Weekly Vulnerabilities Reports > October 30 to November 5, 2023
Overview
618 new vulnerabilities reported during this period, including 85 critical vulnerabilities and 205 high severity vulnerabilities. This weekly summary report vulnerabilities in 558 products from 241 vendors including Google, Cisco, Fedoraproject, Redhat, and Gopiplus. Vulnerabilities are notably categorized as "Cross-site Scripting", "Missing Authorization", "Information Exposure Through Discrepancy", "Out-of-bounds Write", and "SQL Injection".
- 412 reported vulnerabilities are remotely exploitables.
- 130 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 278 reported vulnerabilities are exploitable by an anonymous user.
- Google has the most reported vulnerabilities, with 154 reported vulnerabilities.
- Totolink has the most reported critical vulnerabilities, with 6 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
85 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2023-11-03 | CVE-2023-46404 | Utoronto | Unspecified vulnerability in Utoronto Pcrs 3.10/3.11/3.9 PCRS <= 3.11 (d0de1e) “Questions” page and “Code editor” page are vulnerable to remote code execution (RCE) by escaping Python sandboxing. | 9.9 |
2023-11-01 | CVE-2023-20048 | Cisco | Incorrect Authorization vulnerability in Cisco Secure Firewall Management Center A vulnerability in the web services interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute certain unauthorized configuration commands on a Firepower Threat Defense (FTD) device that is managed by the FMC Software. | 9.9 |
2023-11-05 | CVE-2017-20187 | Floriangaerber | Unspecified vulnerability in Floriangaerber Magnesium-PHP ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Magnesium-PHP up to 0.3.0. | 9.8 |
2023-11-05 | CVE-2018-25092 | Vaerys Dawn | Unspecified vulnerability in Vaerys-Dawn Discordsailv2 A vulnerability was found in Vaerys-Dawn DiscordSailv2 up to 2.10.2. | 9.8 |
2023-11-05 | CVE-2023-46981 | Xxyopen | SQL Injection vulnerability in Xxyopen Novel-Plus 4.2.0 SQL injection vulnerability in Novel-Plus v.4.2.0 allows a remote attacker to execute arbitrary code via a crafted script to the sort parameter in /common/log/list. | 9.8 |
2023-11-04 | CVE-2023-40922 | Kerawen | SQL Injection vulnerability in Kerawen kerawen before v2.5.1 was discovered to contain a SQL injection vulnerability via the ocs_id_cart parameter at KerawenDeliveryModuleFrontController::initContent(). | 9.8 |
2023-11-03 | CVE-2023-23368 | Qnap | Unspecified vulnerability in Qnap Qts, Quts Hero and Qutscloud An OS command injection vulnerability has been reported to affect several QNAP operating system versions. | 9.8 |
2023-11-03 | CVE-2023-23369 | Qnap | OS Command Injection vulnerability in Qnap QTS An OS command injection vulnerability has been reported to affect several QNAP operating system versions. | 9.8 |
2023-11-03 | CVE-2023-25700 | Themeum | Unspecified vulnerability in Themeum Tutor LMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS allows SQL Injection.This issue affects Tutor LMS: from n/a through 2.1.10. | 9.8 |
2023-11-03 | CVE-2023-36529 | Favethemes | Unspecified vulnerability in Favethemes Houzez 1.3.4 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Favethemes Houzez - Real Estate WordPress Theme allows SQL Injection.This issue affects Houzez - Real Estate WordPress Theme: from n/a through 1.3.4. | 9.8 |
2023-11-03 | CVE-2022-46818 | Gopiplus | Unspecified vulnerability in Gopiplus Email Posts to Subscribers 6.2 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Gopi Ramasamy Email posts to subscribers allows SQL Injection.This issue affects Email posts to subscribers: from n/a through 6.2. | 9.8 |
2023-11-03 | CVE-2023-46980 | Mayurik | Unspecified vulnerability in Mayurik Best Courier Management System 1.0 An issue in Best Courier Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted script to the userID parameter. | 9.8 |
2023-11-03 | CVE-2022-45805 | Paytm | Unspecified vulnerability in Paytm Payment Gateway 2.7.0/2.7.3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paytm Paytm Payment Gateway paytm-payments allows SQL Injection.This issue affects Paytm Payment Gateway: from n/a through 2.7.3. | 9.8 |
2023-11-03 | CVE-2022-46808 | Reputeinfosystems | Unspecified vulnerability in Reputeinfosystems Armember Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Repute Infosystems ARMember armember-membership allows SQL Injection.This issue affects ARMember: from n/a through 3.4.11. | 9.8 |
2023-11-03 | CVE-2022-46859 | Spiffyplugins | Unspecified vulnerability in Spiffyplugins Spiffy Calendar Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Spiffy Plugins Spiffy Calendar spiffy-calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.1. | 9.8 |
2023-11-03 | CVE-2022-47426 | Neshan | Unspecified vulnerability in Neshan Maps 1.1.4 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Neshan Maps Platform Neshan Maps neshan-maps allows SQL Injection.This issue affects Neshan Maps: from n/a through 1.1.4. | 9.8 |
2023-11-03 | CVE-2022-47445 | WEB X | Unspecified vulnerability in Web-X Be-Popia-Compliant 1.2.0 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Web-X Be POPIA Compliant be-popia-compliant allows SQL Injection.This issue affects Be POPIA Compliant: from n/a through 1.2.0. | 9.8 |
2023-11-03 | CVE-2023-25960 | Zendrop | Unspecified vulnerability in Zendrop 1.0.0 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zendrop Zendrop – Global Dropshipping zendrop-dropshipping-and-fulfillment allows SQL Injection.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0. | 9.8 |
2023-11-03 | CVE-2023-26015 | Mappresspro | Unspecified vulnerability in Mappresspro Mappress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Chris Richardson MapPress Maps for WordPress mappress-google-maps-for-wordpress allows SQL Injection.This issue affects MapPress Maps for WordPress: from n/a through 2.85.4. | 9.8 |
2023-11-03 | CVE-2023-3961 | Samba Redhat Fedoraproject | Path Traversal vulnerability in multiple products A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. | 9.8 |
2023-11-03 | CVE-2022-47588 | Tipsandtricks HQ | Unspecified vulnerability in Tipsandtricks-Hq Simple Photo Gallery 1.8.1 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Tips and Tricks HQ, Peter Petreski Simple Photo Gallery simple-photo-gallery allows SQL Injection.This issue affects Simple Photo Gallery: from n/a through v1.8.1. | 9.8 |
2023-11-03 | CVE-2023-34383 | Wedevs | SQL Injection vulnerability in Wedevs WP Project Manager Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in weDevs WP Project Manager wedevs-project-manager allows SQL Injection.This issue affects WP Project Manager: from n/a through 2.6.0. | 9.8 |
2023-11-03 | CVE-2023-3277 | Inspireui | Unspecified vulnerability in Inspireui Mstore API The MStore API plugin for WordPress is vulnerable to Unauthorized Account Access and Privilege Escalation in versions up to, and including, 4.10.7 due to improper implementation of the Apple login feature. | 9.8 |
2023-11-03 | CVE-2023-41652 | Carrcommunications | Unspecified vulnerability in Carrcommunications Rsvpmaker Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. | 9.8 |
2023-11-03 | CVE-2023-4591 | WPN XM | Unspecified vulnerability in Wpn-Xm 0.8.6 A local file inclusion vulnerability has been found in WPN-XM Serverstack affecting version 0.8.6, which would allow an unauthenticated user to perform a local file inclusion (LFI) via the /tools/webinterface/index.php?page parameter by sending a GET request. | 9.8 |
2023-11-03 | CVE-2023-5763 | Eclipse | Improper Control of Dynamically-Managed Code Resources vulnerability in Eclipse Glassfish 5.1.0/6.0.0/6.2.5 In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote attackers to load malicious code on the server via access to insecure ORB listeners. | 9.8 |
2023-11-03 | CVE-2023-41351 | Nokia | Missing Authentication for Critical Function vulnerability in Nokia G-040W-Q Firmware G040Wqr201207 Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of authentication bypass, which allows an unauthenticated remote attacker to bypass the authentication mechanism to log in to the device by an alternative URL. | 9.8 |
2023-11-03 | CVE-2023-41355 | Nokia | Unspecified vulnerability in Nokia G-040W-Q Firmware G040Wqr201207 Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for ICMP redirect messages. | 9.8 |
2023-11-03 | CVE-2023-38965 | Oretnom23 | Authorization Bypass Through User-Controlled Key vulnerability in Oretnom23 Lost and Found Information System 1.0 Lost and Found Information System 1.0 allows account takeover via username and password to a /classes/Users.php?f=save URI. | 9.8 |
2023-11-03 | CVE-2023-41350 | Nokia | Improper Restriction of Excessive Authentication Attempts vulnerability in Nokia G-040W-Q Firmware G040Wqr201207 Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient measures to prevent multiple failed authentication attempts. | 9.8 |
2023-11-03 | CVE-2023-43982 | Bontheme | Server-Side Request Forgery (SSRF) vulnerability in Bontheme Socialfeed - Photos & Video Using Instagram API 5.2.1/5.2.3/6.0.0 Bon Presta boninstagramcarousel between v5.2.1 to v7.0.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the url parameter at insta_parser.php. | 9.8 |
2023-11-03 | CVE-2023-46817 | Phpfox | Deserialization of Untrusted Data vulnerability in PHPfox An issue was discovered in phpFox before 4.8.14. | 9.8 |
2023-11-03 | CVE-2023-46954 | Relativity | SQL Injection vulnerability in Relativity Relativityone 12.4.537.3 SQL Injection vulnerability in Relativity ODA LLC RelativityOne v.12.1.537.3 Patch 2 and earlier allows a remote attacker to execute arbitrary code via the name parameter. | 9.8 |
2023-11-02 | CVE-2023-31579 | Tangyh | Use of Hard-coded Credentials vulnerability in Tangyh Lamp-Cloud Dromara Lamp-Cloud before v3.8.1 was discovered to use a hardcoded cryptographic key when creating and verifying a Json Web Token. | 9.8 |
2023-11-02 | CVE-2023-42299 | Openimageio | Classic Buffer Overflow vulnerability in Openimageio 2.4.12.0 Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_subimage_data function. | 9.8 |
2023-11-02 | CVE-2023-46958 | Lmxcms | Unspecified vulnerability in Lmxcms 1.41 An issue in lmxcms v.1.41 allows a remote attacker to execute arbitrary code via a crafted script to the admin.php file. | 9.8 |
2023-11-02 | CVE-2023-5846 | Franklinfueling | Use of Password Hash With Insufficient Computational Effort vulnerability in Franklinfueling Ts-550 EVO Firmware 1.8.7.7299 Franklin Fueling System TS-550 versions prior to 1.9.23.8960 are vulnerable to attackers decoding admin credentials, resulting in unauthenticated access to the device. | 9.8 |
