Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-13 CVE-2024-9912 Classic Buffer Overflow vulnerability in Dlink Dir-619L Firmware 2.06B1
A vulnerability was found in D-Link DIR-619L B1 2.06.
network
low complexity
dlink CWE-120
8.8
8.8
2024-10-13 CVE-2024-9911 Classic Buffer Overflow vulnerability in Dlink Dir-619L Firmware 2.06B1
A vulnerability was found in D-Link DIR-619L B1 2.06.
network
low complexity
dlink CWE-120
8.8
8.8
2024-10-13 CVE-2024-9910 Classic Buffer Overflow vulnerability in Dlink Dir-619L Firmware 2.06B1
A vulnerability was found in D-Link DIR-619L B1 2.06 and classified as critical.
network
low complexity
dlink CWE-120
8.8
8.8
2024-10-13 CVE-2024-9909 Classic Buffer Overflow vulnerability in Dlink Dir-619L Firmware 2.06B1
A vulnerability has been found in D-Link DIR-619L B1 2.06 and classified as critical.
network
low complexity
dlink CWE-120
8.8
8.8
2024-10-13 CVE-2024-6959 Cross-Site Request Forgery (CSRF) vulnerability in Lollms web UI 9.8
A vulnerability in parisneo/lollms-webui version 9.8 allows for a Denial of Service (DOS) attack when uploading an audio file.
network
low complexity
lollms CWE-352
7.1
7.1
2024-10-13 CVE-2024-9908 Classic Buffer Overflow vulnerability in Dlink Dir-619L Firmware 2.06B1
A vulnerability, which was classified as critical, was found in D-Link DIR-619L B1 2.06.
network
low complexity
dlink CWE-120
8.8
8.8
2024-10-13 CVE-2024-9905 SQL Injection vulnerability in Oretnom23 Online Eyewear Shop 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0.
network
low complexity
oretnom23 CWE-89
8.8
8.8
2024-10-12 CVE-2024-9894 SQL Injection vulnerability in Blood Bank System Project Blood Bank System 1.0
A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0.
network
low complexity
blood-bank-system-project CWE-89
8.8
8.8
2024-10-12 CVE-2024-8757 The WP Post Author – Boost Your Blog's Engagement with Author Box, Social Links, Co-Authors, Guest Authors, Post Rating System, and Custom User Registration Form Builder plugin for WordPress is vulnerable to time-based SQL Injection via the linked_user_id parameter in all versions up to, and including, 3.8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
7.2
7.2
2024-10-12 CVE-2024-9821 The Bot for Telegram on WooCommerce plugin for WordPress is vulnerable to sensitive information disclosure due to missing authorization checks on the 'stm_wpcfto_get_settings' AJAX action in all versions up to, and including, 1.2.4.
network
low complexity
CWE-200
8.8
8.8