Zyxel ATP and USG FLEX series devices information disclosure | CVE-2023-37925
NAME__________Zyxel ATP and USG FLEX series devices information disclosurePlatforms Affected:Zyxel ATP series 5.10 Zyxel ATP series 5.37 Zyxel USG FLEX...
Vulnerabilities
GitLab Community and Enterprise Edition security bypass | CVE-2023-3443
NAME__________GitLab Community and Enterprise Edition security bypassPlatforms Affected:GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.5.0 GitLab Community Edition 16.5.0 GitLab...
Apache Cocoon information disclosure | CVE-2023-49733
NAME__________Apache Cocoon information disclosurePlatforms Affected:Apache Cocoon 2.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Cocoon could allow a remote attacker to obtain sensitive information,...
Xsendfile module for Drupal security bypass |
NAME__________Xsendfile module for Drupal security bypassPlatforms Affected:Drupal Xsendfile module for Drupal 8.x-1.1Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Xsendfile module for Drupal could allow...
Zyxel NAS326 and NAS542 devices information disclosure |
NAME__________Zyxel NAS326 and NAS542 devices information disclosurePlatforms Affected:Zyxel NAS326 5.21(AAZF.14)C0 Zyxel NAS542 5.21(ABAG.11)C0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Zyxel NAS326 and NAS542 devices...
Apple Safari, macOS Sonoma, iOS and iPadOS information disclosure | CVE-2023-42916
NAME__________Apple Safari, macOS Sonoma, iOS and iPadOS information disclosurePlatforms Affected:Apple Safari 17.1.1 Apple iOS 17.1.1 Apple iPadOS 17.1.1 Apple macOS...
GitLab Community and Enterprise Edition security bypass | CVE-2023-4317
NAME__________GitLab Community and Enterprise Edition security bypassPlatforms Affected:GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.5.0 GitLab Community Edition 16.5.0 GitLab...
Apache DolphinScheduler security bypass | CVE-2023-49620
NAME__________Apache DolphinScheduler security bypassPlatforms Affected:Apache DolphinScheduler 3.0.0 Apache DolphinScheduler 2.0.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apache DolphinScheduler could allow a remote authenticated attacker...
GitLab Community and Enterprise Edition security bypass | CVE-2023-5995
NAME__________GitLab Community and Enterprise Edition security bypassPlatforms Affected:GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.5.0 GitLab Community Edition 16.5.0 GitLab...
Mitsubishi Electric FA Engineering Software Products code execution | CVE-2023-5247
NAME__________Mitsubishi Electric FA Engineering Software Products code executionPlatforms Affected:Mitsubishi Electric MELSOFT iQ AppPortal Mitsubishi Electric MELSOFT Navigator Mitsubishi Electric GX...
Amazzing Filter Plugin for PrestaShop cross-site scripting | CVE-2023-48042
NAME__________Amazzing Filter Plugin for PrestaShop cross-site scriptingPlatforms Affected:PrestaShop Amazzing Filter Plugin for PrestaShopRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Amazzing Filter Plugin for PrestaShop...
GitLab Community and Enterprise Edition security bypass | CVE-2023-5226
NAME__________GitLab Community and Enterprise Edition security bypassPlatforms Affected:GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.5.0 GitLab Community Edition 16.5.0 GitLab...
Delta Electronics DOPSoft buffer overflow | CVE-2023-5944
NAME__________Delta Electronics DOPSoft buffer overflowPlatforms Affected:Delta Electronics DOPSoftRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Delta Electronics DOPSoft is vulnerable to a stack-based buffer overflow,...
GitLab Community and Enterprise Edition information disclosure | CVE-2023-3949
NAME__________GitLab Community and Enterprise Edition information disclosurePlatforms Affected:GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.5.0 GitLab Community Edition 16.5.0 GitLab...
Mattermost Server security bypass | CVE-2023-47865
NAME__________Mattermost Server security bypassPlatforms Affected:Mattermost Mattermost Server 7.8.12 Mattermost Mattermost Server 8.1.3Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mattermost Server could allow a remote...
VMware Tanzu Spring Boot denial of service | CVE-2023-34055
NAME__________VMware Tanzu Spring Boot denial of servicePlatforms Affected:VMware Tanzu Spring Boot 2.7.0 VMware Tanzu Spring Boot 3.0.0 Tanzu VMware Spring...
Mattermost Server security bypass | CVE-2023-47865
NAME__________Mattermost Server security bypassPlatforms Affected:Mattermost Mattermost Server 7.8.12 Mattermost Mattermost Server 8.1.3Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mattermost Server could allow a remote...
Raptor-Web cross-site scripting | CVE-2023-49078
NAME__________Raptor-Web cross-site scriptingPlatforms Affected:Raptor-Web Raptor-Web 0.4.4Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Raptor-Web is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
QOS.ch Sarl Logback denial of service | CVE-2023-6378
NAME__________QOS.ch Sarl Logback denial of servicePlatforms Affected:QOS.ch Sarl Logback 1.4.11Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________QOS.ch Sarl Logback is vulnerable to a...
M-Files Server security bypass | CVE-2023-6239
NAME__________M-Files Server security bypassPlatforms Affected:M-Files M-Files Server 23.9 M-Files M-Files Server 23.10 M-Files M-Files Server 23.11Risk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________M-Files Server...
VMware Tanzu Reactor Netty denial of service | CVE-2023-34054
NAME__________VMware Tanzu Reactor Netty denial of servicePlatforms Affected:Tanzu VMware Reactor Netty 1.0.0 Tanzu VMware Reactor Netty 1.0.38 Tanzu VMware Reactor...
Meta Incubator Katran information disclosure | CVE-2023-49062
NAME__________Meta Incubator Katran information disclosurePlatforms Affected:Meta Incubator KatranRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Meta Incubator Katran could allow a remote attacker to obtain...
VMware Tanzu Spring Framework denial of service | CVE-2023-34053
NAME__________VMware Tanzu Spring Framework denial of servicePlatforms Affected:VMware Tanzu Spring Framework 6.0.0 VMware Tanzu Spring Framework 6.0.13Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service...
Mattermost open redirect | CVE-2023-47168
NAME__________Mattermost open redirectPlatforms Affected:Mattermost Mattermost Server 7.8.12 Mattermost Mattermost Server 8.1.3 Mattermost Mattermost Server 9.0.1 Mattermost Mattermost Server 9.1.0Risk Level:4.3Exploitability:UnprovenConsequences:Other...
