9.1
CVE-2024-30415 -
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.
7.5
CVE-2024-30414 -
Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
7.5
CVE-2024-30413 -
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.
6.3
CVE-2024-3417 - SourceCodester Online Courseware saveeditt.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Online Courseware 1.0. This issue affects some unknown processing of the file admin/saveeditt.php. The manipulation of the argument contact leads to sql injection. The attack may be initiated remotely. The exploit hโฆ
6.3
CVE-2024-3416 - SourceCodester Online Courseware editt.php sql injection
A vulnerability classified as critical was found in SourceCodester Online Courseware 1.0. This vulnerability affects unknown code of the file admin/editt.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the publโฆ
6.4
CVE-2023-6877 - RSS Aggregator by Feedzy โ Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator <= 4.3โฆ
The RSS Aggregator by Feedzy โ Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 4.3.3 due to insufficient input sanitization and output escaping on โฆ
6.5
CVE-2024-31949 - frr: infinite loop
In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.
6.5
CVE-2024-31948 - frr: bgpd daemon crash
In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.
6.5
CVE-2024-31951 - frr: buffer overflow in ospf_te_parse_ext_link
In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs (lengths are not validated).
4.3
CVE-2021-47208 -
The Mojolicious module before 9.11 for Perl has a bug in format detection that can potentially be exploited for denial of service.