6.9
CVE-2024-12958 - 1000 Projects Portfolio Management System MCA update_pro_details.php sql injection
A vulnerability classified as critical has been found in 1000 Projects Portfolio Management System MCA 1.0. This affects an unknown part of the file /update_pro_details.php. The manipulation of the argument q leads to sql injection. It is possible to initiate the attack remotely. The exploit has beβ¦
5.3
CVE-2024-12956 - 1000 Projects Portfolio Management System MCA add_achievement_details.php unrestricted upload
A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. This issue affects some unknown processing of the file /add_achievement_details.php. The manipulation of the argument ach_certy leads to unrestricted upload. The attack may be initiated remoteβ¦
6.9
CVE-2024-12955 - PHPGurukul Blood Bank & Donor Management System logout.php cross-site request forgery
A vulnerability has been found in PHPGurukul Blood Bank & Donor Management System 2.4 and classified as problematic. This vulnerability affects unknown code of the file /logout.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been discβ¦
5.3
CVE-2024-12954 - 1000 Projects Portfolio Management System MCA update_ach.php unrestricted upload
A vulnerability, which was classified as critical, was found in 1000 Projects Portfolio Management System MCA 1.0. This affects an unknown part of the file /update_ach.php. The manipulation of the argument ach_certy leads to unrestricted upload. It is possible to initiate the attack remotely. The eβ¦
5.3
CVE-2024-12953 - 1000 Projects Portfolio Management System MCA update_pd_process.php unrestricted upload
A vulnerability, which was classified as critical, has been found in 1000 Projects Portfolio Management System MCA 1.0. Affected by this issue is some unknown functionality of the file /update_pd_process.php. The manipulation of the argument profile leads to unrestricted upload. The attack may be lβ¦
5.3
CVE-2024-12952 - melMass comfy_mtb Dependency endpoint.py run_command code injection
A vulnerability classified as critical was found in melMass comfy_mtb up to 0.1.4. Affected by this vulnerability is the function run_command of the file comfy_mtb/endpoint.py of the component Dependency Handler. The manipulation leads to code injection. The attack can be launched remotely. The expβ¦
5.3
CVE-2024-12951 - 1000 Projects Portfolio Management System MCA add_personal_details.php unrestricted upload
A vulnerability classified as critical has been found in 1000 Projects Portfolio Management System MCA 1.0. Affected is an unknown function of the file /add_personal_details.php. The manipulation of the argument profile leads to unrestricted upload. It is possible to launch the attack remotely. Theβ¦
3.3
CVE-2024-47150 -
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak.
3.3
CVE-2024-47149 -
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions.
4
CVE-2024-47148 -
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions.