Weekly Vulnerabilities Reports > November 25 to December 1, 2024

Overview

161 new vulnerabilities reported during this period, including 31 critical vulnerabilities and 56 high severity vulnerabilities. This weekly summary report vulnerabilities in 41 products from 23 vendors including Fujielectric, Google, Engeniustech, Phpgurukul, and 1000Projects. Vulnerabilities are notably categorized as "Cross-site Scripting", "SQL Injection", "Out-of-bounds Write", "Command Injection", and "Out-of-bounds Read".

  • 125 reported vulnerabilities are remotely exploitables.
  • 81 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 91 reported vulnerabilities are exploitable by an anonymous user.
  • Fujielectric has the most reported vulnerabilities, with 17 reported vulnerabilities.
  • Phpgurukul has the most reported critical vulnerabilities, with 6 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

31 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2024-12-01 CVE-2024-12007 Code Projects SQL Injection vulnerability in Code-Projects Farmacia 1.0

A vulnerability, which was classified as critical, was found in code-projects Farmacia 1.0.
9.8
2024-11-29 CVE-2024-49803 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.
9.8
2024-11-28 CVE-2024-11970 Anisha SQL Injection vulnerability in Anisha Concert Ticket Ordering System 1.0

A vulnerability classified as critical has been found in code-projects Concert Ticket Ordering System 1.0.
9.8
2024-11-28 CVE-2024-11966 Phpgurukul SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0

A vulnerability was found in PHPGurukul Complaint Management system 1.0 and classified as critical.
9.8
2024-11-28 CVE-2024-11967 Phpgurukul SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0

A vulnerability was found in PHPGurukul Complaint Management system 1.0.
9.8
2024-11-28 CVE-2024-11964 Phpgurukul SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0

A vulnerability, which was classified as critical, was found in PHPGurukul Complaint Management system 1.0.
9.8
2024-11-28 CVE-2024-11965 Phpgurukul SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0

A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as critical.
9.8
2024-11-28 CVE-2024-11962 Fabianros SQL Injection vulnerability in Fabianros Simple CAR Rental System 1.0

A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0.
9.8
2024-11-27 CVE-2024-11667 Zyxel Path Traversal vulnerability in Zyxel ZLD

A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series firmware versions V5.00 through V5.38, USG FLEX 50(W) series firmware versions V5.10 through V5.38, and USG20(W)-VPN series firmware versions V5.10 through V5.38 could allow an attacker to download or upload files via a crafted URL.
9.8
2024-11-27 CVE-2024-53676 HPE Path Traversal vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545

A directory traversal vulnerability in Hewlett Packard Enterprise Insight Remote Support may allow remote code execution.
9.8
2024-11-27 CVE-2024-11818 Phpgurukul SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 1.0

A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System 1.0.
9.8
2024-11-27 CVE-2024-11819 1000Projects SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0

A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0.
9.8
2024-11-26 CVE-2024-11817 Phpgurukul SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 1.0

A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0.
9.8
2024-11-26 CVE-2024-53673 HPE Deserialization of Untrusted Data vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545

A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated attacker to execute code.
9.8
2024-11-26 CVE-2024-11744 1000Projects SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0

A vulnerability has been found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical.
9.8
2024-11-26 CVE-2024-11745 Tenda Out-of-bounds Write vulnerability in Tenda AC8 Firmware 16.03.34.09

A vulnerability was found in Tenda AC8 16.03.34.09 and classified as critical.
9.8
2024-11-26 CVE-2024-11680 Projectsend Incorrect Authorization vulnerability in Projectsend

ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability.
9.8
2024-11-26 CVE-2017-11076 On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.
9.8
2024-11-26 CVE-2017-17772 In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.
9.8
2024-11-26 CVE-2018-11922 Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.
9.8
2024-11-25 CVE-2024-11663 Codezips SQL Injection vulnerability in Codezips E-Commerce Site 1.0

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0.
9.8
2024-11-25 CVE-2024-11664 Enms Unspecified vulnerability in Enms

A vulnerability, which was classified as critical, has been found in eNMS up to 4.2.
9.8
2024-11-25 CVE-2024-11661 Codezips Unrestricted Upload of File with Dangerous Type vulnerability in Codezips Free Exam Hall Seating Management System 1.0

A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0.
9.8
2024-11-25 CVE-2024-11649 1000Projects SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0

A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and classified as critical.
9.8
2024-11-25 CVE-2024-11647 1000Projects SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0

