Skip to main content
CVE-2024-2556 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Employee Task Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Employee Task Management System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-2557 CRITICAL POC Act Now

A vulnerability was found in kishor-23 Food Waste Management System 1.0. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Food Waste Management System
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
1.0%
CVE-2024-2561 HIGH POC This Week

A vulnerability, which was classified as critical, has been found in 74CMS 3.28.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload 74Cms
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
6.1%
CVE-2024-2554 HIGH POC This Week

A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Employee Task Management System
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.7%
CVE-2024-2568 HIGH POC This Week

A vulnerability has been found in heyewei JFinalCMS 5.0.0 and classified as critical. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Jfinalcms
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
0.7%
CVE-2024-2555 HIGH POC This Week

A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Employee Task Management System
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
0.6%
CVE-2024-27957 CRITICAL Act Now

Unrestricted Upload of File with Dangerous Type vulnerability in Pie Register.8.3.1. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload Pie Register
NVD
CVSS 3.1
10.0
EPSS
0.6%
CVE-2024-2553 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in SourceCodester Product Review Rating System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Product Review Rating System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2566 CRITICAL Act Now

A vulnerability was found in Fujian Kelixin Communication Command and Dispatch Platform up to 20240313. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Kelixin Communication Command And Dispatch
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-2565 CRITICAL Act Now

A vulnerability was found in PandaXGO PandaX up to 20240310. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload Pandax
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-2563 CRITICAL PATCH Act Now

A vulnerability has been found in PandaXGO PandaX up to 20240310 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Path Traversal Pandax
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2024-2562 CRITICAL Act Now

A vulnerability, which was classified as critical, was found in PandaXGO PandaX up to 20240310. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Pandax
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-2534 CRITICAL Act Now

A vulnerability, which was classified as critical, was found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Online College Event Hall Reservation System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-2558 HIGH This Week

A vulnerability was found in Tenda AC18 15.03.05.05. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow Ac18 Firmware
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
1.3%
CVE-2024-2547 HIGH This Week

A vulnerability was found in Tenda AC18 15.03.05.05 and classified as critical. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow Ac18 Firmware
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
1.2%
CVE-2024-2546 HIGH This Week

A vulnerability has been found in Tenda AC18 15.13.07.09 and classified as critical. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow Ac18 Firmware
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
1.0%
CVE-2024-2560 MEDIUM POC This Month

A vulnerability classified as problematic was found in Tenda AC18 15.03.05.05. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Tenda CSRF Ac18 Firmware
NVD GitHub VulDB
CVSS 3.1
4.3
EPSS
0.4%
CVE-2024-2564 HIGH This Week

A vulnerability was found in PandaXGO PandaX up to 20240310 and classified as critical.go. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Pandax
NVD GitHub VulDB
CVSS 3.1
7.3
EPSS
0.5%
CVE-2024-27958 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeisle Visualizer allows Reflected XSS.10.5. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Visualizer
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2024-27959 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wpexpertsio WC Shop Sync - Integrate Square and WooCommerce for Seamless Shop Management allows. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Wc Shop Sync
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-27960 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in I Thirteen Web Solution Email Subscription Popup allows Stored XSS.2.20. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Email Subscription Popup
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-27961 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Codekraft AntiSpam for Contact Form 7 allows Reflected XSS.6.0. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-2559 MEDIUM This Month

A vulnerability classified as problematic has been found in Tenda AC18 15.03.05.05. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Tenda CSRF Ac18 Firmware
NVD VulDB GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-2535 MEDIUM This Month

A vulnerability has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Online College Event Hall Reservation System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-25903 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in N-Media Frontend File Manager.7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Frontend File Manager
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-25591 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Benjamin Rojas WP Editor.2.7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Wp Editor
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-25933 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pepro Dev. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Peprodev Ultimate Invoice
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-24867 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Osamaesh WP Visitor Statistics (Real Time Traffic).9.4. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Visitor Statistics
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-2567 LOW Monitor

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, was found in jurecapuder AndroidWeatherApp 1.0.0 on Android. Rated low severity (CVSS 1.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Google
NVD GitHub VulDB
CVSS 3.1
1.8
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy