Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-20 | CVE-2018-9475 | Out-of-bounds Write vulnerability in Google Android In HeadsetInterface::ClccResponse of btif_hf.cc, there is a possible out of bounds stack write due to a missing bounds check. | 8.8 |
| 2024-11-20 | CVE-2018-9477 | Missing Authorization vulnerability in Google Android 8.0/8.1 In the development options section of the Settings app, there is a possible authentication bypass due to a missing permission check. | 7.8 |
| 2024-11-20 | CVE-2018-9484 | Out-of-bounds Read vulnerability in Google Android In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out of bounds read due to a missing bounds check. | 7.5 |
| 2024-11-20 | CVE-2018-9468 | Unspecified vulnerability in Google Android In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a permissions bypass. | 7.1 |
| 2024-11-20 | CVE-2018-9469 | Missing Authorization vulnerability in Google Android In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut due to a missing permission check. | 7.8 |
| 2024-11-20 | CVE-2024-11484 | Unspecified vulnerability in Code4Berry Decoration Management System 1.0 A vulnerability classified as critical was found in Code4Berry Decoration Management System 1.0. | 8.8 |
| 2024-11-20 | CVE-2024-11485 | Unspecified vulnerability in Code4Berry Decoration Management System 1.0 A vulnerability, which was classified as critical, has been found in Code4Berry Decoration Management System 1.0. | 8.1 |
| 2024-11-20 | CVE-2024-11487 | SQL Injection vulnerability in Code4Berry Decoration Management System 1.0 A vulnerability has been found in Code4Berry Decoration Management System 1.0 and classified as critical. | 8.8 |
| 2024-11-20 | CVE-2024-51208 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Boat Booking System 1.0 File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0 allows local attackers to upload a malicious PHP script via the Image Upload Mechanism parameter. | 7.2 |
| 2024-11-20 | CVE-2024-10855 | Authorization Bypass Through User-Controlled Key vulnerability in Sirv The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to insufficient validation on the filename parameter of the sirv_upload_file_by_chunks() function and lack of in all versions up to, and including, 7.3.0. | 8.1 |