLL hijacking vulnerability.
local
low complexity
acronis CWE-427
7.8
7.8
2025-01-02 CVE-2024-55543 Uncontrolled Search Path Element vulnerability in Acronis Cyber Protect 15/16
Local privilege escalation due to DLL hijacking vulnerability.
local
low complexity
acronis CWE-427
7.8
7.8
2025-01-02 CVE-2025-0172 SQL Injection vulnerability in Code-Projects Chat System 1.0
A vulnerability has been found in code-projects Chat System 1.0 and classified as critical.
network
low complexity
code-projects CWE-89
7.5
7.5