|
309201
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm: vmalloc: ensure vmap_block is initialised before adding to queue
Commit 8c61291fd850 ("mm: fix incorrect vbq reference in
pur…
|
CWE-129
Improper Validation of Array Index
|
CVE-2024-46847
|
2024-10-2 23:16 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309202
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change
When disabling wifi mt7921_ipv6_addr_change() is called as…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46860
|
2024-10-2 23:04 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309203
|
6.1 |
MEDIUM
Network
|
tebilisim
|
v5
|
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in TE Informatics V5 allows Reflected XSS.This issue affects V5: before 6.2.
|
CWE-79
Cross-site Scripting
|
CVE-2024-2010
|
2024-10-2 22:52 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309204
|
9.8 |
CRITICAL
Network
|
phpgurukul
|
online_shopping_portal
|
A vulnerability classified as critical was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /shopping/admin/index.php of the component Admin Panel. …
|
CWE-89
SQL Injection
|
CVE-2024-9326
|
2024-10-2 22:33 |
2024-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309205
|
9.8 |
CRITICAL
Network
|
anisha
|
supply_chain_management
|
A vulnerability was found in code-projects Supply Chain Management 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/edit_manufacturer.php. The manipulation …
|
CWE-89
SQL Injection
|
CVE-2024-9322
|
2024-10-2 22:32 |
2024-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309206
|
7.5 |
HIGH
Network
|
code-projects
|
blood_bank_system
|
A vulnerability classified as critical has been found in code-projects Blood Bank Management System 1.0. Affected is an unknown function of the file /admin/blood/update/B+.php. The manipulation of th…
|
CWE-89
SQL Injection
|
CVE-2024-9316
|
2024-10-2 22:29 |
2024-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309207
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix the warning division or modulo by zero
Checks the partition mode and returns an error for an invalid mode.
|
CWE-369
Divide By Zero
|
CVE-2024-46806
|
2024-10-2 22:17 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309208
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix the waring dereferencing hive
Check the amdgpu_hive_info *hive that maybe is NULL.
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46805
|
2024-10-2 21:58 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309209
|
9.8 |
CRITICAL
Network
|
code-projects
|
blood_bank_system
|
A vulnerability was found in code-projects Blood Bank System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot.php. The manipulation of the argument u…
|
CWE-89
SQL Injection
|
CVE-2024-9327
|
2024-10-2 21:57 |
2024-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309210
|
6.1 |
MEDIUM
Network
|
ckeditor
|
ckeditor5
|
CKEditor 5 is a JavaScript rich-text editor. Starting in version 40.0.0 and prior to version 43.1.1, a Cross-Site Scripting (XSS) vulnerability is present in the CKEditor 5 clipboard package. This vu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45613
|
2024-10-2 07:15 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