A vulnerability, which was classified as critical, has been found in 1000 Projects Beauty Parlour Management System 1.0.
9.8
2024-11-25 CVE-2024-11648 1000Projects SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0

A vulnerability, which was classified as critical, was found in 1000 Projects Beauty Parlour Management System 1.0.
9.8
2024-11-25 CVE-2024-11646 1000Projects SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0

A vulnerability classified as critical was found in 1000 Projects Beauty Parlour Management System 1.0.
9.8
2024-11-27 CVE-2024-9369 Google Improper Validation of Specified Quantity in Input vulnerability in Google Chrome

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page.
9.6
2024-11-29 CVE-2024-49805 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
9.4
2024-11-29 CVE-2024-49806 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
9.4
2024-11-26 CVE-2024-49038 Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot Studio by an unauthorized attacker leads to elevation of privilege over a network.
9.3

56 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2024-11-28 CVE-2024-11963 Fabianros SQL Injection vulnerability in Fabianros Responsive Hotel Site 1.0

A vulnerability, which was classified as critical, has been found in code-projects Responsive Hotel Site 1.0.
8.8
2024-11-28 CVE-2024-11959 Dlink Classic Buffer Overflow vulnerability in Dlink Dir-605L Firmware 2.13B01

A vulnerability was found in D-Link DIR-605L 2.13B01.
8.8
2024-11-28 CVE-2024-11960 Dlink Classic Buffer Overflow vulnerability in Dlink Dir-605L Firmware 2.13B01

A vulnerability was found in D-Link DIR-605L 2.13B01.
8.8
2024-11-27 CVE-2024-7025 Google Integer Overflow or Wraparound vulnerability in Google Chrome

Integer overflow in Layout in Google Chrome prior to 129.0.6668.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
8.8
2024-11-26 CVE-2024-8114 Gitlab Unspecified vulnerability in Gitlab

An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1.
8.8
2024-11-26 CVE-2024-11674 Hospital Management System Project Unrestricted Upload of File with Dangerous Type vulnerability in Hospital Management System Project Hospital Management System 1.0

A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0.
8.8
2024-11-26 CVE-2024-49035 An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network.
8.7
2024-11-26 CVE-2016-10394 Initial xbl_sec revision does not have all the debug policy features and critical checks.
8.4
2024-11-26 CVE-2017-15832 Buffer overwrite in the WLAN host driver by leveraging a compromised WLAN FW
8.4
2024-11-26 CVE-2017-18153 A race condition exists in a driver potentially leading to a use-after-free condition.
8.4
2024-11-26 CVE-2018-11952 An image with a version lower than the fuse version may potentially be booted lead to improper authentication.
8.4
2024-11-26 CVE-2024-49052 Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network.
8.2
2024-11-29 CVE-2024-49804 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used to perform certain tasks.
7.8
2024-11-28 CVE-2018-9374 Google Unspecified vulnerability in Google Android

In installPackageLI of PackageManagerService.java, there is a possible permissions bypass.
7.8
2024-11-28 CVE-2024-11787 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V10 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11789 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V10 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11790 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V10 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11791 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V8C File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11792 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V8 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11793 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V9C File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11794 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V10 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11795 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V8 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11796 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V9C File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11797 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT V8 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11798 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11799 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11800 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11801 Fujielectric Unspecified vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11802 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack-Based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11803 Fujielectric Unspecified vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
7.8
2024-11-28 CVE-2024-11933 Fujielectric Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0

Fuji Electric Monitouch V-SFT X1 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.
7.8
2024-11-27 CVE-2017-13323 Google Integer Overflow or Wraparound vulnerability in Google Android

In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow.
7.8
2024-11-27 CVE-2017-13316 Google Missing Authorization vulnerability in Google Android

In checkPermissions of RecognitionService.java, there is a possible permissions bypass due to a missing permission check.
7.8
2024-11-25 CVE-2024-53098 Linux Out-of-bounds Write vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ufence: Prefetch ufence addr to catch bogus address access_ok() only checks for addr overflow so also try to read the addr to catch invalid addr sent from userspace. (cherry picked from commit 9408c4508483ffc60811e910a93d6425b8e63928)
7.8
2024-11-26 CVE-2024-49053 Microsoft Dynamics 365 Sales Spoofing Vulnerability
7.6
2024-11-30 CVE-2024-11998 Farmacia Project SQL Injection vulnerability in Farmacia Project Farmacia 1.0

