For providers | HunCERT group

14 Nov 2024

Riasztás

NA - CVE-2024-4311 - zenml-io/zenml version 0.56.4 is vulnerable to...

zenml-io/zenml version 0.56.4 is vulnerable to an account takeover due to the lack of rate-limiting in the password change function. An attacker can brute-force the current password in the...

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-4343 - A Python command injection vulnerability exists...

A Python command injection vulnerability exists in the `SagemakerLLM` class's `complete()` method within `./private_gpt/components/llm/custom/sagemaker.py` of the imartinez/privategpt...

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50823 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management System Project 1.0 via the username and password parameters.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50824 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/class.php in kashipara E-learning Management System Project 1.0 via the class_name parameter.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50825 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/school_year.php in kashipara E-learning Management System Project 1.0 via the school_year parameter.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50826 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/add_content.php in kashipara E-learning Management System Project 1.0 via the title and content parameters.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50827 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/add_subject.php in kashipara E-learning Management System Project 1.0 via the subject_code parameter.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50828 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/edit_department.php in kashipara E-learning Management System Project 1.0 via the d parameter.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50829 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/edit_subject.php in kashipara E-learning Management System Project 1.0 via the unit parameter.

security-database.com

14 Nov 2024

Riasztás

NA - CVE-2024-50830 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via the date_start, date_end, and title parameters.

security-database.com

Phone:	+36 1 279 6222 9am to 4pm
E-mail:	@email
Address:	H-1111 Budapest, Kende u. 13-17.