2023-11-02 | CVE-2023-42802 | Glpi Project | Unrestricted Upload of File with Dangerous Type vulnerability in Glpi-Project Glpi 10.0.7/10.0.9 GLPI is a free asset and IT management software package. | 9.8 |
2023-11-02 | CVE-2023-45342 | Projectworlds | Unspecified vulnerability in Projectworlds Online Food Ordering System 1.0 Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. | 9.8 |
2023-11-02 | CVE-2023-5918 | Visitor Management System Project | Unspecified vulnerability in Visitor Management System Project Visitor Management System 1.0 A vulnerability, which was classified as critical, was found in SourceCodester Visitor Management System 1.0. | 9.8 |
2023-11-02 | CVE-2023-47204 | Toumorokoshi | Deserialization of Untrusted Data vulnerability in Toumorokoshi Transmute-Core Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code. | 9.8 |
2023-11-01 | CVE-2023-39281 | Insyde | Out-of-bounds Write vulnerability in Insyde Insydeh2O A stack buffer overflow vulnerability discovered in AsfSecureBootDxe in Insyde InsydeH2O with kernel 5.0 through 5.5 allows attackers to run arbitrary code execution during the DXE phase. | 9.8 |
2023-11-01 | CVE-2023-44025 | Addify | SQL Injection vulnerability in Addify Free Gifts 1.0.2 SQL injection vulnerability in addify Addifyfreegifts v.1.0.2 and before allows a remote attacker to execute arbitrary code via a crafted script to the getrulebyid function in the AddifyfreegiftsModel.php component. | 9.8 |
2023-11-01 | CVE-2023-46482 | Wuzhicms | SQL Injection vulnerability in Wuzhicms 4.1.0 SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote attacker to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component. | 9.8 |
2023-11-01 | CVE-2023-5765 | Devolutions | Unspecified vulnerability in Devolutions Remote Desktop Manager Improper access control in the password analyzer feature in Devolutions Remote Desktop Manager 2023.2.33 and earlier on Windows allows an attacker to bypass permissions via data source switching. | 9.8 |
2023-11-01 | CVE-2023-5766 | Devolutions | Unspecified vulnerability in Devolutions Remote Desktop Manager A remote code execution vulnerability in Remote Desktop Manager 2023.2.33 and earlier on Windows allows an attacker to remotely execute code from another windows user session on the same host via a specially crafted TCP packet. | 9.8 |
2023-11-01 | CVE-2023-1719 | Bitrix24 | Improper Initialization vulnerability in Bitrix24 22.0.300 Global variable extraction in bitrix/modules/main/tools.php in Bitrix24 22.0.300 allows unauthenticated remote attackers to (1) enumerate attachments on the server and (2) execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege, via overwriting uninitialised variables. | 9.8 |
2023-10-31 | CVE-2023-46484 | Totolink | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary code via the setLedCfg function. | 9.8 |
2023-10-31 | CVE-2023-46485 | Totolink | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary code via the setTracerouteCfg function of the stecgi.cgi component. | 9.8 |
2023-10-31 | CVE-2023-46249 | Goauthentik | Missing Authentication for Critical Function vulnerability in Goauthentik Authentik authentik is an open-source Identity Provider. | 9.8 |
2023-10-31 | CVE-2023-46256 | Dronecode | Out-of-bounds Write vulnerability in Dronecode PX4 Drone Autopilot PX4-Autopilot provides PX4 flight control solution for drones. | 9.8 |
2023-10-31 | CVE-2023-22518 | Atlassian | Incorrect Authorization vulnerability in Atlassian Confluence Data Center All versions of Confluence Data Center and Server are affected by this unexploited vulnerability. | 9.8 |
2023-10-31 | CVE-2023-24410 | Fluentforms | Unspecified vulnerability in Fluentforms Contact Form Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Contact Form - WPManageNinja LLC Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms fluentform allows SQL Injection.This issue affects Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms: from n/a through 4.3.25. | 9.8 |
2023-10-31 | CVE-2023-31212 | Crmperks | Unspecified vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks Database for Contact Form 7, WPforms, Elementor forms contact-form-entries allows SQL Injection.This issue affects Database for Contact Form 7, WPforms, Elementor forms: from n/a through 1.3.0. | 9.8 |
2023-10-31 | CVE-2023-33927 | Themeisle | Unspecified vulnerability in Themeisle multiple Page Generator Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeisle Multiple Page Generator Plugin – MPG multiple-pages-generator-by-porthas allows SQL Injection.This issue affects Multiple Page Generator Plugin – MPG: from n/a through 3.3.19. | 9.8 |
2023-10-31 | CVE-2023-35879 | WOO | Unspecified vulnerability in WOO Product Vendors Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WooCommerce Product Vendors allows SQL Injection.This issue affects Product Vendors: from n/a through 2.1.78. | 9.8 |
2023-10-31 | CVE-2023-36508 | Bestwebsoft | Unspecified vulnerability in Bestwebsoft Contact Form to DB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress contact-form-to-db allows SQL Injection.This issue affects Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress: from n/a through 1.7.1. | 9.8 |
2023-10-31 | CVE-2023-37966 | Solwininfotech | Unspecified vulnerability in Solwininfotech User Activity LOG Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Solwin Infotech User Activity Log user-activity-log allows SQL Injection.This issue affects User Activity Log: from n/a through 1.6.2. | 9.8 |
2023-10-31 | CVE-2023-42425 | Turing | Improper Certificate Validation vulnerability in Turing Edge+ Evc5Fd Firmware 1.38.6 An issue in Turing Video Turing Edge+ EVC5FD v.1.38.6 allows remote attacker to execute arbitrary code and obtain sensitive information via the cloud connection components. | 9.8 |
2023-10-31 | CVE-2023-46993 | Totolink | Command Injection vulnerability in Totolink A3300R Firmware 17.0.0Cu.557B20221024 In TOTOLINK A3300R V17.0.0cu.557_B20221024 when dealing with setLedCfg request, there is no verification for the enable parameter, which can lead to command injection. | 9.8 |
2023-10-31 | CVE-2023-24000 | Gamipress | Unspecified vulnerability in Gamipress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in GamiPress gamipress allows SQL Injection.This issue affects GamiPress: from n/a through 2.5.7. | 9.8 |
2023-10-31 | CVE-2023-46976 | Totolink | Command Injection vulnerability in Totolink A3300R Firmware 17.0.0Cu.557B20221024 TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter in the UploadFirmwareFile function. | 9.8 |
2023-10-31 | CVE-2023-46977 | Totolink | Out-of-bounds Write vulnerability in Totolink Lr1200Gb Firmware 9.1.0U.6619B20230130 TOTOLINK LR1200GB V9.1.0u.6619_B20230130 was discovered to contain a stack overflow via the password parameter in the function loginAuth. | 9.8 |
2023-10-31 | CVE-2023-46979 | Totolink | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 TOTOLINK X6000R V9.4.0cu.852_B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function. | 9.8 |
2023-10-31 | CVE-2023-5360 | Royal Elementor Addons | Unrestricted Upload of File with Dangerous Type vulnerability in Royal-Elementor-Addons Royal Elementor Addons The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE. | 9.8 |
2023-10-31 | CVE-2023-36263 | Prestashop | SQL Injection vulnerability in Prestashop Opartlimitquantity 1.4.5 Prestashop opartlimitquantity 1.4.5 and before is vulnerable to SQL Injection. | 9.8 |
2023-10-31 | CVE-2023-43139 | Franfinance | OS Command Injection vulnerability in Franfinance 1.9.0 An issue in franfinance before v.2.0.27 allows a remote attacker to execute arbitrary code via the validation.php, and controllers/front/validation.php components. | 9.8 |
2023-10-31 | CVE-2023-27846 | Themevolty | SQL Injection vulnerability in Themevolty Theme Volty CMS Blog 4.0.1/4.0.8 SQL injection vulnerability found in PrestaShop themevolty v.4.0.8 and before allow a remote attacker to gain privileges via the tvcmsblog, tvcmsvideotab, tvcmswishlist, tvcmsbrandlist, tvcmscategorychainslider, tvcmscategoryproduct, tvcmscategoryslider, tvcmspaymenticon, tvcmstestimonial components. | 9.8 |
2023-10-31 | CVE-2023-45378 | Hdclic | SQL Injection vulnerability in Hdclic Prestablog 4.4.7 In the module "PrestaBlog" (prestablog) version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. | 9.8 |
2023-10-31 | CVE-2023-46356 | Blmodules | SQL Injection vulnerability in Blmodules CSV Feeds PRO 2.5.2 In the module "CSV Feeds PRO" (csvfeeds) before 2.6.1 from Bl Modules for PrestaShop, a guest can perform SQL injection. | 9.8 |
2023-10-31 | CVE-2023-47174 | Thorntech | Deserialization of Untrusted Data vulnerability in Thorntech Sftp Gateway Firmware Thorn SFTP gateway 3.4.x before 3.4.4 uses Pivotal Spring Framework for Java deserialization of untrusted data, which is not supported by Pivotal, a related issue to CVE-2016-1000027. | 9.8 |
2023-10-31 | CVE-2023-5865 | Phpmyfaq | Unspecified vulnerability in PHPmyfaq Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2. | 9.8 |
2023-10-30 | CVE-2023-44397 | Fit2Cloud | Unspecified vulnerability in Fit2Cloud Cloudexplorer Lite CloudExplorer Lite is an open source, lightweight cloud management platform. | 9.8 |
2023-10-30 | CVE-2023-46502 | Opencrx | XXE vulnerability in Opencrx 5.2.2 An issue in openCRX v.5.2.2 allows a remote attacker to read internal files and execute server side request forgery attack via insecure DocumentBuilderFactory. | 9.8 |
2023-10-30 | CVE-2023-43792 | Basercms | Code Injection vulnerability in Basercms baserCMS is a website development framework. | 9.8 |
2023-10-30 | CVE-2023-43649 | Basercms | Unspecified vulnerability in Basercms baserCMS is a website development framework. | 9.8 |
2023-10-30 | CVE-2023-47104 | Vareille | OS Command Injection vulnerability in Vareille Tiny File Dialogs tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a backquote or a dollar sign) in titles, messages, and other input data. | 9.8 |
2023-10-30 | CVE-2023-5843 | Datafeedr | Unspecified vulnerability in Datafeedr ADS BY Datafeedr.Com The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 1.1.3 via the 'dfads_ajax_load_ads' function. | 9.8 |
2023-10-30 | CVE-2023-45797 | Dreamsecurity | Classic Buffer Overflow vulnerability in Dreamsecurity Magicline 4.0 1.0.0.1/1.0.0.26 A Buffer overflow vulnerability in DreamSecurity MagicLine4NX versions 1.0.0.1 to 1.0.0.26 allows an attacker to remotely execute code. | 9.8 |
2023-10-30 | CVE-2023-45798 | Yettiesoft | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Yettiesoft Vestcert 2.3.6/2.5.29 In Yettiesoft VestCert versions 2.36 to 2.5.29, a vulnerability exists due to improper validation of third-party modules. | 9.8 |