A vulnerability was found in code-projects Farmacia 1.0.
7.5
2024-11-28 CVE-2024-11968 Anisha SQL Injection vulnerability in Anisha Farmacia 1.0

A vulnerability was found in code-projects Farmacia up to 1.0.
7.5
2024-11-28 CVE-2024-11961 Huayi TEC Unspecified vulnerability in Huayi-Tec Jeewms 3.7

A vulnerability was found in Guangzhou Huayi Intelligent Technology Jeewms 3.7.
7.5
2024-11-27 CVE-2017-13319 Google Classic Buffer Overflow vulnerability in Google Android

In pvmp3_get_main_data_size of pvmp3_get_main_data_size.cpp, there is a possible buffer overread due to a missing bounds check.
7.5
2024-11-26 CVE-2024-11622 HPE XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
7.5
2024-11-26 CVE-2024-53674 HPE XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
7.5
2024-11-26 CVE-2024-53675 HPE XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
7.5
2024-11-26 CVE-2024-11669 Gitlab Unspecified vulnerability in Gitlab

An issue was discovered in GitLab CE/EE affecting all versions from 16.9.8 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1.
7.5
2024-11-26 CVE-2024-11828 Gitlab Unspecified vulnerability in Gitlab

A denial of service (DoS) condition was discovered in GitLab CE/EE affecting all versions from 13.2.4 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1.
7.5
2024-11-26 CVE-2024-8177 Gitlab Unspecified vulnerability in Gitlab

An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5, starting from 17.5 prior to 17.5.3, starting from 17.6 prior to 17.6.1 which could cause Denial of Service via integrating a malicious harbor registry.
7.5
2024-11-26 CVE-2024-8237 Gitlab Unspecified vulnerability in Gitlab

A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior to 12.6 prior to 17.4.5, 17.5 prior to 17.5.3, and 17.6 prior to 17.6.1.
7.5
2024-11-25 CVE-2024-11659 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and classified as critical.
7.2
2024-11-25 CVE-2024-11657 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability, which was classified as critical, was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-11658 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and classified as critical.
7.2
2024-11-25 CVE-2024-11655 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability classified as critical was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-11656 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability, which was classified as critical, has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-11653 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-11654 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability classified as critical has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-11651 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-11652 Engeniustech Command Injection vulnerability in Engeniustech products

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
7.2
2024-11-25 CVE-2024-53099 Linux Out-of-bounds Read vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: bpf: Check validity of link->type in bpf_link_show_fdinfo() If a newly-added link type doesn't invoke BPF_LINK_TYPE(), accessing bpf_link_type_strs[link->type] may result in an out-of-bounds access. To spot such missed invocations early in the future, checking the validity of link->type in bpf_link_show_fdinfo() and emitting a warning when such invocations are missed.
7.1

74 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2024-11-30 CVE-2024-12002 Tenda NULL Pointer Dereference vulnerability in Tenda products

A vulnerability classified as problematic was found in Tenda FH451, FH1201, FH1202 and FH1206 up to 20241129.
6.5
2024-11-28 CVE-2024-7747 The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between numeric types in all versions up to, and including, 1.5.6.
6.5
2024-11-27 CVE-2018-9351 Google Out-of-bounds Read vulnerability in Google Android

In ih264e_fmt_conv_420p_to_420sp of ih264e_fmt_conv.c there is a possible out of bound read due to missing bounds check.
6.5
2024-11-27 CVE-2018-9352 Google Integer Overflow or Wraparound vulnerability in Google Android

In ihevcd_allocate_dynamic_bufs of ihevcd_api.c there is a possible resource exhaustion due to integer overflow.
6.5
2024-11-27 CVE-2018-9353 Google Out-of-bounds Read vulnerability in Google Android

In ihevcd_parse_slice_data of ihevcd_parse_slice.c there is a possible heap buffer out of bound read due to a missing bounds check.
6.5
2024-11-27 CVE-2018-9354 Google Divide By Zero vulnerability in Google Android

In VideoFrameScheduler.cpp of VideoFrameScheduler::PLL::fit, there is a possible remote denial of service due to divide by 0.
6.5
2024-11-27 CVE-2017-13320 Google Out-of-bounds Read vulnerability in Google Android

In impeg2d_bit_stream_flush() of libmpeg2dec there is a possible OOB read due to a missing bounds check.
6.5
2024-11-27 CVE-2018-9349 Google Out-of-bounds Read vulnerability in Google Android

