Month: April 2023

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20145

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20142

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20137

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20147

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20143

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20141

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20144

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Sales Tracker Management System information disclosure | CVE-2023-26774

April 11, 2023

NAME__________Sales Tracker Management System information disclosurePlatforms Affected:Sourcecodester Sales Tracker Management System 1.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sales Tracker Management System could allow...

GNU Screen denial of service | CVE-2023-24626

April 11, 2023

NAME__________GNU Screen denial of servicePlatforms Affected:GNU Screen 4.9.0Risk Level:5.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________GNU Screen is vulnerable to a denial...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20150

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20139

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20149

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Universal Media Server cross-site scripting |

April 11, 2023

NAME__________Universal Media Server cross-site scriptingPlatforms Affected:Universal Media Server Universal Media Server 13.2.1Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Universal Media Server is vulnerable to...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers command execution | CVE-2023-20124

April 11, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers command executionPlatforms Affected:Cisco RV016 Multi-WAN VPN Routers Cisco RV042...

Cisco Evolved Programmable Network Manager, Identity Services Engine and Prime Infrastructure command execution | CVE-2023-20121

April 11, 2023

NAME__________Cisco Evolved Programmable Network Manager, Identity Services Engine and Prime Infrastructure command executionPlatforms Affected:Cisco Prime Infrastructure Cisco Identity Services Engine...

Product page shipping calculator for WooCommerce Plugin for WordPress cross-site scripting |

April 11, 2023

NAME__________Product page shipping calculator for WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Product Enquiry for WooCommerce Plugin for WordPress 2.2.12Risk...

I-Tech Trainsmart SQL injection |

April 11, 2023

NAME__________I-Tech Trainsmart SQL injectionPlatforms Affected:I-Tech Trainsmart r1044Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________I-Tech Trainsmart is vulnerable to SQL injection. A remote attacker could...

GDidees CMS information disclosure | CVE-2023-27180

April 11, 2023

NAME__________GDidees CMS information disclosurePlatforms Affected:GDidees CMS GDidees CMS 3.9.1Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________GDidees CMS could allow a remote attacker to obtain...

Multiple NETGEAR routers command execution |

April 11, 2023

NAME__________Multiple NETGEAR routers command executionPlatforms Affected:NETGEAR RAX30 NETGEAR RAXE300Risk Level:6.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Multiple NETGEAR routers could allow a local authenticated attacker...

BulletProof FTP Server denial of service |

April 11, 2023

NAME__________BulletProof FTP Server denial of servicePlatforms Affected:BulletProof Software BulletProof FTP Server 2019.0.0.51Risk Level:5.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________BulletProof FTP Server...

LDAP Tool Box Self Service Password security bypass |

April 11, 2023

NAME__________LDAP Tool Box Self Service Password security bypassPlatforms Affected:LDAP Tool Box Self Service Password 1.5.2Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________LDAP Tool Box...

Magic Post Thumbnail Plugin for WordPress cross-site scripting | CVE-2023-

April 11, 2023

NAME__________Magic Post Thumbnail Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Magic Post Thumbnail Plugin for WordPress 4.1.10Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Magic Post...

impleCode Product Catalog Simple plugin for WordPress cross-site scripting | CVE-2023-29388

April 11, 2023

NAME__________impleCode Product Catalog Simple plugin for WordPress cross-site scriptingPlatforms Affected:impleCode Product Catalog Simple plugin for WordPress 1.6.17Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________impleCode...

Contact Forms Plugin for WordPress cross-site scripting | CVE-2023-28781

April 11, 2023

NAME__________Contact Forms Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Contact Forms by Cimatti Plugin for WordPress 1.5.4Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Contact Forms...

Month: April 2023

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20145

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20142

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20137

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20147

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20143

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20141

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20144

Sales Tracker Management System information disclosure | CVE-2023-26774

GNU Screen denial of service | CVE-2023-24626

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20150

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20139

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20149

Universal Media Server cross-site scripting |

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers command execution | CVE-2023-20124

Cisco Evolved Programmable Network Manager, Identity Services Engine and Prime Infrastructure command execution | CVE-2023-20121

Product page shipping calculator for WooCommerce Plugin for WordPress cross-site scripting |

I-Tech Trainsmart SQL injection |

GDidees CMS information disclosure | CVE-2023-27180

Multiple NETGEAR routers command execution |

BulletProof FTP Server denial of service |

LDAP Tool Box Self Service Password security bypass |

Magic Post Thumbnail Plugin for WordPress cross-site scripting | CVE-2023-

impleCode Product Catalog Simple plugin for WordPress cross-site scripting | CVE-2023-29388

Contact Forms Plugin for WordPress cross-site scripting | CVE-2023-28781

[KILLSEC] – Ransomware Victim: Nationwide Legal

[KILLSEC] – Ransomware Victim: Eassy Life

[INCRANSOM] – Ransomware Victim: Service Avicole JGL

[KILLSEC] – Ransomware Victim: Vogue Homes

[KILLSEC] – Ransomware Victim: Efi Sales

You may have missed