Vulnerabilities

Jomestate component for Joomla! for SQL injection |

July 31, 2023

NAME__________Jomestate component for Joomla! for SQL injectionPlatforms Affected:Joomla! Jomestate component for Joomla! 4.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Jomestate component for Joomla! is...

JSN Gruve Pro component for Joomla! directory traversal |

July 31, 2023

NAME__________JSN Gruve Pro component for Joomla! directory traversalPlatforms Affected:Joomla! JSN Gruve Pro component for Joomla! 2.1.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________JSN Gruve...

VirtueMart component for Joomla! for SQL injection |

July 31, 2023

NAME__________VirtueMart component for Joomla! for SQL injectionPlatforms Affected:Joomla! VirtueMart component for Joomla! 2.6.12.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________VirtueMart component for Joomla! is...

WP Brutal AI plugin for WordPress cross-site scripting | CVE-2023-2606

July 31, 2023

NAME__________WP Brutal AI plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP Brutal AI plugin for WordPress 2.05Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WP Brutal...

GX Software XperienCentral security bypass | CVE-2022-43713

July 31, 2023

NAME__________GX Software XperienCentral security bypassPlatforms Affected:GX Software XperienCentral 10.33.1 GX Software XperienCentral 10.34Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GX Software XperienCentral could allow...

Zmanda AMANDA command execution | CVE-2023-30577

July 31, 2023

NAME__________Zmanda AMANDA command executionPlatforms Affected:Zmanda AMANDA tag-community-3.5.3Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Zmanda AMANDA could allow a remote attacker to execute arbitrary commands...

HotelGuide Components for Joomla! cross-site scripting |

July 31, 2023

NAME__________HotelGuide Components for Joomla! cross-site scriptingPlatforms Affected:Joomla! HotelGuide component for Joomla! 1.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________HotelGuide Components for Joomla! is vulnerable...

DietPi-Dashboard denial of service | CVE-2023-38505

July 31, 2023

NAME__________DietPi-Dashboard denial of servicePlatforms Affected:DietPi-Dashboard DietPi-Dashboard 0.6.1Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________DietPi-Dashboard is vulnerable to a denial of service, caused by...

Zimbra Collaboration Suite information disclosure | CVE-2023-38750

July 31, 2023

NAME__________Zimbra Collaboration Suite information disclosurePlatforms Affected:Zimbra Zimbra Collaboration Suite (ZCS) 8.8.15 Zimbra Zimbra Collaboration Suite (ZCS) 9.0 Zimbra Zimbra Collaboration...

HCL BigFix Mobile cross-site scripting | CVE-2023-28014

July 31, 2023

NAME__________HCL BigFix Mobile cross-site scriptingPlatforms Affected:HCL BigFix Mobile 3.0Risk Level:6.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________HCL BigFix Mobile is vulnerable to cross-site scripting, caused...

FSMLabs TimeKeeper cross-site scripting | CVE-2023-31466

July 31, 2023

NAME__________FSMLabs TimeKeeper cross-site scriptingPlatforms Affected:FSMLabs TimeKeeper 8.0.17Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________FSMLabs TimeKeeper is vulnerable to cross-site scripting, caused by improper validation...

GX Software XperienCentral security bypass | CVE-2022-43712

July 31, 2023

NAME__________GX Software XperienCentral security bypassPlatforms Affected:GX Software XperienCentral 10.32 GX Software XperienCentral 10.33 GX Software XperienCentral 10.34 GX Software XperienCentral...

Fireboard component for Joomla! SQL injection |

July 31, 2023

NAME__________Fireboard component for Joomla! SQL injectionPlatforms Affected:Joomla! Fireboard component for Joomla! 1.3Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Fireboard component for Joomla! is vulnerable...

Dell Power Manager code execution | CVE-2023-32450

July 31, 2023

NAME__________Dell Power Manager code executionPlatforms Affected:Dell Power Manager 3.3 Dell Power Manager 3.14Risk Level:6.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell Power Manager could allow...

