|
257181
|
9.8 |
CRITICAL
Network
|
janobe
|
e-commerce_system
|
A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipu…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8089
|
2024-08-27 22:21 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257182
|
9.8 |
CRITICAL
Network
|
janobe
|
e-commerce_system
|
A vulnerability was found in SourceCodester E-Commerce System 1.0 and classified as critical. This issue affects some unknown processing of the file /ecommerce/popup_Item.php. The manipulation of the…
|
CWE-89
SQL Injection
|
CVE-2024-8087
|
2024-08-27 22:19 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257183
|
9.8 |
CRITICAL
Network
|
janobe
|
e-commerce_system
|
A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admi…
|
CWE-89
SQL Injection
|
CVE-2024-8086
|
2024-08-27 22:17 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257184
|
4.9 |
MEDIUM
Network
|
ruijie
|
eg2000k_firmware
|
A vulnerability has been found in Ruijie EG2000K 11.1(6)B2 and classified as critical. This vulnerability affects unknown code of the file /tool/index.php?c=download&a=save. The manipulation of the a…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8166
|
2024-08-27 22:03 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257185
|
- |
|
-
|
-
|
Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using `rustix::fs::Dir` using the `linux_raw` backend, it's possible for the iterator to "get stuck" when an IO error is encountered. Com…
|
-
|
CVE-2024-43806
|
2024-08-27 22:02 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257186
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘arrow’ parameter within the Post Grid widget in all versions up to, and …
|
-
|
CVE-2024-7791
|
2024-08-27 22:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257187
|
- |
|
-
|
-
|
Tophat is a mobile applications testing harness. An Improper Access Control vulnerability can expose the `TOPHAT_APP_TOKEN` token stored in `~/.tophatrc` through use of a malicious Tophat URL control…
|
-
|
CVE-2024-45036
|
2024-08-27 22:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257188
|
- |
|
-
|
-
|
Chisel is a fast TCP/UDP tunnel, transported over HTTP, secured via SSH. The Chisel server doesn't ever read the documented `AUTH` environment variable used to set credentials, which allows any unaut…
|
-
|
CVE-2024-43798
|
2024-08-27 22:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257189
|
6.1 |
MEDIUM
Network
|
3ds
|
3dexperience
|
A reflected Cross-site Scripting (XSS) vulnerability affecting 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in use…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6379
|
2024-08-27 18:15 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257190
|
- |
|
-
|
-
|
The Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.4.1 …
|
-
|
CVE-2024-8046
|
2024-08-27 17:15 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
