1421
|
9.8 |
CRITICAL
Network
codezips
|
online_shopping_portal
|
A vulnerability classified as problematic was found in Codezips Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file insert-product.php. The manipulation…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9038
|
2024-09-28 01:11 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1422
|
7.2 |
HIGH
Network
|
softaculous
|
backuply
|
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter passed to the backuply_wp_clone_sql() function in all versions up to,…
|
CWE-89
SQL Injection
|
CVE-2024-8669
|
2024-09-28 01:08 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1423
|
9.8 |
CRITICAL
Network
mayurik
|
best_house_rental_management_system
|
A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php…
|
CWE-89
SQL Injection
|
CVE-2024-9039
|
2024-09-28 00:58 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1424
|
8.8 |
HIGH
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=update_accoun…
|
CWE-89
SQL Injection
|
CVE-2024-9041
|
2024-09-28 00:57 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1425
|
5.4 |
MEDIUM
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /ajax.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9033
|
2024-09-28 00:56 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1426
|
6.1 |
MEDIUM
Network
|
xootix
|
waitlist_woocommerce
|
The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8724
|
2024-09-28 00:56 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1427
|
9.8 |
CRITICAL
Network
code-projects
|
blood_bank_system
|
A vulnerability classified as critical was found in code-projects Blood Bank System 1.0. This vulnerability affects unknown code of the file /admin/blood/update/o-.php. The manipulation of the argume…
|
CWE-89
SQL Injection
|
CVE-2024-9094
|
2024-09-28 00:54 |
2024-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1428
|
5.5 |
MEDIUM
Local
|
code-projects
|
blood_bank_management_system
|
A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation lea…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2024-9040
|
2024-09-28 00:53 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1429
|
5.4 |
MEDIUM
Network
|
wpgogo
|
custom_field_template
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hiroaki Miyashita Custom Field Template allows Stored XSS.This issue affects Custom Field …
|
CWE-79
Cross-site Scripting
|
CVE-2024-44062
|
2024-09-28 00:49 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1430
|
5.4 |
MEDIUM
Network
|
mediaron
|
custom_query_blocks
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MediaRon LLC Custom Query Blocks allows Stored XSS.This issue affects Custom Query Blocks:…
|
CWE-79
Cross-site Scripting
|
CVE-2024-44059
|
2024-09-28 00:33 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|