In mv_err_cost of mcomp.c there is a possible out of bounds read due to missing bounds check.
6.5
2024-11-27 CVE-2018-9350 Google Out-of-bounds Read vulnerability in Google Android

In ih264d_assign_pic_num of ih264d_utils.c there is a possible out of bound read due to missing bounds check.
6.5
2024-11-27 CVE-2024-11860 Mayurik Unspecified vulnerability in Mayurik Best House Rental Management System 1.0

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0.
6.5
2024-11-26 CVE-2024-10857 The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.9 via the handle_downloads() function due to insufficient file path validation/sanitization.
6.5
2024-11-25 CVE-2024-10270 A vulnerability was found in the Keycloak-services package.
6.5
2024-11-28 CVE-2024-11203 The EmbedPress – Embed PDF, 3D Flipbook, Social Feeds, Google Docs, Vimeo, Wistia, YouTube Videos, Audios, Google Maps in Gutenberg Block & Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘provider_name parameter in all versions up to, and including, 4.1.3 due to insufficient input sanitization and output escaping.
6.4
2024-11-28 CVE-2024-11333 The HLS Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'hls_player' shortcode in all versions up to, and including, 1.0.10 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-28 CVE-2024-11431 The Ragic Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ragic' shortcode in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-28 CVE-2024-11761 The LegalWeb Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'legalweb-popup' shortcode in all versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-28 CVE-2024-11786 The Login with Vipps and MobilePay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'continue-with-vipps' shortcode in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-28 CVE-2024-11788 The StreamWeasels YouTube Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sw-youtube-embed' shortcode in all versions up to, and including, 1.3.6 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-27 CVE-2024-10175 The Pricing Tables For WPBakery Page Builder (formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wdo_pricing_tables shortcode in all versions up to, and including, 1.4 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-27 CVE-2024-10895 The Counter Up – Animated Number Counter & Milestone Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'lgx-counter' shortcode in all versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-26 CVE-2024-8236 The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter of the Icon widget in all versions up to, and including, 3.25.7 due to insufficient input sanitization and output escaping.
6.4
2024-11-26 CVE-2024-10308 The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's JKit - Countdown widget in all versions up to, and including, 2.6.9 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-26 CVE-2024-11091 The Support SVG – Upload svg files in wordpress without hassle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping.
6.4
2024-11-26 CVE-2024-11119 The BNE Gallery Extended plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gallery' shortcode in all versions up to, and including, 1.2.1 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-26 CVE-2024-11192 The Spotify Play Button for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's spotifyplaybutton shortcode in all versions up to, and including, 2.11 due to insufficient input sanitization and output escaping on user supplied attributes.
6.4
2024-11-26 CVE-2024-11002 The The InPost Gallery plugin for WordPress is vulnerable to arbitrary shortcode execution via the inpost_gallery_get_shortcode_template AJAX action in all versions up to, and including, 2.1.4.2.
6.3
2024-11-30 CVE-2024-11252 The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateor_mastodon_share parameter in all versions up to, and including, 3.3.69 due to insufficient input sanitization and output escaping.
6.1
2024-11-29 CVE-2024-11995 Anisha Cross-site Scripting vulnerability in Anisha Farmacia 1.0

