Jubei JB Inquiry information disclosure | CVE-2023-27510
NAME__________Jubei JB Inquiry information disclosurePlatforms Affected:Jubei JB Inquiry 0.6.1 Jubei JB Inquiry 0.6.0 Jubei JB Inquiry 0.5.2 Jubei JB Inquiry...
Vulnerabilities
Trend Micro Security code execution | CVE-2023-28929
NAME__________Trend Micro Security code executionPlatforms Affected:Trend Micro Security 2022/2023 17.7.1476 Trend Micro Security 2021 17.0.1412Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Trend Micro Security...
Auto Dealer Management System SQL injection | CVE-2023-27666
NAME__________Auto Dealer Management System SQL injectionPlatforms Affected:Sourcecodester Auto Dealer Management System 1.0Risk Level:6.1Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Auto Dealer Management System is vulnerable...
VMware Tanzu Spring Session information disclosure | CVE-2023-20866
NAME__________VMware Tanzu Spring Session information disclosurePlatforms Affected:VMware Tanzu Spring Session 3.0.0Risk Level:6.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________VMware Tanzu Spring Session could allow a...
Modal Dialog Plugin for WordPress cross-site scripting | CVE-2023-24001
NAME__________Modal Dialog Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Modal Dialog Plugin for WordPress 3.5.9Risk Level:5.9Exploitability:HighConsequences:Gain Access DESCRIPTION__________Modal Dialog Plugin for...
WP Data Access plugin for WordPress privilege escalation | CVE-2023-1874
NAME__________WP Data Access plugin for WordPress privilege escalationPlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________WP Data Access plugin for WordPress could allow a...
VMware Tanzu Spring Framework denial of service | CVE-2023-20863
NAME__________VMware Tanzu Spring Framework denial of servicePlatforms Affected:VMware Tanzu Spring Framework 5.3.0 VMware Tanzu Spring Framework 6.0.0 VMware Tanzu Spring...
Sonos One Speaker information disclosure | CVE-2023-27350
NAME__________Sonos One Speaker information disclosurePlatforms Affected:Sonos One SpeakerRisk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sonos One Speaker could allow a remote attacker to obtain...
Sonos One Speaker information disclosure | CVE-2023-27353
NAME__________Sonos One Speaker information disclosurePlatforms Affected:Sonos One SpeakerRisk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sonos One Speaker could allow a remote attacker to obtain...
Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command execution | CVE-2022-40679
NAME__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F could...
RubyGems commonmarker gem denial of service |
NAME__________RubyGems commonmarker gem denial of servicePlatforms Affected:RubyGems commonmarker 0.23.8Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________RubyGems commonmarker gem is vulnerable to a denial...
Daily Vulnerability Trends: Sun Apr 16 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-23397Microsoft Outlook Elevation of Privilege VulnerabilityCVE-2023-28231DHCP Server Service Remote Code Execution VulnerabilityCVE-2023-21817Windows...
Siemens SCALANCE X-200IRT man-in-the-middle | CVE-2023-29054
NAME__________Siemens SCALANCE X-200IRT man-in-the-middlePlatforms Affected:Siemens SCALANCE X200-4P IRT Siemens SCALANCE X201-3P IRT Siemens SCALANCE X201-3P IRT PRO Siemens SCALANCE X202-2IRT...
Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command execution | CVE-2022-40679
NAME__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F could...
Daily Vulnerability Trends: Sat Apr 15 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-28879In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to...
Siemens SIPROTEC 5 devices denial of service | CVE-2023-28766
NAME__________Siemens SIPROTEC 5 devices denial of servicePlatforms Affected:Siemens SIPROTEC 5 6MD89 (CP300) Siemens SIPROTEC 5 7KE85 (CP200) Siemens SIPROTEC 5...
Siemens SCALANCE X-200IRT man-in-the-middle | CVE-2023-2905
NAME__________Siemens SCALANCE X-200IRT man-in-the-middlePlatforms Affected:Siemens SCALANCE X200-4P IRT Siemens SCALANCE X201-3P IRT Siemens SCALANCE X201-3P IRT PRO Siemens SCALANCE X202-2IRT...
Siemens Teamcenter Visualization and JT2Go buffer overflow | CVE-2023-1709
NAME__________Siemens Teamcenter Visualization and JT2Go buffer overflowPlatforms Affected:Siemens Teamcenter Visualization 14.0 Siemens Teamcenter Visualization 13.2 Siemens Teamcenter Visualization 13.3 Siemens...
LiveAction LiveSP cross-site scripting | CVE-2023-27775
NAME__________LiveAction LiveSP cross-site scriptingPlatforms Affected:Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________LiveAction LiveSPis vulnerable to cross-site scripting, caused by improper validation of user-supplied input...
ServiceNow cross-site scripting | CVE-2022-39048
NAME__________ServiceNow cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ServiceNow is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...
ManageEngine ADManager Plus command execution | CVE-2023-29084
NAME__________ManageEngine ADManager Plus command executionPlatforms Affected:Zoho ManageEngine ADManager PlusRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ManageEngine ADManager Plus could allow a remote authenticated attacker...
D-Link DSL-3782 code execution | CVE-2023-27216
NAME__________D-Link DSL-3782 code executionPlatforms Affected:Risk Level:6.8Exploitability:UnprovenConsequences: DESCRIPTION__________D-Link DSL-3782 could allow a remote authenticated attacker to execute arbitrary code on the...
Void Tools Everything denial of service | CVE-2023-27704
NAME__________Void Tools Everything denial of servicePlatforms Affected:Risk Level:4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Void Tools Everything is vulnerable to a denial of service,...
Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command execution | CVE-2022-40679
NAME__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F could...
