|
316121
|
9.8 |
CRITICAL
Network
|
oretnom23
|
yoga_class_registration_system
|
A vulnerability has been found in SourceCodester Yoga Class Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /classes/Users.php?f=save of the co…
|
NVD-CWE-noinfo
|
CVE-2024-7851
|
2024-08-30 00:22 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316122
|
5.4 |
MEDIUM
Network
|
fiware
|
keyrock
|
Insufficiently random values for generating activation token in FIWARE Keyrock <= 8.4 allow attackers to activate accounts of any user by predicting the token for the activation link.
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2024-42165
|
2024-08-30 00:21 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316123
|
4.3 |
MEDIUM
Network
|
fiware
|
keyrock
|
Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to disable two factor authorization of any user by predicting the token for the disable_2fa l…
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2024-42164
|
2024-08-30 00:19 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316124
|
8.1 |
HIGH
Network
|
fiware
|
keyrock
|
Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to take over the account of any user by predicting the token for the password reset link.
|
CWE-326
Inadequate Encryption Strength
|
CVE-2024-42163
|
2024-08-30 00:17 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316125
|
9.8 |
CRITICAL
Network
|
oretnom23
|
music_gallery_site
|
A vulnerability classified as critical has been found in SourceCodester Music Gallery Site 1.0. This affects an unknown part of the file /admin/?page=musics/manage_music. The manipulation of the argu…
|
CWE-89
SQL Injection
|
CVE-2024-8222
|
2024-08-30 00:13 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316126
|
9.8 |
CRITICAL
Network
|
oretnom23
|
music_gallery_site
|
A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=delete_category. The manipulation …
|
CWE-89
SQL Injection
|
CVE-2024-8223
|
2024-08-30 00:11 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316127
|
9.8 |
CRITICAL
Network
|
angeljudesuarez
|
tailoring_management_system
|
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file staffedit.php. The …
|
CWE-89
SQL Injection
|
CVE-2024-8220
|
2024-08-29 23:49 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316128
|
9.0 |
CRITICAL
Network
|
microsoft
|
edge_chromium
|
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
|
CWE-843
Type Confusion
|
CVE-2024-38219
|
2024-08-29 23:45 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316129
|
5.4 |
MEDIUM
Network
|
ibm
|
aspera_shares
|
IBM Aspera Shares 1.10.0 PL2 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 260574.
|
CWE-384
Session Fixation
|
CVE-2023-38018
|
2024-08-29 23:36 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316130
|
7.2 |
HIGH
Network
|
abinitio
|
authorization_gateway
metadata_hub
|
An issue discovered in import host feature in Ab Initio Metadata Hub and Authorization Gateway before 4.3.1.1 allows attackers to run arbitrary code via crafted modification of server configuration.
|
CWE-94
Code Injection
|
CVE-2024-37382
|
2024-08-29 23:29 |
2024-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
