|
751
|
8.8 |
HIGH
Network
|
oretnom23
|
online_veterinary_appointment_system
|
A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/view_service.php. The …
Update
|
CWE-89
SQL Injection
|
CVE-2024-10990
|
2024-11-19 03:42 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
752
|
7.8 |
HIGH
Local
|
adobe
|
animate
|
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue…
Update
|
CWE-416
Use After Free
|
CVE-2024-49526
|
2024-11-19 03:41 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
753
|
8.8 |
HIGH
Network
|
codezips
|
online_institute_management_system
|
A vulnerability has been found in Codezips Online Institute Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit_user.php. Th…
Update
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-10994
|
2024-11-19 03:41 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
754
|
8.8 |
HIGH
Network
|
codezips
|
online_institute_management_system
|
A vulnerability, which was classified as critical, was found in Codezips Online Institute Management System 1.0. Affected is an unknown function of the file /manage_website.php. The manipulation of t…
Update
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-10993
|
2024-11-19 03:41 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
755
|
9.8 |
CRITICAL
Network
codezips
|
hospital_appointment_system
|
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipu…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10991
|
2024-11-19 03:41 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
756
|
5.5 |
MEDIUM
Local
|
adobe
|
animate
|
Animate versions 23.0.7, 24.0.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to byp…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2024-49527
|
2024-11-19 03:39 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
757
|
- |
|
-
|
-
|
A cross-site scripting (XSS) vulnerability in LemonLDAP::NG before 2.20.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter of the upgrade session confirmation page…
New
|
-
|
CVE-2024-52947
|
2024-11-19 03:35 |
2024-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
758
|
- |
|
-
|
-
|
In Flagsmith before 2.134.1, the get_document endpoint is not correctly protected by permissions.
Update
|
-
|
CVE-2024-52872
|
2024-11-19 03:35 |
2024-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
759
|
- |
|
-
|
-
|
In Flagsmith before 2.134.1, it is possible to bypass the ALLOW_REGISTRATION_WITHOUT_INVITE setting.
Update
|
-
|
CVE-2024-52871
|
2024-11-19 03:35 |
2024-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
760
|
- |
|
-
|
-
|
07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component 'erp.07fly.net:80/admin/SysNotifyUser/del.html?id=93'.
Update
|
-
|
CVE-2024-51156
|
2024-11-19 03:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
