Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-4519 |
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /view/teacher_salary_details3.php. The manipulation of the argument month leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263123. Published: May 06, 2024; 12:15:07 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4518 |
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /view/teacher_salary_invoice.php. The manipulation of the argument desc leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-263122 is the identifier assigned to this vulnerability. Published: May 06, 2024; 12:15:07 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4517 |
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /view/teacher_salary_invoice1.php. The manipulation of the argument date leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263121 was assigned to this vulnerability. Published: May 05, 2024; 11:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4516 |
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /view/timetable.php. The manipulation of the argument grade leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263120. Published: May 05, 2024; 11:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34538 |
Mateso PasswordSafe through 8.13.9.26689 has Weak Cryptography. Published: May 05, 2024; 11:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20064 |
In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08572601; Issue ID: MSV-1229. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20060 |
In da, there is a possible escalation of privilege due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541749; Issue ID: ALPS08541754. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20059 |
In da, there is a possible escalation of privilege due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541749; Issue ID: ALPS08541749. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20058 |
In keyInstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08580204; Issue ID: ALPS08580204. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20057 |
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08587881; Issue ID: ALPS08587881. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20056 |
In preloader, there is a possible escalation of privilege due to an insecure default value. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08528185; Issue ID: ALPS08528185. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-20021 |
In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-32873 |
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08583919; Issue ID: ALPS08304227. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-32871 |
In DA, there is a possible permission bypass due to an incorrect status check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08355514; Issue ID: ALPS08355514. Published: May 05, 2024; 11:15:09 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4515 |
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /view/timetable_grade_wise.php. The manipulation of the argument grade leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263119. Published: May 05, 2024; 10:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4514 |
A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/timetable_insert_form.php. The manipulation of the argument grade leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-263118 is the identifier assigned to this vulnerability. Published: May 05, 2024; 10:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4513 |
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. This issue affects some unknown processing of the file /view/timetable_update_form.php. The manipulation of the argument grade leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263117 was assigned to this vulnerability. Published: May 05, 2024; 10:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4512 |
A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeetype/txtappointment leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263116. Published: May 05, 2024; 10:15:06 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4511 |
A vulnerability classified as critical has been found in Shanghai Sunfull Automation BACnet Server HMI1002-ARM 2.0.4. This affects an unknown part of the component Message Handler. The manipulation leads to buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263115. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: May 05, 2024; 9:15:48 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4510 |
A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/networkConfig/ArpTable/arp_add_commit.php. The manipulation of the argument text_ip_addr/text_mac_addr leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-263114 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: May 05, 2024; 9:15:48 PM -0400 |
V3.x:(not available) V2.0:(not available) |