LockBit 3.0 Ransomware Victim: cpstate[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Month: October 2023
GPAC denial of service | CVE-2023-5595
NAME__________GPAC denial of servicePlatforms Affected:GPAC GPAC 0.7.2 GPAC GPAC 0.8.0 GPAC GPAC 1.0.0 GPAC GPAC 1.1.0 GPAC GPAC 1.0.1 GPAC...
GPAC denial of service | CVE-2023-5586
NAME__________GPAC denial of servicePlatforms Affected:GPAC GPAC 0.7.2 GPAC GPAC 0.8.0 GPAC GPAC 1.0.0 GPAC GPAC 1.1.0 GPAC GPAC 1.0.1 GPAC...
Video Playlist For YouTube Plugin for WordPress cross-site request forgery | CVE-2023-45653
NAME__________Video Playlist For YouTube Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Video Playlist For YouTube Plugin for WordPress 6.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
ZZZCMS cross-site scripting | CVE-2023-5582
NAME__________ZZZCMS cross-site scriptingPlatforms Affected:ZZZCMS ZZZCMS 2.2.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ZZZCMS is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
HP ThinUpdate information disclosure | CVE-2023-4499
NAME__________HP ThinUpdate information disclosurePlatforms Affected:HP ThinUpdateRisk Level:4.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HP ThinUpdate could allow a remote attacker to obtain sensitive information. An...
IRivYou Plugin for WordPress cross-site request forgery | CVE-2023-45267
NAME__________IRivYou Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress IRivYou Plugin for WordPress 2.2.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IRivYou Plugin for WordPress for...
Microsoft Edge (Chromium-based) spoofing | CVE-2023-36559
NAME__________Microsoft Edge (Chromium-based) spoofingPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:4.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to conduct spoofing...
Netis N3Mv2 denial of service | CVE-2023-45463
NAME__________Netis N3Mv2 denial of servicePlatforms Affected:Netis N3Mv2 1.0.1.865Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Netis N3Mv2 is vulnerable to a denial of service,...
Medicine Tracker System cross-site scripting | CVE-2023-5581
NAME__________Medicine Tracker System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Medicine Tracker System is vulnerable to cross-site scripting, caused by improper validation...
Comments Ratings Plugin for WordPress cross-site request forgery | CVE-2023-45654
NAME__________Comments Ratings Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Comments Ratings Plugin for WordPress 1.1.7Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Comments Ratings Plugin...
Online Motorcycle (Bike) Rental System cross-site scripting | CVE-2023-5585
NAME__________Online Motorcycle (Bike) Rental System cross-site scriptingPlatforms Affected:Sourcecodester Online Motorcycle (Bike) Rental System 1.0Risk Level:2.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Online Motorcycle (Bike) Rental...
Free Hospital Management System for Small Practices SQL injection | CVE-2023-5587
NAME__________Free Hospital Management System for Small Practices SQL injectionPlatforms Affected:Sourcecodester Free Hospital Management System for Small Practices 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation...
RANDING UTime Master information dusclosure | CVE-2023-45393
NAME__________RANDING UTime Master information dusclosurePlatforms Affected:GRANDING UTime Master 9.0.7Risk Level:4.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________RANDING UTime Master could allow a remote attacker to...
Netis N3Mv2 denial of service | CVE-2023-45468
NAME__________Netis N3Mv2 denial of servicePlatforms Affected:Netis N3Mv2 1.0.1.865Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Netis N3Mv2 is vulnerable to a denial of service,...
Lazy Load for Videos Plugin for WordPress cross-site request forgery | CVE-2023-45656
NAME__________Lazy Load for Videos Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Lazy Load for Videos Plugin for WordPress 2.18.2Risk Level:5.4Exploitability:UnprovenConsequences:Gain...
Netis N3Mv2 denial of service | CVE-2023-45464
NAME__________Netis N3Mv2 denial of servicePlatforms Affected:Netis N3Mv2 1.0.1.865Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Netis N3Mv2 is vulnerable to a denial of service,...
Nextcloud Server and Enterprise Server information disclosure | CVE-2023-39960
NAME__________Nextcloud Server and Enterprise Server information disclosurePlatforms Affected:Nextcloud Nextcloud Server 25.0.0 Nextcloud Nextcloud Enterprise Server 23.0.0 Nextcloud Nextcloud Enterprise Server...
Constant Contact Forms by MailMunch Plugin for WordPress cross-site request forgery | CVE-2023-45647
NAME__________Constant Contact Forms by MailMunch Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Constant Contact Forms by MailMunch Plugin for WordPress...
Apache InLong SQL injection | CVE-2023-43667
NAME__________Apache InLong SQL injectionPlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0 Apache InLong 1.6.0 Apache InLong 1.7.0 Apache InLong 1.8.0Risk Level:6.5Exploitability:HighConsequences:Data...
MailChimp Forms by MailMunch Plugin for WordPress cross-site request forgery | CVE-2023-45748
NAME__________MailChimp Forms by MailMunch Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MailChimp Forms by MailMunch Plugin for WordPress 3.1.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
WP Attachments Plugin for WordPress cross-site request forgery | CVE-2023-45651
NAME__________WP Attachments Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP Attachments Plugin for WordPress 5.0.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WP Attachments Plugin...
HTML5 Maps Plugin for WordPress cross-site request forgery | CVE-2023-45650
NAME__________HTML5 Maps Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress HTML5 Maps Plugin for WordPress 1.7.1.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HTML5 Maps Plugin...
WP Open Street Map Plugin for WordPress cross-site request forgery | CVE-2023-45645
NAME__________WP Open Street Map Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP Open Street Map Plugin for WordPress 1.25Risk Level:5.4Exploitability:UnprovenConsequences:Gain...