2023-10-30 | CVE-2023-45799 | Mlsoft | Download of Code Without Integrity Check vulnerability in Mlsoft Tco!Stream 8.0.22.1115 In MLSoft TCO!stream versions 8.0.22.1115 and below, a vulnerability exists due to insufficient permission validation. | 9.8 |
2023-11-01 | CVE-2023-1716 | Bitrix24 | Cross-site Scripting vulnerability in Bitrix24 22.0.300 Cross-site scripting (XSS) vulnerability in Invoice Edit Page in Bitrix24 22.0.300 allows attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege. | 9.6 |
2023-11-01 | CVE-2023-1717 | Bitrix24 | Unspecified vulnerability in Bitrix24 22.0.300 Prototype pollution in bitrix/templates/bitrix24/components/bitrix/menu/left_vertical/script.js in Bitrix24 22.0.300 allows remote attackers to execute arbitrary JavaScript code in the victim’s browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege, via polluting `__proto__[tag]` and `__proto__[text]`. | 9.6 |
2023-11-03 | CVE-2023-36621 | Nationaledtech | Missing Authorization vulnerability in Nationaledtech Boomerang An issue was discovered in the Boomerang Parental Control application through 13.83 for Android. | 9.1 |
2023-10-30 | CVE-2023-5832 | Mintplexlabs | Unspecified vulnerability in Mintplexlabs Anythingllm 0.0.1 Improper Input Validation in GitHub repository mintplex-labs/anything-llm prior to 0.1.0. | 9.1 |
205 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2023-11-04 | CVE-2023-35910 | Quasar Form | Unspecified vulnerability in Quasar-Form Quasar Form 6.0 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nucleus_genius Quasar form free – Contact Form Builder for WordPress allows SQL Injection.This issue affects Quasar form free – Contact Form Builder for WordPress: from n/a through 6.0. | 8.8 |
2023-11-03 | CVE-2023-36677 | Smartypantsplugins | Unspecified vulnerability in Smartypantsplugins SP Project & Document Manager Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Smartypants SP Project & Document Manager allows SQL Injection.This issue affects SP Project & Document Manager: from n/a through 4.67. | 8.8 |
2023-11-03 | CVE-2023-3893 | Kubernetes | Unspecified vulnerability in Kubernetes CSI Proxy A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. | 8.8 |
2023-11-03 | CVE-2023-25800 | Themeum | SQL Injection vulnerability in Themeum Tutor LMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS allows SQL Injection.This issue affects Tutor LMS: from n/a through 2.2.0. | 8.8 |
2023-11-03 | CVE-2023-25990 | Themeum | Unspecified vulnerability in Themeum Tutor LMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS allows SQL Injection.This issue affects Tutor LMS: from n/a through 2.1.10. | 8.8 |
2023-11-03 | CVE-2023-46947 | Intelliants | Code Injection vulnerability in Intelliants Subrion 4.2.1 Subrion 4.2.1 has a remote command execution vulnerability in the backend. | 8.8 |
2023-11-03 | CVE-2023-4769 | Zohocorp | Unspecified vulnerability in Zohocorp Manageengine Desktop Central 9.1.0 A SSRF vulnerability has been found in ManageEngine Desktop Central affecting version 9.1.0, specifically the /smtpConfig.do component. | 8.8 |
2023-11-03 | CVE-2023-41357 | GSS | Unrestricted Upload of File with Dangerous Type vulnerability in GSS Vitals Enterprise Social Platform 3.0.8 Galaxy Software Services Corporation Vitals ESP is an online knowledge base management portal, it has insufficient filtering and validation during file upload. | 8.8 |
2023-11-03 | CVE-2023-41353 | Nokia | Weak Password Requirements vulnerability in Nokia G-040W-Q Firmware G040Wqr201207 Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of weak password requirements. | 8.8 |
2023-11-03 | CVE-2023-41345 | Asus | OS Command Injection vulnerability in Asus Rt-Ax55 Firmware 3.0.0.4.386.51598 ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its token-generated module. | 8.8 |
2023-11-03 | CVE-2023-41346 | Asus | OS Command Injection vulnerability in Asus Rt-Ax55 Firmware 3.0.0.4.386.51598 ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its token-refresh module. | 8.8 |
2023-11-03 | CVE-2023-41347 | Asus | OS Command Injection vulnerability in Asus Rt-Ax55 Firmware 3.0.0.4.386.51598 ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its check token module. | 8.8 |
2023-11-03 | CVE-2023-41348 | Asus | OS Command Injection vulnerability in Asus Rt-Ax55 Firmware 3.0.0.4.386.51598 ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its code-authentication module. | 8.8 |
2023-11-03 | CVE-2023-42027 | IBM | Cross-Site Request Forgery (CSRF) vulnerability in IBM Cics TX and Txseries for Multiplatforms IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
2023-11-02 | CVE-2023-26452 | Open Xchange | SQL Injection vulnerability in Open-Xchange Appsuite Requests to cache an image and return its metadata could be abused to include SQL queries that would be executed unchecked. | 8.8 |
2023-11-02 | CVE-2023-26453 | Open Xchange | SQL Injection vulnerability in Open-Xchange Appsuite Requests to cache an image could be abused to include SQL queries that would be executed unchecked. | 8.8 |
2023-11-02 | CVE-2023-26454 | Open Xchange | SQL Injection vulnerability in Open-Xchange Appsuite Requests to fetch image metadata could be abused to include SQL queries that would be executed unchecked. | 8.8 |
2023-11-02 | CVE-2023-43336 | Sangoma | Unspecified vulnerability in Sangoma Freepbx Sangoma Technologies FreePBX before cdr 15.0.18, 16.0.40, 15.0.16, and 16.0.17 was discovered to contain an access control issue via a modified parameter value, e.g., changing extension=self to extension=101. | 8.8 |
2023-11-01 | CVE-2023-46428 | Hadsky | Unrestricted Upload of File with Dangerous Type vulnerability in Hadsky 7.12.10 An arbitrary file upload vulnerability in HadSky v7.12.10 allows attackers to execute arbitrary code via a crafted file. | 8.8 |
2023-11-01 | CVE-2023-20175 | Cisco | OS Command Injection vulnerability in Cisco Identity Services Engine A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. | 8.8 |
2023-11-01 | CVE-2023-20219 | Cisco | Command Injection vulnerability in Cisco Secure Firewall Management Center Multiple vulnerabilities in the web management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. | 8.8 |
2023-11-01 | CVE-2023-20220 | Cisco | Command Injection vulnerability in Cisco Secure Firewall Management Center Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. | 8.8 |
2023-11-01 | CVE-2023-5482 | Google Debian Fedoraproject | Insufficient Verification of Data Authenticity vulnerability in multiple products Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. | 8.8 |
2023-11-01 | CVE-2023-5849 | Google Debian Fedoraproject | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2023-11-01 | CVE-2023-5852 | Google Debian Fedoraproject | Use After Free vulnerability in multiple products Use after free in Printing in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. | 8.8 |
2023-11-01 | CVE-2023-5854 | Google Debian Fedoraproject | Use After Free vulnerability in multiple products Use after free in Profiles in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. | 8.8 |
2023-11-01 | CVE-2023-5855 | Google Debian Fedoraproject | Use After Free vulnerability in multiple products Use after free in Reading Mode in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. | 8.8 |
2023-11-01 | CVE-2023-5856 | Google Debian Fedoraproject | Use After Free vulnerability in multiple products Use after free in Side Panel in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2023-11-01 | CVE-2023-5857 | Google Debian Fedoraproject | Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially execute arbitrary code via a malicious file. | 8.8 |
2023-11-01 | CVE-2023-5178 | Linux Redhat Netapp | Use After Free vulnerability in multiple products A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug in the NVMe/TCP subsystem in the Linux kernel. | 8.8 |
2023-11-01 | CVE-2023-33226 | Solarwinds | Unspecified vulnerability in Solarwinds Network Configuration Manager The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. | 8.8 |
2023-11-01 | CVE-2023-33227 | Solarwinds | Unspecified vulnerability in Solarwinds Network Configuration Manager The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability allows a low level user to perform the actions with SYSTEM privileges. | 8.8 |
2023-11-01 | CVE-2023-40062 | Solarwinds | Unspecified vulnerability in Solarwinds Platform SolarWinds Platform Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability. | 8.8 |
2023-11-01 | CVE-2023-1713 | Bitrix24 | Unrestricted Upload of File with Dangerous Type vulnerability in Bitrix24 22.0.300 Insecure temporary file creation in bitrix/modules/crm/lib/order/import/instagram.php in Bitrix24 22.0.300 hosted on Apache HTTP Server allows remote authenticated attackers to execute arbitrary code via uploading a crafted ".htaccess" file. | 8.8 |
2023-11-01 | CVE-2023-1714 | Bitrix24 | Deserialization of Untrusted Data vulnerability in Bitrix24 22.0.300 Unsafe variable extraction in bitrix/modules/main/classes/general/user_options.php in Bitrix24 22.0.300 allows remote authenticated attackers to execute arbitrary code via (1) appending arbitrary content to existing PHP files or (2) PHAR deserialization. | 8.8 |
2023-11-01 | CVE-2023-4197 | Dolibarr | Injection vulnerability in Dolibarr Erp/Crm Improper input validation in Dolibarr ERP CRM <= v18.0.1 fails to strip certain PHP code from user-supplied input when creating a Website, allowing an attacker to inject and evaluate arbitrary PHP code. | 8.8 |
2023-11-01 | CVE-2023-5893 | SFU | Unspecified vulnerability in SFU PKP web Application Library Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 8.8 |
2023-11-01 | CVE-2023-5897 | SFU | Unspecified vulnerability in SFU Customlocale Cross-Site Request Forgery (CSRF) in GitHub repository pkp/customLocale prior to 1.2.0-1. | 8.8 |
2023-11-01 | CVE-2023-5898 | PKP | Unspecified vulnerability in PKP web Application Library Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 8.8 |
2023-11-01 | CVE-2023-5899 | PKP | Cross-Site Request Forgery (CSRF) vulnerability in PKP web Application Library Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 8.8 |
2023-10-31 | CVE-2023-3676 | Kubernetes | Improper Input Validation vulnerability in Kubernetes A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. | 8.8 |
2023-10-31 | CVE-2023-3955 | Kubernetes | Improper Input Validation vulnerability in Kubernetes A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. | 8.8 |
2023-10-31 | CVE-2023-46248 | Sourcegraph | Unspecified vulnerability in Sourcegraph Cody 0.10.0/0.14.0 Cody is an artificial intelligence (AI) coding assistant. | 8.8 |
2023-10-31 | CVE-2023-40050 | Chef | Code Injection vulnerability in Chef Automate Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution. | 8.8 |
