Skip to main content
CVE-2024-1021 CRITICAL POC THREAT Act Now

A vulnerability, which was classified as critical, has been found in Rebuild up to 3.5.5. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Rebuild
NVD VulDB
CVSS 3.1
9.8
EPSS
34.7%
CVE-2024-24141 CRITICAL POC Act Now

Sourcecodester School Task Manager App 1.0 allows SQL Injection via the 'task' parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi School Task Manager
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2024-1009 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Employee Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Employee Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2024-23822 CRITICAL POC PATCH Act Now

Thruk is a multibackend monitoring webinterface. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal File Upload Thruk
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2024-1001 CRITICAL POC Act Now

A vulnerability classified as critical has been found in Totolink N200RE 9.3.5u.6139_B20201216. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow N200re Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.4%
CVE-2024-0996 CRITICAL POC Act Now

A vulnerability classified as critical has been found in Tenda i9 1.0.0.9(4122). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow I9 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.6%
CVE-2024-0995 CRITICAL POC Act Now

A vulnerability was found in Tenda W6 1.0.0.9(4122). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow W6 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-0994 CRITICAL POC Act Now

A vulnerability was found in Tenda W6 1.0.0.9(4122). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow W6 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-0993 CRITICAL POC Act Now

A vulnerability was found in Tenda i6 1.0.0.9(3857). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow I6 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-0992 CRITICAL POC Act Now

A vulnerability was found in Tenda i6 1.0.0.9(3857) and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow I6 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-0991 CRITICAL POC Act Now

A vulnerability has been found in Tenda i6 1.0.0.9(3857) and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow I6 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-0990 CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in Tenda i6 1.0.0.9(3857). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow I6 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-0986 CRITICAL POC THREAT Act Now

A vulnerability was found in Issabel PBX 4.0.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Pbx
NVD VulDB
CVSS 3.1
9.8
EPSS
58.2%
CVE-2024-23827 CRITICAL PATCH Act Now

Nginx-UI is a web interface to manage Nginx configurations. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Path Traversal Nginx Nginx Ui
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2024-1015 CRITICAL Act Now

Remote command execution vulnerability in SE-elektronic GmbH E-DDC3.3 affecting versions 03.07.03 and higher. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection RCE E Ddc3 3 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2024-23790 CRITICAL Act Now

Improper Input Validation vulnerability in the upload functionality for user avatars allows functionality misuse due to missing check of filetypes.0.X through 7.0.48, from 8.0.X through 8.0.37, from. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Otrs
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2024-0989 CRITICAL Act Now

A vulnerability, which was classified as problematic, has been found in Sichuan Yougou Technology KuERP up to 1.0.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Path Traversal Kuerp
NVD VulDB
CVSS 3.1
9.8
EPSS
1.2%
CVE-2024-0988 CRITICAL Act Now

A vulnerability classified as critical was found in Sichuan Yougou Technology KuERP up to 1.0.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass PHP Kuerp
NVD VulDB
CVSS 3.1
9.8
EPSS
1.0%
CVE-2024-0987 CRITICAL Act Now

A vulnerability classified as critical has been found in Sichuan Yougou Technology KuERP up to 1.0.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Kuerp
NVD VulDB
CVSS 3.1
9.8
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy