8.1

CVSS3.1

CVE-2024-48427 -

A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manage_service&id

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 31, 2024, 12:07 a.m.

5.5

CVSS3.1

CVE-2024-48424 - assimp: heap-buffer-overflow in OpenDDLParser::parseStructure

A heap-buffer-overflow vulnerability has been identified in the OpenDDLParser::parseStructure function within the Assimp library, specifically during the processing of OpenGEX files.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: June 10, 2025, 6:52 p.m.

9.8

CVSS3.1

CVE-2024-41618 -

Money Manager EX WebApp (web-money-manager-ex) 1.2.2 is vulnerable to SQL Injection in the `transaction_delete_group` function. The vulnerability is due to improper sanitization of user input in the `TrDeleteArr` parameter, which is directly incorporated into an SQL query.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 29, 2024, 5:35 p.m.

8.4

CVSS3.1

CVE-2024-48542 -

Incorrect access control in the firmware update and download processes of Yamaha Headphones Controller v1.6.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 12:56 p.m.

7.2

CVSS3.1

CVE-2024-48454 -

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to execute arbitrary code via the /admin?page=user component

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: April 23, 2025, 12:49 a.m.

8.8

CVSS3.1

CVE-2024-48441 -

Wuhan Tianyu Information Industry Co., Ltd Tianyu CPE Router CommonCPExCPETS_v3.2.468.11.04_P4 was discovered to contain a command injection vulnerability via the component at_command.asp.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 8:35 p.m.

3.6

CVSS3.1

CVE-2023-50355 - HCL Sametime is impacted by generation of error messages containing sensitive information

HCL Sametime is impacted by the error messages containing sensitive information. An attacker can use this information to launch another, more focused attack.

πŸ“… Published: Oct. 23, 2024, 10:17 p.m. πŸ”„ Last Modified: Oct. 31, 2024, 3:18 p.m.

5.1

CVSS4.0

CVE-2024-10301 - PHPGurukul Medical Card Generation System Search search-medicalcard.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Medical Card Generation System 1.0. Affected is an unknown function of the file /admin/search-medicalcard.php of the component Search. The manipulation of the argument searchdata leads to sql injection. It is possible to lau…

πŸ“… Published: Oct. 23, 2024, 7:31 p.m. πŸ”„ Last Modified: Oct. 25, 2024, 6:47 p.m.

5.1

CVSS4.0

CVE-2024-10300 - PHPGurukul Medical Card Generation System View Enquiry Page view-enquiry.php sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Medical Card Generation System 1.0. This issue affects some unknown processing of the file /admin/view-enquiry.php of the component View Enquiry Page. The manipulation of the argument viewid leads to sql injection. The …

πŸ“… Published: Oct. 23, 2024, 7:31 p.m. πŸ”„ Last Modified: Oct. 25, 2024, 6:49 p.m.

5.1

CVSS4.0

CVE-2024-10299 - PHPGurukul Medical Card Generation System Managecard View Detail Page view-card-detail.php sql inje…

A vulnerability classified as critical was found in PHPGurukul Medical Card Generation System 1.0. This vulnerability affects unknown code of the file /admin/view-card-detail.php of the component Managecard View Detail Page. The manipulation of the argument viewid leads to sql injection. The attack…

πŸ“… Published: Oct. 23, 2024, 7 p.m. πŸ”„ Last Modified: Oct. 25, 2024, 6:51 p.m.
Total resulsts: 344055
Page 7649 of 34,406
Β« previous page Β» next page
Filters