|
303901
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2008
windows_server_2012
windows_server_2025
windows_server_2019
windows_server_2022
windows_server_2022_23h2
windows_server_2016
|
Active Directory Certificate Services Elevation of Privilege Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-49019
|
2024-11-19 06:12 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303902
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2008
windows_server_2012
windows_server_2025
windows_10_1809
windows_server_2019
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_11_23h2
windows_serv…
|
Windows Telephony Service Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43627
|
2024-11-19 05:58 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303903
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2008
windows_server_2012
windows_server_2025
windows_10_1809
windows_server_2019
windows_server_2022
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_…
|
Windows Telephony Service Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43628
|
2024-11-19 05:46 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303904
|
- |
|
-
|
-
|
A stored cross-site scripting (XSS) vulnerability in the Create Customer API in Incognito Service Activation Center (SAC) UI v14.11 allows authenticated attackers to execute arbitrary web scripts or …
|
-
|
CVE-2024-42834
|
2024-11-19 05:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303905
|
- |
|
-
|
-
|
SQL Injection vulnerability in Simple Laboratory Management System using PHP and MySQL v.1.0 allows a remote attacker to cause a denial of service via the delete_users function in the Useres.php
|
-
|
CVE-2024-40443
|
2024-11-19 05:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303906
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in Cyber Cafe Management System v.1.0 allows a local attacker to execute arbitrary code via a crafted script to the adminname parameter.
|
-
|
CVE-2023-38920
|
2024-11-19 05:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303907
|
7.2 |
HIGH
Network
|
angeljudesuarez
|
construction_management_system
|
A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the borrow_id parameter.
|
CWE-89
SQL Injection
|
CVE-2024-50972
|
2024-11-19 05:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303908
|
7.2 |
HIGH
Network
|
angeljudesuarez
|
construction_management_system
|
A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the map_id parameter.
|
CWE-89
SQL Injection
|
CVE-2024-50971
|
2024-11-19 05:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303909
|
8.8 |
HIGH
Network
|
nikoarroyocuraza
|
online_furniture_shopping_project
|
A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2024-50970
|
2024-11-19 05:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303910
|
7.8 |
HIGH
Local
|
microsoft
|
excel
office
365_apps
office_long_term_servicing_channel
|
Microsoft Excel Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-49028
|
2024-11-19 05:34 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
