CVE-2024-35373 |
Description: Mocodo Mocodo Online 4.2.6 and below is vulnerable to Remote Code Execution via /web/rewrite.php.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35362 |
Description: Ecshop 3.6 is vulnerable to Cross Site Scripting (XSS) via ecshop/article_cat.php.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35361 |
Description: MTab Bookmark v1.9.5 has an SQL injection vulnerability in /LinkStore/getIcon. An attacker can execute arbitrary SQL statements through this vulnerability without requiring any user rights.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35359 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=view_item. Manipulating the argument id can result in SQL injection.
EPSS Score: 0.13%
February 14th, 2025 (5 months ago)
|
CVE-2024-35358 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=view_category. Manipulating the argument id can result in SQL injection.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35357 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=delete_item. Manipulating the argument id can result in SQL injection.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35356 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=save_item. Manipulating the argument id can result in SQL injection.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35355 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=delete_category. Manipulating the argument id can result in SQL injection.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35354 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=save_category. Manipulating the argument id can result in SQL injection.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
CVE-2024-35353 |
Description: A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Users.php?f=save. Manipulating the argument id can result in improper authorization.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|