Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-28 | CVE-2024-10438 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Sun.Net Ehdr Ctms The eHRD CTMS from Sunnet has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to bypass authentication by satisfying specific conditions in order to access certain functionalities. | 7.5 |
| 2024-10-28 | CVE-2024-10439 | Authorization Bypass Through User-Controlled Key vulnerability in Sun.Net Ehdr Ctms The eHRD CTMS from Sunnet has an Insecure Direct Object Reference (IDOR) vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to access arbitrary files uploaded by any user. | 7.5 |
| 2024-10-28 | CVE-2024-50067 | Out-of-bounds Write vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: uprobe: avoid out-of-bounds memory access of fetching args Uprobe needs to fetch args into a percpu buffer, and then copy to ring buffer to avoid non-atomic context problem. Sometimes user-space strings, arrays can be very large, but the size of percpu buffer is only page size. | 7.8 |
| 2024-10-27 | CVE-2024-10428 | Command Injection vulnerability in Wavlink products A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. | 7.2 |
| 2024-10-27 | CVE-2024-10429 | Command Injection vulnerability in Wavlink products A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. | 7.2 |
| 2024-10-27 | CVE-2024-10416 | SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0 A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. | 8.8 |
| 2024-10-27 | CVE-2024-10417 | SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0 A vulnerability was found in code-projects Blood Bank Management System 1.0. | 8.8 |
| 2024-10-27 | CVE-2024-10415 | SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0 A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified as critical. | 8.8 |
| 2024-10-27 | CVE-2024-10411 | SQL Injection vulnerability in Janobe Online Hotel Reservation System 1.0 A vulnerability was found in SourceCodester Online Hotel Reservation System 1.0. | 7.2 |
| 2024-10-27 | CVE-2024-10410 | Unrestricted Upload of File with Dangerous Type vulnerability in Janobe Online Hotel Reservation System 1.0 A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0. | 7.2 |