Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-19 | CVE-2023-2814 | Cross-site Scripting vulnerability in Class Scheduling System Project Class Scheduling System 1.0 A vulnerability classified as problematic has been found in SourceCodester Class Scheduling System 1.0. | 6.1 |
| 2023-05-19 | CVE-2023-22878 | Cleartext Storage of Sensitive Information vulnerability in IBM Infosphere Information Server 11.7 IBM InfoSphere Information Server 11.7 stores user credentials in plain clear text which can be read by a local user. | 5.5 |
| 2023-05-19 | CVE-2023-28529 | Cross-site Scripting vulnerability in IBM Infosphere Information Server 11.7 IBM InfoSphere Information Server 11.7 is vulnerable to stored cross-site scripting. | 5.4 |
| 2023-05-19 | CVE-2023-28950 | Unspecified vulnerability in IBM MQ IBM MQ 8.0, 9.0, 9.1, 9.2, and 9.3 could disclose sensitive user information from a trace file if that functionality has been enabled. | 5.5 |
| 2023-05-19 | CVE-2023-28514 | Information Exposure Through an Error Message vulnerability in IBM MQ IBM MQ 8.0, 9.0, and 9.1 could allow a local user to obtain sensitive credential information when a detailed technical error message is returned in a stack trace. | 5.5 |
| 2023-05-19 | CVE-2023-30774 | Out-of-bounds Write vulnerability in Libtiff 4.0.0 A vulnerability was found in the libtiff library. | 5.5 |
| 2023-05-19 | CVE-2023-30775 | Out-of-bounds Write vulnerability in Libtiff 4.4.0 A vulnerability was found in the libtiff library. | 5.5 |
| 2023-05-19 | CVE-2023-31757 | Cross-site Scripting vulnerability in Dedecms 5.7.108 DedeCMS up to v5.7.108 is vulnerable to XSS in sys_info.php via parameters 'edit___cfg_powerby' and 'edit___cfg_beian' | 5.4 |
| 2023-05-19 | CVE-2023-31756 | OS Command Injection vulnerability in Tp-Link Archer Vr1600V Firmware A command injection vulnerability exists in the administrative web portal in TP-Link Archer VR1600V devices running firmware Versions <= 0.1.0. | 6.7 |
| 2023-05-19 | CVE-2023-31862 | Cross-site Scripting vulnerability in Jizhicms 2.4.6 jizhicms v2.4.6 is vulnerable to Cross Site Scripting (XSS). | 5.4 |