Vulnerabilities

HP t430 Thin Client and HP t638 Thin Client tampering | CVE-2023-5409

October 18, 2023

NAME__________HP t430 Thin Client and HP t638 Thin Client tamperingPlatforms Affected:HP N41 BIOS 00.01.13 HP N44 BIOS 00.02.10 HP N43...

QNAP QTS, QuTS hero, and QuTScloud directory traversal | CVE-2023-32974

October 18, 2023

NAME__________QNAP QTS, QuTS hero, and QuTScloud directory traversalPlatforms Affected:QNAP QuTS hero h5.1.0 QNAP QTS 5.1.0 QNAP QuTScloud c5.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information...

Node.js unauthorized access | CVE-2023-39333

October 18, 2023

NAME__________Node.js unauthorized accessPlatforms Affected:Node.js Node.js 18.0 Node.js Node.js 20.0Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Node.js could allow a remote attacker to gain unauthorized...

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45688

October 18, 2023

NAME__________South River Technologies Titan MFT and Titan SFTP directory traversalPlatforms Affected:South River Technologies Titan SFTP 2.0.17.2298 South River Technologies Titan...

QNAP QTS, QuTS hero, and QuTScloud denial of service | CVE-2023-32970

October 18, 2023

NAME__________QNAP QTS, QuTS hero, and QuTScloud denial of servicePlatforms Affected:QNAP QTS 4.5.0 QNAP QTS 5.0.0 QNAP QuTS Hero h5.0.0 QNAP...

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45685

October 18, 2023

NAME__________South River Technologies Titan MFT and Titan SFTP directory traversalPlatforms Affected:South River Technologies Titan SFTP 2.0.17.2298 South River Technologies Titan...

User Activity Log Pro Plugin for WordPress spoofing | CVE-2023-5133

October 18, 2023

NAME__________User Activity Log Pro Plugin for WordPress spoofingPlatforms Affected:WordPress WordPress WordPress User Activity Log Pro Plugin for WordPress 2.3.4Risk Level:5.3Exploitability:UnprovenConsequences:Gain...

South River Technologies Titan MFT and Titan SFTP security bypass | CVE-2023-45687

October 18, 2023

NAME__________South River Technologies Titan MFT and Titan SFTP security bypassPlatforms Affected:South River Technologies Titan SFTP 2.0.17.2298 South River Technologies Titan...

User Activity Log Pro plugin for WordPress cross-site scripting | CVE-2023-5167

October 18, 2023

NAME__________User Activity Log Pro plugin for WordPress cross-site scriptingPlatforms Affected:WordPress User Activity Log Pro Plugin for WordPress 2.3.4Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting...

Popup Builder WordPress Plugin for WordPress cross-site scripting | CVE-2023-5561

October 18, 2023

NAME__________Popup Builder WordPress Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Popup Builder Plugin for WordPress 4.1.15Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Popup Builder WordPress...

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45686

October 18, 2023

NAME__________South River Technologies Titan MFT and Titan SFTP directory traversalPlatforms Affected:South River Technologies Titan SFTP 2.0.17.2298 South River Technologies Titan...

Devolutions Server security bypass | CVE-2023-5575

October 18, 2023

NAME__________Devolutions Server security bypassPlatforms Affected:Devolutions Devolutions Server 2022.3.12 Devolutions Devolutions Server 2022.3.13Risk Level:6.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Devolutions Server could allow a remote...

PageLayer Plugin for WordPress cross-site scripting | CVE-2023-5087

October 18, 2023

NAME__________PageLayer Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress PageLayer Plugin for WordPress 1.7.8Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PageLayer Plugin for WordPress is vulnerable...

Fiber cross-site request forgery | CVE-2023-45141

October 18, 2023

NAME__________Fiber cross-site request forgeryPlatforms Affected:Fiber Fiber 2.49.2Risk Level:7.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fiber is vulnerable to cross-site request forgery, caused by improper validation...

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45689

October 18, 2023

NAME__________South River Technologies Titan MFT and Titan SFTP directory traversalPlatforms Affected:South River Technologies Titan SFTP 2.0.17.2298 South River Technologies Titan...

Oracle MySQL Server unspecified | CVE-2023-22110

October 18, 2023

NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 8.0.33Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle MySQL Server related to...

Oracle MySQL Server unspecified | CVE-2023-22015

October 18, 2023

NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 8.0.31 Oracle MySQL Server 5.7.42Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle...

Oracle MySQL Server unspecified | CVE-2023-22064

October 18, 2023

NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 8.0.34Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle MySQL Server related to...

ActivityPub plugin for WordPress cross-site scripting | CVE-2023-5057

October 18, 2023

NAME__________ActivityPub plugin for WordPress cross-site scriptingPlatforms Affected:WordPress ActivityPub Plugin for WordPressRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ActivityPub plugin for WordPress is vulnerable to...

Vulnerabilities

HP t430 Thin Client and HP t638 Thin Client tampering | CVE-2023-5409

QNAP QTS, QuTS hero, and QuTScloud directory traversal | CVE-2023-32974

Node.js unauthorized access | CVE-2023-39333

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45688

QNAP QTS, QuTS hero, and QuTScloud denial of service | CVE-2023-32970

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45685

User Activity Log Pro Plugin for WordPress spoofing | CVE-2023-5133

South River Technologies Titan MFT and Titan SFTP security bypass | CVE-2023-45687

User Activity Log Pro plugin for WordPress cross-site scripting | CVE-2023-5167

Popup Builder WordPress Plugin for WordPress cross-site scripting | CVE-2023-5561

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45686

Devolutions Server security bypass | CVE-2023-5575

PageLayer Plugin for WordPress cross-site scripting | CVE-2023-5087

Fiber cross-site request forgery | CVE-2023-45141

South River Technologies Titan MFT and Titan SFTP directory traversal | CVE-2023-45689

Oracle MySQL Server unspecified | CVE-2023-22110

Oracle MySQL Server unspecified | CVE-2023-22015

Oracle MySQL Server unspecified | CVE-2023-22064

ActivityPub plugin for WordPress cross-site scripting | CVE-2023-5057

SonicWall SonicOS denial of service | CVE-2023-39280

Oracle MySQL Server unspecified | CVE-2023-22070

Oracle Banking Trade Finance unspecified | CVE-2023-22121

SonicWall SonicOS denial of service | CVE-2023-39278

Oracle Banking Trade Finance unspecified | CVE-2023-22122

CovenantC2 Detected – 217[.]160[.]22[.]184:7443

CVE Alert: CVE-2025-24829

CVE Alert: CVE-2025-24828

CVE Alert: CVE-2024-12267

CVE Alert: CVE-2025-24831

You may have missed