Vulnerabilities

Jenkins Azure Credentials Plugin security bypass | CVE-2023-25768

February 17, 2023

NAME__________Jenkins Azure Credentials Plugin security bypassPlatforms Affected:Jenkins Azure Credentials Plugin 253.v887e0f9e898bRisk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins Azure Credentials Plugin could allow a...

Kiwi TCMS brute force | CVE-2023-25156

February 17, 2023

NAME__________Kiwi TCMS brute forcePlatforms Affected:Risk Level:7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Kiwi TCMS is vulnerable to a brute force attack, caused by improper restriction...

DiscuzX cross-site scripting | CVE-2022-45543

February 17, 2023

NAME__________DiscuzX cross-site scriptingPlatforms Affected:Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________DiscuzX is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...

Jenkins Synopsys Coverity Plugin security bypass | CVE-2023-23848

February 17, 2023

NAME__________Jenkins Synopsys Coverity Plugin security bypassPlatforms Affected:Jenkins Synopsys Coverity Plugin 3.0.2Risk Level:7.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Jenkins Synopsys Coverity Plugin could allow a...

Jenkins Azure Credentials Plugin cross-site scripting | CVE-2023-25767

February 17, 2023

NAME__________Jenkins Azure Credentials Plugin cross-site scriptingPlatforms Affected:Jenkins Azure Credentials Plugin 253.v887e0f9e898bRisk Level:4.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Jenkins Azure Credentials Plugin is vulnerable to...

nitinparashar30 cms-corephp SQL injection | CVE-2021-33925

February 17, 2023

NAME__________nitinparashar30 cms-corephp SQL injectionPlatforms Affected:nitinparashar30 cms-corephpRisk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________nitinparashar30 cms-corephpl is vulnerable to SQL injection. A remote attacker could send...

PHP denial of service | CVE-2023-0662

February 17, 2023

NAME__________PHP denial of servicePlatforms Affected:PHP PHP 8.0.0 PHP PHP 8.1.0 PHP PHP 8.2.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________PHP is vulnerable to...

Cisco Nexus Dashboard cross-site scripting | CVE-2023-20053

February 17, 2023

NAME__________Cisco Nexus Dashboard cross-site scriptingPlatforms Affected:Cisco Nexus DashboardRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco Nexus Dashboard is vulnerable to cross-site scripting, caused by...

Jenkins Azure Credentials Plugin information disclosure | CVE-2023-25766

February 17, 2023

NAME__________Jenkins Azure Credentials Plugin information disclosurePlatforms Affected:Jenkins Azure Credentials Plugin 253.v887e0f9e898bRisk Level:4.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Jenkins Azure Credentials Plugin could allow a...

Mozilla Thunderbird denial of service | CVE-2023-0616

February 17, 2023

NAME__________Mozilla Thunderbird denial of servicePlatforms Affected:Mozilla Thunderbird 102.7Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mozilla Thunderbird is vulnerable to a denial of service,...

Node.js CRLF injection | CVE-2023-23936

February 17, 2023

NAME__________Node.js CRLF injectionPlatforms Affected:Node.js Node.js 14.0 Node.js Node.js 16.0 Node.js Node.js 18.0 Node.js Node.js 19.0Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Node.js is vulnerable...

Cisco Identity Services Engine cross-site scripting | CVE-2023-20085

February 17, 2023

NAME__________Cisco Identity Services Engine cross-site scriptingPlatforms Affected:Cisco Identity Services EngineRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco Identity Services Engine is vulnerable to cross-site...

Node.js denial of service | CVE-2023-24807

February 17, 2023

NAME__________Node.js denial of servicePlatforms Affected:Node.js Node.js 14.0 Node.js Node.js 16.0 Node.js Node.js 18.0 Node.js Node.js 19.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Node.js...

SolarWinds Server & Application Monitor information disclosure | CVE-2022-47508

February 17, 2023

NAME__________SolarWinds Server & Application Monitor information disclosurePlatforms Affected:SolarWinds Server & Application Monitor 2022.4Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SolarWinds Server & Application Monitor...

cURL libcurl information disclosure | CVE-2023-23915

February 17, 2023

NAME__________cURL libcurl information disclosurePlatforms Affected:cURL libcurl 7.77.0 cURL libcurl 7.87.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________cURL libcurl could allow a remote attacker to...

