6.9
CVE-2024-11967 - PHPGurukul Complaint Management system reset-password.php sql injection
A vulnerability was found in PHPGurukul Complaint Management system 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/reset-password.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploiโฆ
6.9
CVE-2024-11966 - PHPGurukul Complaint Management system index.php sql injection
A vulnerability was found in PHPGurukul Complaint Management system 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument username leads to sql injection. The attack may be initiated remotely. The exploit has been dโฆ
6.9
CVE-2024-11965 - PHPGurukul Complaint Management system reset-password.php sql injection
A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as critical. This vulnerability affects unknown code of the file /user/reset-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit hasโฆ
6.9
CVE-2024-11964 - PHPGurukul Complaint Management system index.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Complaint Management system 1.0. This affects an unknown part of the file /user/index.php. The manipulation of the argument emailid leads to sql injection. It is possible to initiate the attack remotely. The exploit has beenโฆ
9.8
CVE-2024-52338 - Apache Arrow R package: Arbitrary code execution when loading a malicious data file
Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versionsย 4.0.0 through 16.1.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources (for example, user-supplied input files). Thโฆ
8.8
CVE-2024-11969 - Incorrect default permissions in Cradlepoint NetCloud Exchange
The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal (non-admin) user could exploit the weakness in file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised โฆ
5.3
CVE-2024-11963 - code-projects Responsive Hotel Site room.php sql injection
A vulnerability, which was classified as critical, has been found in code-projects Responsive Hotel Site 1.0. Affected by this issue is some unknown functionality of the file /admin/room.php. The manipulation of the argument troom leads to sql injection. The attack may be launched remotely. The expโฆ
6.9
CVE-2024-11962 - code-projects Simple Car Rental System login.php sql injection
A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The exploit has beenโฆ
6.9
CVE-2024-11961 - Guangzhou Huayi Intelligent Technology Jeewms WmOmNoticeHController.java preHandle information discโฆ
A vulnerability was found in Guangzhou Huayi Intelligent Technology Jeewms 3.7. It has been rated as problematic. This issue affects the function preHandle of the file src/main/java/com/zzjee/wm/controller/WmOmNoticeHController.java. The manipulation of the argument request leads to information disโฆ
8.7
CVE-2024-11960 - D-Link DIR-605L formSetPortTr buffer overflow
A vulnerability was found in D-Link DIR-605L 2.13B01. It has been declared as critical. This vulnerability affects the function formSetPortTr of the file /goform/formSetPortTr. The manipulation of the argument curTime leads to buffer overflow. The attack can be initiated remotely. The exploit has bโฆ