Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2023-09-28 CVE-2023-43863 Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.02
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanDhcpplus function.
network
low complexity
dlink CWE-787
7.5
2023-09-28 CVE-2023-43864 Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.02
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard55 function.
network
low complexity
dlink CWE-787
7.5
2023-09-28 CVE-2023-43865 Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.02
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanPPTP function.
network
low complexity
dlink CWE-787
7.5
2023-09-28 CVE-2023-43866 Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.02
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard7 function.
network
low complexity
dlink CWE-787
7.5
2023-09-28 CVE-2023-43867 Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.02
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanL2TP function.
network
low complexity
dlink CWE-787
7.5
2023-09-28 CVE-2023-43868 Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.02
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via websGetVar function.
network
low complexity
dlink CWE-787
7.5
2023-09-28 CVE-2023-43871 Cross-site Scripting vulnerability in Wbce CMS 1.6.1
A File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS).
network
low complexity
wbce CWE-79
5.4
2023-09-28 CVE-2023-43872 Cross-site Scripting vulnerability in Cmsmadesimple 2.2.18
A File upload vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS).
network
low complexity
cmsmadesimple CWE-79
5.4
2023-09-28 CVE-2023-43873 Cross-site Scripting vulnerability in E107 CMS 2.3.2
A Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Name filed in the Manage Menu.
network
low complexity
e107 CWE-79
5.4
2023-09-28 CVE-2023-43874 Cross-site Scripting vulnerability in E107 CMS 2.3.2
Multiple Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Copyright and Author fields in the Meta & Custom Tags Menu.
network
low complexity
e107 CWE-79
5.4