2023-10-31 | CVE-2023-28777 | Learndash | Unspecified vulnerability in Learndash Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LearnDash LearnDash LMS allows SQL Injection.This issue affects LearnDash LMS: from n/a through 4.5.3. | 8.8 |
2023-10-31 | CVE-2023-5099 | Jonashjalmarsson | Files or Directories Accessible to External Parties vulnerability in Jonashjalmarsson Html Filter and Csv-File Search The HTML filter and csv-file search plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.7 via the 'src' attribute of the 'csvsearch' shortcode. | 8.8 |
2023-10-31 | CVE-2023-45996 | Slims | SQL Injection vulnerability in Slims products SQL injection vulnerability in Senayan Library Management Systems Slims v.9 and Bulian v.9.6.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to the reborrowLimit parameter in the member_type.php. | 8.8 |
2023-10-30 | CVE-2023-46478 | Minical | Authorization Bypass Through User-Controlled Key vulnerability in Minical 1.0.0 An issue in minCal v.1.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the customer_data parameter. | 8.8 |
2023-10-30 | CVE-2023-42323 | Mnbvcxz131421 | Cross-Site Request Forgery (CSRF) vulnerability in Mnbvcxz131421 Douhaocms 3.3 Cross Site Request Forgery (CSRF) vulnerability in DouHaocms v.3.3 allows a remote attacker to execute arbitrary code via the adminAction.class.php file. | 8.8 |
2023-10-30 | CVE-2023-41891 | Flyte | Unspecified vulnerability in Flyte Flyteadmin FlyteAdmin is the control plane for Flyte responsible for managing entities and administering workflow executions. | 8.8 |
2023-10-30 | CVE-2023-42803 | Bigbluebutton | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open-source virtual classroom. | 8.8 |
2023-10-30 | CVE-2023-21392 | Use After Free vulnerability in Google Android In Bluetooth, there is a possible way to corrupt memory due to a use after free. | 8.8 | |
2023-10-30 | CVE-2023-21356 | Out-of-bounds Write vulnerability in Google Android 14.0 In Bluetooth, there is a possible out of bounds write due to a missing bounds check. | 8.8 | |
2023-10-30 | CVE-2023-21361 | Use After Free vulnerability in Google Android 14.0 In Bluetooth, there is a possibility of code-execution due to a use after free. | 8.8 | |
2023-10-30 | CVE-2023-5199 | PHP TO Page Project | Files or Directories Accessible to External Parties vulnerability in PHP to Page Project PHP to Page 0.3 The PHP to Page plugin for WordPress is vulnerable Local File Inclusion to Remote Code Execution in versions up to, and including, 0.3 via the 'php-to-page' shortcode. | 8.8 |
2023-10-30 | CVE-2023-5250 | G5Theme | Unspecified vulnerability in G5Theme Grid Plus 1.3.2 The Grid Plus plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 1.3.2 via a shortcode attribute. | 8.8 |
2023-10-30 | CVE-2023-5315 | Matthewschwartz | SQL Injection vulnerability in Matthewschwartz Google Maps Made Simple 0.6 The Google Maps made Simple plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 8.8 |
2023-10-30 | CVE-2023-5583 | Maca134 | Unspecified vulnerability in Maca134 WP Simple Galleries 1.34 The WP Simple Galleries plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.34 via deserialization of untrusted input from the 'wpsimplegallery_gallery' post meta via 'wpsgallery' shortcode. | 8.8 |
2023-10-30 | CVE-2023-5833 | Mintplexlabs | Unspecified vulnerability in Mintplexlabs Anythingllm 0.0.1 Improper Access Control in GitHub repository mintplex-labs/anything-llm prior to 0.1.0. | 8.8 |
2023-11-01 | CVE-2023-20042 | Cisco | Unspecified vulnerability in Cisco products A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 8.6 |
2023-11-01 | CVE-2023-20083 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the CPU of an affected device to spike to 100 percent, which could stop all traffic processing and result in a denial of service (DoS) condition. | 8.6 |
2023-11-01 | CVE-2023-20095 | Cisco | Unspecified vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 8.6 |
2023-11-01 | CVE-2023-20086 | Cisco | Unspecified vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. | 8.6 |
2023-11-01 | CVE-2023-20244 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense A vulnerability in the internal packet processing of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Firewalls could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 8.6 |
2023-11-04 | CVE-2023-46381 | Loytec | Missing Authentication for Critical Function vulnerability in Loytec products LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. | 8.2 |
2023-11-03 | CVE-2022-3172 | Kubernetes | Server-Side Request Forgery (SSRF) vulnerability in Kubernetes Apiserver A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. | 8.2 |
2023-11-01 | CVE-2023-20063 | Cisco | Improper Input Validation vulnerability in Cisco Firepower Threat Defense A vulnerability in the inter-device communication mechanisms between devices that are running Cisco Firepower Threat Defense (FTD) Software and devices that are running Cisco Firepower Management (FMC) Software could allow an authenticated, local attacker to execute arbitrary commands with root permissions on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user-supplied input. | 8.2 |
2023-11-01 | CVE-2023-5889 | PKP | Insufficient Session Expiration vulnerability in PKP web Application Library Insufficient Session Expiration in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 8.2 |
2023-11-03 | CVE-2023-1194 | Linux Fedoraproject | Out-of-bounds Read vulnerability in multiple products An out-of-bounds (OOB) memory read flaw was found in parse_lease_state in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. | 8.1 |
2023-10-31 | CVE-2023-5098 | Fatcatapps | Unspecified vulnerability in Fatcatapps Campaign Monitor Optin CAT The Campaign Monitor Forms by Optin Cat WordPress plugin before 2.5.6 does not prevent users with low privileges (like subscribers) from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS. | 8.1 |
2023-10-31 | CVE-2016-1203 | Saat | Unspecified vulnerability in Saat Netizen and Netizen Installer Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 (Build427) and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. | 8.1 |
2023-10-31 | CVE-2022-3007 | Syska | Missing Authorization vulnerability in Syska Sw100 Smartwatch Firmware 2.0 The vulnerability exists in Syska SW100 Smartwatch due to an improper implementation and/or configuration of Nordic Device Firmware Update (DFU) which is used for performing Over-The-Air (OTA) firmware updates on the Bluetooth Low Energy (BLE) devices. | 8.1 |
2023-11-01 | CVE-2023-1720 | Bitrix24 | Unrestricted Upload of File with Dangerous Type vulnerability in Bitrix24 22.0.300 Lack of mime type response header in Bitrix24 22.0.300 allows authenticated remote attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege, via uploading a crafted HTML file through /desktop_app/file.ajax.php?action=uploadfile. | 8.0 |
2023-11-03 | CVE-2022-43554 | Ivanti | Missing Authentication for Critical Function vulnerability in Ivanti Avalanche Ivanti Avalanche Smart Device Service Missing Authentication Local Privilege Escalation Vulnerability | 7.8 |
2023-11-03 | CVE-2022-43555 | Ivanti | Missing Authentication for Critical Function vulnerability in Ivanti Avalanche Ivanti Avalanche Printer Device Service Missing Authentication Local Privilege Escalation Vulnerability | 7.8 |
2023-11-03 | CVE-2022-44569 | Ivanti | Improper Authentication vulnerability in Ivanti Automation A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication. | 7.8 |
2023-11-03 | CVE-2023-41725 | Ivanti | Unrestricted Upload of File with Dangerous Type vulnerability in Ivanti Avalanche Ivanti Avalanche EnterpriseServer Service Unrestricted File Upload Local Privilege Escalation Vulnerability | 7.8 |
2023-11-03 | CVE-2023-41726 | Ivanti | Incorrect Default Permissions vulnerability in Ivanti Avalanche Ivanti Avalanche Incorrect Default Permissions allows Local Privilege Escalation Vulnerability | 7.8 |
2023-11-03 | CVE-2023-31102 | 7 ZIP Netapp | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive. | 7.8 |
2023-11-03 | CVE-2023-46176 | IBM | Unspecified vulnerability in IBM MQ Appliance 9.3.0.0 IBM MQ Appliance 9.3 CD could allow a local attacker to gain elevated privileges on the system, caused by improper validation of security keys. | 7.8 |
2023-11-02 | CVE-2023-39283 | Insyde | Out-of-bounds Write vulnerability in Insyde Insydeh2O An SMM memory corruption vulnerability in the SMM driver (SMRAM write) in CsmInt10HookSmm in Insyde InsydeH2O with kernel 5.0 through 5.5 allows attackers to send arbitrary data to SMM which could lead to privilege escalation. | 7.8 |
2023-11-02 | CVE-2023-31016 | Nvidia | Uncontrolled Search Path Element vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability where an uncontrolled search path element may allow an attacker to execute arbitrary code, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering. | 7.8 |
2023-11-02 | CVE-2023-31017 | Nvidia | Files or Directories Accessible to External Parties vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker may be able to write arbitrary data to privileged locations by using reparse points. | 7.8 |
2023-11-02 | CVE-2023-26455 | Open Xchange | Improper Authentication vulnerability in Open-Xchange Appsuite RMI was not requiring authentication when calling ChronosRMIService:setEventOrganizer. | 7.8 |
2023-11-01 | CVE-2023-3972 | Redhat | Exposure of Resource to Wrong Sphere vulnerability in Redhat products A vulnerability was found in insights-client. | 7.8 |
2023-10-31 | CVE-2023-5739 | HP | Unspecified vulnerability in HP products Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of privilege. | 7.8 |
2023-10-31 | CVE-2023-37243 | Atera | Unspecified vulnerability in Atera Agent Package Availability 0.14.0.0 The C:\Windows\Temp\Agent.Package.Availability\Agent.Package.Availability.exe file is automatically launched as SYSTEM when the system reboots. | 7.8 |
2023-10-31 | CVE-2023-42658 | Chef | Code Injection vulnerability in Chef Inspec 5.0.0 Archive command in Chef InSpec prior to 4.56.58 and 5.22.29 allow local command execution via maliciously crafted profile. | 7.8 |
2023-10-31 | CVE-2023-38994 | Univention | Exposure of Resource to Wrong Sphere vulnerability in Univention Corporate Server 5.0 The 'check_univention_joinstatus' prometheus monitoring script (and other scripts) in UCS 5.0-5 revealed the LDAP plaintext password of the machine account in the process list allowing attackers with local ssh access to gain higher privileges and perform followup attacks. | 7.8 |
2023-10-30 | CVE-2023-21372 | Out-of-bounds Read vulnerability in Google Android In libdexfile, there is a possible out of bounds read due to a missing bounds check. | 7.8 | |
