Media Library Folder & File Manager Security Vulnerabilities

CVE-2024-5108

A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/student_payment_details4.php. The manipulation of the argument index leads to sql injection. It is possible to launch the...

CVE-2024-5107

A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based School Management System 1.0. This issue affects some unknown processing of the file /view/student_payment_details2.php. The manipulation of the argument index leads to sql injection. The attack may...

CVE-2024-5108 Campcodes Complete Web-Based School Management System student_payment_details4.php sql injection

A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/student_payment_details4.php. The manipulation of the argument index leads to sql injection. It is possible to launch the...

CVE-2024-5107 Campcodes Complete Web-Based School Management System student_payment_details2.php sql injection

A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based School Management System 1.0. This issue affects some unknown processing of the file /view/student_payment_details2.php. The manipulation of the argument index leads to sql injection. The attack may...

CVE-2024-5106

A vulnerability classified as critical was found in Campcodes Complete Web-Based School Management System 1.0. This vulnerability affects unknown code of the file /view/student_payment_details3.php. The manipulation of the argument index leads to sql injection. The attack can be initiated...

CVE-2024-5105

A vulnerability classified as critical has been found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/student_payment_details.php. The manipulation of the argument index leads to sql injection. It is possible to initiate the attack...

CVE-2024-4284

A vulnerability in mintplex-labs/anything-llm allows for a denial of service (DoS) condition through the modification of a user's id attribute to a value of 0. This issue affects the current version of the software, with the latest commit id 57984fa85c31988b2eff429adfc654c46e0c342a. By exploiting.....

Exploit for Code Injection in Gitlab

CVE-2021-22205 Preauth RCE via exiftool on Gitlab CE/EE ...

CVE-2024-5106 Campcodes Complete Web-Based School Management System student_payment_details3.php sql injection

A vulnerability classified as critical was found in Campcodes Complete Web-Based School Management System 1.0. This vulnerability affects unknown code of the file /view/student_payment_details3.php. The manipulation of the argument index leads to sql injection. The attack can be initiated...

CVE-2024-5105 Campcodes Complete Web-Based School Management System student_payment_details.php sql injection

A vulnerability classified as critical has been found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/student_payment_details.php. The manipulation of the argument index leads to sql injection. It is possible to initiate the attack...

CVE-2024-4284 Denial of Service in mintplex-labs/anything-llm

A vulnerability in mintplex-labs/anything-llm allows for a denial of service (DoS) condition through the modification of a user's id attribute to a value of 0. This issue affects the current version of the software, with the latest commit id 57984fa85c31988b2eff429adfc654c46e0c342a. By exploiting.....

CVE-2024-5104

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/student_grade_wise.php. The manipulation of the argument grade leads to sql injection. The attack may be...

CVE-2024-5104 Campcodes Complete Web-Based School Management System student_grade_wise.php sql injection

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/student_grade_wise.php. The manipulation of the argument grade leads to sql injection. The attack may be...

Exploit for Vulnerability in Facade Ignition

CVE-2021-3129 Unauthenticated RCE in Laravel Ignition via...

CVE-2024-5103

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/student_first_payment.php. The manipulation of the argument grade leads to sql injection. The...

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

GHSA-2C7C-3MJ9-8FQH vulnerabilities

Vulnerabilities for packages: terragrunt, traefik, rekor, cloudflared, external-secrets-operator, argo-cd, kots, tkn, flux-source-controller, vexctl, dex, keda, gitsign, tekton-chains, sops, oauth2-proxy, argo-workflows, cosign, cilium-envoy, kyverno, kubescape, spire-server, slsa-verifier, aactl,....

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: skaffold, k3s, loki, kpt, paranoia, k3d, tekton-chains, bom, chartmuseum, up, scorecard, kubescape, slsa-verifier, aactl, ctop, falco, prometheus, tekton-pipelines,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, docker, restic, crossplane, k8sgpt, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, k9s, velero, nodetaint, rqlite, buildkitd, cluster-proportional-autoscaler, gh, gomplate, secrets-store-csi-driver-provider-gcp,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, nri-elasticsearch, hey, nri-mongodb, crossplane, sbom-scorecard, k8sgpt, kubebuilder, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, ytt, paranoia, velero, esbuild, wazero, nodetaint, rqlite, buildkitd,...

