CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-0472 – code-projects Dormitory Management System modifyuser.php information disclosure
https://notcve.org/view.php?id=CVE-2024-0472
The manipulation of the argument mname leads to information disclosure. ... Durch Manipulieren des Arguments mname mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. • https://github.com/yingqian1984/FirePunch/blob/main/7-Dormitory%20Management%20System%20has%20Database%20information%20leakage%20modifyuser.php.pdf https://vuldb.com/?ctiid.250577 https://vuldb.com/?id.250577 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-31031
https://notcve.org/view.php?id=CVE-2023-31031
A successful exploit of this vulnerability may lead to code execution, denial of service, information disclosure, and data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5510 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-31025
https://notcve.org/view.php?id=CVE-2023-31025
A successful exploit of this vulnerability may lead to information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5510 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-90: Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-31034
https://notcve.org/view.php?id=CVE-2023-31034
A successful exploit of this vulnerability may lead to denial of service, information disclosure, and data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5510 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-31033
https://notcve.org/view.php?id=CVE-2023-31033
A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information disclosure, and data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5510 • CWE-306: Missing Authentication for Critical Function •