|
315641
|
9.8 |
CRITICAL
Network
|
pharmacy_management_system_project
|
pharmacy_management_system
|
A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. Affected is the function editManager of the file /index.php?action=editManager of the com…
|
CWE-89
SQL Injection
|
CVE-2024-8138
|
2024-08-28 00:51 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315642
|
6.1 |
MEDIUM
Network
|
jkev
|
record_management_system
|
A vulnerability has been found in SourceCodester Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file search_user.php. The manipulation of t…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8137
|
2024-08-28 00:50 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315643
|
7.5 |
HIGH
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a null eContent fie…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-45239
|
2024-08-28 00:49 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315644
|
9.8 |
CRITICAL
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a resource certificate containing a Key Usage exten…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-45237
|
2024-08-28 00:48 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315645
|
7.5 |
HIGH
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a signed object containing an empty signedAttribute…
|
NVD-CWE-noinfo
|
CVE-2024-45236
|
2024-08-28 00:48 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315646
|
7.5 |
HIGH
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a signedAttrs encod…
|
NVD-CWE-noinfo
|
CVE-2024-45234
|
2024-08-28 00:45 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315647
|
6.1 |
MEDIUM
Network
|
jkev
|
record_management_system
|
A vulnerability, which was classified as problematic, was found in SourceCodester Record Management System 1.0. This affects an unknown part of the file sort1_user.php. The manipulation of the argume…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8136
|
2024-08-28 00:43 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315648
|
9.8 |
CRITICAL
Network
|
gotribe
|
gotribe
|
A vulnerability classified as critical has been found in Go-Tribe gotribe up to cd3ccd32cd77852c9ea73f986eaf8c301cfb6310. Affected is the function Sign of the file pkg/token/token.go. The manipulatio…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-8135
|
2024-08-28 00:41 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315649
|
6.5 |
MEDIUM
Local
|
catonetworks
|
cato_client
|
A vulnerability in Cato Networks SDP Client on Windows allows the insertion of sensitive information into the log file, which can lead to an account takeover. However, the attack requires bypassing p…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-6977
|
2024-08-28 00:41 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315650
|
8.8 |
HIGH
Local
|
catonetworks
|
cato_client
|
Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file.
This issue affects SDP Client before 5.10.34.
|
CWE-426
Untrusted Search Path
|
CVE-2024-6975
|
2024-08-28 00:40 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
