Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-35048
An issue in SurveyKing v1.3.1 allows malicious users to execute a session replay attack after a user changes their password.
NA
CVE-2024-35049
SurveyKing v1.3.1 exists to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590.
NA
CVE-2024-35050
An issue in SurveyKing v1.3.1 allows malicious users to escalate privileges via re-using the session ID of a user that was deleted by an Admin.
NA
CVE-2024-35056
NASA AIT-Core v2.5.2 exists to contain multiple SQL injection vulnerabilities via the query_packets and insert functions.
NA
CVE-2024-35057
An issue in NASA AIT-Core v2.5.2 allows malicious users to execute arbitrary code via a crafted packet.
NA
CVE-2024-33406
SQL injection vulnerability in /model/delete_student_grade_subject.php in campcodes Complete Web-Based School Management System 1.0 allows malicious user to execute arbitrary SQL commands via the index parameter.
NA
CVE-2024-33407
SQL injection vulnerability in /model/delete_record.php in campcodes Complete Web-Based School Management System 1.0 allows malicious user to execute arbitrary SQL commands via the id parameter.
NA
CVE-2024-33408
A SQL injection vulnerability in /model/get_classroom.php in campcodes Complete Web-Based School Management System 1.0 allows malicious user to execute arbitrary SQL commands via the id parameter.
NA
CVE-2024-33409
SQL injection vulnerability in index.php in campcodes Complete Web-Based School Management System 1.0 allows malicious user to execute arbitrary SQL commands via the name parameter.
NA
CVE-2024-3341
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'aux_gmaps' shortcode in all versions up to, and including, 2.15.5 due to insufficient input sanitization and output escaping on use...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »