|
316771
|
8.0 |
HIGH
Network
|
lopalopa
|
music_management_system
|
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System v1.0 via a crafted request to the /music/ajax.php?action=save_user page.
|
CWE-352
Origin Validation Error
|
CVE-2024-42793
|
2024-08-31 00:56 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316772
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8193
|
2024-08-31 00:52 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316773
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29723
|
2024-08-31 00:51 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316774
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29726
|
2024-08-31 00:50 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316775
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29725
|
2024-08-31 00:50 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316776
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29724
|
2024-08-31 00:50 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316777
|
9.8 |
CRITICAL
Network
|
menulux
|
managment_portal
|
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal allows Collect Data as Provided by Users.This issue affects Managment Portal: through 21.05.2024.
|
NVD-CWE-noinfo
|
CVE-2024-4428
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316778
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29731
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316779
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29730
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316780
|
9.8 |
CRITICAL
Network
|
sportsnet
|
sportsnet
|
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially…
|
CWE-89
SQL Injection
|
CVE-2024-29729
|
2024-08-31 00:49 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
