CVE-2024-5093 SourceCodester Best House Rental Management System login.php sql injection
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The...
CVE-2024-34083 STARTTLS unencrypted commands injection
aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a man-in-the-middle...
namedawn.com Cross Site Scripting vulnerability OBB-3928554
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
muncieanna.com Cross Site Scripting vulnerability OBB-3928552
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
audio.ohr.edu Cross Site Scripting vulnerability OBB-3928550
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
barefootonline.com Cross Site Scripting vulnerability OBB-3928548
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
krihm.org Cross Site Scripting vulnerability OBB-3928547
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
7.5AI Score
0.001EPSS
7.5AI Score
0.001EPSS
7.5AI Score
CVE-2024-27304 vulnerabilities
Vulnerabilities for packages: keda, k3s, caddy, trillian, argo-workflows, kube-bench, src, step-ca, telegraf, temporal-server, kine, vault, amass, kots, spicedb,...
9.7AI Score
0.0004EPSS
6AI Score
0.001EPSS
7.8AI Score
0.001EPSS
0.002EPSS
6.5AI Score
0.0004EPSS
GHSA-232P-VWFF-86MP vulnerabilities
Vulnerabilities for packages: up, melange, bom, ko, apko, ctop,...
7.5AI Score
7.5AI Score
Vulnerabilities for packages: cluster-autoscaler, aws-efs-csi-driver, kubeflow-pipelines, argo-cd,...
8.9AI Score
0.001EPSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
Vulnerabilities for packages: cluster-autoscaler, kubernetes, spark-operator, aws-ebs-csi-driver, ip-masq-agent, kubeflow-pipelines, local-static-provisioner, kubernetes-csi-driver-hostpath, kubernetes-dns-node-cache, calico, node-feature-discovery,...
3.8AI Score
0.0004EPSS
CVE-2024-26130 vulnerabilities
Vulnerabilities for packages: az, py3-cryptography, py3-cassandra-medusa, kubeflow-pipelines,...
7.7AI Score
0.0004EPSS
7.5AI Score
0.001EPSS
7.5AI Score
7.5AI Score
0.001EPSS
7.5AI Score
7.2AI Score
0.0005EPSS
7.5AI Score
GHSA-X84C-P2G9-RQV9 vulnerabilities
Vulnerabilities for packages: docker, grype, helm-push, syft, neuvector-scanner, melange, cri-tools, tekton-pipelines, k3d, docker-compose, buf, kaniko, wolfictl, prometheus, dagger, policy-controller,...
7.5AI Score
7.5AI Score
7.1AI Score
0.0004EPSS
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: flux-helm-controller, trivy, zot, istio-operator, up, flux-source-controller, k9s, eksctl, cilium-cli, k8sgpt, helm-operator, chartmuseum, kots, cert-manager, helm-push, zarf,...
6.5AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
8.9AI Score
0.0005EPSS
6.8AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
5.5AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
0.001EPSS
6.1AI Score
0.001EPSS
7.5AI Score
GHSA-P782-XGP4-8HR8 vulnerabilities
Vulnerabilities for packages: kind, grpcurl, dynamic-localpv-provisioner, k3d,...
7.5AI Score