Vulnerabilities

Apple tvOS, iOS and iPadOS code execution | CVE-2023-32398

May 19, 2023

NAME__________Apple tvOS, iOS and iPadOS code executionPlatforms Affected:Apple iOS 15.7.5 Apple iPadOS 15.7.5 Apple iOS 16.4 Apple iPadOS 16.4 Apple...

Apple iOS and iPadOS security bypass | CVE-2023-32411

May 19, 2023

NAME__________Apple iOS and iPadOS security bypassPlatforms Affected:Apple iOS 16.4 Apple iPadOS 16.4Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apple iOS and iPadOS could allow...

Apple Safari, iOS and iPadOS security bypass | CVE-2023-32409

May 19, 2023

NAME__________Apple Safari, iOS and iPadOS security bypassPlatforms Affected:Apple Safari 16.4 Apple iOS 16.4 Apple iPadOS 16.4Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apple Safari,...

Apple Safari, tvOS, iOS and iPadOS information disclosure | CVE-2023-32402

May 19, 2023

NAME__________Apple Safari, tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple Safari 16.4 Apple iOS 16.4 Apple iPadOS 16.4 Apple tvOS 16.4Risk...

Apple tvOS, iOS and iPadOS privilege escalation | CVE-2023-32413

May 19, 2023

NAME__________Apple tvOS, iOS and iPadOS privilege escalationPlatforms Affected:Apple iOS 15.7.5 Apple iPadOS 15.7.5 Apple iOS 16.4 Apple iPadOS 16.4 Apple...

Apple iOS and iPadOS security bypass | CVE-2023-32388

May 19, 2023

NAME__________Apple iOS and iPadOS security bypassPlatforms Affected:Apple iOS 15.7.5 Apple iPadOS 15.7.5 Apple iOS 16.4 Apple iPadOS 16.4Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security...

Apple Safari, tvOS, iOS and iPadOS information disclosure | CVE-2023-32423

May 19, 2023

NAME__________Apple Safari, tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple Safari 16.4 Apple iOS 16.4 Apple iPadOS 16.4 Apple tvOS 16.4Risk...

Billing Management System SQL injection | CVE-2023-2689

May 18, 2023

NAME__________Billing Management System SQL injectionPlatforms Affected:Sourcecodester Billing Management System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Billing Management System is vulnerable to SQL injection....

Rockwell Automation FactoryTalk Vantagepoint cross-site request forgery | CVE-2023-2444

May 18, 2023

NAME__________Rockwell Automation FactoryTalk Vantagepoint cross-site request forgeryPlatforms Affected:Rockwell Automation FactoryTalk VantagePoint 8.00.00Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Rockwell Automation FactoryTalk Vantagepoint is vulnerable...

Gpdb directory traversal | CVE-2023-31131

May 18, 2023

NAME__________Gpdb directory traversalPlatforms Affected:Aruba Networks EdgeConnect EnterpriseRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Gpdb could allow a remote attacker to traverse directories on the...

SparkPost Plugin for WordPress cross-site scripting | CVE-2023-23654

May 18, 2023

NAME__________SparkPost Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress SparkPost Plugin for WordPress 3.2.5Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SparkPost Plugin for WordPress is vulnerable...

Aruba EdgeConnect Enterprise command execution | CVE-2023-30504

May 18, 2023

NAME__________Aruba EdgeConnect Enterprise command executionPlatforms Affected:Aruba Networks EdgeConnect EnterpriseRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Aruba EdgeConnect Enterprise could allow a remote authenticated attacker...

Aruba EdgeConnect Enterprise command execution | CVE-2023-30503

May 18, 2023

Dell CloudLink information disclosure | CVE-2023-28076

May 18, 2023

NAME__________Dell CloudLink information disclosurePlatforms Affected:Dell CloudLink 7.1.2Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell CloudLink could allow a remote attacker to obtain sensitive information,...

FormCraft plugin for WordPress cross-site scripting | CVE-2023-22717

May 18, 2023

NAME__________FormCraft plugin for WordPress cross-site scriptingPlatforms Affected:WordPress FormCraft Plugin for WordPress 1.2.6Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________FormCraft plugin for WordPress is vulnerable...

Mail Subscribe List plugin for WordPress cross-site scripting | CVE-2023-23657

May 18, 2023

NAME__________Mail Subscribe List plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Mail Subscribe List Plugin for WordPress 2.1.9Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mail Subscribe...

Cisco Identity Services Engine directory traversal | CVE-2023-20166

May 18, 2023

NAME__________Cisco Identity Services Engine directory traversalPlatforms Affected:Cisco Identity Services Engine (ISE) 3.2Risk Level:6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco Identity Services Engine could allow...

Aruba EdgeConnect Enterprise directory traversal | CVE-2023-30509

May 18, 2023

NAME__________Aruba EdgeConnect Enterprise directory traversalPlatforms Affected:Aruba Networks EdgeConnect EnterpriseRisk Level:4.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Aruba EdgeConnect Enterprise could allow a remote authenticated attacker...

Vulnerabilities

Apple tvOS, iOS and iPadOS code execution | CVE-2023-32398

Apple iOS and iPadOS security bypass | CVE-2023-32411

Apple Safari, iOS and iPadOS security bypass | CVE-2023-32409

Apple Safari, tvOS, iOS and iPadOS information disclosure | CVE-2023-32402

Apple tvOS, iOS and iPadOS privilege escalation | CVE-2023-32413

Apple iOS and iPadOS security bypass | CVE-2023-32388

Apple Safari, tvOS, iOS and iPadOS information disclosure | CVE-2023-32423

Billing Management System SQL injection | CVE-2023-2689

Rockwell Automation FactoryTalk Vantagepoint cross-site request forgery | CVE-2023-2444

Gpdb directory traversal | CVE-2023-31131

SparkPost Plugin for WordPress cross-site scripting | CVE-2023-23654

Aruba EdgeConnect Enterprise command execution | CVE-2023-30504

Aruba EdgeConnect Enterprise command execution | CVE-2023-30503

Dell CloudLink information disclosure | CVE-2023-28076

FormCraft plugin for WordPress cross-site scripting | CVE-2023-22717

Mail Subscribe List plugin for WordPress cross-site scripting | CVE-2023-23657

Cisco Identity Services Engine directory traversal | CVE-2023-20166

Aruba EdgeConnect Enterprise directory traversal | CVE-2023-30509

Aruba EdgeConnect Enterprise directory traversal | CVE-2023-30508

Cisco Smart Software Manager On-Prem SQL injection | CVE-2023-20110

Aruba EdgeConnect Enterprise command execution | CVE-2023-30505

Aruba EdgeConnect Enterprise command execution | CVE-2023-30506

Cisco Identity Services Engine command execution | CVE-2023-20163

cURL libcurl denial of service | CVE-2023-28320

CVE Alert: CVE-2025-1432

CVE Alert: CVE-2025-1431

CVE Alert: CVE-2025-1433

CVE Alert: CVE-2025-1430

CVE Alert: CVE-2025-1649

You may have missed