Vulnerabilities (CVE)

Total 24045 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-19047 1 Mpdf Project 1 Mpdf 2024-06-11 7.5 HIGH 10.0 CRITICAL
mPDF through 7.1.6, if deployed as a web application that accepts arbitrary HTML, allows SSRF, as demonstrated by a '<img src="http://192.168' substring that triggers a call to getImage in Image/ImageProcessor.php. NOTE: the software maintainer disputes this, stating "If you allow users to pass HTML without sanitising it, you're asking for trouble.
CVE-2024-5733 1 Online Discussion Forum Project 1 Online Discussion Forum 2024-06-11 7.5 HIGH 9.8 CRITICAL
A vulnerability was found in itsourcecode Online Discussion Forum 1.0. It has been rated as critical. This issue affects some unknown processing of the file register_me.php. The manipulation of the argument eaddress leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-267407.
CVE-2024-36673 1 Pharmacy\/medical Store Point Of Sale System Project 1 Pharmacy\/medical Store Point Of Sale System 2024-06-11 N/A 9.8 CRITICAL
Sourcecodester Pharmacy/Medical Store Point of Sale System 1.0 is vulnerable SQL Injection via login.php. This vulnerability stems from inadequate validation of user inputs for the email and password parameters, allowing attackers to inject malicious SQL queries.
CVE-2024-36779 1 Stock Management System Project 1 Stock Management System 2024-06-11 N/A 9.8 CRITICAL
Sourcecodester Stock Management System v1.0 is vulnerable to SQL Injection via editCategories.php.
CVE-2024-5675 1 Summar 1 Mentor 2024-06-11 N/A 9.8 CRITICAL
Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal, affecting version 3.83.35. This vulnerability could allow an attacker to execute arbitrary code, by injecting a malicious payload into the “ViewState” field.
CVE-2024-5732 1 Clashforwindows 1 Clash 2024-06-11 7.5 HIGH 9.8 CRITICAL
A vulnerability was found in Clash up to 0.20.1 on Windows. It has been declared as critical. This vulnerability affects unknown code of the component Proxy Port. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. It is recommended to change the configuration settings. VDB-267406 is the identifier assigned to this vulnerability.
CVE-2024-4177 1 Bitdefender 1 Gravityzone 2024-06-11 N/A 9.8 CRITICAL
A host whitelist parser issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console versions before 6.38.1-2 that are running only on premise.
CVE-2024-36393 1 Sysaid 1 Sysaid 2024-06-11 N/A 9.8 CRITICAL
SysAid - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVE-2024-36394 1 Sysaid 1 Sysaid 2024-06-11 N/A 9.8 CRITICAL
SysAid - CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2024-5526 1 Grafana 1 Oncall 2024-06-11 N/A 9.1 CRITICAL
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery (SSRF) vulnerability in the webhook functionallity. This issue was fixed in version 1.5.2
CVE-2024-5636 1 Bakery Online Ordering System Project 1 Bakery Online Ordering System 2024-06-11 6.5 MEDIUM 9.8 CRITICAL
A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file report/index.php. The manipulation of the argument procduct leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-267092.
CVE-2024-5262 1 Projectdiscovery 1 Interactsh 2024-06-11 N/A 9.8 CRITICAL
Files or Directories Accessible to External Parties vulnerability in smb server in ProjectDiscovery Interactsh allows remote attackers to read/write any files in the directory and subdirectories of where the victim runs interactsh-server via anonymous login.
CVE-2024-4295 1 Icegram 1 Email Subscribers \& Newsletters 2024-06-11 N/A 9.8 CRITICAL
The Email Subscribers by Icegram Express plugin for WordPress is vulnerable to SQL Injection via the ‘hash’ parameter in all versions up to, and including, 5.7.20 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
CVE-2024-4219 1 Beyondtrust 1 Beyondinsight 2024-06-11 N/A 9.1 CRITICAL
Prior to 23.2, it is possible to perform arbitrary Server-Side requests via HTTP-based connectors within BeyondInsight, resulting in a server-side request forgery vulnerability.
CVE-2024-36121 1 Netty 1 Netty-incubator-codec-ohttp 2024-06-11 N/A 9.1 CRITICAL
netty-incubator-codec-ohttp is the OHTTP implementation for netty. BoringSSLAEADContext keeps track of how many OHTTP responses have been sent and uses this sequence number to calculate the appropriate nonce to use with the encryption algorithm. Unfortunately, two separate errors combine which would allow an attacker to cause the sequence number to overflow and thus the nonce to repeat.
CVE-2024-36675 1 Lylme 1 Lylme Spage 2024-06-11 N/A 9.1 CRITICAL
LyLme_spage v1.9.5 is vulnerable to Server-Side Request Forgery (SSRF) via the get_head function.
CVE-2024-5635 1 Bakery Online Ordering System Project 1 Bakery Online Ordering System 2024-06-11 6.5 MEDIUM 9.8 CRITICAL
A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument txtsearch leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-267091.
CVE-2021-45955 1 Thekelleys 1 Dnsmasq 2024-06-11 7.5 HIGH 9.8 CRITICAL
Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuzz_rfc1035.c) because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge." However, a contributor states that a security patch (mentioned in 016162.html) is needed
CVE-2024-28103 1 Rubyonrails 1 Rails 2024-06-11 N/A 9.8 CRITICAL
Action Pack is a framework for handling and responding to web requests. Since 6.1.0, the application configurable Permissions-Policy is only served on responses with an HTML related Content-Type. This vulnerability is fixed in 6.1.7.8, 7.0.8.2, and 7.1.3.3.
CVE-2024-21326 1 Microsoft 1 Edge Chromium 2024-06-11 N/A 9.6 CRITICAL
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability