Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2025
CVE-2024-57556
Cross Site Scripting vulnerability in nbubna store v.2.14.2 and before allows a remote attacker to execute arbitrary code via the store.deep.js component
CVSS Score
6.1
EPSS Score
0.001
Published
2025-01-23
CVE-2024-53923
An issue was discovered in Centreon Web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x before 23.10.19, 23.04.x before 23.04.24. A user with high privileges is able to achieve SQL injection in the form to upload media.
CVSS Score
9.1
EPSS Score
0.0
Published
2025-01-23
CVE-2024-55192
OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component OpenImageIO_v3_1_0::farmhash::inlined::Fetch64(char const*).
CVSS Score
9.8
EPSS Score
0.001
Published
2025-01-23
CVE-2024-55193
OpenImageIO v3.1.0.0dev was discovered to contain a segmentation violation via the component /OpenImageIO/string_view.h.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-01-23
CVE-2024-55194
OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component /OpenImageIO/fmath.h.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-01-23
CVE-2024-57326
A Reflected Cross-Site Scripting (XSS) vulnerability exists in the search.php file of the Online Pizza Delivery System 1.0. The vulnerability allows an attacker to execute arbitrary JavaScript code in the browser via unsanitized input passed through the search parameter.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-01-23
CVE-2024-57328
A SQL Injection vulnerability exists in the login form of Online Food Ordering System v1.0. The vulnerability arises because the input fields username and password are not properly sanitized, allowing attackers to inject malicious SQL queries to bypass authentication and gain unauthorized access.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-01-23
CVE-2024-50664
gpac 2.4 contains a heap-buffer-overflow at isomedia/sample_descs.c:1799 in gf_isom_new_mpha_description in gpac/MP4Box.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-01-23
CVE-2024-50665
gpac 2.4 contains a SEGV at src/isomedia/drm_sample.c:1562:96 in isom_cenc_get_sai_by_saiz_saio in MP4Box.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-01-23
CVE-2023-46400
KWHotel 0.47 is vulnerable to CSV Formula Injection in the add guest function.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-01-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved