Lopalopa Live_membership_system
4 CVEs affecting Lopalopa Live_membership_system. Latest disclosed: 2024-08-12. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-40486 | Critical | 9.8 | 2024-08-12 | A SQL injection vulnerability in "/index.php" of Kashipara Live Membership System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Log… |
CVE-2024-40482 | Critical | 9.8 | 2024-08-12 | An Unrestricted file upload vulnerability was found in "/Membership/edit_member.php" of Kashipara Live Membership System v1.0, which allows attackers to execut… |
CVE-2024-40488 | High | 8.8 | 2024-08-12 | A Cross-Site Request Forgery (CSRF) vulnerability was found in the Kashipara Live Membership System v1.0. This could lead to an attacker tricking the administr… |
CVE-2024-40487 | High | 7.6 | 2024-08-12 | A Stored Cross Site Scripting (XSS) vulnerability was found in "/view_type.php" of Kashipara Live Membership System v1.0, which allows remote attackers to exec… |