Latest CVE Feed
-
5.4
MEDIUMCVE-2024-42335
7Twenty - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Read more
Affected Products : bot- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
9.8
CRITICALCVE-2024-42566
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the password parameter at login.php... Read more
Affected Products : school_management_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
9.8
CRITICALCVE-2024-42567
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the sid parameter at /search.php?action=2.... Read more
Affected Products : school_management_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
9.8
CRITICALCVE-2024-42570
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at admininsert.php.... Read more
Affected Products : school_management_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
9.8
CRITICALCVE-2024-42574
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at attendance.php.... Read more
Affected Products : school_management_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
9.8
CRITICALCVE-2024-42575
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at substaff.php.... Read more
Affected Products : school_management_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42580
A Cross-Site Request Forgery (CSRF) in the component edit_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.... Read more
Affected Products : warehouse_inventory_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
9.6
CRITICALCVE-2024-42581
A Cross-Site Request Forgery (CSRF) in the component delete_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.... Read more
Affected Products : warehouse_inventory_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42582
A Cross-Site Request Forgery (CSRF) in the component delete_categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.... Read more
Affected Products : warehouse_inventory_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42583
A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.... Read more
Affected Products : warehouse_inventory_system- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42603
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=clearall... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42605
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/edit_page.php?link_id=1... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42606
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_log.php?clear=1... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42607
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=database... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42609
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=avatars... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42610
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=files... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42611
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=delete... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42613
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=install&widget=akismet... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42617
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_config.php?action=save&var_id=32... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024
-
8.8
HIGHCVE-2024-42618
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /module.php?module=karma... Read more
Affected Products : pligg_cms- Published: Aug. 20, 2024
- Modified: Aug. 21, 2024