7.3

CVSS3.1

CVE-2024-53603 -

A SQL Injection vulnerability was found in /covid-tms/password-recovery.php in PHPGurukul COVID 19 Testing Management System v1.0, which allows remote attackers to execute arbitrary code via the contactno POST request parameter.

πŸ“… Published: Nov. 27, 2024, midnight πŸ”„ Last Modified: March 27, 2025, 5:40 p.m.

9.8

CVSS3.1

CVE-2024-53604 -

A SQL Injection vulnerability was found in /covid-tms/check_availability.php in PHPGurukul COVID 19 Testing Management System v1.0, which allows remote attackers to execute arbitrary code via the mobnumber POST request parameter.

πŸ“… Published: Nov. 27, 2024, midnight πŸ”„ Last Modified: March 27, 2025, 5:35 p.m.

7.8

CVSS3.1

CVE-2024-53920 - emacs: arbitrary code execution via Lisp macro expansion

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses t…

πŸ“… Published: Nov. 27, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 9:17 p.m.

4.8

CVSS4.0

CVE-2024-53849 - Several stack buffer overflows and pointer overflows in editorconfig-core-c

editorconfig-core-c is theEditorConfig core library written in C (for use by plugins supporting EditorConfig parsing). In affected versions several overflows may occur in switch case '[' when the input pattern contains many escaped characters. The added backslashes leave too little space in the o…

πŸ“… Published: Nov. 26, 2024, 11:34 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.9

CVSS4.0

CVE-2024-11819 - 1000 Projects Portfolio Management System MCA forgot_password_process.php sql injection

A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgot_password_process.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi…

πŸ“… Published: Nov. 26, 2024, 11:31 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 3 p.m.

6.9

CVSS4.0

CVE-2024-11818 - PHPGurukul User Registration & Login and User Management System signup.php sql injection

A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System 1.0. This affects an unknown part of the file /signup.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The expl…

πŸ“… Published: Nov. 26, 2024, 11:31 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 3:06 p.m.

6.9

CVSS4.0

CVE-2024-11817 - PHPGurukul User Registration & Login and User Management System index.php sql injection

A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument username leads to sql injection. The attack may be lau…

πŸ“… Published: Nov. 26, 2024, 11 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 3:15 p.m.

7.3

CVSS3.1

CVE-2024-53675 -

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.

πŸ“… Published: Nov. 26, 2024, 10:01 p.m. πŸ”„ Last Modified: Dec. 12, 2024, 7:48 p.m.

7.3

CVSS3.1

CVE-2024-53674 -

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.

πŸ“… Published: Nov. 26, 2024, 9:55 p.m. πŸ”„ Last Modified: Dec. 12, 2024, 7:49 p.m.

8.1

CVSS3.1

CVE-2024-53673 -

A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated attacker to execute code.

πŸ“… Published: Nov. 26, 2024, 9:45 p.m. πŸ”„ Last Modified: Dec. 12, 2024, 7:50 p.m.
Total resulsts: 349182
Page 7691 of 34,919
Β« previous page Β» next page
Filters