Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-55565 |
Description: nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.
CVSS: LOW (0.0) EPSS Score: 0.05%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-55564 |
Description: The POSIX::2008 package before 0.24 for Perl has a potential _execve50c env buffer overflow.
CVSS: LOW (0.0) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54938 |
Description: A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/uploads.
CVSS: LOW (0.0) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54937 |
Description: A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/assets.
CVSS: LOW (0.0) EPSS Score: 0.05%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54936 |
Description: A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the my_message parameter.
CVSS: LOW (0.0) EPSS Score: 0.05%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54935 |
Description: A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message_teacher_to_student.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the my_message parameter.
CVSS: LOW (0.0) EPSS Score: 0.05%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54934 |
Description: Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_class.php.
CVSS: LOW (0.0) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54933 |
Description: Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_content.php.
CVSS: LOW (0.0) EPSS Score: 0.05%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54932 |
Description: Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_department.php.
CVSS: LOW (0.0) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54931 |
Description: A SQL Injection was found in /admin/delete_event.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter.
CVSS: LOW (0.0) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|