|
312141
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29730
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312142
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29729
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312143
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29728
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312144
|
5.4 |
MEDIUM
Network
|
etoilewebdesign
|
front_end_users
|
The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'user-search' shortcode in all versions up to, and including, 3.2.28 due to insufficient input s…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7606
|
2024-08-31 00:43 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312145
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29727
|
2024-08-31 00:43 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312146
|
8.8 |
HIGH
Network
|
etoilewebdesign
|
front_end_users
|
The Front End Users plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 3.2.28 due to insufficient escaping on the user supp…
|
CWE-89
SQL Injection
|
CVE-2024-7607
|
2024-08-31 00:41 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312147
|
9.8 |
CRITICAL
Network
|
feehi
|
feehicms
|
A vulnerability, which was classified as critical, was found in FeehiCMS up to 2.1.1. This affects the function update of the file /admin/index.php?r=friendly-link%2Fupdate. The manipulation of the a…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8294
|
2024-08-31 00:38 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312148
|
9.8 |
CRITICAL
Network
|
feehi
|
feehicms
|
A vulnerability has been found in FeehiCMS up to 2.1.1 and classified as critical. This vulnerability affects the function createBanner of the file /admin/index.php?r=banner%2Fbanner-create. The mani…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8295
|
2024-08-31 00:37 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312149
|
9.8 |
CRITICAL
Network
|
feehi
|
feehicms
|
A vulnerability was found in FeehiCMS up to 2.1.1 and classified as critical. This issue affects the function insert of the file /admin/index.php?r=user%2Fcreate. The manipulation of the argument Use…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8296
|
2024-08-31 00:36 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312150
|
7.8 |
HIGH
Local
|
aertherwide
|
exiftags
|
Buffer Overflow vulnerability in open source exiftags v.1.01 allows a local attacker to execute arbitrary code via the paresetag function.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-42851
|
2024-08-31 00:30 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
