Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.1

    MEDIUM
    CVE-2024-7815

    A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page.... Read more

    Affected Products : online_railway_reservation_system
    • Published: Aug. 15, 2024
    • Modified: Aug. 19, 2024

  • 5.1

    MEDIUM
    CVE-2024-7814

    A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argum... Read more

    Affected Products : online_railway_reservation_system
    • Published: Aug. 15, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-7813

    A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. This issue affects some unknown processing of the file /uploadImage/Profile/ of the component Profile Image Handler. The manipulation lead... Read more

    Affected Products : prison_management_system
    • Published: Aug. 15, 2024
    • Modified: Aug. 19, 2024

  • 5.4

    MEDIUM
    CVE-2024-7812

    A vulnerability classified as problematic was found in SourceCodester Best House Rental Management System 1.0. This vulnerability affects unknown code of the file /rental_0/rental/ajax.php?action=save_tenant of the component POST Parameter Handler. The ma... Read more

    • Published: Aug. 15, 2024
    • Modified: Aug. 19, 2024

  • 9.8

    CRITICAL
    CVE-2024-7811

    A vulnerability classified as critical has been found in SourceCodester Daily Expenses Monitoring App 1.0. This affects an unknown part of the file /endpoint/delete-expense.php. The manipulation of the argument expense leads to sql injection. It is possib... Read more

    Affected Products : daily_expenses_monitoring_app
    • Published: Aug. 15, 2024
    • Modified: Aug. 19, 2024

  • 9.8

    CRITICAL
    CVE-2024-7808

    A vulnerability was found in code-projects Job Portal 1.0. It has been classified as critical. Affected is an unknown function of the file logindbc.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack rem... Read more

    Affected Products : job_portal
    • Published: Aug. 15, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-7750

    A vulnerability has been found in SourceCodester Clinics Patient Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /medicines.php. The manipulation of the argument medicine_name leads ... Read more

    • Published: Aug. 13, 2024
    • Modified: Aug. 19, 2024

  • 6.1

    MEDIUM
    CVE-2024-7752

    A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /update_medicine.php. The manipulation of the argument medicine_name leads to cross site scr... Read more

    • Published: Aug. 14, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-7754

    A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /ajax/check_medicine_name.php. The manipulation of the argument user_name leads to sql... Read more

    • Published: Aug. 14, 2024
    • Modified: Aug. 19, 2024

  • 6.9

    MEDIUM
    CVE-2024-7645

    A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file users.php of the component User Page. The manipulation leads to cross-site request ... Read more

    • Published: Aug. 12, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-7751

    A vulnerability was found in SourceCodester Clinics Patient Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /update_medicine.php. The manipulation of the argument hidden_id leads to sql in... Read more

    • Published: Aug. 13, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-7753

    A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /user_images/. The manipulation leads to direct request. The attack can be initiate... Read more

    • Published: Aug. 14, 2024
    • Modified: Aug. 19, 2024

  • 9.8

    CRITICAL
    CVE-2024-7494

    A vulnerability, which was classified as critical, has been found in SourceCodester Clinics Patient Management System 1.0. Affected by this issue is some unknown functionality of the file /new_prescription.php. The manipulation of the argument patient lea... Read more

    • Published: Aug. 05, 2024
    • Modified: Aug. 19, 2024

  • 8.8

    HIGH
    CVE-2024-6358

    Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence.... Read more

    Affected Products : arcsight_intelligence
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024

  • 9.8

    CRITICAL
    CVE-2024-6359

    Privilege escalation vulnerability identified in OpenText ArcSight Intelligence.... Read more

    Affected Products : arcsight_intelligence
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024

  • 8.8

    HIGH
    CVE-2024-6357

    Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence.... Read more

    Affected Products : arcsight_intelligence
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024

  • 6.1

    MEDIUM
    CVE-2024-7008

    Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.... Read more

    Affected Products : calibre
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024

  • 7.1

    HIGH
    CVE-2024-7009

    Unsanitized user-input in Calibre <= 7.15.0 allow users with permissions to perform full-text searches to achieve SQL injection on the SQLite database.... Read more

    Affected Products : calibre
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-6781

    Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to achieve arbitrary file read.... Read more

    Affected Products : calibre
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024

  • 7.5

    HIGH
    CVE-2024-28962

    Dell Command | Update, Dell Update, and Alienware Update UWP, versions prior to 5.4, contain an Exposed Dangerous Method or Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to den... Read more

    Affected Products : alienware_update command_update update
    • Published: Aug. 06, 2024
    • Modified: Aug. 19, 2024
Showing 20 of 291389 Results