2023-10-30 | CVE-2023-21373 | Missing Authorization vulnerability in Google Android 14.0 In Telephony, there is a possible way for a guest user to change the preferred SIM due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21374 | Unspecified vulnerability in Google Android 14.0 In System UI, there is a possible factory reset protection bypass due to a logic error in the code. | 7.8 | |
2023-10-30 | CVE-2023-21375 | Integer Overflow or Wraparound vulnerability in Google Android In Sysproxy, there is a possible out of bounds write due to an integer underflow. | 7.8 | |
2023-10-30 | CVE-2023-21378 | Missing Authorization vulnerability in Google Android In Telecomm, there is a possible way to silence the ring for calls of secondary users due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21381 | Use After Free vulnerability in Google Android In Media Resource Manager, there is a possible local arbitrary code execution due to use after free. | 7.8 | |
2023-10-30 | CVE-2023-21388 | Missing Authorization vulnerability in Google Android In Settings, there is a possible restriction bypass due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21389 | Missing Authorization vulnerability in Google Android In Settings, there is a possible bypass of profile owner restrictions due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21390 | Incorrect Authorization vulnerability in Google Android In Sim, there is a possible way to evade mobile preference restrictions due to a permission bypass. | 7.8 | |
2023-10-30 | CVE-2023-21393 | Missing Authorization vulnerability in Google Android In Settings, there is a possible way for the user to change SIM due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21396 | Unspecified vulnerability in Google Android In Activity Manager, there is a possible background activity launch due to a logic error in the code. | 7.8 | |
2023-10-30 | CVE-2023-21397 | Unspecified vulnerability in Google Android In Setup Wizard, there is a possible way to save a WiFi network due to an insecure default value. | 7.8 | |
2023-10-30 | CVE-2023-21398 | Unspecified vulnerability in Google Android In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. | 7.8 | |
2023-10-30 | CVE-2023-47101 | Securepoint | Unspecified vulnerability in Securepoint Openvpn-Client The installer (aka openvpn-client-installer) in Securepoint SSL VPN Client before 2.0.40 allows local privilege escalation during installation or repair. | 7.8 |
2023-10-30 | CVE-2021-39810 | Missing Authorization vulnerability in Google Android In NFC, there is a possible way to setup a default contactless payment app without user consent due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21298 | Information Exposure Through Discrepancy vulnerability in Google Android In Slice, there is a possible disclosure of installed applications due to side channel information disclosure. | 7.8 | |
2023-10-30 | CVE-2023-21313 | Missing Authorization vulnerability in Google Android In Core, there is a possible way to forward calls without user knowledge due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21324 | Information Exposure Through Discrepancy vulnerability in Google Android In Package Installer, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 7.8 | |
2023-10-30 | CVE-2023-21328 | Missing Authorization vulnerability in Google Android In Package Installer, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21337 | Information Exposure Through Discrepancy vulnerability in Google Android In InputMethod, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 7.8 | |
2023-10-30 | CVE-2023-21341 | Missing Authorization vulnerability in Google Android In Permission Manager, there is a possible way to bypass required permissions due to a missing permission check. | 7.8 | |
2023-10-30 | CVE-2023-21342 | Unspecified vulnerability in Google Android In Speech, there is a possible way to bypass background activity launch due to a logic error in the code. | 7.8 | |
2023-10-30 | CVE-2023-21343 | Unspecified vulnerability in Google Android In ActivityStarter, there is a possible background activity launch due to an unsafe PendingIntent. | 7.8 | |
2023-10-30 | CVE-2023-21351 | Unspecified vulnerability in Google Android 14.0 In multiple locations, there is a possible background activity launch due to a logic error in the code. | 7.8 | |
2023-10-30 | CVE-2023-21355 | Use After Free vulnerability in Google Android 14.0 In libaudioclient, there is a possible out of bounds write due to a use after free. | 7.8 | |
2023-10-30 | CVE-2023-21358 | Unspecified vulnerability in Google Android 14.0 In UWB Google, there is a possible way for a malicious app to masquerade as system app com.android.uwb.resources due to improperly used crypto. | 7.8 | |
2023-10-30 | CVE-2023-44141 | Inkdrop | Code Injection vulnerability in Inkdrop Inkdrop prior to v5.6.0 allows a local attacker to conduct a code injection attack by having a legitimate user open a specially crafted markdown file. | 7.8 |
2023-11-04 | CVE-2023-46380 | Loytec | Cleartext Transmission of Sensitive Information vulnerability in Loytec products LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) send password-change requests via cleartext HTTP. | 7.5 |
2023-11-04 | CVE-2023-46382 | Loytec | Cleartext Transmission of Sensitive Information vulnerability in Loytec products LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) use cleartext HTTP for login. | 7.5 |
2023-11-03 | CVE-2023-47234 | Frrouting | Unspecified vulnerability in Frrouting An issue was discovered in FRRouting FRR through 9.0.1. | 7.5 |
2023-11-03 | CVE-2023-47235 | Frrouting | Unspecified vulnerability in Frrouting An issue was discovered in FRRouting FRR through 9.0.1. | 7.5 |
2023-11-03 | CVE-2023-39299 | Qnap | Unspecified vulnerability in Qnap Music Station A path traversal vulnerability has been reported to affect Music Station. | 7.5 |
2023-11-03 | CVE-2023-4043 | Eclipse | Excessive Iteration vulnerability in Eclipse Parsson In Eclipse Parsson before versions 1.1.4 and 1.0.5, Parsing JSON from untrusted sources can lead malicious actors to exploit the fact that the built-in support for parsing numbers with large scale in Java has a number of edge cases where the input text of a number can lead to much larger processing time than one would expect. To mitigate the risk, parsson put in place a size limit for the numbers as well as their scale. | 7.5 |
2023-11-03 | CVE-2023-46847 | Squid Cache Redhat | Classic Buffer Overflow vulnerability in multiple products Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication. | 7.5 |
2023-11-03 | CVE-2023-46848 | Squid Cache Redhat | Incorrect Conversion between Numeric Types vulnerability in multiple products Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input. | 7.5 |
2023-11-03 | CVE-2023-5824 | Squid Cache Redhat | Improper Handling of Exceptional Conditions vulnerability in multiple products A flaw was found in Squid. | 7.5 |
2023-11-03 | CVE-2023-41344 | Ncsist | Path Traversal vulnerability in Ncsist Mobile Device Manager 1.4 NCSIST ManageEngine Mobile Device Manager(MDM) APP's special function has a path traversal vulnerability. | 7.5 |
2023-11-03 | CVE-2023-41164 | Djangoproject Fedoraproject | Improper Validation of Specified Quantity in Input vulnerability in multiple products In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uri_to_iri() is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters. | 7.5 |
2023-11-03 | CVE-2023-41259 | Bestpractical | Unspecified vulnerability in Bestpractical Request Tracker Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Disclosure via fake or spoofed RT email headers in an email message or a mail-gateway REST API call. | 7.5 |
2023-11-03 | CVE-2023-41260 | Bestpractical | Unspecified vulnerability in Bestpractical Request Tracker Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Exposure in responses to mail-gateway REST API calls. | 7.5 |
2023-11-03 | CVE-2023-43665 | Djangoproject Fedoraproject | Improper Validation of Specified Quantity in Input vulnerability in multiple products In Django 3.2 before 3.2.22, 4.1 before 4.1.12, and 4.2 before 4.2.6, the django.utils.text.Truncator chars() and words() methods (when used with html=True) are subject to a potential DoS (denial of service) attack via certain inputs with very long, potentially malformed HTML text. | 7.5 |
2023-11-03 | CVE-2023-44271 | Python Fedoraproject | Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in Pillow before 10.0.0. | 7.5 |
2023-11-03 | CVE-2023-45024 | Bestpractical | Unspecified vulnerability in Bestpractical Request Tracker Best Practical Request Tracker (RT) 5 before 5.0.5 allows Information Disclosure via a transaction search in the transaction query builder. | 7.5 |
2023-11-03 | CVE-2023-34260 | Kyocera | Path Traversal vulnerability in Kyocera D-Copia253Mf Plus Firmware 2Vgs000.002.561 Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to try to read the /etc directory. | 7.5 |
2023-11-03 | CVE-2017-7252 | Botan Project | Cleartext Transmission of Sensitive Information vulnerability in Botan Project Botan bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length between 57 and 72 characters, which makes it easier for attackers to determine the cleartext password. | 7.5 |
2023-11-03 | CVE-2023-43018 | IBM | Improper Privilege Management vulnerability in IBM Cics TX 10.1/11.1 IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. | 7.5 |
2023-11-02 | CVE-2023-39042 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in Gyouza-newhushimi v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39047 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in shouzu sweets oz v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39048 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in Tokudaya.honten v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39050 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in Daiky-value.Fukueten v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39051 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in VISION MEAT WORKS Track Diner 10/10mbl v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39053 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in Hattoriya v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39054 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in Tokudaya.ekimae_mc v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-39057 | Lycorp | Unspecified vulnerability in Lycorp Line Mini APP 13.6.1 An information leak in hirochanKAKIwaiting v13.6.1 allows attackers to obtain the channel access token and send crafted messages. | 7.5 |
