|
318621
|
- |
|
-
|
-
|
An issue in the login component (process_login.php) of Hotel Management System commit 79d688 allows attackers to authenticate without providing a valid password.
|
-
|
CVE-2024-42559
|
2024-08-21 04:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318622
|
- |
|
-
|
-
|
The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated …
|
-
|
CVE-2024-6847
|
2024-08-21 04:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318623
|
7.2 |
HIGH
Network
|
dedebiz
|
dedebiz
|
A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archives_do.php. The manipulation of the argument litpic leads to unres…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7905
|
2024-08-21 04:35 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318624
|
8.8 |
HIGH
Network
|
dedebiz
|
dedebiz
|
A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file admin/file_manage_control.php of the component File Extensi…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7904
|
2024-08-21 04:35 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318625
|
8.8 |
HIGH
Network
|
dedebiz
|
dedebiz
|
A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin/media_add.php of the component File Extensio…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7903
|
2024-08-21 04:34 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318626
|
6.1 |
MEDIUM
Network
|
public_knowledge_project
|
open_journal_systems
|
A vulnerability was found in pkp ojs up to 3.4.0-6 and classified as problematic. Affected by this issue is some unknown functionality of the file /login/signOut. The manipulation of the argument sou…
|
CWE-601
Open Redirect
|
CVE-2024-7902
|
2024-08-21 04:34 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318627
|
5.4 |
MEDIUM
Network
|
scada-lts
|
scada-lts
|
A vulnerability has been found in Scada-LTS 2.7.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/app.shtm#/alarms/Scada of the compon…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7901
|
2024-08-21 04:32 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318628
|
4.8 |
MEDIUM
Network
|
tpmecms
|
tpmecms
|
A vulnerability, which was classified as problematic, was found in xiaohe4966 TpMeCMS 1.3.3.2. Affected is an unknown function of the file /h.php/general/config?ref=addtabs of the component Basic Con…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7900
|
2024-08-21 04:32 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318629
|
7.2 |
HIGH
Network
|
innocms
|
innocms
|
A vulnerability, which was classified as critical, has been found in InnoCMS 0.3.1. This issue affects some unknown processing of the file /panel/pages/1/edit of the component Backend. The manipulati…
|
CWE-94
Code Injection
|
CVE-2024-7899
|
2024-08-21 04:32 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318630
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (ltc2991) re-order conditions to fix off by one bug
LTC2991_T_INT_CH_NR is 4. The st->temp_en[] array has LTC2991_MAX_CHA…
|
CWE-193
Off-by-one Error
|
CVE-2024-43852
|
2024-08-21 04:32 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
