VMware Tanzu Spring for GraphQL information disclosure | CVE-2023-34047
NAME__________VMware Tanzu Spring for GraphQL information disclosurePlatforms Affected:VMware Tanzu Spring for GraphQL 1.1.0 VMware Tanzu Spring for GraphQL 1.1.5 VMware...
Vulnerabilities
Widget Responsive for Youtube Plugin for WordPress cross-site scripting | CVE-2023-5063
NAME__________Widget Responsive for Youtube Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Widget Responsive for Youtube Plugin for WordPress 1.6.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting...
Hestiacp cross-site scripting | CVE-2023-5084
NAME__________Hestiacp cross-site scriptingPlatforms Affected:hestiacp hestiacp 1.8.7Risk Level:3.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Hestiacp is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Charts Plugin for WordPress cross-site scripting | CVE-2023-5062
NAME__________Charts Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Charts Plugin for WordPress 0.7.0Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Charts Plugin for WordPress is vulnerable...
Skyworth directory traversal | CVE-2023-40930
NAME__________Skyworth directory traversalPlatforms Affected:Skyworth Skyworth OS 3.0Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Skyworth could allow a local autheticated attacker to traverse directories on...
Frappe SQL injection | CVE-2023-42807
NAME__________Frappe SQL injectionPlatforms Affected:Frappe Frappe 1.0.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Frappe is vulnerable to SQL injection. A remote attacker could send specially...
Jenkins Build Failure Analyzer Plugin security bypass | CVE-2023-43501
NAME__________Jenkins Build Failure Analyzer Plugin security bypassPlatforms Affected:Jenkins Build Failure Analyzer Plugin 2.4.1Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins Build Failure Analyzer Plugin...
Hotel Druid SQL injection | CVE-2023-43371
NAME__________Hotel Druid SQL injectionPlatforms Affected:HotelDruid HotelDruid 3.0.5Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Hotel Druid is vulnerable to SQL injection. A remote attacker could...
Acronis Cyber Protect Home Office information disclosure | CVE-2023-5042
NAME__________Acronis Cyber Protect Home Office information disclosurePlatforms Affected:Acronis Cyber Protect Home Office (Windows)Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Acronis Cyber Protect Home Office...
Delta Electronics DIAScreen code execution | CVE-2023-5068
NAME__________Delta Electronics DIAScreen code executionPlatforms Affected:Delta Electronics DIAScreen 1.3.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Delta Electronics DIAScreen could allow a remote attacker to...
MEE-ADMIN CMS directory traversal | CVE-2023-42280
NAME__________MEE-ADMIN CMS directory traversalPlatforms Affected:MEE-ADMIN CMS MEE-ADMIN CMS 1.5Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MEE-ADMIN CMS could allow a remote attacker to traverse...
Plone plone.namedfile cross-site scripting | CVE-2023-41048
NAME__________Plone plone.namedfile cross-site scriptingPlatforms Affected:Plone plone.namedfile 5.6.0 Plone plone.namedfile 6.0.2 Plone plone.namedfile 6.1.2 Plone plone.namedfile 6.2.0Risk Level:3.7Exploitability:FunctionalConsequences:Cross-Site Scripting DESCRIPTION__________Plone plone.namedfile...
Zoo Management System cross-site scripting | CVE-2023-41614
NAME__________Zoo Management System cross-site scriptingPlatforms Affected:Zoo Management System Zoo Management System 1.0 Zoo Management System Zoo Management System 0.9Risk Level:5.5Exploitability:HighConsequences:Cross-Site...
Dreamer CMS SQL injection | CVE-2023-42279
NAME__________Dreamer CMS SQL injectionPlatforms Affected:I Teach You Dreamer CMS 4.1.3Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Dreamer CMS is vulnerable to SQL injection. A...
D-Link DIR-806 command execution | CVE-2023-43128
NAME__________D-Link DIR-806 command executionPlatforms Affected:D-Link DIR-806 DIR806A1_FW100CNb11Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________D-Link DIR-806 could allow a remote attacker to execute...
Student Management System cross-site scripting | CVE-2023-41616
NAME__________Student Management System cross-site scriptingPlatforms Affected:Student Management System Student Management System 1.0 Student Management System Student Management System 1.2.3Risk Level:4.8Exploitability:HighConsequences:Cross-Site...
NocoDB denial of service | CVE-2023-5104
NAME__________NocoDB denial of servicePlatforms Affected:NocoDB NocoDB 0.92.3Risk Level:5.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NocoDB is vulnerable to a denial of service, caused by...
Linux Kernel code execution | CVE-2023-42753
NAME__________Linux Kernel code executionPlatforms Affected:Linux Kernel 5.10 Linux Kernel 5.15 Linux Kernel 6.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Linux Kernel could allow a...
WithSecure products denial of service | CVE-2023-43767
NAME__________WithSecure products denial of servicePlatforms Affected:WithSecure Client Security 15 WithSecure Server Security 15 WithSecure Email and Server Security 15 WithSecure...
WP-Matomo Integration (WP-Piwik) plugin for WordPress cross-site scripting | CVE-2023-4774
NAME__________WP-Matomo Integration (WP-Piwik) plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP-Matomo Integration (WP-Piwik) plugin for WordPress 1.0.28 WordPress WP-Matomo Integration (WP-Piwik)...
WithSecure products denial of service | CVE-2023-43760
NAME__________WithSecure products denial of servicePlatforms Affected:WithSecure Client Security 15 WithSecure Server Security 15 WithSecure Email and Server Security 15 WithSecure...
WithSecure products denial of service | CVE-2023-43761
NAME__________WithSecure products denial of servicePlatforms Affected:WithSecure Client Security 15 WithSecure Server Security 15 WithSecure Email and Server Security 15 WithSecure...
WithSecure Policy Manager cross-site scripting |
NAME__________WithSecure Policy Manager cross-site scriptingPlatforms Affected:WithSecure Policy Manager 15 Windows WithSecure Policy Manager 15 LinuxRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WithSecure Policy Manager...
WithSecure products denial of service | CVE-2023-43765
NAME__________WithSecure products denial of servicePlatforms Affected:WithSecure Client Security 15 WithSecure Server Security 15 WithSecure Email and Server Security 15 WithSecure...