A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic.
6.1
2024-11-28 CVE-2024-11366 The SEO Landing Page Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.66.2.
6.1
2024-11-28 CVE-2024-11458 The FAQ Builder AYS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'ays_faq_tab' parameter in all versions up to, and including, 1.7.1 due to insufficient input sanitization and output escaping.
6.1
2024-11-28 CVE-2024-11684 The Kudos Donations – Easy donations and payments with Mollie plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 's' parameter in all versions up to, and including, 3.2.9 due to insufficient input sanitization and output escaping.
6.1
2024-11-28 CVE-2024-11685 The `Kudos Donations – Easy donations and payments with Mollie` plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of `add_query_arg` without appropriate escaping on the URL in all versions up to, and including, 3.2.9.
6.1
2024-11-26 CVE-2024-10878 The Sugar Calendar – Simple Event Management plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 3.3.0.
6.1
2024-11-26 CVE-2024-11032 The Parsi Date plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 5.1.1.
6.1
2024-11-26 CVE-2024-11202 Multiple plugins for WordPress are vulnerable to Reflected Cross-Site Scripting via the cminds_free_guide shortcode in various versions due to insufficient input sanitization and output escaping.
6.1
2024-11-26 CVE-2024-11342 The Skt NURCaptcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.5.0.
6.1
2024-11-26 CVE-2024-11418 The Additional Order Filters for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'shipping_method_filter' parameter in all versions up to, and including, 1.21 due to insufficient input sanitization and output escaping.
6.1
2024-11-25 CVE-2024-53096 Linux Unspecified vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: mm: resolve faulty mmap_region() error path behaviour The mmap_region() function is somewhat terrifying, with spaghetti-like control flow and numerous means by which issues can arise and incomplete state, memory leaks and other unpleasantness can occur. A large amount of the complexity arises from trying to handle errors late in the process of mapping a VMA, which forms the basis of recently observed issues with resource leaks and observable inconsistent state. Taking advantage of previous patches in this series we move a number of checks earlier in the code, simplifying things by moving the core of the logic into a static internal function __mmap_region(). Doing this allows us to perform a number of checks up front before we do any real work, and allows us to unwind the writable unmap check unconditionally as required and to perform a CONFIG_DEBUG_VM_MAPLE_TREE validation unconditionally also. We move a number of things here: 1.
6.1
2024-11-25 CVE-2023-45181 IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting.
6.1
2024-11-29 CVE-2024-47094 Checkmk Information Exposure Through Log Files vulnerability in Checkmk 2.1.0/2.2.0/2.3.0

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p22, <2.2.0p37, <2.1.0p50 (EOL) causes remote site secrets to be written to web log files accessible to local site users.
5.5
2024-11-28 CVE-2018-9377 Google Use of Uninitialized Resource vulnerability in Google Android 6.0/6.0.1

In BnAudioPolicyService::onTransact of IAudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data.
5.5
2024-11-27 CVE-2017-13321 Google Out-of-bounds Read vulnerability in Google Android 8.0/8.1

In SensorService::isDataInjectionEnabled of frameworks/native/services/sensorservice/SensorService.cpp, there is a possible out of bounds read due to a missing bounds check.
5.5
2024-11-26 CVE-2024-9170 The Booster for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wcj_product_meta shortcode in all versions up to, and including, 7.2.3 due to insufficient input sanitization and output escaping on user supplied attributes.
5.5
2024-11-26 CVE-2024-49351 IBM Workload Scheduler 9.5, 10.1, and 10.2 stores user credentials in plain text which can be read by a local user.
5.5
2024-11-25 CVE-2024-53097 Linux Unspecified vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false alarm in __do_krealloc This patch addresses an issue introduced by commit 1a83a716ec233 ("mm: krealloc: consider spare memory for __GFP_ZERO") which causes MTE (Memory Tagging Extension) to falsely report a slab-out-of-bounds error. The problem occurs when zeroing out spare memory in __do_krealloc.
5.5
2024-11-25 CVE-2024-53101 Linux Use of Uninitialized Resource vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized value issue in from_kuid and from_kgid ocfs2_setattr() uses attr->ia_mode, attr->ia_uid and attr->ia_gid in a trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren't set. Initialize all fields of newattrs to avoid uninitialized variables, by checking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.
5.5
2024-11-30 CVE-2024-12001 Anisha Cross-site Scripting vulnerability in Anisha Wazifa System 1.0

A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0.
5.4
2024-11-30 CVE-2024-12000 Code Projects Cross-site Scripting vulnerability in Code-Projects Blood Bank System 1.0

A vulnerability was found in code-projects Blood Bank System 1.0.
5.4
2024-11-30 CVE-2024-11996 Anisha Cross-site Scripting vulnerability in Anisha Farmacia 1.0

A vulnerability was found in code-projects Farmacia 1.0 and classified as problematic.
5.4
2024-11-30 CVE-2024-11997 Anisha Cross-site Scripting vulnerability in Anisha Farmacia 1.0

A vulnerability was found in code-projects Farmacia 1.0.
5.4
2024-11-28 CVE-2024-11971 Jpress Unrestricted Upload of File with Dangerous Type vulnerability in Jpress 5.1.2

A vulnerability classified as problematic was found in Guizhou Xiaoma Technology jpress 5.1.2.
5.4
2024-11-27 CVE-2024-11025 An authenticated attacker with low privileges may use a SQL Injection vulnerability in the affected products administration panel to gain read and write access to a specific log file of the device.
5.4
2024-11-27 CVE-2024-11820 Code Projects Cross-site Scripting vulnerability in Code-Projects Crud Operation System 1.0

A vulnerability, which was classified as problematic, has been found in code-projects Crud Operation System 1.0.
5.4
2024-11-26 CVE-2024-11742 Mayurik Unspecified vulnerability in Mayurik Best House Rental Management System 1.0

A vulnerability, which was classified as problematic, has been found in SourceCodester Best House Rental Management System 1.0.
5.4
2024-11-26 CVE-2024-11677 Hospital Management System Project Cross-site Scripting vulnerability in Hospital Management System Project Hospital Management System 1.0

A vulnerability was found in CodeAstro Hospital Management System 1.0.
5.4
2024-11-26 CVE-2024-11678 Hospital Management System Project Cross-site Scripting vulnerability in Hospital Management System Project Hospital Management System 1.0

A vulnerability was found in CodeAstro Hospital Management System 1.0.
5.4
2024-11-26 CVE-2024-11675 Phpgurukul Cross-site Scripting vulnerability in PHPgurukul Hospital Management System 1.0

A vulnerability has been found in CodeAstro Hospital Management System 1.0 and classified as problematic.
5.4
2024-11-26 CVE-2024-11676 Hospital Management System Project Cross-site Scripting vulnerability in Hospital Management System Project Hospital Management System 1.0

A vulnerability was found in CodeAstro Hospital Management System 1.0 and classified as problematic.
5.4
2024-11-25 CVE-2024-11660 Anisha Cross-site Scripting vulnerability in Anisha Farmacia 1.0

A vulnerability was found in code-projects Farmacia 1.0.
5.4
2024-11-26 CVE-2024-10240 Gitlab Unspecified vulnerability in Gitlab

An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7, all versions starting from 17.4 before 17.4.4, all versions starting from 17.5 before 17.5.2 in which an unauthenticated user may be able to read some information about an MR in a private project, under certain circumstances.
5.3
2024-11-26 CVE-2024-11668 Gitlab Unspecified vulnerability in Gitlab

An issue has been discovered in GitLab CE/EE affecting all versions from 16.11 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1.
5.3
2024-11-25 CVE-2024-6538 A flaw was found in OpenShift Console.
5.3
2024-11-27 CVE-2024-11009 The Internal Linking for SEO traffic & Ranking – Auto internal links (100% automatic) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 1.2.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
4.9
2024-11-25 CVE-2024-53100 Linux Race Condition vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: nvme: tcp: avoid race between queue_lock lock and destroy Commit 76d54bf20cdc ("nvme-tcp: don't access released socket during error recovery") added a mutex_lock() call for the queue->queue_lock in nvme_tcp_get_address().
4.7
2024-11-25 CVE-2024-9666 A vulnerability was found in the Keycloak Server.
4.7
2024-11-28 CVE-2024-10670 The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.2 via the [prim_elementor_template] shortcode due to insufficient restrictions on which posts can be included.
4.3
2024-11-28 CVE-2024-10780 The Restaurant & Cafe Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.9 via the 'narestaurant_elementor_template' shortcode due to insufficient restrictions on which posts can be included.
4.3
2024-11-28 CVE-2024-10798 The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.7.1003 via the 'wpr-template' shortcode due to insufficient restrictions on which posts can be included.
4.3
2024-11-28 CVE-2024-11918 The Image Alt Text plugin for WordPress is vulnerable to unauthorized modification of data| due to a missing capability check on the iat_add_alt_txt_action and iat_update_alt_txt_action AJAX actions in all versions up to, and including, 2.0.0.
4.3
2024-11-27 CVE-2024-10521 The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.2.
4.3
2024-11-26 CVE-2024-11743 Mayurik Cross-Site Request Forgery (CSRF) vulnerability in Mayurik Best House Rental Management System 1.0

A vulnerability, which was classified as problematic, was found in SourceCodester Best House Rental Management System 1.0.
4.3
2024-11-26 CVE-2024-8899 The Jeg Elementor Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.9 via the render_content function in class/elements/views/class-tabs-view.php.
4.3
2024-11-26 CVE-2024-10579 The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the preview_module() function in all versions up to, and including, 7.8.5.
4.3
2024-11-25 CVE-2024-11673 1000Projects Cross-Site Request Forgery (CSRF) vulnerability in 1000Projects Bookstore Management System 1.0

A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore Management System 1.0.
4.3

0 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS