Trend Micro Apex One and Apex One as a Service privilege escalation | CVE-2023-47198
NAME__________Trend Micro Apex One and Apex One as a Service privilege escalationPlatforms Affected:Trend Micro Apex One On Premise (2019) Trend...
CVE
HotelDruid cross-site scripting | CVE-2023-47164
NAME__________HotelDruid cross-site scriptingPlatforms Affected:HotelDruid HotelDruid 3.0.2 HotelDruid HotelDruid 3.0.3 HotelDruid HotelDruid 3.0.5Risk Level:6.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________HotelDruid is vulnerable to cross-site scripting,...
Golang Go weak security | CVE-2023-45284
NAME__________Golang Go weak securityPlatforms Affected:Golang Go 1.20.10 Golang Go 1.21.3Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Golang Go could provide weaker than expected security,...
Microsoft Edge (Chromium-based) code execution | CVE-2023-36014
NAME__________Microsoft Edge (Chromium-based) code executionPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to execute...
Seriously Simple Stats Plugin for WordPress SQL injection | CVE-2023-45001
NAME__________Seriously Simple Stats Plugin for WordPress SQL injectionPlatforms Affected:Online Art Gallery Project Online Art Gallery Project 1.0 WordPress Seriously Simple...
Microsoft Edge (Chromium-based) privilege escalation | CVE-2023-36024
NAME__________Microsoft Edge (Chromium-based) privilege escalationPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:7.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to gain...
Apache OFBiz security bypass | CVE-2023-46819
NAME__________Apache OFBiz security bypassPlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apache OFBiz could allow a remote attacker to bypass security restrictions, caused by...
Interact: Embed A Quiz On Your Site Plugin for WordPress cross-site scripting | CVE-2023-5659
NAME__________Interact: Embed A Quiz On Your Site Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Interact: Embed A Quiz On Your Site...
QNAP QTS, QuTS hero, and QuTScloud server-side request forgery | CVE-2023-39301
NAME__________QNAP QTS, QuTS hero, and QuTScloud server-side request forgeryPlatforms Affected:QNAP QTS 5.0.0 QNAP QuTS Hero h5.0.0 QNAP QuTS hero h5.1.0...
Featured Image Caption Plugin for WordPress and WooCommerce Plugin for WordPress cross-site scripting | CVE-2023-5669
NAME__________Featured Image Caption Plugin for WordPress and WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Featured Image Caption Plugin for WordPress...
ImageMapper Plugin for WordPress cross-site request forgery | CVE-2023-5975
NAME__________ImageMapper Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress ImageMapper Plugin for WordPress 1.2.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ImageMapper Plugin for WordPress is...
WP MapIt Plugin for WordPress cross-site scripting | CVE-2023-5658
NAME__________WP MapIt Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP MapIt Plugin for WordPress 2.7.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WP MapIt Plugin for...
GraphQL module for Drupal security bypass |
NAME__________GraphQL module for Drupal security bypassPlatforms Affected:Drupal GraphQL module for Drupal 8.x-4.5Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GraphQL module for Drupal could allow...
Open Design Alliance Drawings SDK code execution | CVE-2023-5179
NAME__________Open Design Alliance Drawings SDK code executionPlatforms Affected:Open Design Alliance Drawings SDK 24.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Open Design Alliance Drawings SDK...
Social Feed Plugin for WordPress and WooCommerce Plugin for WordPress cross-site scripting | CVE-2023-5661
NAME__________Social Feed Plugin for WordPress and WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Social Feed Plugin for WordPress 1.5.4.6Risk Level:6.4Exploitability:HighConsequences:Cross-Site...
Videolan VLC Media Player denial of service | CVE-2023-47360
NAME__________Videolan VLC Media Player denial of servicePlatforms Affected:Videolan VLC Media Player 3.0.19Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Videolan VLC Media Player is...
Puppet Enterprise security bypass | CVE-2023-5309
NAME__________Puppet Enterprise security bypassPlatforms Affected:Puppet Puppet Enterprise 2021.7.5 Puppet Puppet Enterprise 2023.4Risk Level:6.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Puppet Enterprise could allow a remote...
Videolan VLC Media Player denial of service | CVE-2023-47359
NAME__________Videolan VLC Media Player denial of servicePlatforms Affected:Videolan VLC Media Player 3.0.19Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Videolan VLC Media Player is...
Telephone Number Linker Plugin for WordPress cross-site scripting | CVE-2023-5743
NAME__________Telephone Number Linker Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Telephone Number Linker Plugin for WordPress 1.2Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Telephone Number...
SendPress Newsletters Plugin for WordPress cross-site scripting | CVE-2023-5660
NAME__________SendPress Newsletters Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress SendPress Newsletters Plugin for WordPress 1.22.3.31Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SendPress Newsletters Plugin for...
Amazonify Plugin for WordPress cross-site request forgery | CVE-2023-5818
NAME__________Amazonify Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Amazonify Plugin for WordPress 0.8.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Amazonify Plugin for WordPress is...
GE MiCOM S1 code execution | CVE-2023-0898
NAME__________GE MiCOM S1 code executionPlatforms Affected:General Electric MiCOM S1 AgileRisk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GE MiCOM S1 Agile allows a local authenticated...
FreeBSD security bypass | CVE-2023-5978
NAME__________FreeBSD security bypassPlatforms Affected:Risk Level:6.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________FreeBSD could allow a local attacker to bypass security restrictions, caused by a flaw...
Golang Go weak security |
NAME__________Golang Go weak securityPlatforms Affected:Golang Go 1.20.10 Golang Go 1.21.3Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Golang Go could provide weaker than expected security,...
