1
|
- |
|
-
|
-
|
A vulnerability classified as critical has been found in SourceCodester Online Veterinary Appointment System 1.0. Affected is an unknown function of the file /admin/categories/manage_category.php. Th…
New
|
CWE-89
SQL Injection
|
CVE-2024-9818
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2
|
- |
|
-
|
-
|
A vulnerability was found in code-projects Blood Bank System 1.0. It has been classified as critical. This affects an unknown part of the file /update.php. The manipulation of the argument name leads…
New
|
CWE-89
SQL Injection
|
CVE-2024-9817
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
3
|
- |
|
-
|
-
|
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **Cross-Site Scripting (XSS)** on any Gradio server that allows file uploads. Authenticated users c…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-47872
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
4
|
- |
|
-
|
-
|
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **insecure communication** between the FRP (Fast Reverse Proxy) client and server when Gradio's `sh…
New
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2024-47871
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
5
|
- |
|
-
|
-
|
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **race condition** in the `update_root_in_config` function, allowing an attacker to modify the `r…
New
|
CWE-362
Race Condition
|
CVE-2024-47870
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
6
|
- |
|
-
|
-
|
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **timing attack** in the way Gradio compares hashes for the `analytics_dashboard` function. Since…
New
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-47869
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
7
|
- |
|
-
|
-
|
Gradio is an open-source Python package designed for quick prototyping. This is a **data validation vulnerability** affecting several Gradio components, which allows arbitrary file leaks through the …
New
|
CWE-200
Information Exposure
|
CVE-2024-47868
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
8
|
- |
|
-
|
-
|
Gradio is an open-source Python package designed for quick prototyping. This vulnerability is a **lack of integrity check** on the downloaded FRP client, which could potentially allow attackers to in…
New
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2024-47867
|
2024-10-11 08:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
9
|
- |
|
-
|
-
|
A vulnerability was found in Codezips Tourist Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/change-image.php. The manipulat…
New
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9816
|
2024-10-11 07:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
10
|
- |
|
-
|
-
|
A vulnerability has been found in Codezips Tourist Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/create-package.php. …
New
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9815
|
2024-10-11 07:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|