|
2471
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanage…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-13133
|
2025-01-5 14:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2472
|
- |
|
-
|
-
|
A vulnerability classified as problematic was found in Emlog Pro up to 2.4.3. This vulnerability affects unknown code of the file /admin/article.php of the component Subpage Handler. The manipulation…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2024-13132
|
2025-01-5 14:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2473
|
- |
|
-
|
-
|
A vulnerability was found in TMD Custom Header Menu 4.0.0.1 on OpenCart. It has been rated as problematic. This issue affects some unknown processing of the file /admin/index.php. The manipulation of…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0214
|
2025-01-5 02:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2474
|
6.5 |
MEDIUM
Network
-
|
-
|
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure sta…
|
CWE-544
Missing Standardized Error Handling Mechanism
|
CVE-2024-41768
|
2025-01-5 00:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2475
|
7.3 |
HIGH
Network
-
|
-
|
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to vi…
|
CWE-89
SQL Injection
|
CVE-2024-41767
|
2025-01-5 00:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2476
|
7.5 |
HIGH
Network
-
|
-
|
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause a denial of service using a complex regular expression.
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2024-41766
|
2025-01-5 00:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
2477
|
6.5 |
MEDIUM
Network
|
-
|
-
|
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request contain…
|
CWE-22
Path Traversal
|
CVE-2024-41765
|
2025-01-5 00:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2478
|
5.9 |
MEDIUM
Network
|
-
|
-
|
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-41763
|
2025-01-5 00:15 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2479
|
- |
|
-
|
-
|
A vulnerability was found in Tsinghua Unigroup Electronic Archives Management System 3.2.210802(62532). It has been classified as problematic. Affected is the function download of the file /Searchnew…
|
-
|
CVE-2024-13042
|
2025-01-4 22:15 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2480
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation lead…
|
CWE-284
CWE-266
Improper Access Control
Incorrect Privilege Assignment
|
CVE-2025-0206
|
2025-01-4 21:15 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
