NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Lenosp SQL InjectionPlatforms Affected:lenosp lenosp 1.0-1.2.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Lenosp is vulnerable to SQL injection. A remote attacker could send specially...
NAME__________Strapi brute forcePlatforms Affected:Strapi Strapi 4.12.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Strapi is vulnerable to a brute force attack, caused by improper rate...
NAME__________Engineering & Lifecycle Management SQL injectionPlatforms Affected:Odoo Apps Engineering & Lifecycle Management 16.0Risk Level:6.5Exploitability:HighConsequences:Gain Access DESCRIPTION__________Engineering & Lifecycle Management is...
NAME__________strapi information disclosurePlatforms Affected:Strapi Strapi 4.11.6Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________strapi could allow a remote authenticated attacker to obtain sensitive information, caused...
NAME__________Fortinet FortiAP-W2, FortiAP-C, FortiAP, and FortiAP-U information disclosurePlatforms Affected:Fortinet FortiAP-C 5.4.0 Fortinet FortiAP-U 6.2.0 Fortinet FortiAP 7.2.0 Fortinet FortiAP-W2 7.2.0...
NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Siemens SIMATIC PCS neo (Administration Console) information disclosurePlatforms Affected:Siemens SIMATIC PCS neo (Administration Console) 4.0 Siemens SIMATIC PCS neo (Administration...
NAME__________Lenosp file uploadPlatforms Affected:lenosp lenosp 1.0-1.2.0Risk Level:5.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Lenosp could allow a remote attacker to upload arbitrary files, caused by...
NAME__________WS Facebook Like Box Widget plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WS Facebook Like Box Widget plugin for WordPress 5.0...
NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Engineering & Lifecycle Management SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Gain Access DESCRIPTION__________Engineering & Lifecycle Management is vulnerable to SQL injection. A remote...
NAME__________Microsoft Edge (Chromium-based) spoofingPlatforms Affected:Microsoft Edge (Chromium-based) 117.0Risk Level:6.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to conduct...
NAME__________OPSWAT MetaDefender KIOSK privilege escalationPlatforms Affected:OPSWAT MetaDefender KIOSK 4.6.1.9996Risk Level:6.2Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________OPSWAT MetaDefender KIOSK could allow a physically proximate attacker...
NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Eclipse Jetty security bypassPlatforms Affected:Eclipse Jetty 11.0.15 Eclipse Jetty 9.4.51 Eclipse Jetty 10.0.15Risk Level:3.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Eclipse Jetty could allow a...
NAME__________HashiCorp Vault and Vault Enterprise information disclosurePlatforms Affected:HashiCorp Vault 1.13.0 HashiCorp Vault Enterprise 1.13.0 HashiCorp Vault Enterprise 1.14.0 HashiCorp Vault...
NAME__________Contiki-NG information disclosurePlatforms Affected:Contiki-NG Contiki-NG 4.9Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Contiki-NG could allow a remote attacker to obtain sensitive information, caused by...
NAME__________Bettershop LaikeTui file uploadPlatforms Affected:Bettershop LaikeTuiRisk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Bettershop LaikeTui could allow a remote attacker to upload arbitrary files, caused...
NAME__________Academy LMS cross-site scriptingPlatforms Affected:Creativeitem Academy LMS 6.2Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Academy LMS is vulnerable to cross-site scripting, caused by improper...
NAME__________Saphira Connect privilege escalationPlatforms Affected:Saphira Saphira Connect 8Risk Level:7.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Saphira Connect could allow a remote authenticated attacker to gain...
NAME__________Microsoft Edge (Chromium-based) privilege escalationPlatforms Affected:Microsoft Edge (Chromium-based) 117.0Risk Level:7.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to...
NAME__________Academy LMS SQL injectionPlatforms Affected:Creativeitem Academy LMS 6.2Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Academy LMS is vulnerable to SQL injection. A remote authenticated...
NAME__________Supcon InPlant SCADA security bypassPlatforms Affected:Supcon InPlant SCADA 20230901Risk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Supcon InPlant SCADA could allow a local attacker to...