2023-11-02 | CVE-2023-46352 | Smartmodules | Missing Authorization vulnerability in Smartmodules Facebookconversiontrackingplus 2.4.8 In the module "Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module" (facebookconversiontrackingplus) up to version 2.4.9 from Smart Modules for PrestaShop, a guest can download personal information without restriction. | 7.5 |
2023-11-02 | CVE-2023-5929 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability was found in Campcodes Simple Student Information System 1.0. | 7.5 |
2023-11-02 | CVE-2023-5925 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability, which was classified as critical, has been found in Campcodes Simple Student Information System 1.0. | 7.5 |
2023-11-02 | CVE-2023-5926 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability, which was classified as critical, was found in Campcodes Simple Student Information System 1.0. | 7.5 |
2023-11-02 | CVE-2023-5927 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability has been found in Campcodes Simple Student Information System 1.0 and classified as critical. | 7.5 |
2023-11-02 | CVE-2023-5928 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability was found in Campcodes Simple Student Information System 1.0 and classified as critical. | 7.5 |
2023-11-02 | CVE-2023-5923 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability classified as critical has been found in Campcodes Simple Student Information System 1.0. | 7.5 |
2023-11-02 | CVE-2023-5924 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability classified as critical was found in Campcodes Simple Student Information System 1.0. | 7.5 |
2023-11-02 | CVE-2023-46725 | Foodcoopshop | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Foodcoopshop FoodCoopShop is open source software for food coops and local shops. | 7.5 |
2023-11-02 | CVE-2023-46695 | Djangoproject | Allocation of Resources Without Limits or Throttling vulnerability in Djangoproject Django An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. | 7.5 |
2023-11-01 | CVE-2023-46724 | Squid Cache | Improper Certificate Validation vulnerability in Squid-Cache Squid Squid is a caching proxy for the Web. | 7.5 |
2023-11-01 | CVE-2023-5627 | Moxa | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Moxa products A vulnerability has been identified in NPort 6000 Series, making the authentication mechanism vulnerable. | 7.5 |
2023-11-01 | CVE-2023-4452 | Moxa | Classic Buffer Overflow vulnerability in Moxa products A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. | 7.5 |
2023-11-01 | CVE-2023-5625 | Redhat | Resource Exhaustion vulnerability in Redhat products A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products. | 7.5 |
2023-11-01 | CVE-2023-1718 | Bitrix24 | Infinite Loop vulnerability in Bitrix24 22.0.300 Improper file stream access in /desktop_app/file.ajax.php?action=uploadfile in Bitrix24 22.0.300 allows unauthenticated remote attackers to cause denial-of-service via a crafted "tmp_url". | 7.5 |
2023-10-31 | CVE-2023-37832 | Elenos | Improper Restriction of Excessive Authentication Attempts vulnerability in Elenos Etg150 Firmware 3.12 A lack of rate limiting in Elenos ETG150 FM transmitter v3.12 allows attackers to obtain user credentials via brute force and cause other unspecified impacts. | 7.5 |
2023-10-31 | CVE-2023-45955 | Nanoleaf | Unspecified vulnerability in Nanoleaf Lightstrip Firmware 3.5.10 An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands. | 7.5 |
2023-10-31 | CVE-2023-46239 | Quic GO Project | NULL Pointer Dereference vulnerability in Quic-Go Project Quic-Go 0.37.0/0.37.1/0.37.2 quic-go is an implementation of the QUIC protocol in Go. | 7.5 |
2023-10-31 | CVE-2023-46240 | Codeigniter | Unspecified vulnerability in Codeigniter CodeIgniter is a PHP full-stack web framework. | 7.5 |
2023-10-31 | CVE-2023-46723 | Pajip | Unspecified vulnerability in Pajip Lte-Pic32-Writer 0.0.1/0.0.2 lte-pic32-writer is a writer for PIC32 devices. | 7.5 |
2023-10-31 | CVE-2023-46236 | Fogproject | Unspecified vulnerability in Fogproject FOG is a free open-source cloning/imaging/rescue suite/inventory management system. | 7.5 |
2023-10-31 | CVE-2023-46992 | Totolink | Unspecified vulnerability in Totolink A3300R Firmware 17.0.0Cu.557B20221024 TOTOLINK A3300R V17.0.0cu.557_B20221024 is vulnerable to Incorrect Access Control. | 7.5 |
2023-10-31 | CVE-2023-46978 | Totolink | Missing Authentication for Critical Function vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 TOTOLINK X6000R V9.4.0cu.852_B20230719 is vulnerable to Incorrect Access Control.Attackers can reset login password & WIFI passwords without authentication. | 7.5 |
2023-10-31 | CVE-2015-20110 | Jhipster | Improper Restriction of Excessive Authentication Attempts vulnerability in Jhipster JHipster generator-jhipster before 2.23.0 allows a timing attack against validateToken due to a string comparison that stops at the first character that is different. | 7.5 |
2023-10-31 | CVE-2023-45899 | Idnovate | Incorrect Authorization vulnerability in Idnovate Superuser 2.3.5 An issue in the component SuperUserSetuserModuleFrontController:init() of idnovate superuser before v2.4.2 allows attackers to bypass authentication via a crafted HTTP call. | 7.5 |
2023-10-31 | CVE-2023-46129 | Nats | Unspecified vulnerability in Nats Server and Nkeys NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT, and edge computing. | 7.5 |
2023-10-30 | CVE-2023-45672 | Frigate | Unspecified vulnerability in Frigate 0.13.0 Frigate is an open source network video recorder. | 7.5 |
2023-10-30 | CVE-2023-45956 | Govee | Unspecified vulnerability in Govee LED Strip Firmware 3.00.42 An issue discovered in Govee LED Strip v3.00.42 allows attackers to cause a denial of service via crafted Move and MoveWithOnoff commands. | 7.5 |
2023-10-30 | CVE-2020-36767 | Vareille | Unspecified vulnerability in Vareille Tinyfiledialogs tinyfiledialogs (aka tiny file dialogs) before 3.8.0 allows shell metacharacters in titles, messages, and other input data. | 7.5 |
2023-10-30 | CVE-2023-21391 | Improper Input Validation vulnerability in Google Android In Messaging, there is a possible way to disable the messaging application due to improper input validation. | 7.5 | |
2023-10-30 | CVE-2023-21339 | Unspecified vulnerability in Google Android In Minikin, there is a possible way to trigger ANR by showing a malicious message due to resource exhaustion. | 7.5 | |
2023-10-30 | CVE-2023-21347 | Out-of-bounds Read vulnerability in Google Android In Bluetooth, there is a possible out of bounds read due to a missing bounds check. | 7.5 | |
2023-10-30 | CVE-2023-21353 | Out-of-bounds Read vulnerability in Google Android 14.0 In NFA, there is a possible out of bounds read due to a missing bounds check. | 7.5 | |
2023-10-30 | CVE-2023-46863 | Peppermint | Path Traversal vulnerability in Peppermint Peppermint Ticket Management before 0.2.4 allows remote attackers to read arbitrary files via a /api/v1/users/file/download?filepath=./../ POST request. | 7.5 |
2023-11-03 | CVE-2023-36034 | Microsoft | Unspecified vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 7.3 |
2023-11-02 | CVE-2023-31027 | Nvidia | Unspecified vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability that allows Windows users with low levels of privilege to escalate privileges when an administrator is updating GPU drivers, which may lead to escalation of privileges. | 7.3 |
2023-11-02 | CVE-2023-29047 | Open Xchange | SQL Injection vulnerability in Open-Xchange Appsuite Imageconverter API endpoints provided methods that were not sufficiently validating and sanitizing client input, allowing to inject arbitrary SQL statements. | 7.3 |
2023-11-01 | CVE-2023-5847 | Tenable | Unspecified vulnerability in Tenable Nessus Under certain conditions, a low privileged attacker could load a specially crafted file during installation or upgrade to escalate privileges on Windows and Linux hosts. | 7.3 |
2023-10-30 | CVE-2023-45780 | Unspecified vulnerability in Google Android In Print Service, there is a possible background activity launch due to a logic error in the code. | 7.3 | |
2023-11-04 | CVE-2023-32741 | Itpathsolutions | SQL Injection vulnerability in Itpathsolutions Contact Form to ANY API Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in IT Path Solutions PVT LTD Contact Form to Any API allows SQL Injection.This issue affects Contact Form to Any API: from n/a through 1.1.2. | 7.2 |
2023-11-04 | CVE-2023-38391 | Themesgrove | Unspecified vulnerability in Themesgrove Onepage Builder 2.4.1 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themesgrove Onepage Builder allows SQL Injection.This issue affects Onepage Builder: from n/a through 2.4.1. | 7.2 |
2023-11-04 | CVE-2023-40215 | Superwhite | Unspecified vulnerability in Superwhite Demon Image Annotation Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Demonisblack demon image annotation allows SQL Injection.This issue affects demon image annotation: from n/a through 5.1. | 7.2 |
2023-11-03 | CVE-2023-32121 | Highfivery | Unspecified vulnerability in Highfivery Zero Spam for Wordpress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Highfivery LLC Zero Spam for WordPress allows SQL Injection.This issue affects Zero Spam for WordPress: from n/a through 5.4.4. | 7.2 |
2023-11-03 | CVE-2023-32508 | Cagewebdev | Unspecified vulnerability in Cagewebdev Order Your Posts Manually Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Rolf van Gelder Order Your Posts Manually allows SQL Injection.This issue affects Order Your Posts Manually: from n/a through 2.2.5. | 7.2 |
2023-11-03 | CVE-2023-34179 | Groundhogg | Unspecified vulnerability in Groundhogg Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Groundhogg Inc. | 7.2 |
2023-11-03 | CVE-2023-41352 | Nokia | OS Command Injection vulnerability in Nokia G-040W-Q Firmware G040Wqr201207 Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient filtering for user input. | 7.2 |
2023-11-02 | CVE-2023-5919 | Company Website CMS Project | Unspecified vulnerability in Company Website CMS Project Company Website CMS 1.0 A vulnerability was found in SourceCodester Company Website CMS 1.0 and classified as problematic. | 7.2 |
2023-11-02 | CVE-2023-5860 | Bplugins | Unrestricted Upload of File with Dangerous Type vulnerability in Bplugins Icons Font Loader 1.0/1.1.2 The Icons Font Loader plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the upload function in all versions up to, and including, 1.1.2. | 7.2 |
2023-11-02 | CVE-2023-5408 | Redhat | Unspecified vulnerability in Redhat Openshift Container Platform A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. | 7.2 |
2023-11-01 | CVE-2023-20196 | Cisco | Unrestricted Upload of File with Dangerous Type vulnerability in Cisco Identity Services Engine Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. | 7.2 |
