Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2024-7680

    A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file /incedit.php?id=4. The manipulation of the argument id/inccat/desc/date/amount leads to sql injection. ... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.1

    MEDIUM
    CVE-2024-7678

    A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /classes/Master.php?f=save_package. The manipulation of the argument n... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.1

    MEDIUM
    CVE-2024-7677

    A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been declared as problematic. Affected by this vulnerability is the function update_settings_info of the file /classes/SystemSettings.php?f=update_settings. The m... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 4.7

    MEDIUM
    CVE-2024-5678

    Zohocorp ManageEngine Applications Manager versions 170900 and below are vulnerable to the authenticated admin-only SQL Injection in the Create Monitor feature.... Read more

    Affected Products : manageengine_applications_manager
    • Published: Aug. 01, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7676

    A vulnerability was found in Sourcecodester Car Driving School Management System 1.0. It has been classified as critical. Affected is the function save_package of the file /classes/Master.php?f=save_package. The manipulation of the argument id leads to sq... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7669

    A vulnerability was found in SourceCodester Car Driving School Management System 1.0 and classified as critical. This issue affects the function delete_enrollment of the file Master.php. The manipulation of the argument id leads to sql injection. The atta... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7668

    A vulnerability has been found in SourceCodester Car Driving School Management System 1.0 and classified as critical. This vulnerability affects the function delete_package of the file Master.php. The manipulation of the argument id leads to sql injection... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7667

    A vulnerability, which was classified as critical, was found in SourceCodester Car Driving School Management System 1.0. This affects the function delete_users of the file User.php. The manipulation of the argument id leads to sql injection. It is possibl... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7666

    A vulnerability, which was classified as critical, has been found in SourceCodester Car Driving School Management System 1.0. Affected by this issue is some unknown functionality of the file view_package.php. The manipulation of the argument id leads to s... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7665

    A vulnerability classified as critical was found in SourceCodester Car Driving School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_package.php. The manipulation of the argument id leads to sql inject... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7664

    A vulnerability classified as critical has been found in SourceCodester Car Driving School Management System 1.0. Affected is an unknown function of the file view_details.php. The manipulation of the argument id leads to sql injection. It is possible to l... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.5

    MEDIUM
    CVE-2024-7663

    A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file manage_user.php. The manipulation of the argument id leads to sql injection. The at... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 6.9

    MEDIUM
    CVE-2024-7662

    A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been declared as problematic. This vulnerability affects the function save_package of the file admin/packages/manag_package.php. The manipulation leads to cross-s... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 8.8

    HIGH
    CVE-2024-7661

    A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been classified as problematic. This affects the function save_users of the file admin/user/index.php. The manipulation leads to cross-site request forgery. It is... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 7.5

    HIGH
    CVE-2024-7659

    A vulnerability, which was classified as problematic, was found in projectsend up to r1605. Affected is the function generate_random_string of the file includes/functions.php of the component Password Reset Token Handler. The manipulation leads to insuffi... Read more

    Affected Products : projectsend
    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 5.4

    MEDIUM
    CVE-2024-7657

    A vulnerability classified as problematic was found in Gila CMS 1.10.9. This vulnerability affects unknown code of the file /cm/update_rows/page?id=2 of the component HTTP POST Request Handler. The manipulation of the argument content leads to cross site ... Read more

    Affected Products : gila_cms
    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 7.8

    HIGH
    CVE-2024-38134

    Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability... Read more

    • Published: Aug. 13, 2024
    • Modified: Aug. 15, 2024

  • 8.8

    HIGH
    CVE-2024-42628

    FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/edit/3.... Read more

    Affected Products : frogcms
    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 8.8

    HIGH
    CVE-2024-42624

    FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/delete/10.... Read more

    Affected Products : frogcms
    • Published: Aug. 12, 2024
    • Modified: Aug. 15, 2024

  • 8.2

    HIGH
    CVE-2024-38653

    XXE in SmartDeviceServer in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to read arbitrary files on the server.... Read more

    Affected Products : avalanche
    • Published: Aug. 14, 2024
    • Modified: Aug. 15, 2024
Showing 20 of 290026 Results