|
4171
|
9.8 |
CRITICAL
Network
code-projects
|
online_shoe_store
|
A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /summary.php. The manipulation of the argument tid leads …
|
CWE-89
SQL Injection
|
CVE-2025-0208
|
2025-01-11 06:28 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
4172
|
9.8 |
CRITICAL
Network
code-projects
|
online_shoe_store
|
A vulnerability, which was classified as critical, has been found in code-projects Online Shoe Store 1.0. Affected by this issue is some unknown functionality of the file /function/login.php. The man…
|
CWE-89
SQL Injection
|
CVE-2025-0207
|
2025-01-11 06:27 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
4173
|
9.8 |
CRITICAL
Network
campcodes
|
school_faculty_scheduling_system
|
A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?act…
|
CWE-89
SQL Injection
|
CVE-2025-0210
|
2025-01-11 06:20 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
4174
|
- |
|
-
|
-
|
On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as ro…
|
-
|
CVE-2024-5872
|
2025-01-11 06:15 |
2025-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4175
|
8.8 |
HIGH
Network
|
wangl1989
|
mysiteforme
|
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been rated as critical. This issue affects the function doContent of the file src/main/java/com/mysiteform/admin/controller/system/FileC…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-13139
|
2025-01-11 06:02 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4176
|
8.8 |
HIGH
Network
|
wangl1989
|
mysiteforme
|
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This vulnerability affects the function upload of the file src/main/java/com/mysiteform/admin/service/ipl/Loc…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-13138
|
2025-01-11 06:01 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4177
|
5.4 |
MEDIUM
Network
|
wangl1989
|
mysiteforme
|
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been classified as problematic. This affects the function RestResponse of the file src/main/java/com/mysiteforme/admin/controller/system…
|
CWE-79
Cross-site Scripting
|
CVE-2024-13137
|
2025-01-11 06:01 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4178
|
9.8 |
CRITICAL
Network
wangl1989
|
mysiteforme
|
A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/Shir…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-13136
|
2025-01-11 06:01 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
4179
|
- |
|
-
|
-
|
On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- c…
|
-
|
CVE-2024-6437
|
2025-01-11 05:15 |
2025-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4180
|
- |
|
-
|
-
|
NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending craf…
|
-
|
CVE-2024-12847
|
2025-01-11 05:15 |
2025-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
