Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

Best Hackers:
{{ te.id }}. {{te.nameDis}}
CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}
Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2024-05-05
High
htmlLawed 1.2.5 Remote Command Execution CVE-2022-35914
d4t4s3c
Med.
Oracuz - Blind Sql Injection
behrouz mansoori
Med.
Kobiz Design - Blind Sql Injection
behrouz mansoori
2024-05-04
Med.
Sandhya Branding Agency - Blind Sql Injection
behrouz mansoori
Med.
Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link Device Config Disclosure
Gjoko 'LiquidWorm' Krstic
High
Microsoft PlayReady Cryptography Weakness
Adam Gowdiak
Med.
Webenlive - Sql Injection
behrouz mansoori
Low
SOPlanning 1.52.00 Cross Site Scripting
liquidsky
Med.
SOPlanning 1.52.00 SQL Injection
liquidsky
Low
SOPlanning 1.52.00 Cross Site Request Forgery
liquidsky
Med.
BitraTech - Sql Injection
behrouz mansoori
Med.
Bigem Teknoloji - Blind Sql Injection
behrouz mansoori
2024-05-01
High
Kemp LoadMaster Unauthenticated Command Injection
Dave Yesland

The latest CVEs

Dorks

2024-05-06
CVE-2024-4521
A vulnerability classified as problematic has been found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/teacher_salary_details2.php. The manipulation of the argument index leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to th...
CVE-2024-4522
A vulnerability classified as problematic was found in Campcodes Complete Web-Based School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view/teacher_salary_details.php. The manipulation of the argument index leads to cross site scripting. The attack can be launched remotely. The exploit has been dis...
CVE-2024-4523
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/teacher_attendance_history1.php. The manipulation of the argument year leads to cross site scripting. The attack may be launched remotely. The explo...
CVE-2024-0904
The Fancy Product Designer WordPress plugin before 6.1.81 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
CVE-2024-3752
The Crelly Slider WordPress plugin through 1.4.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
CVE-2024-3755
The MF Gig Calendar WordPress plugin through 1.2.1 does not sanitise and escape some of its settings, which could allow high privilege users such as editor to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
CVE-2024-3756
The MF Gig Calendar WordPress plugin through 1.2.1 does not have CSRF checks in some places, which could allow attackers to make logged in Contributors and above delete arbitrary events via a CSRF attack
CVE-2024-4524
A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/student_payment_invoice.php. The manipulation of the argument desc leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2024-4525
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /view/student_payment_details4.php. The manipulation of the argument index leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed ...
CVE-2024-4526
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /view/student_payment_details3.php. The manipulation of the argument month leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to...
2024-05-05
Med.
Oracuz - Blind Sql Injection
"Design by Oracuz"
 behrouz mansoori
Med.
Kobiz Design - Blind Sql Injection
"Desing by Kobiz Design Co"
 behrouz mansoori
2024-05-04
Med.
Sandhya Branding Agency - Blind Sql Injection
"Powered by : Sandhya Branding Agency"
 behrouz mansoori
Med.
Webenlive - Sql Injection
"Design: Webenlive"
 behrouz mansoori
Med.
BitraTech - Sql Injection
"Powered By BitraTech"
 behrouz mansoori
Quick goto:

Bugtraq The latest CVEs Dorks
Search

Are you looking CVE for some product?

Top Vendors:

Apple Microsoft Google Oracle Apache IBM Red Hat HP Adobe Mozilla
 
Full List of Vendors

Top Products:

Linux Kernel Mac OS X Windows XP Windows 10 Flash Player Adobe Reader PHP JRE JDK
Wordpress Joomla Chrome IE Firefox Safari HTTPD Tomcat Nginx
 

Full List of Products

Top CWE:

CWE-89 (SQL Injection) CWE-79 (XSS) CWE-119 (Buffer Overflow) CWE-22 (Path Traversal)
 
Check CWE Dictionary

Donate:
is an open project developed and moderated fully by one independent person.
Help develop the project and make
Donations
Copyright 2024, cxsecurity.com

 

Back to Top