Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-20 | CVE-2018-9468 | Unspecified vulnerability in Google Android In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a permissions bypass. | 7.1 |
| 2024-11-20 | CVE-2018-9469 | Missing Authorization vulnerability in Google Android In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut due to a missing permission check. | 7.8 |
| 2024-11-20 | CVE-2024-11484 | Unspecified vulnerability in Code4Berry Decoration Management System 1.0 A vulnerability classified as critical was found in Code4Berry Decoration Management System 1.0. | 8.8 |
| 2024-11-20 | CVE-2024-11485 | Unspecified vulnerability in Code4Berry Decoration Management System 1.0 A vulnerability, which was classified as critical, has been found in Code4Berry Decoration Management System 1.0. | 8.1 |
| 2024-11-20 | CVE-2024-11487 | SQL Injection vulnerability in Code4Berry Decoration Management System 1.0 A vulnerability has been found in Code4Berry Decoration Management System 1.0 and classified as critical. | 8.8 |
| 2024-11-20 | CVE-2024-51208 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Boat Booking System 1.0 File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0 allows local attackers to upload a malicious PHP script via the Image Upload Mechanism parameter. | 7.2 |
| 2024-11-20 | CVE-2024-10855 | Authorization Bypass Through User-Controlled Key vulnerability in Sirv The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to insufficient validation on the filename parameter of the sirv_upload_file_by_chunks() function and lack of in all versions up to, and including, 7.3.0. | 8.1 |
| 2024-11-20 | CVE-2024-10900 | Missing Authorization vulnerability in Metagauss Profilegrid The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pm_remove_file_attachment() function in all versions up to, and including, 5.9.3.6. | 8.1 |
| 2024-11-20 | CVE-2024-44306 | Classic Buffer Overflow vulnerability in Apple Macos A buffer overflow issue was addressed with improved memory handling. | 7.8 |
| 2024-11-20 | CVE-2024-44307 | Classic Buffer Overflow vulnerability in Apple Macos A buffer overflow issue was addressed with improved memory handling. | 7.8 |