Skip to main content
CVE-2024-44430 CRITICAL POC Act Now

SQL Injection vulnerability in Best Free Law Office Management Software-v1.0 allows an attacker to execute arbitrary code and obtain sensitive information via a crafted payload to the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP RCE Microsoft Best Free Law Office Management
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2024-46049 CRITICAL POC Act Now

Tenda O6 V3.0 firmware V1.0.0.7(2054) contains a stack overflow vulnerability in the formexeCommand function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Memory Corruption O6 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-46048 CRITICAL POC THREAT Act Now

Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Tenda Command Injection Fh451 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
10.5%
CVE-2024-46046 CRITICAL POC Act Now

Tenda FH451 v1.0.0.9 has a stack overflow vulnerability located in the RouteStatic function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Memory Corruption Fh451 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-46045 CRITICAL POC Act Now

Tenda CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the frmL7PlotForm function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Memory Corruption Ch22 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-46044 CRITICAL POC Act Now

CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the fromqossetting function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Ch22 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-41874 CRITICAL Act Now

ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Coldfusion
NVD
CVSS 3.1
9.8
EPSS
30.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy