Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-20 CVE-2024-10162 SQL Injection vulnerability in PHPgurukul Boat Booking System 1.0
A vulnerability has been found in PHPGurukul Boat Booking System 1.0 and classified as critical.
network
low complexity
phpgurukul CWE-89
7.2
7.2
2024-10-20 CVE-2024-10159 SQL Injection vulnerability in PHPgurukul Boat Booking System 1.0
A vulnerability classified as critical was found in PHPGurukul Boat Booking System 1.0.
network
low complexity
phpgurukul CWE-89
7.2
7.2
2024-10-20 CVE-2024-10160 SQL Injection vulnerability in PHPgurukul Boat Booking System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Boat Booking System 1.0.
network
low complexity
phpgurukul CWE-89
8.8
8.8
2024-10-19 CVE-2024-10158 Session Fixation vulnerability in PHPgurukul Boat Booking System 1.0
A vulnerability classified as problematic has been found in PHPGurukul Boat Booking System 1.0.
network
low complexity
phpgurukul CWE-384
8.8
8.8
2024-10-19 CVE-2024-10141 Unspecified vulnerability in Jsbroks Coco Annotator 0.11.1
A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1.
network
high complexity
jsbroks
8.1
8.1
2024-10-19 CVE-2024-10135 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-19 CVE-2024-10134 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability was found in ESAFENET CDG 5 and classified as critical.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-19 CVE-2024-10133 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability has been found in ESAFENET CDG 5 and classified as critical.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-19 CVE-2024-21536 Unspecified vulnerability in Chimurai Http-Proxy-Middleware
Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch.
network
low complexity
chimurai
7.5
7.5
2024-10-19 CVE-2024-10131 Command Injection vulnerability in Infiniflow Ragflow 0.11.0
The `add_llm` function in `llm_app.py` in infiniflow/ragflow version 0.11.0 contains a remote code execution (RCE) vulnerability.
network
low complexity
infiniflow CWE-77
8.8
8.8