U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

NVD Dashboard

CVEs Received and Processed

CVEs Received and Processed

Please Wait

Time Period New CVEs Received by NVD New CVEs Analyzed by NVD Modified CVEs Received by NVD Modified CVEs Re-analyzed by NVD
Today {{data.count}}
This Week {{data.count}}
This Month {{data.count}}
Last Month {{data.count}}
This Year {{data.count}}

CVE Status Count

Please Wait

CVE Status Count

{{data.name}} {{data.count}}

CVSS Score Spread

Please Wait

CVSS V3 Score Distribution

Severity Number of Vulns
{{data.name}} {{data.count}}

CVSS V2 Score Distribution

Severity Number of Vulns
{{data.name}} {{data.count}}


For information on how to the cite the NVD, including the database's Digital Object Identifier (DOI), please consult NIST's Public Data Repository.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity
  • CVE-2024-49411 - Path Traversal in ThemeCenter prior to SMR Dec-2024 Release 1 allows physical attackers to copy apk files to arbitrary path with ThemeCenter privilege.
    Published: December 03, 2024; 1:15:09 AM -0500

    V3.1: 4.6 MEDIUM

  • CVE-2024-3413 - A vulnerability has been found in SourceCodester Human Resource Information System 1.0 and classified as critical. This vulnerability affects unknown code of the file initialize/login_process.php. The manipulation of the argument hr_email/hr_passw... read CVE-2024-3413
    Published: April 06, 2024; 3:15:07 PM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2024-3365 - A vulnerability was found in SourceCodester Online Library System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file admin/users/controller.php. The manipulation of the argument user_name leads to cross s... read CVE-2024-3365
    Published: April 06, 2024; 6:15:07 AM -0400

    V3.1: 5.4 MEDIUM

  • CVE-2024-3364 - A vulnerability was found in SourceCodester Online Library System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/books/index.php. The manipulation of the argument id leads to cross site scriptin... read CVE-2024-3364
    Published: April 06, 2024; 5:15:08 AM -0400

    V3.1: 5.4 MEDIUM

  • CVE-2024-3362 - A vulnerability was found in SourceCodester Online Library System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/books/controller.php. The manipulation of the argument IBSN leads to sql injec... read CVE-2024-3362
    Published: April 06, 2024; 3:15:07 AM -0400

    V3.1: 8.8 HIGH

  • CVE-2024-3361 - A vulnerability has been found in SourceCodester Online Library System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/books/deweydecimal.php. The manipulation of the argument category l... read CVE-2024-3361
    Published: April 06, 2024; 2:15:08 AM -0400

    V3.1: 8.8 HIGH

  • CVE-2024-3360 - A vulnerability, which was classified as critical, was found in SourceCodester Online Library System 1.0. Affected is an unknown function of the file admin/books/index.php. The manipulation of the argument id leads to sql injection. It is possible... read CVE-2024-3360
    Published: April 06, 2024; 1:15:07 AM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2024-3359 - A vulnerability, which was classified as critical, has been found in SourceCodester Online Library System 1.0. This issue affects some unknown processing of the file admin/login.php. The manipulation of the argument user_email leads to sql injecti... read CVE-2024-3359
    Published: April 06, 2024; 12:15:12 AM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2024-3253 - A vulnerability classified as critical was found in SourceCodester Internship Portal Management System 1.0. This vulnerability affects unknown code of the file admin/add_admin.php. The manipulation of the argument name/username/password leads to s... read CVE-2024-3253
    Published: April 03, 2024; 7:15:46 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3254 - A vulnerability, which was classified as critical, has been found in SourceCodester Internship Portal Management System 1.0. This issue affects some unknown processing of the file admin/edit_admin.php. The manipulation of the argument admin_id lea... read CVE-2024-3254
    Published: April 03, 2024; 8:15:14 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3255 - A vulnerability, which was classified as critical, was found in SourceCodester Internship Portal Management System 1.0. Affected is an unknown function of the file admin/edit_admin_query.php. The manipulation of the argument username/password/name... read CVE-2024-3255
    Published: April 03, 2024; 8:15:15 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3256 - A vulnerability has been found in SourceCodester Internship Portal Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/edit_activity.php. The manipulation of the argument a... read CVE-2024-3256
    Published: April 03, 2024; 9:16:02 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3257 - A vulnerability was found in SourceCodester Internship Portal Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/edit_activity_query.php. The manipulation of the argument title/... read CVE-2024-3257
    Published: April 03, 2024; 9:16:03 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3259 - A vulnerability was found in SourceCodester Internship Portal Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file admin/delete_activity.php. The manipulation of the argument activity_id lead... read CVE-2024-3259
    Published: April 03, 2024; 10:15:18 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3258 - A vulnerability was found in SourceCodester Internship Portal Management System 1.0. It has been classified as critical. This affects an unknown part of the file admin/add_activity.php. The manipulation of the argument title/description/start/end ... read CVE-2024-3258
    Published: April 03, 2024; 9:16:03 AM -0400

    V3.1: 7.2 HIGH

  • CVE-2024-3252 - A vulnerability classified as critical has been found in SourceCodester Internship Portal Management System 1.0. This affects an unknown part of the file admin/check_admin.php. The manipulation of the argument username/password leads to sql inject... read CVE-2024-3252
    Published: April 03, 2024; 6:15:09 AM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2024-29000 - The SolarWinds Platform was determined to be affected by a reflected cross-site scripting vulnerability affecting the web console. A high-privileged user and user interaction is required to exploit this vulnerability.
    Published: May 20, 2024; 3:15:08 PM -0400

    V3.1: 4.8 MEDIUM

  • CVE-2024-28075 - The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an authenticated user to abuse SolarWinds service resulting in remote code execution. We thank Trend Micro Zero Day Initiative... read CVE-2024-28075
    Published: May 14, 2024; 11:13:53 AM -0400

    V3.1: 8.8 HIGH

  • CVE-2024-23473 - The SolarWinds Access Rights Manager was found to contain a hard-coded credential authentication bypass vulnerability. If exploited, this vulnerability allows access to the RabbitMQ management console. We thank Trend Micro Zero Day Initiative (Z... read CVE-2024-23473
    Published: May 14, 2024; 10:59:29 AM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2024-29003 - The SolarWinds Platform was susceptible to a XSS vulnerability that affects the maps section of the user interface. This vulnerability requires authentication and requires user interaction.
    Published: April 18, 2024; 6:15:08 AM -0400

    V3.1: 5.4 MEDIUM