671
|
6.5 |
MEDIUM
Adjacent
|
silabs
|
z-wave_software_development_kit
|
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint devices running Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) and earlier. This attack can be carried out only by d…
|
NVD-CWE-noinfo
|
CVE-2023-5310
|
2024-09-28 01:15 |
2023-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
672
|
8.8 |
HIGH
Network
|
dedecms
|
dedecms
|
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue affects some unknown processing of the file article_string_mix.php. The manipulation leads to os command …
|
CWE-78
OS Command
|
CVE-2024-9076
|
2024-09-28 01:14 |
2024-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
673
|
7.3 |
HIGH
Network
webliberty
|
simple_spoiler
|
The The Simple Spoiler plugin for WordPress is vulnerable to arbitrary shortcode execution in versions 1.2 to 1.3. This is due to the plugin adding the filter add_filter('comment_text', 'do_shortcode…
|
CWE-94
Code Injection
|
CVE-2024-8479
|
2024-09-28 01:12 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
674
|
9.8 |
CRITICAL
Network
codezips
|
online_shopping_portal
|
A vulnerability classified as problematic was found in Codezips Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file insert-product.php. The manipulation…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9038
|
2024-09-28 01:11 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
675
|
7.2 |
HIGH
Network
|
softaculous
|
backuply
|
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter passed to the backuply_wp_clone_sql() function in all versions up to,…
|
CWE-89
SQL Injection
|
CVE-2024-8669
|
2024-09-28 01:08 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
676
|
9.8 |
CRITICAL
Network
mayurik
|
best_house_rental_management_system
|
A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php…
|
CWE-89
SQL Injection
|
CVE-2024-9039
|
2024-09-28 00:58 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
677
|
8.8 |
HIGH
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=update_accoun…
|
CWE-89
SQL Injection
|
CVE-2024-9041
|
2024-09-28 00:57 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
678
|
5.4 |
MEDIUM
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /ajax.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9033
|
2024-09-28 00:56 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
679
|
6.1 |
MEDIUM
Network
|
xootix
|
waitlist_woocommerce
|
The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8724
|
2024-09-28 00:56 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
680
|
9.8 |
CRITICAL
Network
code-projects
|
blood_bank_system
|
A vulnerability classified as critical was found in code-projects Blood Bank System 1.0. This vulnerability affects unknown code of the file /admin/blood/update/o-.php. The manipulation of the argume…
|
CWE-89
SQL Injection
|
CVE-2024-9094
|
2024-09-28 00:54 |
2024-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|