THREAT ALERT

ACT NOW CVE-2024-22087 9.8 route in main.c in Pico HTTP Server in C through f3b69a6 has an sprintf stack-based buffer overflow via a long URI, leading to remote code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.8%. |

Daily vulnerability intelligence for defenders – fresh CVEs with exploitability signals, patch status, and action-oriented priorities from 17 sources.

CVEs published

Track vulnerabilities that matter to your stack

Personalized alerts, dashboards, and weekly digests – free.

Trending Now

Critical Watch

Attack Technique Trend

Prediction based on ZDI Disclosures & CVE data · 30 days

Analytics

Vendor Today – Quick Filter

Techniques

results

Sort:

Base Score

Vector String

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

Integrity (I)

Availability (A)

0 | 3.9| 6.9| 8.9| 10

NONE LOW MEDIUM HIGH CRITICAL

CVSS Filter – CVEs match

No CVEs match the selected criteria

Browse older vulnerabilities in Archive

Live Feed auto-refresh 60s

Vulnerability Intelligence — January 07, 2024

26 CVEs tracked today. 0 Critical, 3 High, 19 Medium, 4 Low.

CVE-2024-0268 HIGH CVSS 7.3
A vulnerability, which was classified as critical, has been found in Kashipara Hospital Management System up to 1.0. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Hospital Management System
CVE-2024-0267 HIGH CVSS 7.3
A vulnerability classified as critical was found in Kashipara Hospital Management System up to 1.0. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Hospital Management System
CVE-2024-0264 HIGH CVSS 7.3
A vulnerability was found in SourceCodester Clinic Queuing System 1.0. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Clinic Queuing System
CVE-2024-0287 MEDIUM CVSS 6.3
A vulnerability was found in Kashipara Food Management System 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0286 MEDIUM CVSS 4.3
A vulnerability, which was classified as problematic, was found in PHPGurukul Hospital Management System 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Hospital Management System
CVE-2024-0281 MEDIUM CVSS 6.3
A vulnerability was found in Kashipara Food Management System up to 1.0 and classified as critical. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0280 MEDIUM CVSS 6.3
A vulnerability has been found in Kashipara Food Management System up to 1.0 and classified as critical. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0279 MEDIUM CVSS 6.3
A vulnerability, which was classified as critical, was found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0278 MEDIUM CVSS 6.3
A vulnerability, which was classified as critical, has been found in Kashipara Food Management System up to 1.0.php. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0277 MEDIUM CVSS 6.3
A vulnerability classified as critical was found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0276 MEDIUM CVSS 6.3
A vulnerability classified as critical has been found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0275 MEDIUM CVSS 6.3
A vulnerability was found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0274 MEDIUM CVSS 6.3
A vulnerability was found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0273 MEDIUM CVSS 6.3
A vulnerability was found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0272 MEDIUM CVSS 6.3
A vulnerability was found in Kashipara Food Management System up to 1.0 and classified as critical.php. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0271 MEDIUM CVSS 6.3
A vulnerability has been found in Kashipara Food Management System up to 1.0 and classified as critical. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0270 MEDIUM CVSS 6.3
A vulnerability, which was classified as critical, was found in Kashipara Food Management System up to 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Food Management System
CVE-2024-0266 MEDIUM CVSS 4.3
A vulnerability classified as problematic has been found in Project Worlds Online Lawyer Management System 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Online Lawyer Management System
CVE-2024-0265 MEDIUM CVSS 6.3
A vulnerability was found in SourceCodester Clinic Queuing System 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Clinic Queuing System
CVE-2024-0263 MEDIUM CVSS 5.3
A vulnerability was found in ACME Ultra Mini HTTPd 1.21. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Ultra Mini Httpd
CVE-2024-0261 MEDIUM CVSS 5.3
A vulnerability has been found in Sentex FTPDMIN 0.96 and classified as problematic. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Ftpdmin
CVE-2024-0260 MEDIUM CVSS 4.3
A vulnerability, which was classified as problematic, was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Engineers Online Portal
CVE-2024-0284 LOW CVSS 3.5
A vulnerability was found in Kashipara Food Management System up to 1.0. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Food Management System
CVE-2024-0283 LOW CVSS 3.5
A vulnerability was found in Kashipara Food Management System up to 1.0. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Food Management System
CVE-2024-0282 LOW CVSS 3.5
A vulnerability was found in Kashipara Food Management System up to 1.0. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Food Management System
CVE-2024-0262 LOW CVSS 2.4
A vulnerability was found in Online Job Portal 1.0 and classified as problematic. Rated low severity (CVSS 2.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Online Job Portal

Today's Vulnerabilities Vulnerabilities