|
250881
|
4.8 |
MEDIUM
Network
|
code-projects
|
pharmacy_management
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /manage_customer…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10198
|
2024-10-23 00:39 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250882
|
4.8 |
MEDIUM
Network
|
heimkino-praxis
|
movie_database
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Bert Kößler Movie Database allows Stored XSS.This issue affects Movie Database: from n/a t…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43300
|
2024-10-23 00:35 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250883
|
8.8 |
HIGH
Network
|
sermonaudio
|
sermonaudio_widgets
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dan Alexander SermonAudio Widgets allows SQL Injection.This issue affects SermonAudio Widgets: fr…
|
CWE-89
SQL Injection
|
CVE-2024-49614
|
2024-10-23 00:34 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250884
|
8.8 |
HIGH
Network
|
lodelgeraldo
|
simple_code_insert_shortcode
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Lodel Geraldo Simple Code Insert Shortcode allows SQL Injection.This issue affects Simple Code In…
|
CWE-89
SQL Injection
|
CVE-2024-49613
|
2024-10-23 00:29 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250885
|
6.3 |
MEDIUM
Network
|
dell
|
secure_connect_gateway
|
Dell Secure Connect Gateway (SCG) 5.24 contains an Incorrect Default Permissions vulnerability. A local attacker with low privileges can access the file system and could potentially exploit this vuln…
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-47240
|
2024-10-23 00:28 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250886
|
6.1 |
MEDIUM
Network
|
madrasthemes
|
mas_companies_for_wp_job_manager
|
The MAS Companies For WP Job Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9206
|
2024-10-23 00:27 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250887
|
4.3 |
MEDIUM
Network
|
smackcoders
|
sendgrid
|
The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'wp_mailplus_clear_logs' function in all versions up to, and includ…
|
CWE-862
Missing Authorization
|
CVE-2024-9364
|
2024-10-23 00:26 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250888
|
5.4 |
MEDIUM
Network
|
tychesoftwares
|
arconix_shortcodes
|
The Arconix Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'button' shortcode in all versions up to, and including, 2.1.12 due to insufficient input san…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9703
|
2024-10-23 00:25 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250889
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A vulnerability has been found in PHPGurukul IFSC Code Finder Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file search.php. The manipulation leads to cros…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10192
|
2024-10-23 00:09 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250890
|
5.4 |
MEDIUM
Network
|
wpzest
|
easy_menu_manager
|
The Easy Menu Manager | WPZest plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.1 due to insufficient input sanitizatio…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9366
|
2024-10-23 00:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
