|
314071
|
4.8 |
MEDIUM
Network
|
code-projects
|
pharmacy_management
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /manage_customer…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10198
|
2024-10-23 00:39 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314072
|
6.3 |
MEDIUM
Network
|
dell
|
secure_connect_gateway
|
Dell Secure Connect Gateway (SCG) 5.24 contains an Incorrect Default Permissions vulnerability. A local attacker with low privileges can access the file system and could potentially exploit this vuln…
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-47240
|
2024-10-23 00:28 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314073
|
6.1 |
MEDIUM
Network
|
madrasthemes
|
mas_companies_for_wp_job_manager
|
The MAS Companies For WP Job Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9206
|
2024-10-23 00:27 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314074
|
4.3 |
MEDIUM
Network
|
smackcoders
|
sendgrid
|
The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'wp_mailplus_clear_logs' function in all versions up to, and includ…
|
CWE-862
Missing Authorization
|
CVE-2024-9364
|
2024-10-23 00:26 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314075
|
5.4 |
MEDIUM
Network
|
tychesoftwares
|
arconix_shortcodes
|
The Arconix Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'button' shortcode in all versions up to, and including, 2.1.12 due to insufficient input san…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9703
|
2024-10-23 00:25 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314076
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A vulnerability has been found in PHPGurukul IFSC Code Finder Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file search.php. The manipulation leads to cros…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10192
|
2024-10-23 00:09 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314077
|
5.4 |
MEDIUM
Network
|
wpzest
|
easy_menu_manager
|
The Easy Menu Manager | WPZest plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.1 due to insufficient input sanitizatio…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9366
|
2024-10-23 00:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314078
|
5.4 |
MEDIUM
Network
|
dankedev
|
elemenda
|
The Elemenda plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 0.0.2 due to insufficient input sanitization and output escap…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9373
|
2024-10-23 00:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314079
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he
Fix the NULL pointer dereference in mt7996_mcu_sta_bfe…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47681
|
2024-10-22 23:57 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314080
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
exfat: resolve memory leak from exfat_create_upcase_table()
If exfat_load_upcase_table reaches end and returns -EINVAL,
allocated…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-47677
|
2024-10-22 23:55 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