2023-11-01 | CVE-2023-20195 | Cisco | Unrestricted Upload of File with Dangerous Type vulnerability in Cisco Identity Services Engine Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. | 7.2 |
2023-10-31 | CVE-2023-46245 | Kimai | Unspecified vulnerability in Kimai Kimai is a web-based multi-user time-tracking application. | 7.2 |
2023-10-31 | CVE-2023-25045 | Carrcommunications | SQL Injection vulnerability in Carrcommunications Rsvpmaker Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. | 7.2 |
2023-10-31 | CVE-2023-25047 | Carrcommunications | Unspecified vulnerability in Carrcommunications Rsvpmaker Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. | 7.2 |
2023-10-30 | CVE-2023-5844 | Pimcore | Improper Authentication vulnerability in Pimcore Admin Classic Bundle Unverified Password Change in GitHub repository pimcore/admin-ui-classic-bundle prior to 1.2.0. | 7.2 |
2023-10-30 | CVE-2023-46865 | Craterapp | Code Injection vulnerability in Craterapp Crater /api/v1/company/upload-logo in CompanyController.php in crater through 6.0.6 allows a superadmin to execute arbitrary PHP code by placing this code into an image/png IDAT chunk of a Company Logo image. | 7.2 |
2023-11-03 | CVE-2020-28407 | Swtpm Project | Link Following vulnerability in Swtpm Project Swtpm In swtpm before 0.4.2 and 0.5.x before 0.5.1, a local attacker may be able to overwrite arbitrary files via a symlink attack against a temporary file such as TMP2-00.permall. | 7.1 |
2023-11-02 | CVE-2023-31019 | Nvidia | Unspecified vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability in wksServicePlugin.dll, where the driver implementation does not restrict or incorrectly restricts access from the named pipe server to a connecting client, which may lead to potential impersonation to the client's secure context. | 7.1 |
2023-11-02 | CVE-2023-31020 | Nvidia | Unspecified vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause improper access control, which may lead to denial of service or data tampering. | 7.1 |
2023-11-03 | CVE-2023-5088 | Qemu Redhat | Improper Synchronization vulnerability in multiple products A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead (potentially overwriting the VM's boot code). | 7.0 |
2023-11-03 | CVE-2023-1476 | Linux Redhat | Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. | 7.0 |
2023-11-03 | CVE-2023-41914 | Schedmd Fedoraproject | Race Condition vulnerability in multiple products SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files. | 7.0 |
319 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2023-10-30 | CVE-2023-45670 | Frigate | Unspecified vulnerability in Frigate 0.13.0 Frigate is an open source network video recorder. | 6.8 |
2023-11-01 | CVE-2023-20170 | Cisco | OS Command Injection vulnerability in Cisco Identity Services Engine 3.2 A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. | 6.7 |
2023-11-01 | CVE-2023-42655 | Unspecified vulnerability in Google Android 11.0 In sim service, there is a possible way to write permission usage records of an app due to a missing permission check. | 6.7 | |
2023-10-30 | CVE-2023-21380 | Out-of-bounds Write vulnerability in Google Android In Bluetooth, there is a possible out of bounds write due to a heap buffer overflow. | 6.7 | |
2023-10-30 | CVE-2023-21310 | Out-of-bounds Write vulnerability in Google Android In Bluetooth, there is a possible out of bounds write due to a heap buffer overflow. | 6.7 | |
2023-10-30 | CVE-2023-21360 | Out-of-bounds Write vulnerability in Google Android 14.0 In Bluetooth, there is a possible out of bounds write due to improper input validation. | 6.7 | |
2023-10-30 | CVE-2023-21370 | Integer Overflow or Wraparound vulnerability in Google Android In the Security Element API, there is a possible out of bounds write due to an integer overflow. | 6.7 | |
2023-10-30 | CVE-2023-21371 | Integer Overflow or Wraparound vulnerability in Google Android In Secure Element, there is a possible out of bounds write due to an integer overflow. | 6.7 | |
2023-10-30 | CVE-2022-48189 | Lenovo | Unspecified vulnerability in Lenovo products An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code. | 6.7 |
2023-10-30 | CVE-2022-4573 | Lenovo | Unspecified vulnerability in Lenovo Thinkpad X1 Fold GEN 1 Firmware An SMI handler input validation vulnerability in the ThinkPad X1 Fold Gen 1 could allow an attacker with local access and elevated privileges to execute arbitrary code. | 6.7 |
2023-10-30 | CVE-2022-4574 | Lenovo | Unspecified vulnerability in Lenovo products An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code. | 6.7 |
2023-10-30 | CVE-2022-4575 | Lenovo | Unspecified vulnerability in Lenovo products A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of some ThinkPad models could allow an attacker with physical or local access and elevated privileges the ability to bypass Secure Boot. | 6.7 |
2023-11-03 | CVE-2023-36022 | Microsoft | Unspecified vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 6.6 |
2023-11-05 | CVE-2023-47249 | Color | Out-of-bounds Write vulnerability in Color Demoiccmax 20220621 In International Color Consortium DemoIccMAX 79ecb74, a CIccXmlArrayType:::ParseText function (for unsigned short) in IccUtilXml.cpp in libIccXML.a has an out-of-bounds read. | 6.5 |
2023-11-03 | CVE-2023-45189 | IBM | Unspecified vulnerability in IBM Robotic Process Automation for Cloud PAK A vulnerability in IBM Robotic Process Automation and IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.10, 23.0.0 through 23.0.10 may result in access to client vault credentials. | 6.5 |
2023-11-03 | CVE-2023-42670 | Samba Fedoraproject | A flaw was found in Samba. | 6.5 |
2023-11-03 | CVE-2023-4091 | Samba Fedoraproject Redhat | Incorrect Default Permissions vulnerability in multiple products A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when the Samba VFS module "acl_xattr" is configured with "acl_xattr:ignore system acls = yes". | 6.5 |
2023-11-03 | CVE-2023-41356 | Wisdomgarden | Unspecified vulnerability in Wisdomgarden Tronclass Ilearn 1.62.41849 NCSIST ManageEngine Mobile Device Manager(MDM) APP's special function has a path traversal vulnerability. | 6.5 |
2023-11-02 | CVE-2023-43076 | Dell | Memory Leak vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS 8.2.x,9.0.0.x-9.5.0.x contains a denial-of-service vulnerability. | 6.5 |
2023-11-02 | CVE-2023-43087 | Dell | Improper Handling of Exceptional Conditions vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contains an improper handling of insufficient permissions. | 6.5 |
2023-11-01 | CVE-2023-1192 | Linux Redhat | Use After Free vulnerability in multiple products A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. | 6.5 |
2023-11-01 | CVE-2023-1193 | Linux | Use After Free vulnerability in Linux Kernel A use-after-free flaw was found in setup_async_work in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. | 6.5 |
2023-11-01 | CVE-2023-20114 | Cisco | Improper Input Validation vulnerability in Cisco Secure Firewall Management Center A vulnerability in the file download feature of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to download arbitrary files from an affected system. | 6.5 |
2023-11-01 | CVE-2023-20155 | Cisco | Resource Exhaustion vulnerability in Cisco Secure Firewall Management Center A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to cause the device to become unresponsive or trigger an unexpected reload. | 6.5 |
2023-11-01 | CVE-2023-4198 | Dolibarr | Missing Authorization vulnerability in Dolibarr Erp/Crm Improper Access Control in Dolibarr ERP CRM <= v17.0.3 allows an unauthorized authenticated user to read a database table containing customer data | 6.5 |
2023-11-01 | CVE-2023-2621 | Hitachienergy | Path Traversal vulnerability in Hitachienergy Modular Advanced Control for Hvdc 5.0/7.10.0.0 The McFeeder server (distributed as part of SSW package), is susceptible to an arbitrary file write vulnerability on the MAIN computer system. | 6.5 |
2023-11-01 | CVE-2023-46278 | Cybozu | Resource Exhaustion vulnerability in Cybozu Remote Service 4.1.0 Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.1.0 to 4.1.1 allows a remote authenticated attacker to consume huge storage space or cause significantly delayed communication. | 6.5 |
2023-10-31 | CVE-2023-39610 | TP Link | Resource Exhaustion vulnerability in Tp-Link Tapo C100 Firmware 1.1.15 An issue in TP-Link Tapo C100 v1.1.15 Build 211130 Rel.15378n(4555) and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted web request. | 6.5 |
2023-10-31 | CVE-2023-46255 | Authzed | Unspecified vulnerability in Authzed Spicedb SpiceDB is an open source, Google Zanzibar-inspired database for creating and managing security-critical application permissions. | 6.5 |
2023-10-31 | CVE-2023-5412 | Gopiplus | Unspecified vulnerability in Gopiplus Image Horizontal Reel Scroll Slideshow The Image horizontal reel scroll slideshow plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 13.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5428 | Gopiplus | Unspecified vulnerability in Gopiplus Image Vertical Reel Scroll Slideshow The Image vertical reel scroll slideshow plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 9.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5429 | Gopiplus | SQL Injection vulnerability in Gopiplus Information Reel The Information Reel plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 10.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5430 | Gopiplus | Unspecified vulnerability in Gopiplus Jquery News Ticker The Jquery news ticker plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 3.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5431 | Gopiplus | Unspecified vulnerability in Gopiplus Left Right Image Slideshow Gallery The Left right image slideshow gallery plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 12.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5433 | Gopiplus | Unspecified vulnerability in Gopiplus Message Ticker The Message ticker plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 9.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5434 | Gopiplus | Unspecified vulnerability in Gopiplus Superb Slideshow Gallery The Superb slideshow gallery plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 13.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5435 | Gopiplus | Unspecified vulnerability in Gopiplus UP Down Image Slideshow Gallery The Up down image slideshow gallery plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 12.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5436 | Gopiplus | Unspecified vulnerability in Gopiplus Vertical Marquee Plugin The Vertical marquee plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 7.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5437 | Gopiplus | Unspecified vulnerability in Gopiplus WP Fade in Text News The WP fade in text news plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 12.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5438 | Gopiplus | Unspecified vulnerability in Gopiplus WP Image Slideshow The wp image slideshow plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 12.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5439 | Gopiplus | Unspecified vulnerability in Gopiplus WP Photo Text Slider 50 The Wp photo text slider 50 plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 8.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-5464 | Gopiplus | Unspecified vulnerability in Gopiplus Jquery Accordion Slideshow The Jquery accordion slideshow plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
