6.9

CVSS4.0

CVE-2024-9986 - code-projects Blood Bank Management System member_register.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file member_register.php. The manipulation of the argument fullname/username/password/email leads to sql injection. The attack may be initiat…

πŸ“… Published: Oct. 15, 2024, 1 p.m. πŸ”„ Last Modified: Oct. 23, 2025, 8:06 p.m.

5.1

CVSS4.0

CVE-2024-9977 - MitraStar GPT-2541GNAC Firewall Settings Page settings-firewall.cgi os command injection

A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1.11(WVK.0)b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command inject…

πŸ“… Published: Oct. 15, 2024, 12:31 p.m. πŸ”„ Last Modified: Oct. 16, 2024, 4:38 p.m.

5.3

CVSS4.0

CVE-2024-9976 - code-projects Pharmacy Management System manage_customer.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/manage_customer.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The e…

πŸ“… Published: Oct. 15, 2024, 11 a.m. πŸ”„ Last Modified: Oct. 16, 2024, 1:42 p.m.

5.3

CVSS4.0

CVE-2024-9975 - SourceCodester Drag and Drop Image Upload upload.php unrestricted upload

A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed…

πŸ“… Published: Oct. 15, 2024, 11 a.m. πŸ”„ Last Modified: Oct. 16, 2024, 1:44 p.m.

9.1

CVSS3.1

CVE-2024-49388 -

Sensitive information manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690.

πŸ“… Published: Oct. 15, 2024, 10:34 a.m. πŸ”„ Last Modified: Feb. 4, 2025, 5:06 p.m.

7.5

CVSS3.1

CVE-2024-49387 -

Cleartext transmission of sensitive information in acep-collector service. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690.

πŸ“… Published: Oct. 15, 2024, 10:34 a.m. πŸ”„ Last Modified: Feb. 4, 2025, 5:05 p.m.

4.3

CVSS3.1

CVE-2024-49384 -

Excessive attack surface in acep-collector service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690.

πŸ“… Published: Oct. 15, 2024, 10:33 a.m. πŸ”„ Last Modified: Feb. 4, 2025, 5:05 p.m.

4.3

CVSS3.1

CVE-2024-49383 -

Excessive attack surface in acep-importer service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690.

πŸ“… Published: Oct. 15, 2024, 10:33 a.m. πŸ”„ Last Modified: Feb. 4, 2025, 5:05 p.m.

4.3

CVSS3.1

CVE-2024-49382 -

Excessive attack surface in archive-server service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690.

πŸ“… Published: Oct. 15, 2024, 10:32 a.m. πŸ”„ Last Modified: Feb. 4, 2025, 5:05 p.m.

7.5

CVSS3.1

CVE-2024-45276 - MB connect line/Helmholz: tmp directory exposed via webservice

An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication.

πŸ“… Published: Oct. 15, 2024, 10:28 a.m. πŸ”„ Last Modified: Jan. 24, 2025, 7:15 a.m.
Total resulsts: 342647
Page 7637 of 34,265
Β« previous page Β» next page
Filters