Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-07-19 CVE-2024-6902 SQL Injection vulnerability in Jkev Record Management System 1.0
A vulnerability classified as critical was found in SourceCodester Record Management System 1.0.
network
low complexity
jkev CWE-89
8.8
8.8
2024-07-19 CVE-2024-6903 SQL Injection vulnerability in Jkev Record Management System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Record Management System 1.0.
network
low complexity
jkev CWE-89
8.8
8.8
2024-07-19 CVE-2024-6900 SQL Injection vulnerability in Jkev Record Management System 1.0
A vulnerability was found in SourceCodester Record Management System 1.0.
network
low complexity
jkev CWE-89
8.8
8.8
2024-07-19 CVE-2024-6901 SQL Injection vulnerability in Jkev Record Management System 1.0
A vulnerability classified as critical has been found in SourceCodester Record Management System 1.0.
network
low complexity
jkev CWE-89
8.8
8.8
2024-07-18 CVE-2024-3242 Unrestricted Upload of File with Dangerous Type vulnerability in Brizy Brizy-Page Builder
The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file extension validation in the validateImageContent function called via storeImages in all versions up to, and including, 2.4.43.
network
low complexity
brizy CWE-434
8.8
8.8
2024-07-18 CVE-2024-5726 The Timeline Event History plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1 via deserialization of untrusted input 'timelines-data' parameter.
network
low complexity
 8.8
8.8
2024-07-17 CVE-2024-23468 The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability.
low complexity
CWE-22
7.6
7.6
2024-07-17 CVE-2024-23474 The SolarWinds Access Rights Manager was found to be susceptible to an Arbitrary File Deletion and Information Disclosure vulnerability.
low complexity
CWE-22
7.6
7.6
2024-07-17 CVE-2024-28992 The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability.
low complexity
CWE-287
7.6
7.6
2024-07-17 CVE-2024-28993 The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability.
low complexity
CWE-22
7.6
7.6