CVE-2026-10624 SourceCodester Human Resource Management Employee View detailview.php resource injection

A vulnerability has been found in SourceCodester Human Resource Management 1.0. Affected by this vulnerability is an unknown functionality of the file /detailview.php of the component Employee View Page. Such manipulation of the argument employeeid leads to improper control of resource identifier...

CVE-2020-10624

ControlEdge PLC R130.2, R140, R150, and R151 and RTU R101, R110, R140, R150, and R151 exposes a session token on the network...

CVE-2025-10624

creationtimestamp| type| source ---|---|--- 2025-09-18 05:16:04+00:00| seen| https://gist.github.com/Darkcrai86/d5de8e4f324101d1c157947c2619496f...

CVE-2025-10624

CVE-2025-10624 affects PHPGurukul User Management System 1.0. The vulnerability lies in the login.php file where manipulating the emailid parameter enables SQL injection—remotely exploitable; public exploit referenced. Severity varies by source, but core sources describe potential exposure of dat...

CVE-2024-10624

A Regular Expression Denial of Service ReDoS vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit 98cbcae. The vulnerability arises from the use of a regular expression ^?:\snow\s?:-\s\d+\sdmhs??\s$ to process user input...

ace-step (=0.1.0), aiconfigurator (>=0.1.0 <=0.2.0) +207 more potentially affected by CVE-2024-10624 via gradio (>=4.38.1 <=5.25.2)

gradio PYPI version =4.38.1, =0.1.0, =0.0.4, =0.1.1, =0.1.0, =25.3.1, =0.0.1, =0.1.0, =0.1.0, =0.1.1, =0.1.0a20, =1.1.1, =25.3.1, =25.3.8 - cleaners =0.1.0 and more Source cves: CVE-2024-10624 Source advisory: SNYK:PYTHON-GRADIO-9487018...

aiconfigurator (>=0.1.0 <=0.2.0), alphai (>=0.0.4 <=0.0.7) +172 more potentially affected by CVE-2024-10624 via gradio (>=4.38.1 <=4.8.0)

gradio PYPI version =4.38.1, =0.1.0, =0.0.4, =0.1.0, =25.3.1, =0.0.1, =0.1.0, =0.1.0, =0.1.1, =0.1.0a20, =1.1.1, =25.3.1, =0.0.1.dev1, =0.2.11, =0.2.96 and more Source cves: CVE-2024-10624 Source advisory: OSV:GHSA-RVGH-PR46-X7GG...

CVE-2024-10624

A Regular Expression Denial of Service ReDoS vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit 98cbcae. The vulnerability arises from the use of a regular expression ^?:\snow\s?:-\s\d+\sdmhs??\s$ to process user input...

CVE-2024-10624

CVE-2024-10624 affects the gradio-app/gradio repository, vulnerable in the gr.Datetime component due to a vulnerable regex: ^(?:\snow\s (?:-\s*(\d+)\s*([dmhs]))?)?\s*$ that can cause polynomial-time matching in Python’s regex engine. The affected commit is 98cbcae. An attacker can trigger a DoS b...

CVE-2024-10624 Regular Expression Denial of Service (ReDoS) in gradio-app/gradio

A Regular Expression Denial of Service ReDoS vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit 98cbcae. The vulnerability arises from the use of a regular expression ^?:\snow\s?:-\s\d+\sdmhs??\s$ to process user input...

CVE-2024-10624 Regular Expression Denial of Service (ReDoS) in gradio-app/gradio

A Regular Expression Denial of Service ReDoS vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit 98cbcae. The vulnerability arises from the use of a regular expression ^?:\snow\s?:-\s\d+\sdmhs??\s$ to process user input...

CVE-2020-10624

ControlEdge PLC R130.2, R140, R150, and R151 and RTU R101, R110, R140, R150, and R151 exposes a session token on the network...

CVE-2020-10624

ControlEdge PLC R130.2, R140, R150, and R151 and RTU R101, R110, R140, R150, and R151 exposes a session token on the network...

CVE-2020-10624

CVE-2020-10624 affects Honeywell ControlEdge PLC (R130.2, R140, R150, R151) and ControlEdge RTU (R101, R110, R140, R150, R151). The vulnerability leads to a session token being exposed on the network due to cleartext transmission of sensitive information. NVD CVSS data indicates an impact: confid...

CVE-2019-10624

creationtimestamp| type| source ---|---|--- 2020-04-16 16:32:06+00:00| seen| https://t.me/cibsecurity/11329...

CVE-2019-10624

While handling the vendor command there is an integer truncation issue that could yield a buffer overflow due to int data type copied to u8 data type in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU,...

CVE-2019-10624

CVE-2019-10624 describes an integer truncation in Snapdragon firmware that could lead to a buffer overflow when handling the vendor command, caused by copying an int to an 8-bit type across multiple Snapdragon platforms (e.g., APQ8096AU, MSM8996AU, QCA6574AU, QCN7605, Rennell, SC8180X, SDM710, SD...

Change Healthcare PeerVue Web Server

1. EXECUTIVE SUMMARY CVSS v3 4.3 ATTENTION: Exploitable on an adjacent network/low skill level to exploit Vendor: Change Healthcare Equipment: PeerVue Web Server Vulnerability: Information Exposure Through an Error Message 2. RISK EVALUATION Successful exploitation of this vulnerability could...

CVE-2018-10624

creationtimestamp| type| source ---|---|--- 2018-08-02 08:29:16+00:00| seen| https://t.me/SecLabNews/2807...

CVE-2018-10624 Johnson Controls Metasys and BCPro Generation of Error Message Containing Sensitive Information

In Johnson Controls Metasys System Versions 8.0 and prior and BCPro BCM all versions prior to 3.0.2, this vulnerability results from improper error handling in HTTP-based communications with the server, which could allow an attacker to obtain technical information...