|
310661
|
8.3 |
HIGH
Network
|
gradio_project
|
gradio
|
Gradio is an open-source Python package designed for quick prototyping. This vulnerability is related to **CORS origin validation**, where the Gradio server fails to validate the request origin when …
|
NVD-CWE-Other
|
CVE-2024-47084
|
2024-10-18 01:30 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310662
|
8.8 |
HIGH
Network
|
microchip
|
timeprovider_4100_firmware
|
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Microchip TimeProvider 4100 (Co…
|
CWE-78
OS Command
|
CVE-2024-9054
|
2024-10-18 00:19 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310663
|
6.5 |
MEDIUM
Adjacent
|
microchip
|
timeprovider_4100_firmware
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip TimeProvider 4100 (Data plot modules) allows SQL Injection.This issue affects TimeProvi…
|
CWE-89
SQL Injection
|
CVE-2024-7801
|
2024-10-18 00:19 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310664
|
9.8 |
CRITICAL
Network
|
microchip
|
timeprovider_4100_firmware
|
Improper Authentication vulnerability in Microchip TimeProvider 4100 (login modules) allows Session Hijacking.This issue affects TimeProvider 4100: from 1.0 before 2.4.7.
|
CWE-287
Improper Authentication
|
CVE-2024-43685
|
2024-10-18 00:17 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310665
|
8.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underly…
|
NVD-CWE-Other
|
CVE-2024-20284
|
2024-10-18 00:03 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310666
|
7.2 |
HIGH
Network
|
codezips
|
tourist_management_system
|
A vulnerability was found in Codezips Tourist Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/change-image.php. The manipulat…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9816
|
2024-10-17 23:53 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310667
|
7.2 |
HIGH
Network
|
codezips
|
tourist_management_system
|
A vulnerability has been found in Codezips Tourist Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/create-package.php. …
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9815
|
2024-10-17 23:52 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310668
|
9.8 |
CRITICAL
Network
|
codezips
|
pharmacy_management_system
|
A vulnerability, which was classified as critical, was found in Codezips Pharmacy Management System 1.0. Affected is an unknown function of the file product/update.php. The manipulation of the argume…
|
CWE-89
SQL Injection
|
CVE-2024-9814
|
2024-10-17 23:48 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310669
|
4.8 |
MEDIUM
Network
|
classroombookings
|
classroombookings
|
A vulnerability was found in Craig Rodway Classroombookings 2.8.7 and classified as problematic. This issue affects some unknown processing of the file /sessions of the component Session Page. The ma…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9807
|
2024-10-17 23:44 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310670
|
4.8 |
MEDIUM
Network
|
classroombookings
|
classroombookings
|
A vulnerability has been found in Craig Rodway Classroombookings up to 2.8.6 and classified as problematic. This vulnerability affects unknown code of the file /rooms/fields of the component Room Pag…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9806
|
2024-10-17 23:44 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
