|
250901
|
8.8 |
HIGH
Network
|
phpgurukul
|
boat_booking_system
|
A vulnerability classified as problematic has been found in PHPGurukul Boat Booking System 1.0. Affected is the function session_start. The manipulation leads to session fixiation. It is possible to …
|
CWE-384
Session Fixation
|
CVE-2024-10158
|
2024-10-22 23:42 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250902
|
9.8 |
CRITICAL
Network
|
phpgurukul
|
boat_booking_system
|
A vulnerability was found in PHPGurukul Boat Booking System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/password-recovery.php of the component Re…
|
CWE-89
SQL Injection
|
CVE-2024-10157
|
2024-10-22 23:42 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250903
|
7.2 |
HIGH
Network
|
phpgurukul
|
boat_booking_system
|
A vulnerability classified as critical was found in PHPGurukul Boat Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/profile.php of the component My P…
|
CWE-89
SQL Injection
|
CVE-2024-10159
|
2024-10-22 23:41 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250904
|
8.8 |
HIGH
Network
|
phpgurukul
|
boat_booking_system
|
A vulnerability, which was classified as critical, has been found in PHPGurukul Boat Booking System 1.0. Affected by this issue is some unknown functionality of the file /admin/bwdates-report-details…
|
CWE-89
SQL Injection
|
CVE-2024-10160
|
2024-10-22 23:40 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250905
|
8.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underly…
|
NVD-CWE-Other
|
CVE-2024-20285
|
2024-10-22 23:37 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250906
|
4.8 |
MEDIUM
Network
|
phpgurukul
|
boat_booking_system
|
A vulnerability, which was classified as problematic, was found in PHPGurukul Boat Booking System 1.0. This affects an unknown part of the file /admin/book-details.php of the component Booking Detail…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10191
|
2024-10-22 23:33 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250907
|
6.1 |
MEDIUM
Network
|
rockettheme
|
gantry
|
The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'override_id' parameter in all versions up to, and including, 4.1.21 due to insufficient input sani…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9382
|
2024-10-22 23:31 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250908
|
9.8 |
CRITICAL
Network
|
oretnom23
|
sentiment_based_movie_rating_system
|
A vulnerability was found in SourceCodester Sentiment Based Movie Rating System 1.0. It has been classified as critical. Affected is an unknown function of the file /msrps/movie_details.php. The mani…
|
CWE-89
SQL Injection
|
CVE-2024-10163
|
2024-10-22 23:28 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250909
|
8.8 |
HIGH
Network
|
esafenet
|
cdg
|
A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. This issue affects the function actionAddEncryptPolicyGroup of the file /com/esafenet/servlet/policy/EncryptPolicy…
|
CWE-89
SQL Injection
|
CVE-2024-10072
|
2024-10-22 23:20 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250910
|
8.8 |
HIGH
Network
|
esafenet
|
cdg
|
A vulnerability classified as critical was found in ESAFENET CDG 5. This vulnerability affects the function actionUpdateEncryptPolicyEdit of the file /com/esafenet/servlet/policy/EncryptPolicyService…
|
CWE-89
SQL Injection
|
CVE-2024-10071
|
2024-10-22 23:20 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
