| 2024-05-01 | Travel-Manager-OTMSP-1.0 Multiple SQLi | Published |
| 2024-05-01 | Doctor Appointment Management System 1.0 Cross Site Scripting | Published |
| 2024-05-01 | Kemp LoadMaster Unauthenticated Command Injection | Published |
| 2024-04-27 | Fvgfl - SQL Injection vulnerability | Published |
| 2024-04-27 | GitLens Git Local Configuration Execution | Published |
| 2024-04-27 | Positron Broadcast Signal Processor TRA7005 v1.20 Authentication Bypass | Published |
| 2024-04-25 | Nginx 1.25.5 Host Header Validation | Published |
| 2024-04-25 | Apache Solr Backup/Restore API Remote Code Execution | Published |
| 2024-04-25 | Hikvision Camera - Remote command execution | Published |
| 2024-04-25 | Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution | Published |
| 2024-04-25 | Palo Alto PAN-OS Command Execution / Arbitrary File Creation | Published |
| 2024-04-25 | Relate Learning And Teaching system Version before 2024.1 SSTI(Markup Sandbox function) lead to RCE | Published |
| 2024-04-25 | FortiNet FortiClient EMS 7.2.2 / 7.0.10 SQL Injection / Remote Code Execution | Published |
| 2024-04-22 | LRMS-PHP-by-oretnom23-v1.0 hat-trick | Published |
| 2024-04-22 | Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Authentication Bypass | Published |
| 2024-04-21 | Wordpress Plugin Alemha Watermarker 1.3.1 Stored Cross-Site Scripting (XSS) | Published |
| 2024-04-21 | Flowise 1.6.5 Authentication Bypass | Published |
| 2024-04-21 | Relate Learning And Teaching system Version before 2024.1 SSTI(Page Sandbox function) lead to RCE | Published |
| 2024-04-21 | Solar-Log Base 2000- Broken Access Control | Published |
| 2024-04-21 | Relate Learning And Teaching system Version before 2024.1 Stored XSS | Published |
| 2024-04-21 | North Wales - Sql Injection | Published |
| 2024-04-21 | Elber Wayber Analog/Digital Audio STL 4.00 Insecure Direct Object Reference | Published |
| 2024-04-21 | Elber Wayber Analog/Digital Audio STL 4.00 Authentication Bypass | Published |
| 2024-04-21 | Elber ESE DVB-S/S2 Satellite Receiver 1.5.x Insecure Direct Object Reference | Published |
| 2024-04-21 | WBCE CMS Version 1.6.1 Remote Command Execution (Authenticated) | Published |
| 2024-04-16 | Centreon 23.10-1.el8 SQL Injection | Published |
| 2024-04-16 | Backdoor.Win32.Dumador.c / Remote Stack Buffer Overflow (SEH) | Published |
| 2024-04-16 | Kruxton-1.0-FileUpload-RCE | Published |
| 2024-04-16 | CrushFTP Remote Code Execution | Published |
| 2024-04-16 | BMC Compuware iStrobe Web 20.13 Pre-auth RCE | Published |
| 2024-04-15 | Moodle 3.10.1 SQL Injection | Published |
| 2024-04-15 | Jenkins 2.441 Local File Inclusion | Published |
| 2024-04-15 | Django REST Framework SimpleJWT 5.3.1 Information Disclosure | Published |
| 2024-04-15 | Kruxton-1.0-Multiple-SQLi | Published |
| 2024-04-15 | AMPLE BILLS 0.1 SQL injection | Published |
| 2024-04-15 | PrusaSlicer 2.6.1 Arbitrary Code Execution | Published |
| 2024-04-15 | OpenClinic GA 5.247.01 Path Traversal (Authenticated) | Published |
| 2024-04-15 | Amazon AWS Glue Database Password Disclosure | Published |
| 2024-04-14 | MinIO < 2024-01-31T20-20-33Z Privilege Escalation | Published |
| 2024-04-14 | Bigem Teknoloji - Sql Injection | Published |