7.6
CVE-2024-47328 - WordPress Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation Bβ¦
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aman FunnelKit Automations wp-marketing-automations allows SQL Injection.This issue affects FunnelKit Automations: from n/a through <= 3.1.2.
7.2
CVE-2024-8625 - TS Poll β Survey, Versus Poll, Image Poll, Video Poll < 2.4.0 - Admin+ SQL Injection
The TS Poll WordPress plugin before 2.4.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
8.8
CVE-2024-10202 - Wellchoose Administrative Management System - OS Command Injection
Administrative Management System from Wellchoose has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands.
8.8
CVE-2024-10201 - Wellchoose Administrative Management System - Arbitrary File Upload
Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells.
7.5
CVE-2024-10200 - Wellchoose Administrative Management System - Arbitrary File Read through Path Traversal
Administrative Management System from Wellchoose has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to download arbitrary files on the server.
5.1
CVE-2024-10199 - code-projects Pharmacy Management System Manage Medicines Page manage_medicine.php cross site scripβ¦
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /manage_medicine.php of the component Manage Medicines Page. The manipulation of the argument name/address/doctor_address/supβ¦
9.8
CVE-2024-43689 -
Stack-based buffer overflow vulnerability exists in ELECOM wireless access points. By processing a specially crafted HTTP request, arbitrary code may be executed.
5.1
CVE-2024-10198 - code-projects Pharmacy Management System Manage Customer Page manage_customer.php cross site scriptβ¦
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /manage_customer.php of the component Manage Customer Page. The manipulation of the argument suppliers_name/address β¦
5.1
CVE-2024-10197 - code-projects Pharmacy Management System Manage Supplier Page manage_supplier.php cross site scriptβ¦
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is posβ¦
5.3
CVE-2024-10196 - code-projects Pharmacy Management System add_new_invoice.php sql injection
A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /add_new_invoice.php. The manipulation of the argument text leads to sql injection. The attack may be initiated remotely. The exploit has beenβ¦