5.3

CVSS3.1

CVE-2024-35357 -

A vulnerability has been discovered in DiΓ±o Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=delete_item. Manipulating the argument id can result in SQL injection.

πŸ“… Published: May 30, 2024, 4:01 p.m. πŸ”„ Last Modified: April 11, 2025, 4:14 p.m.

5.4

CVSS3.1

CVE-2024-35345 -

A vulnerability has been discovered in DiΓ±o Physics School Assistant version 2.3. The vulnerability impacts unidentified code within the file /classes/Users.php. Manipulating the argument id results in cross-site scripting.

πŸ“… Published: May 30, 2024, 4 p.m. πŸ”„ Last Modified: April 11, 2025, 4:15 p.m.

6.9

CVSS4.0

CVE-2024-5519 - ItsourceCode Learning Management System Project In PHP login.php sql injection

A vulnerability classified as critical was found in ItsourceCode Learning Management System Project In PHP 1.0. This vulnerability affects unknown code of the file login.php. The manipulation of the argument user_email leads to sql injection. The attack can be initiated remotely. The exploit has be…

πŸ“… Published: May 30, 2024, 4 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 3:07 p.m.

6.5

CVSS3.1

CVE-2024-35358 -

A vulnerability has been discovered in DiΓ±o Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=view_category. Manipulating the argument id can result in SQL injection.

πŸ“… Published: May 30, 2024, 3:57 p.m. πŸ”„ Last Modified: April 11, 2025, 4:14 p.m.

8.1

CVSS3.1

CVE-2024-35430 -

In ZKTeco ZKBio CVSecurity v6.1.1_R and earlier (fixed in 6.1.3_R) an authenticated user can bypass password checks while exporting data from the application.

πŸ“… Published: May 30, 2024, 3:55 p.m. πŸ”„ Last Modified: July 9, 2025, 5:15 p.m.

5.3

CVSS4.0

CVE-2024-5518 - itsourcecode Online Discussion Forum change_profile_picture.php unrestricted upload

A vulnerability classified as critical has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of the file change_profile_picture.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit ha…

πŸ“… Published: May 30, 2024, 3:31 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 3:10 p.m.

8.1

CVSS3.1

CVE-2024-36886 - tipc: fix UAF in error path

In the Linux kernel, the following vulnerability has been resolved: tipc: fix UAF in error path Sam Page (sam4k) working with Trend Micro Zero Day Initiative reported a UAF in the tipc_buf_append() error path: BUG: KASAN: slab-use-after-free in kfree_skb_list_reason+0x47e/0x4c0 linux/net/core/sk…

πŸ“… Published: May 30, 2024, 3:28 p.m. πŸ”„ Last Modified: Jan. 22, 2026, 8:24 p.m.

9

CVSS3.1

CVE-2024-3300 - Pre-authentication Unsafe .NET object deserialization vulnerability affecting DELMIA Apriso Release…

An unsafe .NET object deserialization vulnerability in DELMIA Apriso Release 2019 through Release 2024 could lead to pre-authentication remote code execution.

πŸ“… Published: May 30, 2024, 3:19 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.5

CVSS3.1

CVE-2024-3301 - Post-authentication Unsafe .NET object deserialization vulnerability affecting DELMIA Apriso Releas…

An unsafe .NET object deserialization vulnerability in DELMIA Apriso Release 2019 through Release 2024 could lead to post-authentication remote code execution.

πŸ“… Published: May 30, 2024, 3:18 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.4

CVSS3.1

CVE-2024-35504 -

A cross-site scripting (XSS) vulnerability in the login page of FineSoft v8.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL:errorname parameter after a failed login attempt.

πŸ“… Published: May 30, 2024, 3:01 p.m. πŸ”„ Last Modified: Sept. 27, 2025, 12:07 a.m.
Total resulsts: 349182
Page 9626 of 34,919
Β« previous page Β» next page
Filters