Month: July 2023

Property Listing Script cross-site scripting | CVE-2023-3557

July 11, 2023

NAME__________Property Listing Script cross-site scriptingPlatforms Affected:GZ Scripts Property Listing Script 1.0Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Property Listing Script is vulnerable to cross-site...

PHP Vacation Rental Script cross-site scripting | CVE-2023-3555

July 11, 2023

NAME__________PHP Vacation Rental Script cross-site scriptingPlatforms Affected:GZ Scripts PHP Vacation Rental Script 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________PHP Vacation Rental Script is...

PHP GZ Appointment Scheduling Script cross-site scripting | CVE-2023-3559

July 11, 2023

NAME__________PHP GZ Appointment Scheduling Script cross-site scriptingPlatforms Affected:GZ Scripts PHP GZ Appointment Scheduling Script 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________PHP GZ Appointment...

PHP CRM Platform cross-site scripting | CVE-2023-3562

July 11, 2023

NAME__________PHP CRM Platform cross-site scriptingPlatforms Affected:GZ Scripts PHP CRM Platform 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________PHP CRM Platform is vulnerable to cross-site...

Car Listing Script PHP cross-site scripting | CVE-2023-3556

July 11, 2023

NAME__________Car Listing Script PHP cross-site scriptingPlatforms Affected:GZ Scripts Car Listing Script PHP 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Car Listing Script PHP is...

GZ E Learning Platform cross-site scripting | CVE-2023-3563

July 11, 2023

NAME__________GZ E Learning Platform cross-site scriptingPlatforms Affected:GZ Scripts GZ E Learning Platform 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________GZ E Learning Platform is...

Event Booking Calendar cross-site scripting | CVE-2023-3558

July 11, 2023

NAME__________Event Booking Calendar cross-site scriptingPlatforms Affected:GZ Scripts Event Booking Calendar 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Event Booking Calendar is vulnerable to cross-site...

GZ Forum Script cross-site scripting | CVE-2023-3554

July 11, 2023

NAME__________GZ Forum Script cross-site scriptingPlatforms Affected:GZ Scripts GZ Forum Script 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________GZ Forum Script is vulnerable to cross-site...

HCL Launch information disclosure | CVE-2023-23348

July 11, 2023

NAME__________HCL Launch information disclosurePlatforms Affected:HCL Launch 7.0.0.0 HCL Launch 7.1.0.0 HCL Launch 7.2.0.0 HCL Launch 6.2.0.0 HCL Launch 7.3.0.0 HCL...

GZ Multi Hotel Booking System cross-site scripting | CVE-2023-3564

July 11, 2023

NAME__________GZ Multi Hotel Booking System cross-site scriptingPlatforms Affected:GZ Scripts GZ Multi Hotel Booking System 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________GZ Multi Hotel...

Ticket Booking Script cross-site scripting | CVE-2023-3560

July 11, 2023

NAME__________Ticket Booking Script cross-site scriptingPlatforms Affected:GZ Scripts Ticket Booking Script 1.8Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Ticket Booking Script is vulnerable to cross-site...

SICK ICR890-4 devices information disclosure | CVE-2023-35697

July 11, 2023

NAME__________SICK ICR890-4 devices information disclosurePlatforms Affected:SICK ICR890-4Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SICK ICR890-4 devices could allow a remote attacker to obtain sensitive...

SICK ICR890-4 devices information disclosure | CVE-2023-35696

July 11, 2023

NAME__________SICK ICR890-4 devices information disclosurePlatforms Affected:SICK ICR890-4Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SICK ICR890-4 devices could allow a remote attacker to obtain sensitive...

Zephyr denial of service | CVE-2023-1901

July 11, 2023

NAME__________Zephyr denial of servicePlatforms Affected:Zephyr Zephyr 3.3Risk Level:5.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Zephyr is vulnerable to a denial of service, caused by...

SICK ICR890-4 devices information disclosure | CVE-2023-3272

July 11, 2023

SICK ICR890-4 devices denial of service | CVE-2023-3273

July 11, 2023

NAME__________SICK ICR890-4 devices denial of servicePlatforms Affected:SICK ICR890-4Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SICK ICR890-4 devices are vulnerable to a denial of...

SICK ICR890-4 devices information disclosure | CVE-2023-35699

July 11, 2023

NAME__________SICK ICR890-4 devices information disclosurePlatforms Affected:SICK ICR890-4Risk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SICK ICR890-4 devices could allow a physical attacker to obtain sensitive...

SmartSoft SmartBPM.NET directory traversal | CVE-2023-37288

July 11, 2023

NAME__________SmartSoft SmartBPM.NET directory traversalPlatforms Affected:SmartSoft SmartBPM.NET 6.70Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SmartSoft SmartBPM.NET could allow a remote authenticated attacker to traverse directories...

Month: July 2023

Property Listing Script cross-site scripting | CVE-2023-3557

PHP Vacation Rental Script cross-site scripting | CVE-2023-3555

PHP GZ Appointment Scheduling Script cross-site scripting | CVE-2023-3559

PHP CRM Platform cross-site scripting | CVE-2023-3562

Car Listing Script PHP cross-site scripting | CVE-2023-3556

GZ E Learning Platform cross-site scripting | CVE-2023-3563

Event Booking Calendar cross-site scripting | CVE-2023-3558

GZ Forum Script cross-site scripting | CVE-2023-3554

HCL Launch information disclosure | CVE-2023-23348

GZ Multi Hotel Booking System cross-site scripting | CVE-2023-3564

Ticket Booking Script cross-site scripting | CVE-2023-3560

SICK ICR890-4 devices information disclosure | CVE-2023-35697

SICK ICR890-4 devices information disclosure | CVE-2023-35696

Zephyr denial of service | CVE-2023-1901

SICK ICR890-4 devices information disclosure | CVE-2023-3272

SICK ICR890-4 devices denial of service | CVE-2023-3273

SICK ICR890-4 devices information disclosure | CVE-2023-35699

SmartSoft SmartBPM.NET directory traversal | CVE-2023-37288

Zephyr denial of service | CVE-2023-1902

SICK ICR890-4 devices information disclosure | CVE-2023-35698

SICK ICR890-4 devices information disclosure | CVE-2023-3270

Global Retailers Must Keep an Eye on Their SaaS Stack

Apple Issues Urgent Patch for Zero-Day Flaw Targeting iOS, iPadOS, macOS, and Safari

RomCom RAT Targeting NATO and Ukraine Support Groups

CVE Alert: CVE-2024-11387

CVE Alert: CVE-2024-10873

CVE Alert: CVE-2024-11332

CVE Alert: CVE-2024-11361

CVE Alert: CVE-2024-10880

You may have missed