391
|
- |
|
-
|
-
|
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in EventPrime Events EventPrime.This issue affects EventPrime: from n/a through 4.0.4.5.
|
CWE-601
Open Redirect
|
CVE-2024-47648
|
2024-10-11 04:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
392
|
- |
|
-
|
-
|
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Membership After Login Redirection.This issue affects Simple Membership After Login Redirection: from n/a …
|
CWE-601
Open Redirect
|
CVE-2024-47354
|
2024-10-11 04:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
393
|
6.5 |
MEDIUM
Network
|
pivotal oracle
|
spring_security_oauth communications_design_studio
|
<Issue Description> Spring Security OAuth versions 2.5.x prior to 2.5.2 and older unsupported versions are susceptible to a Denial-of-Service (DoS) attack via the initiation of the Authorization Requ…
|
NVD-CWE-noinfo
|
CVE-2022-22969
|
2024-10-11 04:13 |
2022-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
394
|
6.1 |
MEDIUM
Network
|
angeljudesuarez
|
placement_management_system
|
itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46300
|
2024-10-11 03:52 |
2024-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
395
|
6.5 |
MEDIUM
Adjacent
|
microchip
|
timeprovider_4100_grandmaster_firmware
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip TimeProvider 4100 (Data plot modules) allows SQL Injection.This issue affects TimeProvi…
|
CWE-89
SQL Injection
|
CVE-2024-7801
|
2024-10-11 03:48 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
396
|
8.8 |
HIGH
Network
|
microchip
|
timeprovider_4100_grandmaster_firmware
|
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Microchip TimeProvider 4100 (Co…
|
CWE-78
OS Command
|
CVE-2024-9054
|
2024-10-11 03:46 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
397
|
4.9 |
MEDIUM
Network
|
google
|
android
|
In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is …
|
CWE-125
Out-of-bounds Read
|
CVE-2024-20102
|
2024-10-11 03:20 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
398
|
- |
|
-
|
-
|
A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/campsdetails.php. The manipulation of…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9805
|
2024-10-11 03:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
399
|
- |
|
-
|
-
|
A vulnerability was found in code-projects Blood Bank System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/campsdetails.php. The manipulation of th…
|
CWE-89
SQL Injection
|
CVE-2024-9804
|
2024-10-11 03:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
400
|
- |
|
-
|
-
|
Delta Electronics CNCSoft-G2 lacks proper initialization of memory prior to accessing it. An attacker can manipulate users to visit a malicious page or file to leverage this vulnerability to execute …
|
CWE-457
Use of Uninitialized Variable
|
CVE-2024-47966
|
2024-10-11 03:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|