|
313841
|
8.8 |
HIGH
Network
|
zohocorp
|
manageengine_adaudit_plus
|
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard.
Note: This vulnerability is different from another vulnerability (CVE-2024-36516…
|
CWE-89
SQL Injection
|
CVE-2024-36515
|
2024-08-27 22:28 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313842
|
8.8 |
HIGH
Network
|
zohocorp
|
manageengine_adaudit_plus
|
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in file summary option.
|
CWE-89
SQL Injection
|
CVE-2024-36514
|
2024-08-27 22:28 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313843
|
9.8 |
CRITICAL
Network
|
janobe
|
e-commerce_system
|
A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipu…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8089
|
2024-08-27 22:21 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313844
|
9.8 |
CRITICAL
Network
|
janobe
|
e-commerce_system
|
A vulnerability was found in SourceCodester E-Commerce System 1.0 and classified as critical. This issue affects some unknown processing of the file /ecommerce/popup_Item.php. The manipulation of the…
|
CWE-89
SQL Injection
|
CVE-2024-8087
|
2024-08-27 22:19 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313845
|
9.8 |
CRITICAL
Network
|
janobe
|
e-commerce_system
|
A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admi…
|
CWE-89
SQL Injection
|
CVE-2024-8086
|
2024-08-27 22:17 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313846
|
4.9 |
MEDIUM
Network
|
ruijie
|
eg2000k_firmware
|
A vulnerability has been found in Ruijie EG2000K 11.1(6)B2 and classified as critical. This vulnerability affects unknown code of the file /tool/index.php?c=download&a=save. The manipulation of the a…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8166
|
2024-08-27 22:03 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313847
|
- |
|
-
|
-
|
Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using `rustix::fs::Dir` using the `linux_raw` backend, it's possible for the iterator to "get stuck" when an IO error is encountered. Com…
|
-
|
CVE-2024-43806
|
2024-08-27 22:02 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313848
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘arrow’ parameter within the Post Grid widget in all versions up to, and …
|
-
|
CVE-2024-7791
|
2024-08-27 22:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313849
|
- |
|
-
|
-
|
Tophat is a mobile applications testing harness. An Improper Access Control vulnerability can expose the `TOPHAT_APP_TOKEN` token stored in `~/.tophatrc` through use of a malicious Tophat URL control…
|
-
|
CVE-2024-45036
|
2024-08-27 22:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313850
|
- |
|
-
|
-
|
Chisel is a fast TCP/UDP tunnel, transported over HTTP, secured via SSH. The Chisel server doesn't ever read the documented `AUTH` environment variable used to set credentials, which allows any unaut…
|
-
|
CVE-2024-43798
|
2024-08-27 22:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