BD Alaris Infusion Central information disclosure | CVE-2022-47376

February 17, 2023

NAME__________BD Alaris Infusion Central information disclosurePlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________BD Alaris Infusion Central could allow a local authenticated attacker to...

Node.js security bypass | CVE-2023-23920

February 17, 2023

NAME__________Node.js security bypassPlatforms Affected:Node.js Node.js 14.0 Node.js Node.js 16.0 Node.js Node.js 18.0 Node.js Node.js 19.0Risk Level:2.7Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Node.js could allow...

cURL libcurl denial of service | CVE-2023-23916

February 17, 2023

NAME__________cURL libcurl denial of servicePlatforms Affected:cURL libcurl 7.57.0 cURL libcurl 7.87.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________cURL libcurl is vulnerable to a...

Lexis Nexis Firco Compliance Link cross-site request forgery | CVE-2022-29557

February 17, 2023

NAME__________Lexis Nexis Firco Compliance Link cross-site request forgeryPlatforms Affected:Lexis Nexis Firco Compliance Link 3.7Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Lexis Nexis Firco Compliance...

Node.js denial of service | CVE-2023-23919

February 17, 2023

NAME__________Node.js denial of servicePlatforms Affected:Node.js Node.js 14.0 Node.js Node.js 16.0 Node.js Node.js 18.0 Node.js Node.js 19.0Risk Level:5.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Node.js...

cURL libcurl information disclosure | CVE-2023-23914

February 17, 2023

PHPCrazy cross-site scripting | CVE-2023-0840

February 17, 2023

NAME__________PHPCrazy cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________PHPCrazy is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...

Daily Vulnerability Trends: Thu Feb 16 2023

February 16, 2023

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-23514 No description provided CVE-2023-23376Windows Common Log File System Driver Elevation of...

Daily Vulnerability Trends: Wed Feb 15 2023

February 15, 2023

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-22655 No description provided CVE-2023-21746Windows NTLM Elevation of Privilege Vulnerability.CVE-2022-47986 No description...

Vulnerabilities

Jenkins Azure Credentials Plugin security bypass | CVE-2023-25768

Kiwi TCMS brute force | CVE-2023-25156

DiscuzX cross-site scripting | CVE-2022-45543

Jenkins Synopsys Coverity Plugin security bypass | CVE-2023-23848

Jenkins Azure Credentials Plugin cross-site scripting | CVE-2023-25767

nitinparashar30 cms-corephp SQL injection | CVE-2021-33925

PHP denial of service | CVE-2023-0662

Cisco Nexus Dashboard cross-site scripting | CVE-2023-20053

Jenkins Azure Credentials Plugin information disclosure | CVE-2023-25766

Mozilla Thunderbird denial of service | CVE-2023-0616

Node.js CRLF injection | CVE-2023-23936

Cisco Identity Services Engine cross-site scripting | CVE-2023-20085

Node.js denial of service | CVE-2023-24807

SolarWinds Server & Application Monitor information disclosure | CVE-2022-47508

cURL libcurl information disclosure | CVE-2023-23915

BD Alaris Infusion Central information disclosure | CVE-2022-47376

Node.js security bypass | CVE-2023-23920

cURL libcurl denial of service | CVE-2023-23916

Lexis Nexis Firco Compliance Link cross-site request forgery | CVE-2022-29557

Node.js denial of service | CVE-2023-23919

cURL libcurl information disclosure | CVE-2023-23914

PHPCrazy cross-site scripting | CVE-2023-0840

Daily Vulnerability Trends: Thu Feb 16 2023

Daily Vulnerability Trends: Wed Feb 15 2023

CVE Alert: CVE-2024-36328

CVE Alert: CVE-2025-20203

CVE Alert: CVE-2024-36337

CVE Alert: CVE-2025-0014

CVE Alert: CVE-2025-20120

You may have missed