QNAP QTS, QuTS hero, and QuTScloud server-side request forgery | CVE-2023-39301
NAME__________QNAP QTS, QuTS hero, and QuTScloud server-side request forgeryPlatforms Affected:QNAP QTS 5.0.0 QNAP QuTS Hero h5.0.0 QNAP QuTS hero h5.1.0...
Vulnerabilities
Icons Font Loader Plugin for WordPress SQL injection | CVE-2023-46084
NAME__________Icons Font Loader Plugin for WordPress SQL injectionPlatforms Affected:WordPress Icons Font Loader Plugin for WordPress 1.1.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Icons Font...
Linux Kernel denial of service | CVE-2023-5090
NAME__________Linux Kernel denial of servicePlatforms Affected:Linux Kernel 6.5Risk Level:6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service,...
EasyRecipe Plugin for WordPress cross-site request forgery | CVE-2023-46779
NAME__________EasyRecipe Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress EasyRecipe Plugin for WordPress 3.5.3251Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________EasyRecipe Plugin for WordPress is...
ImageLinks Interactive Image Builder Plugin for WordPress SQL injection | CVE-2023-46823
NAME__________ImageLinks Interactive Image Builder Plugin for WordPress SQL injectionPlatforms Affected:WordPress ImageLinks Interactive Image Builder plugin for WordPress 1.5.4Risk Level:6.5Exploitability:HighConsequences:Data Manipulation...
Alter Plugin for WordPress cross-site request forgery | CVE-2023-46780
NAME__________Alter Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Alter Plugin for WordPress 1.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Alter Plugin for WordPress is...
WooCommerce – Store Exporter Plugin for WordPress cross-site scripting | CVE-2023-46822
NAME__________WooCommerce - Store Exporter Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WooCommerce - Store Exporter Plugin for WordPress 2.7.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting...
Apache Allura information disclosure | CVE-2023-46851
NAME__________Apache Allura information disclosurePlatforms Affected:Apache Allura 1.0.1 Apache Allura 1.15.0Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Allura could allow a remote authenticated attacker...
GitLab Enterprise Edition denial of service | CVE-2023-5963
NAME__________GitLab Enterprise Edition denial of servicePlatforms Affected:GitLab Enterprise Edition 13.9 GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.5.0 GitLab Enterprise...
Veeam ONE cross-site scripting | CVE-2023-38549
NAME__________Veeam ONE cross-site scriptingPlatforms Affected:Veeam Veeam ONE 11 Veeam Veeam ONE 11a Veeam Veeam ONE 12Risk Level:4.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Veeam ONE...
Webmaster Tools Plugin for WordPress cross-site scripting | CVE-2023-46093
NAME__________Webmaster Tools Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Webmaster Tools Plugin for WordPress 2.0Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmaster Tools Plugin for...
Auto Limit Posts Reloaded Plugin for WordPress cross-site request forgery | CVE-2023-46776
NAME__________Auto Limit Posts Reloaded Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Auto Excerpt everywhere Plugin for WordPress 1.5Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access...
MomentoPress for Momento360 Plugin for WordPress cross-site scripting | CVE-2023-46782
NAME__________MomentoPress for Momento360 Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress MomentoPress for Momento360 Plugin for WordPress 1.0.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________MomentoPress for...
Original texts Yandex WebMaster Plugin for WordPress cross-site request forgery | CVE-2023-46775
NAME__________Original texts Yandex WebMaster Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Original texts Yandex WebMaster Plugin for WordPress 1.18Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
Auto Limit Posts Reloaded Plugin for WordPress cross-site request forgery | CVE-2023-46778
NAME__________Auto Limit Posts Reloaded Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Auto Limit Posts Reloaded Plugin for WordPress 2.5Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
Pre-Orders for WooCommerce Plugin for WordPress cross-site scripting | CVE-2023-46783
NAME__________Pre-Orders for WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Pre-Orders for WooCommerce Plugin for WordPress 1.2.13Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Pre-Orders for...
Current Menu Item for Custom Post Types Plugin for WordPress cross-site request forgery | CVE-2023-46781
NAME__________Current Menu Item for Custom Post Types Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Current Menu Item for Custom Post...
GD Security Headers Plugin for WordPress SQL injection | CVE-2023-46821
NAME__________GD Security Headers Plugin for WordPress SQL injectionPlatforms Affected:WordPress GD Security Headers Plugin for WordPress 1.7Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________GD Security...
Veeam ONE information disclosure | CVE-2023-41723
NAME__________Veeam ONE information disclosurePlatforms Affected:Veeam Veeam ONE 11 Veeam Veeam ONE 11a Veeam Veeam ONE 12Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Veeam ONE...
Samsung mobile devices information disclosure | CVE-2023-42527
NAME__________Samsung mobile devices information disclosurePlatforms Affected:Samsung R 11 Samsung S 12 Samsung T 13Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Samsung mobile devices could...
OpenSSL denial of service | CVE-2023-5678
NAME__________OpenSSL denial of servicePlatforms Affected:OpenSSL OpenSSL 1.0.2 OpenSSL OpenSSL 1.1.1 OpenSSL OpenSSL 3.0.0 OpenSSL OpenSSL 3.1.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Openssl...
Qualcomm Chipsets information disclosure | CVE-2023-28566
NAME__________Qualcomm Chipsets information disclosurePlatforms Affected:Qualcomm ChipsetsRisk Level:6.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to obtain sensitive information,...
Samsung mobile devices security bypass | CVE-2023-42545
NAME__________Samsung mobile devices security bypassPlatforms Affected:Samsung R 11 Samsung S 12 Samsung T 13Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Samsung mobile devices could...
Qualcomm Chipsets information disclosure | CVE-2023-28563
NAME__________Qualcomm Chipsets information disclosurePlatforms Affected:Qualcomm ChipsetsRisk Level:6.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to obtain sensitive information,...
