All In One SEO – Best WordPress SEO Plugin – Easily Improve SEO Rankings & Increase Traffic Security Vulnerabilities

CVE-2024-6043

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects the function login of the file admin_class.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-6043

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects the function login of the file admin_class.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-6042

A vulnerability was found in itsourcecode Real Estate Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file property-detail.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2024-6042

A vulnerability was found in itsourcecode Real Estate Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file property-detail.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

Malicious code in airbnb-o2 (npm)

-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (15a37bd4059b76c7466684dfbc565c913af0ab4af849c5a643ce44d3bb7a4a6e) The OpenSSF Package Analysis project identified 'airbnb-o2' @ 13.37.1 (npm) as malicious. It is considered malicious because: The package...

CVE-2024-6043 SourceCodester Best House Rental Management System admin_class.php login sql injection

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects the function login of the file admin_class.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-6042 itsourcecode Real Estate Management System property-detail.php sql injection

A vulnerability was found in itsourcecode Real Estate Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file property-detail.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2024-6041

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_user.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

CVE-2024-6041

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_user.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

CVE-2024-6041 itsourcecode Gym Management System manage_user.php sql injection

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_user.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

CVE-2024-6039

A vulnerability, which was classified as critical, was found in Feng Office 3.11.1.2. Affected is an unknown function of the component Workspaces. The manipulation of the argument dim leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public....

CVE-2024-6039

A vulnerability, which was classified as critical, was found in Feng Office 3.11.1.2. Affected is an unknown function of the component Workspaces. The manipulation of the argument dim leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public....

CVE-2024-6039 Feng Office Workspaces sql injection

A vulnerability, which was classified as critical, was found in Feng Office 3.11.1.2. Affected is an unknown function of the component Workspaces. The manipulation of the argument dim leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public....

CVE-2023-27636

Progress Sitefinity before 15.0.0 allows XSS by authenticated users via the content form in the SF...

CVE-2024-38396

An issue was discovered in iTerm2 3.5.x before 3.5.2. Unfiltered use of an escape sequence to report a window title, in combination with the built-in tmux integration feature (enabled by default), allows an attacker to inject arbitrary code into the terminal, a different vulnerability than...

CVE-2023-27636

Progress Sitefinity before 15.0.0 allows XSS by authenticated users via the content form in the SF...

CVE-2024-38396

An issue was discovered in iTerm2 3.5.x before 3.5.2. Unfiltered use of an escape sequence to report a window title, in combination with the built-in tmux integration feature (enabled by default), allows an attacker to inject arbitrary code into the terminal, a different vulnerability than...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: wireguard-go, restic, hey, grpcurl, falco, dynamic-localpv-provisioner, go, gke-gcloud-auth-plugin,...

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: kubernetes, ctop, ingress-nginx-controller, telegraf, grype, zot, nvidia-device-plugin, kubescape, datadog-agent, syft, nerdctl, wolfictl, kaniko, k9s, k3s, kots, skopeo, trivy, zarf, buildkitd, runc, newrelic-infrastructure-agent, cadvisor, docker, skaffold,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: cue, conftest, slsa-verifier, ingress-nginx-controller, tctl, pulumi-language-yaml, envoy-ratelimit, flux-kustomize-controller, gitness, ko, nginx-stable, fuse-overlayfs-snapshotter, mc, kubernetes-csi-external-attacher, falco, calico, hugo, keda, nats, pulumi,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: conftest, argo-workflows, slsa-verifier, terraform-docs, ingress-nginx-controller, newrelic-infra-operator, vault-k8s, flannel, prometheus-operator, tctl, zot, pulumi-language-yaml, envoy-ratelimit, certificate-transparency, nri-kubernetes, kine, osv-scanner, gitness,....

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, kine, osv-scanner, tigera-operator, smarter-device-manager, doppler-kubernetes-operator, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: local-path-provisioner, slsa-verifier, vertical-pod-autoscaler, wait-for-port, ctop, mage, protoc-gen-go-grpc, scorecard, prometheus-bind-exporter, render-template, petname, hey, grpcurl, sbom-scorecard, sops, docker-credential-ecr-login, cni-plugins,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: cue, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, trust-manager, thanos-operator, kube-logging-operator, hugo,.....

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: conftest, argo-workflows, slsa-verifier, terraform-docs, ingress-nginx-controller, newrelic-infra-operator, vault-k8s, flannel, prometheus-operator, tctl, zot, pulumi-language-yaml, envoy-ratelimit, certificate-transparency, nri-kubernetes, kine, osv-scanner, gitness,....

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: teleport, argo-workflows, harbor-registry, terragrunt, flux-source-controller, external-secrets-operator, grafana-mimir, telegraf, prometheus-operator, zot, external-dns, traefik, flux-kustomize-controller, policy-controller, flyte, chezmoi, flux, sops, guac, loki,...

GHSA-M5VV-6R4H-3VJ9 vulnerabilities

Vulnerabilities for packages: teleport, argo-workflows, harbor-registry, terragrunt, flux-source-controller, external-secrets-operator, grafana-mimir, telegraf, prometheus-operator, zot, external-dns, traefik, flux-kustomize-controller, policy-controller, flyte, chezmoi, flux, sops, guac, loki,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: wireguard-go, restic, hey, grpcurl, falco, dynamic-localpv-provisioner, go, gke-gcloud-auth-plugin,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, kine, osv-scanner, tigera-operator, smarter-device-manager, doppler-kubernetes-operator, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...

CVE-2024-24790 vulnerabilities

Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, kubernetes-dns-node-cache, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, istio-operator,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: local-path-provisioner, slsa-verifier, vertical-pod-autoscaler, wait-for-port, ctop, mage, protoc-gen-go-grpc, scorecard, prometheus-bind-exporter, render-template, petname, hey, grpcurl, sbom-scorecard, sops, docker-credential-ecr-login, cni-plugins,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: local-path-provisioner, slsa-verifier, vertical-pod-autoscaler, wait-for-port, ctop, mage, protoc-gen-go-grpc, scorecard, prometheus-bind-exporter, render-template, petname, hey, grpcurl, sbom-scorecard, sops, docker-credential-ecr-login, cni-plugins,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: local-path-provisioner, slsa-verifier, vertical-pod-autoscaler, wait-for-port, ctop, mage, protoc-gen-go-grpc, scorecard, prometheus-bind-exporter, render-template, petname, hey, grpcurl, sbom-scorecard, sops, docker-credential-ecr-login, cni-plugins,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, kubernetes-dns-node-cache, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, istio-operator,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: cue, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, trust-manager, thanos-operator, kube-logging-operator, hugo,.....

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: conftest, gitlab-pages, gatekeeper, slsa-verifier, weaviate, flux-source-controller, telegraf, argo-cd, neuvector-agent, vault-csi-provider, grype, tctl, dynamic-localpv-provisioner, nvidia-device-plugin, pulumi-language-yaml, external-dns, envoy-ratelimit,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: cue, conftest, slsa-verifier, ingress-nginx-controller, tctl, pulumi-language-yaml, envoy-ratelimit, flux-kustomize-controller, gitness, ko, nginx-stable, fuse-overlayfs-snapshotter, mc, kubernetes-csi-external-attacher, falco, calico, hugo, keda, nats, pulumi,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...