|
250781
|
9.8 |
CRITICAL
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /manage_medicine.php?action=delete. Th…
|
CWE-89
SQL Injection
|
CVE-2024-10137
|
2024-10-22 23:17 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250782
|
9.8 |
CRITICAL
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /add_new_purchase.php?action=is_supplier. The manipu…
|
CWE-89
SQL Injection
|
CVE-2024-10138
|
2024-10-22 23:16 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250783
|
9.8 |
CRITICAL
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage_invoice.php. The manipulation …
|
CWE-89
SQL Injection
|
CVE-2024-10136
|
2024-10-22 23:15 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250784
|
3.8 |
LOW
Network
|
exceedone
|
exment
|
Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. A logged-in user with the permission of table management may obtain and…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2024-46897
|
2024-10-22 23:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250785
|
7.5 |
HIGH
Network
|
moxa
|
mxsecurity
|
The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable. By acquiring a valid authenticator, an attacker can pose as an aut…
|
NVD-CWE-Other
|
CVE-2024-4739
|
2024-10-22 23:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250786
|
5.4 |
MEDIUM
Network
|
tahoe
|
debrandify
|
The Debrandify · Remove or Replace WordPress Branding plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.1.2 due to insuffi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9674
|
2024-10-22 23:02 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250787
|
8.8 |
HIGH
Network
|
jonvincentmendoza
|
dynamic_elementor_addons
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Jon Vincent Mendoza Dynamic Elementor Addons allows PHP Local File Inclusion.T…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2024-49243
|
2024-10-22 23:00 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250788
|
5.4 |
MEDIUM
Network
|
sajjadhsagor
|
advanced_category_and_custom_taxonomy_image
|
The Advanced Category and Custom Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ad_tax_image shortcode in all versions up to, and including, 1.0.9 d…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9425
|
2024-10-22 22:55 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250789
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, invalid ALPN in TLS/QUIC traffic when JA4 matching/loggin…
|
CWE-617
Reachable Assertion
|
CVE-2024-47522
|
2024-10-22 22:51 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250790
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" lea…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-47188
|
2024-10-22 22:50 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
