Skip to main content
CVE-2024-7099 CRITICAL POC PATCH Act Now

netease-youdao/qanything version 1.4.1 contains a vulnerability where unsafe data obtained from user input is concatenated in SQL queries, leading to SQL injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

SQLi Qanything
NVD GitHub
CVSS 3.0
9.8
EPSS
0.6%
CVE-2024-9915 HIGH POC This Week

A vulnerability classified as critical was found in D-Link DIR-619L B1 2.06. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
1.8%
CVE-2024-9914 HIGH POC This Week

A vulnerability classified as critical has been found in D-Link DIR-619L B1 2.06. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
1.6%
CVE-2024-9913 HIGH POC This Week

A vulnerability was found in D-Link DIR-619L B1 2.06. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
1.6%
CVE-2024-9912 HIGH POC This Week

A vulnerability was found in D-Link DIR-619L B1 2.06. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
1.5%
CVE-2024-9911 HIGH POC This Week

A vulnerability was found in D-Link DIR-619L B1 2.06. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
1.5%
CVE-2024-9910 HIGH POC This Week

A vulnerability was found in D-Link DIR-619L B1 2.06 and classified as critical. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
1.5%
CVE-2024-9909 HIGH POC This Week

A vulnerability has been found in D-Link DIR-619L B1 2.06 and classified as critical. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
2.2%
CVE-2024-6959 HIGH POC This Week

A vulnerability in parisneo/lollms-webui version 9.8 allows for a Denial of Service (DOS) attack when uploading an audio file. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Denial Of Service Lollms Web Ui
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2024-9916 MEDIUM POC THREAT This Month

A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Usualtoolcms
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
73.7%
CVE-2024-9917 MEDIUM POC This Month

A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Deserialization PHP Usualtoolcms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
8.7%
CVE-2024-9906 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Online Eyewear Shop
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2024-9905 MEDIUM POC This Month

A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Eyewear Shop
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.5%
CVE-2024-9918 MEDIUM POC This Month

A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Usualtoolcms
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.6%
CVE-2024-9908 MEDIUM POC This Month

A vulnerability, which was classified as critical, was found in D-Link DIR-619L B1 2.06. Rated medium severity (CVSS 5.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Dir 619l Firmware
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
2.5%
CVE-2024-9904 MEDIUM POC This Month

A vulnerability classified as critical was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload 07flycms Customer Relationship Management
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.6%
CVE-2024-8070 HIGH This Week

credentials in the firmware binary. Rated high severity (CVSS 8.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure
NVD
CVSS 3.1
8.5
EPSS
0.1%
CVE-2024-9907 MEDIUM This Month

A vulnerability classified as problematic was found in QileCMS up to 1.1.3. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

PHP Information Disclosure
NVD VulDB
CVSS 4.0
6.3
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy