CVE

Codesys products denial of service | CVE-2023-37547

August 8, 2023

NAME__________Codesys products denial of servicePlatforms Affected:CODESYS Control for BeagleBone SL CODESYS Control for emPC-A/iMX6 SL CODESYS Control for IOT2000 SL...

PHPJabbers Bus Reservation System cross-site scripting | CVE-2023-4111

August 8, 2023

NAME__________PHPJabbers Bus Reservation System cross-site scriptingPlatforms Affected:PHPJabbers Bus Reservation System 1.1Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PHPJabbers Bus Reservation System is vulnerable to...

NVIDIA Omniverse Workstation Launcher for Windows and Linux information disclosure | CVE-2023-25524

August 8, 2023

NAME__________NVIDIA Omniverse Workstation Launcher for Windows and Linux information disclosurePlatforms Affected:NVIDIA Omniverse Workstation Launcher for Windows and Linux 1.8.7Risk Level:4Exploitability:UnprovenConsequences:Obtain...

Codesys products denial of service | CVE-2023-37553

August 8, 2023

NAME__________Codesys products denial of servicePlatforms Affected:CODESYS Control for BeagleBone SL CODESYS Control for emPC-A/iMX6 SL CODESYS Control for IOT2000 SL...

Suprema BioStar SQL injection | CVE-2023-33366

August 8, 2023

NAME__________Suprema BioStar SQL injectionPlatforms Affected:Suprema BioStar 2.9.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Suprema BioStar is vulnerable to SQL injection. A remote attacker could...

Triangle MicroWorks SCADA Data Gateway directory traversal | CVE-2023-39459

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway directory traversalPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:7.8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Triangle MicroWorks SCADA Data Gateway security bypass | CVE-2023-39461

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway security bypassPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:4.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Codesys products denial of service | CVE-2023-37546

August 8, 2023

NAME__________Codesys products denial of servicePlatforms Affected:CODESYS Control for BeagleBone SL CODESYS Control for emPC-A/iMX6 SL CODESYS Control for IOT2000 SL...

Triangle MicroWorks SCADA Data Gateway directory traversal | CVE-2023-39460

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway directory traversalPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:7.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Suprema BioStar security bypass | CVE-2023-33363

August 8, 2023

NAME__________Suprema BioStar security bypassPlatforms Affected:Suprema BioStar 2.9.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Suprema BioStar could allow a remote attacker to bypass security restrictions,...

CODESYS Development System code execution | CVE-2023-3662

August 8, 2023

NAME__________CODESYS Development System code executionPlatforms Affected:CODESYS Development System 3.5.17.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CODESYS Development System could allow a local authenticated attacker...

Codesys products denial of service | CVE-2023-37550

August 8, 2023

NAME__________Codesys products denial of servicePlatforms Affected:CODESYS Control for BeagleBone SL CODESYS Control for emPC-A/iMX6 SL CODESYS Control for IOT2000 SL...

Suprema BioStar directory traversal | CVE-2023-33365

August 8, 2023

NAME__________Suprema BioStar directory traversalPlatforms Affected:Suprema BioStar 2.9.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Suprema BioStar could allow a remote attacker to traverse directories on...

Codesys products denial of service | CVE-2023-37545

August 8, 2023

NAME__________Codesys products denial of servicePlatforms Affected:CODESYS Control for BeagleBone SL CODESYS Control for emPC-A/iMX6 SL CODESYS Control for IOT2000 SL...

Pimcore directory traversal | CVE-2023-38708

August 8, 2023

NAME__________Pimcore directory traversalPlatforms Affected:Pimcore Pimcore 10.6.6Risk Level:6.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Pimcore could allow a remote authenticated attacker to traverse directories on the...

Triangle MicroWorks SCADA Data Gateway default account | CVE-2023-39465

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway default accountPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway contains...

Triangle MicroWorks SCADA Data Gateway file upload | CVE-2023-39462

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway file uploadPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Triangle MicroWorks SCADA Data Gateway information disclosure | CVE-2023-39466

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway information disclosurePlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Fujitsu Infrastructure Manager information disclosure | CVE-2023-39379

August 8, 2023

NAME__________Fujitsu Infrastructure Manager information disclosurePlatforms Affected:Fujitsu Infrastructure Manager 2.8.0.060 Advanced Edition Fujitsu Infrastructure Manager 2.8.0.060 Advanced Edition for PRIMEFLEX Fujitsu...

Connected IO routers information disclosure | CVE-2023-33373

August 8, 2023

NAME__________Connected IO routers information disclosurePlatforms Affected:Connected IO CR48NA 2.1.0 Connected IO CR64NA 2.1.0 Connected IO CR42NA 2.1.0 Connected IO CR44NA...

Triangle MicroWorks SCADA Data Gateway code execution | CVE-2023-39464

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway code executionPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Triangle MicroWorks SCADA Data Gateway code execution | CVE-2023-39468

August 8, 2023

Triangle MicroWorks SCADA Data Gateway file upload | CVE-2023-39463

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway file uploadPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway could...

Triangle MicroWorks SCADA Data Gateway default account | CVE-2023-39458

August 8, 2023

NAME__________Triangle MicroWorks SCADA Data Gateway default accountPlatforms Affected:Triangle MicroWorks SCADA Data GatewayRisk Level:5.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Triangle MicroWorks SCADA Data Gateway contains...

CVE

Codesys products denial of service | CVE-2023-37547

PHPJabbers Bus Reservation System cross-site scripting | CVE-2023-4111

NVIDIA Omniverse Workstation Launcher for Windows and Linux information disclosure | CVE-2023-25524

Codesys products denial of service | CVE-2023-37553

Suprema BioStar SQL injection | CVE-2023-33366

Triangle MicroWorks SCADA Data Gateway directory traversal | CVE-2023-39459

Triangle MicroWorks SCADA Data Gateway security bypass | CVE-2023-39461

Codesys products denial of service | CVE-2023-37546

Triangle MicroWorks SCADA Data Gateway directory traversal | CVE-2023-39460

Suprema BioStar security bypass | CVE-2023-33363

CODESYS Development System code execution | CVE-2023-3662

Codesys products denial of service | CVE-2023-37550

Suprema BioStar directory traversal | CVE-2023-33365

Codesys products denial of service | CVE-2023-37545

Pimcore directory traversal | CVE-2023-38708

Triangle MicroWorks SCADA Data Gateway default account | CVE-2023-39465

Triangle MicroWorks SCADA Data Gateway file upload | CVE-2023-39462

Triangle MicroWorks SCADA Data Gateway information disclosure | CVE-2023-39466

Fujitsu Infrastructure Manager information disclosure | CVE-2023-39379

Connected IO routers information disclosure | CVE-2023-33373

Triangle MicroWorks SCADA Data Gateway code execution | CVE-2023-39464

Triangle MicroWorks SCADA Data Gateway code execution | CVE-2023-39468

Triangle MicroWorks SCADA Data Gateway file upload | CVE-2023-39463

Triangle MicroWorks SCADA Data Gateway default account | CVE-2023-39458

HackerOne Bug Bounty Disclosure: -actionview-sanitize-helper-bypass-with-math-related-tags-mokusou

HackerOne Bug Bounty Disclosure: actionview-sanitize-helper-bypass-with-noscript-taise

HackerOne Bug Bounty Disclosure: -actionview-sanitize-helper-bypass-with-style-and-math-mokusou

HackerOne Bug Bounty Disclosure: actionview-sanitize-helper-bypass-with-style-mokusou

HackerOne Bug Bounty Disclosure: goaway-http-frames-cause-memory-leak-outside-heap-newtmitch

You may have missed