|
314411
|
6.5 |
MEDIUM
Network
|
fabianros
|
blood_bank_management_system
|
A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank Management System 1.0. Affected by this issue is some unknown functionality of the file /file/delete.p…
|
CWE-352
Origin Validation Error
|
CVE-2024-10448
|
2024-11-2 03:26 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314412
|
4.3 |
MEDIUM
Network
|
infinite-scroll
|
infinite-scroll
|
The Infinite-Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.2. This is due to missing or incorrect nonce validation on the process_a…
|
CWE-352
Origin Validation Error
|
CVE-2024-10040
|
2024-11-2 03:26 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314413
|
6.5 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an af…
|
CWE-89
SQL Injection
|
CVE-2024-20472
|
2024-11-2 03:22 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314414
|
6.5 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an af…
|
CWE-89
SQL Injection
|
CVE-2024-20471
|
2024-11-2 03:16 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314415
|
6.5 |
MEDIUM
Network
|
cisco
|
anyconnect_secure_mobility_client
secure_client
|
A vulnerability in Internet Key Exchange version 2 (IKEv2) processing of Cisco Secure Client Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of Cisco Secur…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2024-20474
|
2024-11-2 03:14 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314416
|
8.8 |
HIGH
Network
|
grafana
|
grafana
|
The SQL Expressions experimental feature of Grafana allows for the evaluation of `duckdb` queries containing user input. These queries are insufficiently sanitized before being passed to `duckdb`, le…
|
CWE-77
Command Injection
|
CVE-2024-9264
|
2024-11-2 03:14 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314417
|
6.5 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an af…
|
CWE-89
SQL Injection
|
CVE-2024-20473
|
2024-11-2 03:09 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314418
|
9.9 |
CRITICAL
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower Management Center Software, could allow an authenticated, remote at…
|
CWE-78
OS Command
|
CVE-2024-20424
|
2024-11-2 03:07 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314419
|
7.8 |
HIGH
Local
|
vso-software
|
convertxtodvd
|
A vulnerability, which was classified as critical, was found in VSO ConvertXtoDvd 7.0.0.83. Affected is an unknown function in the library avcodec.dll of the file ConvertXtoDvd.exe. The manipulation …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-10093
|
2024-11-2 03:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314420
|
7.5 |
HIGH
Network
|
chimurai
|
http-proxy-middleware
|
Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An at…
|
NVD-CWE-noinfo
|
CVE-2024-21536
|
2024-11-2 03:03 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