GHSA-7WW5-4WQC-M92C vulnerabilities

Vulnerabilities for packages: gitness, zot, fuse-overlayfs-snapshotter, skaffold, kots, flux-source-controller, trivy, k3d, newrelic-infrastructure-agent, flux-helm-controller, helm, eksctl, helm-push, telegraf, up, kubescape, ctop, kubevela, melange, tekton-pipelines, cert-manager, kaniko,...

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: chartmuseum, zot, eksctl, up, flux-helm-controller, helm-operator, k8sgpt, flux-source-controller, kots, cert-manager, istio-operator, kubescape, cilium-cli, trivy, helm-push, zarf,...

GHSA-R53H-JV2G-VPX6 vulnerabilities

Vulnerabilities for packages: chartmuseum, zot, eksctl, up, flux-helm-controller, helm-operator, k8sgpt, flux-source-controller, kots, cert-manager, istio-operator, kubescape, cilium-cli, trivy, helm-push, zarf,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: gitness, hey, nodetaint, rqlite, buildkitd, secrets-store-csi-driver-provider-gcp, cue, gomplate, gitlab-pages, kaf, pulumi-language-java, kubewatch, nvidia-device-plugin, oauth2-proxy, gitlab-shell, ip-masq-agent, terraform-provider-azurerm, src, envoy-ratelimit,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, hey, harbor-registry, stern, crossplane, kubecolor, mods, k8sgpt, kubebuilder, capslock, confluent-common-docker, k9s, paranoia, secrets-store-csi-driver-provider-gcp, buildkitd, step-ca, cue, gomplate, kyverno-policy-reporter-ui, helm-push,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, hey, harbor-registry, stern, crossplane, kubecolor, mods, k8sgpt, kubebuilder, capslock, confluent-common-docker, k9s, paranoia, secrets-store-csi-driver-provider-gcp, buildkitd, step-ca, cue, gomplate, kyverno-policy-reporter-ui, helm-push,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: docker-cli, hey, kubernetes-dashboard-metrics-scraper, sbom-scorecard, nsc, kind, aws-flb-kinesis, gosu, render-template, docker-credential-ecr-login, grpcurl, sonobuoy, petname, k3d, gke-gcloud-auth-plugin, smarter-device-manager, goreleaser, go-md2man, helm-push,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: gitness, hey, k8sgpt, flux-image-automation-controller, nodetaint, rqlite, buildkitd, secrets-store-csi-driver-provider-gcp, cue, gomplate, gitlab-pages, kaf, pulumi-language-java, chartmuseum, kubewatch, nvidia-device-plugin, oauth2-proxy,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: cadvisor, traefik, filebeat, zot, skaffold, k3s, skopeo, kots, k8sgpt, trivy, loki, zarf, k9s, newrelic-infrastructure-agent, buildkitd, gitsign, flux-helm-controller, helm-operator, tekton-chains, helm, eksctl, timoni, bom, guac, kubeflow-katib, telegraf,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, nri-elasticsearch, hey, nri-mongodb, crossplane, sbom-scorecard, k8sgpt, kubebuilder, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, ytt, paranoia, velero, esbuild, wazero, nodetaint, rqlite, buildkitd,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, nri-elasticsearch, hey, nri-mongodb, crossplane, sbom-scorecard, k8sgpt, kubebuilder, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, ytt, paranoia, velero, esbuild, wazero, nodetaint, rqlite, buildkitd,...

GHSA-RCJV-MGP8-QVMR vulnerabilities

Vulnerabilities for packages: ipfs, prometheus, caddy, keda, k3s, up, kubernetes, calico, thanos, cert-manager, gitlab-kas, prometheus-adapter, kubevela,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: cadvisor, nri-elasticsearch, nri-mongodb, restic, kubeadm-controlplane-controller, esbuild, wazero, nri-kafka, kyverno-policy-reporter-ui, gcsfuse, oauth2-proxy, nfs-subdir-external-provisioner, terraform-provider-azurerm, src, kuberay-operator, kubevela,...

