1191
|
7.2 |
HIGH
Network
|
online_travel_agency_system_project
|
online_travel_agency_system
|
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the costomer_id parameter at customer_edit.php.
|
CWE-89
SQL Injection
|
CVE-2023-31939
|
2024-10-8 04:36 |
2023-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1192
|
7.2 |
HIGH
Network
|
online_travel_agency_system_project
|
online_travel_agency_system
|
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the emp_id parameter at employee_detail.php.
|
CWE-89
SQL Injection
|
CVE-2023-31938
|
2024-10-8 04:36 |
2023-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1193
|
9.8 |
CRITICAL
Network
apache
|
apache-airflow-providers-apache-hive
|
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Hive Provider.
This issue affects Apache Airflow Apache Hive Provider: before 6.1.1.
Before version 6.1.1 it was …
|
CWE-20
Improper Input Validation
|
CVE-2023-35797
|
2024-10-8 04:36 |
2023-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1194
|
8.8 |
HIGH
Network
|
apache
|
apache-airflow-providers-jdbc
|
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow JDBC Provider.
Airflow JDBC Provider Connection’s [Connection URL] parameters had no
restrictions, which made it p…
|
CWE-20
Improper Input Validation
|
CVE-2023-22886
|
2024-10-8 04:36 |
2023-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1195
|
7.8 |
HIGH
Local
|
apache
|
apache-airflow-providers-odbc
|
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Apache Software Foundation Apache Airflow ODBC Provider.
In OdbcHook, A privilege escalation vulner…
|
CWE-88
Argument Injection
|
CVE-2023-34395
|
2024-10-8 04:36 |
2023-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1196
|
8.8 |
HIGH
Network
|
google debian fedoraproject
|
chrome debian_linux fedora
|
Use after free in OS Inputs in Google Chrome on ChromeOS prior to 113.0.5672.63 allowed a remote attacker who convinced a user to enage in specific UI interaction to potentially exploit heap corrupti…
|
CWE-416
Use After Free
|
CVE-2023-2461
|
2024-10-8 04:36 |
2023-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1197
|
8.8 |
HIGH
Network
|
google debian fedoraproject
|
chrome debian_linux fedora
|
Out of bounds memory access in Service Worker API in Google Chrome prior to 112.0.5615.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-2134
|
2024-10-8 04:36 |
2023-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1198
|
8.8 |
HIGH
Network
|
google debian fedoraproject
|
chrome debian_linux fedora
|
Out of bounds memory access in Service Worker API in Google Chrome prior to 112.0.5615.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-2133
|
2024-10-8 04:36 |
2023-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1199
|
8.8 |
HIGH
Network
|
google fedoraproject debian
|
chrome fedora debian_linux
|
Use after free in Vulkan in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
|
CWE-416
Use After Free
|
CVE-2023-1818
|
2024-10-8 04:36 |
2023-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1200
|
8.8 |
HIGH
Network
|
atlassian
|
confluence_server confluence_data_center
|
Affected versions of Atlassian Confluence Server and Data Center allow users with a valid account on a Confluence Data Center instance to execute arbitrary Java code or run arbitrary system commands …
|
CWE-94
Code Injection
|
CVE-2021-39114
|
2024-10-8 04:36 |
2022-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|