Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-30 | CVE-2023-5313 | Race Condition vulnerability in PHPkobo Ajax Poll Script 3.18 A vulnerability classified as problematic was found in phpkobo Ajax Poll Script 3.18. | 3.7 |
| 2023-09-29 | CVE-2023-5159 | Incorrect Authorization vulnerability in Mattermost Mattermost fails to properly verify the permissions when managing/updating a bot allowing a User Manager role with user edit permissions to manage/update bots. | 2.7 |
| 2023-09-29 | CVE-2023-5193 | Incorrect Authorization vulnerability in Mattermost Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage channels to read the posts of a DM conversation. | 2.7 |
| 2023-09-29 | CVE-2023-3906 | Unspecified vulnerability in Gitlab An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1, allowed an authenticated attacker to craft image urls which bypass the asset proxy. | 3.5 |
| 2023-09-28 | CVE-2023-38872 | Authorization Bypass Through User-Controlled Key vulnerability in Economizzer 0.9/April2023 An Insecure Direct Object Reference (IDOR) vulnerability in gugoan Economizzer commit 3730880 (April 2023) and v.0.9-beta1 allows any unauthenticated attacker to access cash book entry attachments of any other user, if they know the Id of the attachment. | 3.7 |
| 2023-09-27 | CVE-2023-40384 | Unspecified vulnerability in Apple products A permissions issue was addressed with improved redaction of sensitive information. | 3.3 |
| 2023-09-27 | CVE-2023-40386 | Unspecified vulnerability in Apple Macos A privacy issue was addressed with improved handling of temporary files. | 3.3 |
| 2023-09-27 | CVE-2023-40395 | Unspecified vulnerability in Apple products The issue was addressed with improved handling of caches. | 3.3 |
| 2023-09-27 | CVE-2023-40427 | Unspecified vulnerability in Apple products The issue was addressed with improved handling of caches. | 3.3 |
| 2023-09-27 | CVE-2023-40434 | Unspecified vulnerability in Apple Macos A configuration issue was addressed with additional restrictions. | 3.3 |