Microsoft Windows CryptoAPI denial of service | CVE-2023-24937
NAME__________Microsoft Windows CryptoAPI denial of servicePlatforms Affected:Microsoft Windows Server 2019 Microsoft Windows 10 1809 for x64-based Systems Microsoft Windows 10...
Vulnerabilities
Microsoft Windows Server Service security bypass | CVE-2023-32022
NAME__________Microsoft Windows Server Service security bypassPlatforms Affected:Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft...
Adobe Commerce and Magento Open Source information disclosure | CVE-2023-29289
NAME__________Adobe Commerce and Magento Open Source information disclosurePlatforms Affected:Adobe Commerce 2.4.6 Adobe Commerce 2.4.5-p2 Adobe Commerce 2.4.4-p3 Adobe Commerce 2.4.3-ext-2...
Microsoft Windows Media code execution | CVE-2023-29365
NAME__________Microsoft Windows Media code executionPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...
Microsoft Azure DevOps Server spoofing | CVE-2023-21565
NAME__________Microsoft Azure DevOps Server spoofingPlatforms Affected:Microsoft Azure DevOps Server 2020.0.1 Microsoft Azure DevOps Server 2022 Microsoft Azure DevOps Server 2022.0.1Risk...
Microsoft Yet Another Reverse Proxy (YARP) denial of service | CVE-2023-33141
NAME__________Microsoft Yet Another Reverse Proxy (YARP) denial of servicePlatforms Affected:Microsoft YARP 2.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Microsoft Yet Another Reverse Proxy...
Microsoft .NET denial of service | CVE-2023-29331
NAME__________Microsoft .NET denial of servicePlatforms Affected:Microsoft .NET Framework 4.8 on Windows 10 for 32-bit Systems 1607 Microsoft .NET Framework 4.8...
Microsoft Dynamics 365 (on-premises) cross-site scripting | CVE-2023-24896
NAME__________Microsoft Dynamics 365 (on-premises) cross-site scriptingPlatforms Affected:Microsoft Dynamics 365 (on-premises) 9.1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Microsoft Dynamics 365 (on-premises) is vulnerable to...
Microsoft Windows DNS spoofing | CVE-2023-32020
NAME__________Microsoft Windows DNS spoofingPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Windows Server...
Adobe Commerce and Magento Open Source information disclosure | CVE-2023-29287
NAME__________Adobe Commerce and Magento Open Source information disclosurePlatforms Affected:Adobe Commerce 2.4.6 Adobe Commerce 2.4.5-p2 Adobe Commerce 2.4.4-p3 Adobe Commerce 2.4.3-ext-2...
Zoom clients cross-site scripting | CVE-2023-28599
NAME__________Zoom clients cross-site scriptingPlatforms Affected:Zoom Zoom Rooms (for Android iOS Linux macOS and Windows) clients 5.13.4Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Zoom clients...
SAP Plant Connectivity security bypass | CVE-2023-2827
NAME__________SAP Plant Connectivity security bypassPlatforms Affected:SAP Plant Connectivity 15.5Risk Level:7.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SAP Plant Connectivity could allow a remote authenticated attacker...
Tenda AC10 denial of service | CVE-2023-34571
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Login/Signup Popup plugin for WordPress cross-site request forgery | CVE-2020-36715
NAME__________Login/Signup Popup plugin for WordPress cross-site request forgeryPlatforms Affected:XootiX Login/Signup Popup plugin for WordPress 1.4Risk Level:7.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Login/Signup Popup plugin...
Chamilo LMS cross-site scripting | CVE-2023-34961
NAME__________Chamilo LMS cross-site scriptingPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:6.1Exploitability:HighConsequences:Gain Access DESCRIPTION__________Chamilo LMS is vulnerable to cross-site scripting, caused by improper...
Tenda AC10 denial of service | CVE-2023-34569
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Slideshow, Image Slider by 2J plugin for WordPress security bypass | CVE-2020-36729
NAME__________Slideshow, Image Slider by 2J plugin for WordPress security bypassPlatforms Affected:2J Slideshow Team Slideshow Image Slider by 2J plugin for...
/tg/station tgstation-server information disclosure | CVE-2023-34243
NAME__________/tg/station tgstation-server information disclosurePlatforms Affected:/tg/station tgstation-server 4.0.0 /tg/station tgstation-server 5.12.4Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________/tg/station tgstation-server could allow a remote attacker to...
Chamilo LMS security bypass | CVE-2023-34958
NAME__________Chamilo LMS security bypassPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:5.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Chamilo LMS could allow a remote attacker to bypass security...
Western Digital MyCloud PR4100 server-side request forgery | CVE-2022-29840
NAME__________Western Digital MyCloud PR4100 server-side request forgeryPlatforms Affected:Western Digital MyCloud PR4100 5.26Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Western Digital MyCloud PR4100 is vulnerable...
Tenda AC10 denial of service | CVE-2023-34568
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Performance Indicator System cross-site scripting | CVE-2023-3183
NAME__________Performance Indicator System cross-site scriptingPlatforms Affected:Sourcecodester Performance Indicator System 1.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Performance Indicator System is vulnerable to cross-site scripting,...
Chamilo LMS security bypass | CVE-2023-34962
NAME__________Chamilo LMS security bypassPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Chamilo LMS could allow a remote attacker to bypass security...
HashiCorp Vault and Vault Enterprise cross-site scripting | CVE-2023-2121
NAME__________HashiCorp Vault and Vault Enterprise cross-site scriptingPlatforms Affected:HashiCorp Vault 1.11.10 HashiCorp Vault 1.12.6 HashiCorp Vault 1.13.2 HashiCorp Vault Enterprise 1.11.10...