CVE-2023-45142 vulnerabilities

Vulnerabilities for packages: ipfs, prometheus, caddy, keda, k3s, up, kubernetes, calico, thanos, cert-manager, gitlab-kas, prometheus-adapter, kubevela,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, crossplane, flux-image-automation-controller, rqlite, buildkitd, step-ca, gomplate, nri-kafka, helm-push, gitlab-pages, buf, kaf, kubewatch, dockerize, oauth2-proxy, gitlab-shell, nfs-subdir-external-provisioner, prometheus-mysqld-exporter,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, docker, restic, crossplane, k8sgpt, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, k9s, velero, nodetaint, rqlite, buildkitd, cluster-proportional-autoscaler, gh, gomplate, secrets-store-csi-driver-provider-gcp,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: cadvisor, nri-elasticsearch, nri-mongodb, restic, kubeadm-controlplane-controller, esbuild, wazero, nri-kafka, kyverno-policy-reporter-ui, gcsfuse, oauth2-proxy, nfs-subdir-external-provisioner, terraform-provider-azurerm, src, kuberay-operator, kubevela,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: gitness, hey, k8sgpt, flux-image-automation-controller, nodetaint, rqlite, buildkitd, secrets-store-csi-driver-provider-gcp, cue, gomplate, kubernetes-ingress-defaultbackend, gitlab-pages, kaf, pulumi-language-java, chartmuseum, kubewatch, nvidia-device-plugin,...

GHSA-C5Q2-7R4C-MV6G vulnerabilities

Vulnerabilities for packages: terragrunt, traefik, rekor, ko, zot, cloudflared, skaffold, rabbitmq-messaging-topology-operator, skopeo, cilium, argo-cd, external-secrets-operator, kots, flux-source-controller, tkn, zarf, dex, keda, step-ca, gitsign, tekton-chains, wolfictl, istio-cni, rook, sops,.....

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, nri-elasticsearch, hey, nri-mongodb, crossplane, sbom-scorecard, k8sgpt, kubebuilder, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, ytt, paranoia, velero, esbuild, wazero, nodetaint, rqlite, buildkitd,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, nri-elasticsearch, hey, nri-mongodb, crossplane, sbom-scorecard, k8sgpt, kubebuilder, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, ytt, paranoia, velero, esbuild, wazero, nodetaint, rqlite, buildkitd,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, nri-elasticsearch, hey, nri-mongodb, crossplane, sbom-scorecard, k8sgpt, kubebuilder, capslock, kubeadm-controlplane-controller, flux-image-automation-controller, ytt, paranoia, velero, esbuild, wazero, nodetaint, rqlite, buildkitd,...

GHSA-8PGV-569H-W5RW vulnerabilities

Vulnerabilities for packages: docker-compose, aws-ebs-csi-driver, keda, containerd, k3s, kubernetes, argo-cd, temporal-server, kine, cert-manager, envoy-ratelimit, kubescape, kubernetes-csi-external-resizer, kyverno, cri-tools, temporal,...

CVE-2024-26147 vulnerabilities

Vulnerabilities for packages: chartmuseum, zot, eksctl, up, flux-helm-controller, helm-operator, k8sgpt, flux-source-controller, kots, cert-manager, istio-operator, kubescape, cilium-cli, trivy, helm-push, zarf,...

CVE-2023-47108 vulnerabilities

Vulnerabilities for packages: docker-compose, aws-ebs-csi-driver, keda, containerd, k3s, kubernetes, argo-cd, temporal-server, kine, cert-manager, envoy-ratelimit, kubescape, kubernetes-csi-external-resizer, kyverno, cri-tools, temporal,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: cadvisor, gitness, hey, harbor-registry, stern, crossplane, kubecolor, mods, k8sgpt, kubebuilder, capslock, confluent-common-docker, k9s, paranoia, secrets-store-csi-driver-provider-gcp, buildkitd, step-ca, cue, gomplate, kyverno-policy-reporter-ui, helm-push,...

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: terragrunt, traefik, rekor, ko, zot, cloudflared, skaffold, rabbitmq-messaging-topology-operator, skopeo, cilium, argo-cd, external-secrets-operator, kots, flux-source-controller, tkn, zarf, dex, keda, step-ca, gitsign, tekton-chains, wolfictl, istio-cni, rook, sops,.....