Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

9.8

CRITICAL

CVE-2024-33963

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33961

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33965

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33966

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33967

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33968

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33969

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33970

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33971

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33972

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-33973

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the foll...

Affected Products : school_attendence_monitoring_system school_event_management_system credit_card debit_card_payment paypal
Published: Aug. 06, 2024

Modified: Aug. 08, 2024
6.1

MEDIUM

CVE-2024-41242

A Reflected Cross Site Scripting (XSS) vulnerability was found in /smsa/student_login.php in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary code via "error" parameter....

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
7.5

HIGH

CVE-2024-41245

An Incorrect Access Control vulnerability was found in /smsa/view_teachers.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view TEACHER details....

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
7.5

HIGH

CVE-2024-41244

An Incorrect Access Control vulnerability was found in /smsa/view_class.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view CLASS details....

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
9.8

CRITICAL

CVE-2024-34479

SourceCodester Computer Laboratory Management System 1.0 allows classes/Master.php id SQL Injection....

Affected Products : computer_laboratory_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
9.1

CRITICAL

CVE-2024-41247

An Incorrect Access Control vulnerability was found in /smsa/add_class.php and /smsa/add_class_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to add a new class entry....

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
7.5

HIGH

CVE-2024-41248

An Incorrect Access Control vulnerability was found in /smsa/add_subject.php and /smsa/add_subject_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to add a new subject entry....

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
7.5

HIGH

CVE-2024-41249

An Incorrect Access Control vulnerability was found in /smsa/view_subject.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view SUBJECT details....

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
6.5

MEDIUM

CVE-2024-41252

An Incorrect Access Control vulnerability was found in /smsa/admin_student_register_approval.php and /smsa/admin_student_register_approval_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to...

Affected Products : responsive_school_management_system
Published: Aug. 07, 2024

Modified: Aug. 08, 2024
8.4

HIGH

CVE-2024-41308

An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system....

Affected Products : enjay_crm
Published: Aug. 07, 2024

Modified: Aug. 08, 2024

Showing 20 of 291024 Results

Latest CVE Feed

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

6.1

7.5

7.5

9.8

9.1

7.5

7.5

6.5

8.4

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable