6.3

CVSS3.1

CVE-2024-38469 -

zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the $search parameter at /pay.php.

πŸ“… Published: June 17, 2024, midnight πŸ”„ Last Modified: April 30, 2025, 11:50 p.m.

4.8

CVSS3.1

CVE-2024-37828 -

A stored cross-site scripting (XSS) in Vermeg Agile Reporter v23.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field under the Set Broadcast Message module.

πŸ“… Published: June 17, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.4

CVSS3.1

CVE-2024-0397 - Memory race condition in ssl.SSLContext certificate store methods

A defect was discovered in the Python β€œssl” module where there is a memory race condition with the ssl.SSLContext methods β€œcert_store_stats()” and β€œget_ca_certs()”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as…

πŸ“… Published: June 17, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.1

CVSS3.1

CVE-2024-38470 -

zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the $search parameter at /own.php.

πŸ“… Published: June 17, 2024, midnight πŸ”„ Last Modified: April 30, 2025, 11:47 p.m.

4.1

CVSS3.1

CVE-2024-37663 -

Redmi router RB03 v1.0.57 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages.

πŸ“… Published: June 17, 2024, midnight πŸ”„ Last Modified: July 9, 2025, 3:13 p.m.

5.9

CVSS3.1

CVE-2024-37798 -

Cross-site scripting (XSS) vulnerability in search-appointment.php in the Admin Panel in Phpgurukul Beauty Parlour Management System 1.0 allows remote attackers to inject arbitrary web script or HTML via the search input field.

πŸ“… Published: June 17, 2024, midnight πŸ”„ Last Modified: April 3, 2025, 12:48 a.m.

6.9

CVSS4.0

CVE-2024-6042 - itsourcecode Real Estate Management System property-detail.php sql injection

A vulnerability was found in itsourcecode Real Estate Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file property-detail.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The expl…

πŸ“… Published: June 16, 2024, 11:31 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:48 a.m.

5.3

CVSS4.0

CVE-2024-6041 - itsourcecode Gym Management System manage_user.php sql injection

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_user.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit…

πŸ“… Published: June 16, 2024, 11 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:48 a.m.

5.3

CVSS4.0

CVE-2024-6039 - Feng Office Workspaces sql injection

A vulnerability, which was classified as critical, was found in Feng Office 3.11.1.2. Affected is an unknown function of the component Workspaces. The manipulation of the argument dim leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public …

πŸ“… Published: June 16, 2024, 10 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:48 a.m.

6.1

CVSS3.1

CVE-2024-36397 - Vantiva - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scriptin…

Vantiva - MediaAccess DGA2232Β v19.4 -Β CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

πŸ“… Published: June 16, 2024, 8:06 a.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:22 a.m.
Total resulsts: 347742
Page 9281 of 34,775
Β« previous page Β» next page
Filters