|
2271
|
7.5 |
HIGH
Network
anisha
|
e-health_care_system
|
A vulnerability has been found in code-projects E-Health Care System 1.0 and classified as critical. This vulnerability affects unknown code of the file Admin/req_detail.php. The manipulation of the …
|
CWE-89
SQL Injection
|
CVE-2024-10808
|
2024-11-7 00:14 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2272
|
4.8 |
MEDIUM
Network
|
anujkumar
|
hospital_management_system
|
A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been rated as problematic. This issue affects some unknown processing of the file hms/doctor/search.php. The manipulatio…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10807
|
2024-11-7 00:07 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2273
|
4.8 |
MEDIUM
Network
|
anujkumar
|
hospital_management_system
|
A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been declared as problematic. This vulnerability affects unknown code of the file betweendates-detailsreports.php. The m…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10806
|
2024-11-7 00:06 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2274
|
4.7 |
MEDIUM
Local
|
cosmote
|
what\'s_up
|
A vulnerability, which was classified as problematic, has been found in Cosmote Greece What's Up App 4.47.3 on Android. This issue affects some unknown processing of the file gr/desquared/kmmsharedmo…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-10748
|
2024-11-7 00:06 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2275
|
9.8 |
CRITICAL
Network
codezips
|
hospital_appointment_system
|
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulati…
|
CWE-89
SQL Injection
|
CVE-2024-10791
|
2024-11-7 00:05 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2276
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
online_shopping_portal
|
A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /admin/assets/plugins/DataTables/media/unit_testing/t…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10768
|
2024-11-7 00:04 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2277
|
8.1 |
HIGH
Network
|
thinkadmin
|
thinkadmin
|
A vulnerability, which was classified as critical, was found in ThinkAdmin up to 6.1.67. Affected is the function script of the file /app/admin/controller/api/Plugs.php. The manipulation of the argum…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-10749
|
2024-11-7 00:04 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2278
|
9.8 |
CRITICAL
Network
projectworlds
|
travel_management_system
|
SQL Injection in loginform.php in ProjectWorld's Travel Management System v1.0 allows remote attackers to bypass authentication via SQL Injection in the 'username' and 'password' fields.
|
CWE-89
SQL Injection
|
CVE-2024-51327
|
2024-11-7 00:02 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2279
|
7.5 |
HIGH
Network
projectworlds
|
travel_management_system
|
SQL Injection vulnerability in projectworlds Travel management System v.1.0 allows a remote attacker to execute arbitrary code via the 't2' parameter in deletesubcategory.php.
|
CWE-89
SQL Injection
|
CVE-2024-51326
|
2024-11-7 00:02 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2280
|
5.3 |
MEDIUM
Network
openrefine
|
openrefine
|
OpenRefine is a free, open source tool for working with messy data. The load-language command expects a `lang` parameter from which it constructs the path of the localization file to load, of the for…
|
CWE-22
Path Traversal
|
CVE-2024-49760
|
2024-11-7 00:01 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
