Lucene search
K

946 matches found

OSV
OSV
added 2025/01/13 12:15 a.m.4 views

CVE-2025-0403

A vulnerability, which was classified as problematic, has been found in 1902756969 reggie 1.0. Affected by this issue is some unknown functionality of the file /user/sendMsg of the component Phone Number Validation Handler. The manipulation of the argument code leads to information disclosure. Th...

6.9CVSS5.4AI score0.00506EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/12/16 5:0 p.m.20 views

CVE-2024-12656 FabulaTech USB over Network IOCT ftusbbus2.sys 0x220448 null pointer dereference

A vulnerability, which was classified as problematic, was found in FabulaTech USB over Network 6.0.6.1. This affects the function 0x220448 in the library ftusbbus2.sys of the component IOCT Handler. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The...

6.8CVSS0.00305EPSS
Exploits1References4
NVD
NVD
added 2024/12/05 12:15 a.m.24 views

CVE-2024-12185

A vulnerability has been found in code-projects Hotel Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Administrator Login Password Handler. The manipulation of the argument Str2 leads to stack-based buffer overflow. An attack has to be...

7.8CVSS0.00347EPSS
Exploits1References5
CVE
CVE
added 2024/12/04 11:31 p.m.55 views

CVE-2024-12185

CVE-2024-12185 affects Code-Projects Hotel Management System 1.0 in the Administrator Login Password Handler. The vulnerability is a stack-based buffer overflow triggered by manipulating the Str2 argument, with a local attack required. Public exploit information has been disclosed. Related adviso...

7.8CVSS5.5AI score0.00347EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2024/12/04 10:0 p.m.52 views

CVE-2024-12181

CVE-2024-12181 affects DedeCMS 5.7.116; the vulnerability is in the SWF File Handler component via the /member/uploads_add.php endpoint, where manipulating the mediatype argument enables cross-site scripting. The issue is exploitable remotely and affects an unknown functionality of that file. Mul...

5.4CVSS3.8AI score0.00402EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/11/30 12:31 p.m.32 views

CVE-2024-12001 code-projects Wazifa System Setting updatesettings.php cross site scripting

A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. Affected is an unknown function of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting. It is possible to...

5.3CVSS0.00424EPSS
Exploits1References5
CVE
CVE
added 2024/11/30 7:31 a.m.64 views

CVE-2024-11996

CVE-2024-11996 affects code-projects Farmacia 1.0. The vulnerability resides in /editar-fornecedor.php, where manipulating the cidade parameter leads to cross-site scripting. It can be exploited remotely, and public exploits have been disclosed. Other parameters may also be affected. Affected com...

5.4CVSS3.8AI score0.00402EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2024/11/28 4:15 p.m.17 views

CVE-2024-11962

A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The exploit has be...

9.8CVSS0.00862EPSS
Exploits1References5
CVE
CVE
added 2024/11/28 3:0 p.m.61 views

CVE-2024-11961

CVE-2024-11961 affects Guangzhou Huayi Intelligent Technology Jeewms 3.7, specifically the preHandle function in src/main/java/com/zzjee/wm/controller/WmOmNoticeHController.java. The issue is argument manipulation leading to information disclosure, with remote exploit potential and public disclos...

7.5CVSS5.1AI score0.00858EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/11/27 5:15 p.m.13 views

CVE-2024-11860

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects an unknown part of the file /rental/ajax.php?action=deletetenant of the component POST Request Handler. The manipulation of the argument id leads to improper authorization...

6.9CVSS0.00828EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2024/11/27 4:31 p.m.17 views

CVE-2024-11860 SourceCodester Best House Rental Management System POST Request ajax.php improper authorization

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects an unknown part of the file /rental/ajax.php?action=deletetenant of the component POST Request Handler. The manipulation of the argument id leads to improper authorization...

6.9CVSS7AI score0.00828EPSS
Exploits1References6
NVD
NVD
added 2024/11/27 12:15 a.m.12 views

CVE-2024-11819

A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgotpasswordprocess.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi...

9.8CVSS0.00628EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/11/26 9:0 p.m.24 views

CVE-2024-11745 Tenda AC8 SetStaticRouteCfg route_static_check stack-based overflow

A vulnerability was found in Tenda AC8 16.03.34.09 and classified as critical. Affected by this issue is the function routestaticcheck of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be launched remotely. The exploi...

9CVSS7.3AI score0.01268EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/11/26 8:31 p.m.33 views

CVE-2024-11744 1000 Projects Portfolio Management System MCA register.php sql injection

A vulnerability has been found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely...

7.5CVSS0.00724EPSS
Exploits1References5
NVD
NVD
added 2024/11/26 8:15 p.m.14 views

CVE-2024-11742

A vulnerability, which was classified as problematic, has been found in SourceCodester Best House Rental Management System 1.0. This issue affects some unknown processing of the file /rental/ajax.php?action=savetenant. The manipulation of the argument lastname/firstname/middlename leads to cross...

5.4CVSS0.00516EPSS
Exploits1References5
CVE
CVE
added 2024/11/25 11:31 p.m.52 views

CVE-2024-11674

CodeAstro Hospital Management System 1.0 is affected by CVE-2024-11674 due to an unrestricted file upload in the /backend/doc/his_doc_update-account.php function when manipulating the doc_dpic parameter. The vulnerability can be triggered remotely, and public exploitation details have been disclo...

8.8CVSS6.5AI score0.00597EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2024/11/20 5:31 p.m.24 views

CVE-2024-11492 115cms appurladd.html cross site scripting

A vulnerability classified as problematic has been found in 115cms up to 20240807. This affects an unknown part of the file /index.php/admin/web/appurladd.html. The manipulation of the argument tid leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS0.00373EPSS
Exploits1References3
NVD
NVD
added 2024/11/20 4:15 p.m.34 views

CVE-2024-11486

A vulnerability, which was classified as problematic, was found in Code4Berry Decoration Management System 1.0. This affects an unknown part of the file /decoration/admin/userpermission.php of the component User Permission Handler. The manipulation leads to permission issues. It is possible to...

5.3CVSS0.00302EPSS
Exploits0References3
NVD
NVD
added 2024/11/20 4:15 p.m.48 views

CVE-2024-11487

A vulnerability has been found in Code4Berry Decoration Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /decoration/admin/btndatesreport.php of the component Between Dates Reports. The manipulation of the argument fromdate/todate leads to sql...

8.8CVSS0.004EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/11/20 4:0 p.m.34 views

CVE-2024-11486 Code4Berry Decoration Management System User Permission user_permission.php

A vulnerability, which was classified as problematic, was found in Code4Berry Decoration Management System 1.0. This affects an unknown part of the file /decoration/admin/userpermission.php of the component User Permission Handler. The manipulation leads to permission issues. It is possible to...

5.3CVSS0.00302EPSS
Exploits0References3
Rows per page
Query Builder