2 matches found
CVE-2024-36568
Sourcecodester Gas Agency Management System v1.0 is vulnerable to SQL Injection via /gasmark/editbrand.php?id=. The root cause is unsanitized input in the id parameter, enabling attackers to manipulate queries. This vulnerability is rated critical (CVSS 3.1: 9.8) with potential impact on confiden...
CVE-2024-35140
CVE-2024-35140 affects IBM Security Verify Access Docker versions 10.0.0–10.0.6. The root cause is improper certificate validation that could allow a local user to escalate privileges. The IBM PSIRT and related advisories indicate a fix released with 10.0.7 (and ISVA 10.0.7-ISS-ISVA-FP0000 for 10...