OTRS AG OTRS and OTRS Community Edition code execution | CVE-2023-1250
NAME__________OTRS AG OTRS and OTRS Community Edition code executionPlatforms Affected:OTRS OTRS 7.0 OTRS AG OTRS Community Edition 6.0.1 OTRS OTRS...
Month: March 2023
Page Loading Effects Plugin for WordPress cross-site scripting | CVE-2023-23718
NAME__________Page Loading Effects Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Page Loading Effects Plugin for WordPress 2.0.0Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Page Loading...
Redis denial of service | CVE-2023-28425
NAME__________Redis denial of servicePlatforms Affected:Redis Redis 7.0.8 Redis Redis 7.0.9Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Redis is vulnerable to a denial of...
PDFio denial of service | CVE-2023-28428
NAME__________PDFio denial of servicePlatforms Affected:PDFio PDFio 1.0.1Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________PDFio is vulnerable to a denial of service, caused by...
Online Pizza Ordering System /php-opos/index.php SQL injection |
NAME__________Online Pizza Ordering System /php-opos/index.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A...
IBM Aspera Faspex information disclosure | CVE-2023-27871
NAME__________IBM Aspera Faspex information disclosurePlatforms Affected:IBM Aspera Faspex 4.4.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Aspera Faspex 4.4.2 could allow a remote attacker...
KingHistorian information disclosure | CVE-2022-45124
NAME__________KingHistorian information disclosurePlatforms Affected:Risk Level:7.5Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________KingHistorian could allow a remote attacker to obtain sensitive information, caused by...
Advanced Social Pixel Plugin for WordPress cross-site scripting | CVE-2023-24381
NAME__________Advanced Social Pixel Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Advanced Social Pixel Plugin for WordPress 2.1.1Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Advanced Social...
OTRS AG OTRS and OTRS Community Edition cross-site scripting | CVE-2023-1248
NAME__________OTRS AG OTRS and OTRS Community Edition cross-site scriptingPlatforms Affected:OTRS OTRS 7.0 OTRS AG OTRS Community Edition 7.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting...
IBM Aspera Faspex information disclosure | CVE-2023-27873
NAME__________IBM Aspera Faspex information disclosurePlatforms Affected:IBM Aspera Faspex 4.4.2Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Aspera Faspex 4.4.2 could allow a remote authenticated...
Superior FAQ Plugin for WordPress cross-site request forgery | CVE-2023-22678
NAME__________Superior FAQ Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Admin Log Plugin for WordPress 1.50 WordPress Superior FAQ Plugin for...
Yoga Class Registration System page cross-site scripting |
NAME__________Yoga Class Registration System page cross-site scriptingPlatforms Affected:Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Yoga Class Registration System is vulnerable to cross-site scripting, caused...
E-Commerce System cross-site scripting | CVE-2023-1507
NAME__________E-Commerce System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________E-Commerce System is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Alphaware – Simple E-Commerce System SQL injection | CVE-2023-1502
NAME__________Alphaware - Simple E-Commerce System SQL injectionPlatforms Affected:Risk Level:5.6Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Alphaware - Simple E-Commerce System is vulnerable to SQL injection....
Yoga Class Registration System cid SQL injection |
NAME__________Yoga Class Registration System cid SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Yoga Class Registration System is vulnerable to SQL injection. A...
Music Gallery Site page cross-site scripting |
NAME__________Music Gallery Site page cross-site scriptingPlatforms Affected:Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Music Gallery Site is vulnerable to cross-site scripting, caused by improper...
E-Commerce System SQL injection | CVE-2023-1505
NAME__________E-Commerce System SQL injectionPlatforms Affected:Risk Level:5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________E-Commerce System is vulnerable to SQL injection. A remote authenticated attacker could send...
E-Commerce System SQL injection | CVE-2023-1506
NAME__________E-Commerce System SQL injectionPlatforms Affected:Risk Level:5.6Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________E-Commerce System is vulnerable to SQL injection. A remote attacker could send specially-crafted...
Alphaware – Simple E-Commerce System SQL injection | CVE-2023-1503
NAME__________Alphaware - Simple E-Commerce System SQL injectionPlatforms Affected:Risk Level:5.6Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Alphaware - Simple E-Commerce System is vulnerable to SQL injection....
Medicine Tracker System page cross-site scripting |
NAME__________Medicine Tracker System page cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Medicine Tracker System is vulnerable to cross-site scripting, caused by improper...
Alphaware – Simple E-Commerce System SQL injection | CVE-2023-1504
NAME__________Alphaware - Simple E-Commerce System SQL injectionPlatforms Affected:Risk Level:5.6Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Alphaware - Simple E-Commerce System is vulnerable to SQL injection....
Active Threads plugin for MyBB cross-site scripting | CVE-2022-28354
NAME__________Active Threads plugin for MyBB cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Active Threads plugin for MyBB is vulnerable to cross-site scripting,...
Jenkins Performance Publisher Plugin information disclosure | CVE-2023-28682
NAME__________Jenkins Performance Publisher Plugin information disclosurePlatforms Affected:Jenkins Performance Publisher Plugin 8.09Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins Performance Publisher Plugin could allow a...
Jenkins OctoPerf Load Testing Plugin information disclosure | CVE-2023-28673
NAME__________Jenkins OctoPerf Load Testing Plugin information disclosurePlatforms Affected:Jenkins OctoPerf Load Testing Plugin 4.5.2Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins OctoPerf Load Testing Plugin...
