|
307301
|
8.0 |
HIGH
Network
|
romadebrian
|
web-sekolah
|
A vulnerability classified as critical was found in romadebrian WEB-Sekolah 1.0. Affected by this vulnerability is an unknown functionality of the file /Proses_Kirim.php of the component Mail Handler…
|
CWE-89
SQL Injection
|
CVE-2024-10841
|
2024-11-7 07:50 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307302
|
4.8 |
MEDIUM
Network
|
romadebrian
|
web-sekolah
|
A vulnerability classified as problematic has been found in romadebrian WEB-Sekolah 1.0. Affected is an unknown function of the file /Admin/akun_edit.php of the component Backend. The manipulation of…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10840
|
2024-11-7 07:49 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307303
|
4.8 |
MEDIUM
Network
|
romadebrian
|
web-sekolah
|
A vulnerability, which was classified as problematic, has been found in romadebrian WEB-Sekolah 1.0. Affected by this issue is some unknown functionality of the file /Admin/Proses_Edit_Akun.php of th…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10842
|
2024-11-7 07:43 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307304
|
9.8 |
CRITICAL
Network
|
bookstore_management_system_project
|
bookstore_management_system
|
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file book_detail.php. The manipulation of th…
|
CWE-89
SQL Injection
|
CVE-2024-10845
|
2024-11-7 07:38 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307305
|
9.8 |
CRITICAL
Network
|
bookstore_management_system_project
|
bookstore_management_system
|
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file search.php. The manipulation of the argument s …
|
CWE-89
SQL Injection
|
CVE-2024-10844
|
2024-11-7 07:38 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307306
|
4.9 |
MEDIUM
Network
|
pimcore
|
pimcore
|
Pimcore is an open source data and experience management platform. When a PortalUserObject is connected to a PimcoreUser and "Use Pimcore Backend Password" is set to true, the change password functio…
|
NVD-CWE-Other
|
CVE-2024-49370
|
2024-11-7 07:31 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307307
|
6.5 |
MEDIUM
Network
|
appsmith
|
appsmith
|
AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource for application/json requests to 169.254.169.254 to retrieve AWS metadata credentials.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-51408
|
2024-11-7 07:06 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307308
|
4.9 |
MEDIUM
Network
|
topdata
|
inner_rep_plus
|
A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been classified as problematic. Affected is an unknown function of the file /InnerRepPlus.html of the component Operator Det…
|
CWE-549
Missing Password Field Masking
|
CVE-2024-10122
|
2024-11-7 07:05 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307309
|
- |
|
-
|
-
|
In agentscope <=v0.0.4, the file agentscope\web\workstation\workflow_utils.py has the function is_callable_expression. Within this function, the line result = eval(s) poses a security risk as it can …
|
-
|
CVE-2024-48050
|
2024-11-7 06:35 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307310
|
- |
|
-
|
-
|
U-Boot environment is read from unauthenticated partition.
|
-
|
CVE-2024-22013
|
2024-11-7 06:35 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
