|
315281
|
9.8 |
CRITICAL
Network
|
project_expense_monitoring_system_project
|
project_expense_monitoring_system
|
A vulnerability classified as critical has been found in itsourcecode Project Expense Monitoring System 1.0. This affects an unknown part of the file transferred_report.php. The manipulation of the a…
|
CWE-89
SQL Injection
|
CVE-2024-7936
|
2024-09-4 05:43 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315282
|
5.4 |
MEDIUM
Network
|
rems
|
leads_manager_tool
|
A vulnerability has been found in SourceCodester Leads Manager Tool 1.0 and classified as problematic. This vulnerability affects unknown code of the file update-leads.php. The manipulation of the ar…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7942
|
2024-09-4 05:39 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315283
|
- |
|
-
|
-
|
ClickHouse v24.3.3.102 was discovered to contain a buffer overflow via the component DB::evaluateConstantExpressionImpl.
|
-
|
CVE-2024-41436
|
2024-09-4 05:35 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315284
|
- |
|
-
|
-
|
A CSV injection vulnerability in Lime Survey v6.5.12 allows attackers to execute arbitrary code via uploading a crafted CSV file.
|
-
|
CVE-2024-42901
|
2024-09-4 05:35 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315285
|
8.8 |
HIGH
Network
|
adonesevangelista
|
laravel_property_management_system
|
A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified as critical. This issue affects the function upload of the file PropertiesController.php. The manipulat…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7943
|
2024-09-4 05:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315286
|
5.4 |
MEDIUM
Network
|
posimyth
|
the_plus_addons_for_elementor
|
The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the video_date attribute wi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-5763
|
2024-09-4 05:31 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315287
|
5.4 |
MEDIUM
Network
|
posimyth
|
the_plus_addons_for_elementor
|
The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘res_width_value’ param…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6575
|
2024-09-4 05:30 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315288
|
5.4 |
MEDIUM
Network
|
sayandatta
|
wp_last_modified_info
|
The WP Last Modified Info plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘template’ attribute of the lmt-post-modified-info shortcode in all versions up to, and including, …
|
CWE-79
Cross-site Scripting
|
CVE-2024-6864
|
2024-09-4 05:22 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315289
|
6.1 |
MEDIUM
Network
|
priority-software
|
priority
|
Priority - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
|
CWE-79
Cross-site Scripting
|
CVE-2024-41697
|
2024-09-4 05:19 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315290
|
7.5 |
HIGH
Network
|
priority-software
|
priority
|
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
|
CWE-200
Information Exposure
|
CVE-2024-41698
|
2024-09-4 05:18 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
