Grid Plus plugin for WordPress security bypass | CVE-2023-5250
NAME__________Grid Plus plugin for WordPress security bypassPlatforms Affected:G5Theme Grid Plus Plugin for WordPress 1.3.2 G5Theme Grid Plus plugin for WordPress...
CVE
idbbee plugin for WordPress cross-site scripting | CVE-2023-5114
NAME__________idbbee plugin for WordPress cross-site scriptingPlatforms Affected:WordPress idbbee plugin for WordPress 1.0 WordPress idbbee plugin for WordPress 0.9Risk Level:5.4Exploitability:UnprovenConsequences:Cross-Site Scripting...
TOTOLINK X6000R code execution | CVE-2023-46485
NAME__________TOTOLINK X6000R code executionPlatforms Affected:TOTOLINK X6000R 9.4.0cu.852_B20230719Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________TOTOLINK X6000R could allow a remote attacker to execute...
RafflePress plugin for WordPress cross-site scripting | CVE-2023-5049
NAME__________RafflePress plugin for WordPress cross-site scriptingPlatforms Affected:WordPress RafflePress plugin for WordPress 1.12.0 WordPress RafflePress plugin for WordPress 1.11.9Risk Level:6.4Exploitability:UnprovenConsequences:Cross-Site Scripting...
Virtualmin cross-site scripting | CVE-2023-47099
NAME__________Virtualmin cross-site scriptingPlatforms Affected:Virtualmin Virtualmin 7.7Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Virtualmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Virtualmin cross-site scripting | CVE-2023-47096
NAME__________Virtualmin cross-site scriptingPlatforms Affected:Virtualmin Virtualmin 7.7Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Virtualmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Virtualmin cross-site scripting | CVE-2023-47098
NAME__________Virtualmin cross-site scriptingPlatforms Affected:Virtualmin Virtualmin 7.7Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Virtualmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
TOTOLINK X6000R code execution | CVE-2023-46484
NAME__________TOTOLINK X6000R code executionPlatforms Affected:TOTOLINK X6000R 9.4.0cu.852_B20230719Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________TOTOLINK X6000R could allow a remote attacker to execute...
Virtualmin cross-site scripting | CVE-2023-47097
NAME__________Virtualmin cross-site scriptingPlatforms Affected:Virtualmin Virtualmin 7.7Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Virtualmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Live updates from Excel plugin for WordPress cross-site scripting | CVE-2023-5116
NAME__________Live updates from Excel plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Live updates from Excel plugin for WordPress 2.3.2 WordPress Live...
Carousel, Recent Post Slider and Banner Slider plugin for WordPress cross-site scripting | CVE-2023-5362
NAME__________Carousel, Recent Post Slider and Banner Slider plugin for WordPress cross-site scriptingPlatforms Affected:Spicethemes Carousel Recent Post Slider and Banner Slider...
Inkdrop code execution | CVE-2023-44141
NAME__________Inkdrop code executionPlatforms Affected:Inkdrop Inkdrop 5.6.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Inkdrop could allow a local attacker to execute arbitrary code on the...
Cybozu Remote Service denial of service | CVE-2023-46278
NAME__________Cybozu Remote Service denial of servicePlatforms Affected:Cybozu Remote Service 4.1.1 Cybozu Remote Service 4.1.0Risk Level:4.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Cybozu Remote Service...
Hitachi Energy eSOMS information disclosure | CVE-2023-5516
NAME__________Hitachi Energy eSOMS information disclosurePlatforms Affected:Hitachi Energy eSOMS 6.0 Hitachi Energy eSOMS 6.3.13Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Hitachi Energy eSOMS could allow...
Virtualmin cross-site scripting | CVE-2023-47095
NAME__________Virtualmin cross-site scriptingPlatforms Affected:Virtualmin Virtualmin 7.7Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Virtualmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Virtualmin cross-site scripting | CVE-2023-47094
NAME__________Virtualmin cross-site scriptingPlatforms Affected:Virtualmin Virtualmin 7.7Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Virtualmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
iframe forms plugin for WordPress cross-site scripting | CVE-2023-5073
NAME__________iframe forms plugin for WordPress cross-site scriptingPlatforms Affected:WordPress iframe forms plugin for WordPress 1.0 WordPress iframe forms plugin for WordPress...
Hitachi Energy eSOMS information disclosure | CVE-2023-5514
NAME__________Hitachi Energy eSOMS information disclosurePlatforms Affected:Hitachi Energy eSOMS 6.0 Hitachi Energy eSOMS 6.3.13Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Hitachi Energy eSOMS could allow...
UNISOC mobile phone chipsets for Android information disclosure | CVE-2023-42650
NAME__________UNISOC mobile phone chipsets for Android information disclosurePlatforms Affected:Unisoc SC9863A Unisoc SC9832E Unisoc SC7731E Unisoc T610 Unisoc T606 Unisoc T760...
Photos and Files Contest Gallery plugin for WordPress cross-site scripting | CVE-2023-5307
NAME__________Photos and Files Contest Gallery plugin for WordPress cross-site scriptingPlatforms Affected:Contest Gallery Photos and Files Contest Gallery plugin for WordPress...
TOTOLINK A3300R command execution | CVE-2023-46993
NAME__________TOTOLINK A3300R command executionPlatforms Affected:TOTOLINK A3300R 17.0.0cu.557_B20221024Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________TOTOLINK A3300R could allow a remote attacker to execute...
FareHarbor plugin for WordPress SQL injection | CVE-2023-5252
NAME__________FareHarbor plugin for WordPress SQL injectionPlatforms Affected:FareHarbor FareHarbor plugin for WordPress 3.6.7Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________FareHarbor plugin for WordPress is vulnerable...
Tenable Nessus and Tenable Nessus Agent privilege escalation | CVE-2023-5847
NAME__________Tenable Nessus and Tenable Nessus Agent privilege escalationPlatforms Affected:Tenable Nessus 10.4.1 Tenable Nessus 10.3.1 Tenable Nessus Agent 10.4.2Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privileges...
Buzzsprout Podcasting plugin for WordPress cross-site scripting | CVE-2023-5335
NAME__________Buzzsprout Podcasting plugin for WordPress cross-site scriptingPlatforms Affected:Buzzsprout Buzzsprout Podcasting plugin for WordPress 1.8.4Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Buzzsprout Podcasting plugin for...