HCL BigFix Mobile cross-site scripting | CVE-2023-28013

July 31, 2023

JetBrains IntelliJ IDEA security bypass | CVE-2023-39261

July 31, 2023

NAME__________JetBrains IntelliJ IDEA security bypassPlatforms Affected:JetBrains IntelliJ IDEA 2023.1Risk Level:5.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________JetBrains IntelliJ IDEA could allow a local authenticated attacker...

Zimbra Collaboration Suite cross-site scripting | CVE-2023-37580

July 31, 2023

NAME__________Zimbra Collaboration Suite cross-site scriptingPlatforms Affected:Zimbra Zimbra Collaboration Suite (ZCS) 8.8.15Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Zimbra Collaboration Suite is vulnerable to cross-site...

HCL BigFix Mobile command execution | CVE-2023-28012

July 31, 2023

NAME__________HCL BigFix Mobile command executionPlatforms Affected:HCL BigFix Mobile 3.0Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HCL BigFix Mobile could allow a remote authenticated attacker...

Journal Management Software SQL injection |

July 31, 2023

NAME__________Journal Management Software SQL injectionPlatforms Affected:Journal Management Software Journal Management Software 1.2.4Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Journal Management Software is vulnerable to...

Palantir Foundry Slate security bypass | CVE-2023-30949

July 31, 2023

NAME__________Palantir Foundry Slate security bypassPlatforms Affected:Palantir Foundry Slate 6.206Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Palantir Foundry Slate could allow a remote attacker to...

Symfony Mailer module for Drupal cross-site request forgery |

July 31, 2023

NAME__________Symfony Mailer module for Drupal cross-site request forgeryPlatforms Affected:WordPress Symfony Mailer module for Drupal 1.2.1 WordPress Symfony Mailer module for...

Minify Source HTML module for Drupal cross-site scripting |

July 31, 2023

NAME__________Minify Source HTML module for Drupal cross-site scriptingPlatforms Affected:WordPress Minify Source HTML module for Drupal 2.0.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Minify Source...

GX Software XperienCentral cross-site request forgery | CVE-2022-43710

July 31, 2023

NAME__________GX Software XperienCentral cross-site request forgeryPlatforms Affected:GX Software XperienCentral 10.32 GX Software XperienCentral 10.31Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GX Software XperienCentral is...

Availability Booking Calendar PHP file upload |

July 31, 2023

NAME__________Availability Booking Calendar PHP file uploadPlatforms Affected:Availability Booking Calendar PHP Availability Booking Calendar PHPRisk Level:5.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Availability Booking Calendar PHP...

Vulnerabilities

Jomestate component for Joomla! for SQL injection |

JSN Gruve Pro component for Joomla! directory traversal |

VirtueMart component for Joomla! for SQL injection |

WP Brutal AI plugin for WordPress cross-site scripting | CVE-2023-2606

GX Software XperienCentral security bypass | CVE-2022-43713

Zmanda AMANDA command execution | CVE-2023-30577

HotelGuide Components for Joomla! cross-site scripting |

DietPi-Dashboard denial of service | CVE-2023-38505

Zimbra Collaboration Suite information disclosure | CVE-2023-38750

HCL BigFix Mobile cross-site scripting | CVE-2023-28014

FSMLabs TimeKeeper cross-site scripting | CVE-2023-31466

GX Software XperienCentral security bypass | CVE-2022-43712

Fireboard component for Joomla! SQL injection |

Dell Power Manager code execution | CVE-2023-32450

HCL BigFix Mobile cross-site scripting | CVE-2023-28013

JetBrains IntelliJ IDEA security bypass | CVE-2023-39261

Zimbra Collaboration Suite cross-site scripting | CVE-2023-37580

HCL BigFix Mobile command execution | CVE-2023-28012

Journal Management Software SQL injection |

Palantir Foundry Slate security bypass | CVE-2023-30949

Symfony Mailer module for Drupal cross-site request forgery |

Minify Source HTML module for Drupal cross-site scripting |

GX Software XperienCentral cross-site request forgery | CVE-2022-43710

Availability Booking Calendar PHP file upload |

CVE Alert: CVE-2025-2116

CVE Alert: CVE-2025-2114

CVE Alert: CVE-2025-2113

CVE Alert: CVE-2025-2115

CVE Alert: CVE-2025-2117

You may have missed