|
315611
|
- |
|
-
|
-
|
Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.24.3, 20.9.3, and 21.4.3 of Asterisk and versions 18.9-cert12 and 20.7-cert2 of certified-asterisk, if Asterisk attempts…
|
-
|
CVE-2024-42491
|
2024-09-6 21:08 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315612
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
job_portal
|
Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability could allow an attacker to retrieve the session details of an…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8473
|
2024-09-6 20:44 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315613
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
job_portal
|
Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability could allow an attacker to retrieve the session details of an…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8472
|
2024-09-6 20:44 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315614
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
job_portal
|
Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability could allow an attacker to retrieve the session details of an…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8471
|
2024-09-6 20:44 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315615
|
7.5 |
HIGH
Network
|
phpgurukul
|
job_portal
|
SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/vacancy/controller.php, and retrieve all the information stored …
|
CWE-89
SQL Injection
|
CVE-2024-8470
|
2024-09-6 20:44 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315616
|
7.5 |
HIGH
Network
|
phpgurukul
|
job_portal
|
SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/employee/index.php, and retrieve all the information stored in it.
|
CWE-89
SQL Injection
|
CVE-2024-8469
|
2024-09-6 20:43 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315617
|
7.5 |
HIGH
Network
|
phpgurukul
|
job_portal
|
SQL injection vulnerability, by which an attacker could send a specially designed query through search parameter in /jobportal/index.php, and retrieve all the information stored in it.
|
CWE-89
SQL Injection
|
CVE-2024-8468
|
2024-09-6 20:43 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315618
|
7.5 |
HIGH
Network
|
phpgurukul
|
job_portal
|
SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/category/index.php, and retrieve all the information stored in it.
|
CWE-89
SQL Injection
|
CVE-2024-8467
|
2024-09-6 20:42 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315619
|
7.5 |
HIGH
Network
|
phpgurukul
|
job_portal
|
SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/category/controller.php, and retrieve all the information stored…
|
CWE-89
SQL Injection
|
CVE-2024-8466
|
2024-09-6 20:24 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315620
|
7.5 |
HIGH
Network
|
phpgurukul
|
job_portal
|
SQL injection vulnerability, by which an attacker could send a specially designed query through user_id parameter in /jobportal/admin/user/controller.php, and retrieve all the information stored in i…
|
CWE-89
SQL Injection
|
CVE-2024-8465
|
2024-09-6 20:16 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
