Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-20 | CVE-2024-49331 | Unrestricted Upload of File with Dangerous Type vulnerability in Myriadsolutionz Property LOT Management System Unrestricted Upload of File with Dangerous Type vulnerability in Myriad Solutionz Property Lot Management System allows Upload a Web Shell to a Web Server.This issue affects Property Lot Management System: from n/a through 4.2.38. | 8.8 |
| 2024-10-20 | CVE-2024-49608 | Unspecified vulnerability in Gerryntabuhashe Gerryworks Post BY Mail : Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows Privilege Escalation.This issue affects GERRYWORKS Post by Mail: from n/a through 1.0. | 8.8 |
| 2024-10-20 | CVE-2024-49621 | Cross-Site Request Forgery (CSRF) vulnerability in APA Register Newsletter Form Cross-Site Request Forgery (CSRF) vulnerability in Apa APA Register Newsletter Form allows SQL Injection.This issue affects APA Register Newsletter Form: from n/a through 1.0.0. | 8.8 |
| 2024-10-20 | CVE-2024-49622 | Cross-Site Request Forgery (CSRF) vulnerability in APA Banner Slider Cross-Site Request Forgery (CSRF) vulnerability in Apa Apa Banner Slider allows SQL Injection.This issue affects Apa Banner Slider: from n/a through 1.0.0. | 8.8 |
| 2024-10-20 | CVE-2024-49623 | SQL Injection vulnerability in Hasanmovahed Duplicate Title Validate Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Hasan Movahed Duplicate Title Validate allows Blind SQL Injection.This issue affects Duplicate Title Validate: from n/a through 1.0. | 8.8 |
| 2024-10-20 | CVE-2024-10193 | Command Injection vulnerability in Wavlink products A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028 and classified as critical. | 7.2 |
| 2024-10-20 | CVE-2024-10194 | Out-of-bounds Write vulnerability in Wavlink products A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. | 8.8 |
| 2024-10-20 | CVE-2024-10173 | Incorrect Authorization vulnerability in Didiglobal Ddmq A vulnerability has been found in didi DDMQ 1.0 and classified as critical. | 7.5 |
| 2024-10-20 | CVE-2024-10169 | SQL Injection vulnerability in Fabianros Hospital Management System 1.0 A vulnerability classified as critical was found in code-projects Hospital Management System 1.0. | 8.8 |
| 2024-10-20 | CVE-2024-10161 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Boat Booking System 1.0 A vulnerability, which was classified as critical, was found in PHPGurukul Boat Booking System 1.0. | 8.8 |