Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-7645 Cross-Site Request Forgery (CSRF) vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0.
network
low complexity
oretnom23 CWE-352
5.4
5.4
2024-08-12 CVE-2024-7648 The Opal Membership plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the private notes functionality on payments which utilizes WordPress comments.
network
low complexity
 4.3
4.3
2024-08-12 CVE-2024-7649 The Opal Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting via checkout form fields in all versions up to, and including, 1.2.4 due to insufficient input sanitization and output escaping.
network
low complexity
 6.1
6.1
2024-08-12 CVE-2024-7657 Cross-site Scripting vulnerability in Gilacms Gila CMS 1.10.9
A vulnerability classified as problematic was found in Gila CMS 1.10.9.
network
low complexity
gilacms CWE-79
5.4
5.4
2024-08-12 CVE-2024-7658 Authorization Bypass Through User-Controlled Key vulnerability in Projectsend
A vulnerability, which was classified as problematic, has been found in projectsend up to r1605.
network
low complexity
projectsend CWE-639
5.3
5.3
2024-08-12 CVE-2024-7660 Cross-site Scripting vulnerability in Rems File Manager APP 1.0
A vulnerability has been found in SourceCodester File Manager App 1.0 and classified as problematic.
network
low complexity
rems CWE-79
6.1
6.1
2024-08-12 CVE-2024-7662 Cross-Site Request Forgery (CSRF) vulnerability in Oretnom23 CAR Driving School Management System 1.0
A vulnerability was found in SourceCodester Car Driving School Management System 1.0.
network
low complexity
oretnom23 CWE-352
6.5
6.5
2024-08-12 CVE-2024-7663 SQL Injection vulnerability in Oretnom23 CAR Driving School Management System 1.0
A vulnerability was found in SourceCodester Car Driving School Management System 1.0.
network
low complexity
oretnom23 CWE-89
5.3
5.3
2024-08-12 CVE-2024-7664 SQL Injection vulnerability in Oretnom23 CAR Driving School Management System 1.0
A vulnerability classified as critical has been found in SourceCodester Car Driving School Management System 1.0.
network
low complexity
oretnom23 CWE-89
4.3
4.3
2024-08-12 CVE-2024-7665 SQL Injection vulnerability in Oretnom23 CAR Driving School Management System 1.0
A vulnerability classified as critical was found in SourceCodester Car Driving School Management System 1.0.
network
low complexity
oretnom23 CWE-89
4.3
4.3