661
|
7.3 |
HIGH
Network
pluginus
|
fox_-_currency_switcher_professional_for_woocommerce
|
The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.1. This is due to the soft…
|
CWE-94
Code Injection
|
CVE-2024-8271
|
2024-09-28 01:21 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
662
|
4.8 |
MEDIUM
Network
|
razormist
|
employee_management_system
|
A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argum…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9083
|
2024-09-28 01:20 |
2024-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
663
|
9.8 |
CRITICAL
Network
code-projects
|
restaurant_reservation_system
|
A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the …
|
CWE-89
SQL Injection
|
CVE-2024-9085
|
2024-09-28 01:19 |
2024-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
664
|
9.8 |
CRITICAL
Network
oretnom23
|
online_eyewear_shop
|
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Users.phpf=save of the component …
|
CWE-863
Incorrect Authorization
|
CVE-2024-9082
|
2024-09-28 01:18 |
2024-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
665
|
7.5 |
HIGH
Network
oretnom23
|
online_eyewear_shop
|
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file view_category.php. The ma…
|
CWE-89
SQL Injection
|
CVE-2024-9081
|
2024-09-28 01:17 |
2024-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
666
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SKT Themes SKT Addons for Elementor allows Stored XSS.This issue affects SKT Addons for El…
|
CWE-79
Cross-site Scripting
|
CVE-2024-38674
|
2024-09-28 01:15 |
2024-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
667
|
- |
|
-
|
-
|
Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis si…
|
-
|
CVE-2023-51392
|
2024-09-28 01:15 |
2024-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
668
|
- |
|
-
|
-
|
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and earlier.
|
-
|
CVE-2023-6640
|
2024-09-28 01:15 |
2024-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
669
|
- |
|
-
|
-
|
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the controller to assume the end device has left the network. After this, frames sent by the end device wil…
|
-
|
CVE-2023-6533
|
2024-09-28 01:15 |
2024-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
670
|
6.8 |
MEDIUM
Physics
|
silabs
|
gecko_software_development_kit
|
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.
|
CWE-909
Missing Initialization of Resource
|
CVE-2023-5138
|
2024-09-28 01:15 |
2024-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|