|
319261
|
- |
|
-
|
-
|
The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not sanitise and escape user inputs, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins
|
-
|
CVE-2024-6843
|
2024-08-22 00:35 |
2024-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319262
|
5.4 |
MEDIUM
Network
|
adonesevangelista
|
laravel_property_management_system
|
A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/no…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7945
|
2024-08-22 00:25 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319263
|
8.8 |
HIGH
Network
|
adonesevangelista
|
laravel_property_management_system
|
A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.p…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7944
|
2024-08-22 00:24 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319264
|
- |
|
-
|
-
|
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?whitelist_add
|
-
|
CVE-2024-42612
|
2024-08-21 23:35 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319265
|
8.8 |
HIGH
Network
|
siamonhasan
|
warehouse_inventory_system
|
A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
|
CWE-352
Origin Validation Error
|
CVE-2024-42577
|
2024-08-21 23:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319266
|
- |
|
-
|
-
|
Typecho v1.3.0 was discovered to contain a race condition vulnerability in the post commenting function. This vulnerability allows attackers to post several comments before the spam protection checks…
|
-
|
CVE-2024-35539
|
2024-08-21 23:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319267
|
7.5 |
HIGH
Network
|
tamparongj_03
|
online_graduate_tracer_system
|
A vulnerability, which was classified as problematic, was found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file /tracking/admin/exportcs.php. The mani…
|
NVD-CWE-noinfo
|
CVE-2024-7843
|
2024-08-21 23:13 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319268
|
7.5 |
HIGH
Network
|
tamparongj_03
|
online_graduate_tracer_system
|
A vulnerability, which was classified as problematic, has been found in SourceCodester Online Graduate Tracer System 1.0. This issue affects some unknown processing of the file /tracking/admin/export…
|
NVD-CWE-noinfo
|
CVE-2024-7842
|
2024-08-21 23:13 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319269
|
5.4 |
MEDIUM
Network
|
tamparongj_03
|
online_graduate_tracer_system
|
A vulnerability has been found in SourceCodester Online Graduate Tracer System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /tracking/admi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7844
|
2024-08-21 23:12 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319270
|
7.5 |
HIGH
Network
|
oretnom23
|
clinics_patient_management_system
|
A vulnerability classified as critical was found in SourceCodester Clinics Patient Management System 1.0. This vulnerability affects unknown code of the file /pms/ajax/check_user_name.php. The manipu…
|
CWE-89
SQL Injection
|
CVE-2024-7841
|
2024-08-21 23:12 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
