|
313671
|
- |
|
-
|
-
|
Shopware is an open commerce platform. The store-API works with regular entities and not expose all fields for the public API; fields need to be marked as ApiAware in the EntityDefinition. So only Ap…
|
-
|
CVE-2024-42354
|
2024-08-9 00:15 |
2024-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313672
|
- |
|
-
|
-
|
JupyterHub is software that allows one to create a multi-user server for Jupyter notebooks. Prior to versions 4.1.6 and 5.1.0, if a user is granted the `admin:users` scope, they may escalate their ow…
|
-
|
CVE-2024-41942
|
2024-08-9 00:15 |
2024-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313673
|
6.1 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/teacher_login.php" in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2024-41240
|
2024-08-9 00:11 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313674
|
9.8 |
CRITICAL
Network
|
oretnom23
|
computer_laboratory_management_system
|
SourceCodester Computer Laboratory Management System 1.0 allows classes/Master.php id SQL Injection.
|
CWE-89
SQL Injection
|
CVE-2024-34479
|
2024-08-9 00:10 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313675
|
5.3 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/add_class.php and /smsa/add_class_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated …
|
NVD-CWE-Other
|
CVE-2024-41247
|
2024-08-9 00:08 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313676
|
5.3 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/admin_dashboard.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view adminis…
|
NVD-CWE-Other
|
CVE-2024-41246
|
2024-08-9 00:08 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313677
|
5.3 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/add_subject.php and /smsa/add_subject_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthentica…
|
NVD-CWE-Other
|
CVE-2024-41248
|
2024-08-9 00:07 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313678
|
5.3 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/view_subject.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view SUBJECT de…
|
NVD-CWE-Other
|
CVE-2024-41249
|
2024-08-9 00:06 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313679
|
7.8 |
HIGH
Local
|
enjayworld
|
enjay_crm
|
An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system.
|
NVD-CWE-noinfo
|
CVE-2024-41308
|
2024-08-9 00:04 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313680
|
6.5 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/admin_student_register_approval.php and /smsa/admin_student_register_approval_submit.php in Kashipara Responsive School Management System …
|
NVD-CWE-Other
|
CVE-2024-41252
|
2024-08-9 00:04 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