2023-10-31 | CVE-2023-46361 | Artifex | Unspecified vulnerability in Artifex Jbig2Dec 0.20 Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2_error at /jbig2dec/jbig2.c. | 6.5 |
2023-10-30 | CVE-2023-43648 | Basercms | Unspecified vulnerability in Basercms baserCMS is a website development framework. | 6.5 |
2023-10-30 | CVE-2023-21395 | Use After Free vulnerability in Google Android In Bluetooth, there is a possible out of bounds read due to a use after free. | 6.5 | |
2023-10-30 | CVE-2023-21315 | Out-of-bounds Read vulnerability in Google Android In Bluetooth, there is a possible out of bounds read due to a heap buffer overflow. | 6.5 | |
2023-10-30 | CVE-2023-47090 | Linuxfoundation | Incorrect Authorization vulnerability in Linuxfoundation Nats-Server NATS nats-server before 2.9.23 and 2.10.x before 2.10.2 has an authentication bypass. | 6.5 |
2023-10-30 | CVE-2023-46866 | Color | Out-of-bounds Write vulnerability in Color Demoiccmax 20220621 In International Color Consortium DemoIccMAX 79ecb74, CIccCLUT::Interp3d in IccProfLib/IccTagLut.cpp in libSampleICC.a attempts to access array elements at out-of-bounds indexes. | 6.5 |
2023-10-30 | CVE-2023-46867 | Color | NULL Pointer Dereference vulnerability in Color Demoiccmax 20220621 In International Color Consortium DemoIccMAX 79ecb74, CIccXformMatrixTRC::GetCurve in IccCmm.cpp in libSampleICC.a has a NULL pointer dereference. | 6.5 |
2023-11-01 | CVE-2023-3397 | Linux | Race Condition vulnerability in Linux Kernel A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. | 6.3 |
2023-10-30 | CVE-2021-25736 | Kubernetes | Unspecified vulnerability in Kubernetes Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port (“spec.ports[*].port”) as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress[].ip” field. | 6.3 |
2023-11-05 | CVE-2023-47258 | Redmine | Cross-site Scripting vulnerability in Redmine Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS in a Markdown formatter. | 6.1 |
2023-11-05 | CVE-2023-47259 | Redmine | Cross-site Scripting vulnerability in Redmine Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS in the Textile formatter. | 6.1 |
2023-11-05 | CVE-2023-47260 | Redmine | Cross-site Scripting vulnerability in Redmine Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails. | 6.1 |
2023-11-05 | CVE-2023-46964 | Hillstonenet | Cross-site Scripting vulnerability in Hillstonenet Sc-6000-E3960 Firmware 5.5 Cross Site Scripting (XSS) vulnerability in Hillstone Next Generation FireWall SG-6000-e3960 v.5.5 allows a remote attacker to execute arbitrary code via the use front-end filtering instead of back-end filtering. | 6.1 |
2023-11-03 | CVE-2023-5946 | Evarisk | Cross-site Scripting vulnerability in Evarisk Digirisk 6.0.0.0 The Digirisk plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'current_group_id' parameter in version 6.0.0.0 due to insufficient input sanitization and output escaping. | 6.1 |
2023-11-03 | CVE-2023-4592 | WPN XM | Cross-site Scripting vulnerability in Wpn-Xm 0.8.6 A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. | 6.1 |
2023-11-03 | CVE-2023-4767 | Zohocorp | Injection vulnerability in Zohocorp Manageengine Desktop Central 9.1.0 A CRLF injection vulnerability has been found in ManageEngine Desktop Central affecting version 9.1.0. | 6.1 |
2023-11-03 | CVE-2023-4768 | Zohocorp | Unspecified vulnerability in Zohocorp Manageengine Desktop Central 9.1.0 A CRLF injection vulnerability has been found in ManageEngine Desktop Central affecting version 9.1.0. | 6.1 |
2023-11-02 | CVE-2023-5930 | Simple Student Information System Project | Unspecified vulnerability in Simple Student Information System Project Simple Student Information System 1.0 A vulnerability was found in Campcodes Simple Student Information System 1.0. | 6.1 |
2023-11-02 | CVE-2023-29043 | Open Xchange | Cross-site Scripting vulnerability in Open-Xchange Appsuite Presentations may contain references to images, which are user-controlled, and could include malicious script code that is being processed when editing a document. | 6.1 |
2023-11-02 | CVE-2023-43193 | Rcos | Cross-site Scripting vulnerability in Rcos Submitty Submitty before v22.06.00 is vulnerable to Cross Site Scripting (XSS). | 6.1 |
2023-11-02 | CVE-2023-5917 | Phpbb | Unspecified vulnerability in PHPbb A vulnerability, which was classified as problematic, has been found in phpBB up to 3.3.10. | 6.1 |
2023-11-02 | CVE-2023-5910 | Popojicms | Unspecified vulnerability in Popojicms 2.0.1 A vulnerability was found in PopojiCMS 2.0.1 and classified as problematic. | 6.1 |
2023-11-01 | CVE-2023-46448 | Dmpop | Cross-site Scripting vulnerability in Dmpop Mejiro Reflected Cross-Site Scripting (XSS) vulnerability in dmpop Mejiro Commit Versions Prior To 3096393 allows attackers to run arbitrary code via crafted string in metadata of uploaded images. | 6.1 |
2023-11-01 | CVE-2023-20264 | Cisco | Unspecified vulnerability in Cisco products A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 single sign-on (SSO) for remote access VPN in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to intercept the SAML assertion of a user who is authenticating to a remote access VPN session. | 6.1 |
2023-11-01 | CVE-2023-5480 | Google Debian Fedoraproject | Cross-site Scripting vulnerability in multiple products Inappropriate implementation in Payments in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to bypass XSS preventions via a malicious file. | 6.1 |
2023-11-01 | CVE-2023-20005 | Cisco | Cross-site Scripting vulnerability in Cisco Secure Firewall Management Center Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. | 6.1 |
2023-11-01 | CVE-2023-20041 | Cisco | Cross-site Scripting vulnerability in Cisco Secure Firewall Management Center Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. | 6.1 |
2023-11-01 | CVE-2023-20074 | Cisco | Cross-site Scripting vulnerability in Cisco Secure Firewall Management Center Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. | 6.1 |
2023-11-01 | CVE-2023-20206 | Cisco | Cross-site Scripting vulnerability in Cisco Secure Firewall Management Center Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. | 6.1 |
2023-11-01 | CVE-2023-46911 | Jspxcms | Cross-site Scripting vulnerability in Jspxcms 10.2.0 There is a Cross Site Scripting (XSS) vulnerability in the choose_style_tree.do interface of Jspxcms v10.2.0 backend. | 6.1 |
2023-10-31 | CVE-2023-20886 | Vmware | Open Redirect vulnerability in VMWare Workspace ONE UEM VMware Workspace ONE UEM console contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker and retrieve their SAML response to login as the victim user. | 6.1 |
2023-10-31 | CVE-2023-46722 | Pimcore | Cross-site Scripting vulnerability in Pimcore Admin Classic Bundle The Pimcore Admin Classic Bundle provides a backend UI for Pimcore. | 6.1 |
2023-10-31 | CVE-2023-46235 | Fogproject | Cross-site Scripting vulnerability in Fogproject FOG is a free open-source cloning/imaging/rescue suite/inventory management system. | 6.1 |
2023-10-31 | CVE-2023-4250 | Metagauss | Cross-site Scripting vulnerability in Metagauss Eventprime The EventPrime WordPress plugin before 3.2.0 does not sanitise and escape some parameters before outputting them back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. | 6.1 |
2023-10-31 | CVE-2023-5211 | Fattura24 | Cross-site Scripting vulnerability in Fattura24 The Fattura24 WordPress plugin before 6.2.8 does not sanitize or escape the 'id' parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting vulnerability. | 6.1 |
2023-10-31 | CVE-2023-5238 | Metagauss | Cross-site Scripting vulnerability in Metagauss Eventprime The EventPrime WordPress plugin before 3.2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to an HTML Injection on the plugin in the search area of the website. | 6.1 |
2023-10-31 | CVE-2023-5307 | Contest Gallery | Cross-site Scripting vulnerability in Contest-Gallery Contest Gallery The Photos and Files Contest Gallery WordPress plugin before 21.2.8.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks via certain headers. | 6.1 |
2023-10-31 | CVE-2023-46312 | Zaytech | Unspecified vulnerability in Zaytech Smart Online Order for Clover Unauth. | 6.1 |
2023-10-31 | CVE-2023-46313 | Katieseaborn | Unspecified vulnerability in Katieseaborn Zotpress Unauth. | 6.1 |
2023-10-31 | CVE-2023-46622 | WP Pizza | Unspecified vulnerability in Wp-Pizza Wppizza Unauth. | 6.1 |
2023-10-31 | CVE-2023-5863 | Phpmyfaq | Unspecified vulnerability in PHPmyfaq Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2. | 6.1 |
2023-10-30 | CVE-2023-36920 | SAP | Improper Restriction of Rendered UI Layers or Frames vulnerability in SAP products In SAP Enable Now - versions WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704, the X-FRAME-OPTIONS response header is not implemented, allowing an unauthenticated attacker to attempt clickjacking, which could result in disclosure or modification of information. | 6.1 |
2023-10-30 | CVE-2023-4964 | Microfocus | Open Redirect vulnerability in Microfocus products Potential open redirect vulnerability in opentext Service Management Automation X (SMAX) versions 2020.05, 2020.08, 2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11 and opentext Asset Management X (AMX) versions 2021.08, 2021.11, 2022.05, 2022.11. | 6.1 |
2023-10-30 | CVE-2023-4393 | Liquidfiles | Injection vulnerability in Liquidfiles HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization. | 6.1 |
2023-11-02 | CVE-2023-46327 | Xerox Fujifilm | Improper Authentication vulnerability in multiple products Multiple MFPs (multifunction printers) provided by FUJIFILM Business Innovation Corp. | 5.9 |
2023-10-31 | CVE-2015-0897 | Line | Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Line 5.0.0/5.0.2 LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. | 5.9 |
2023-10-31 | CVE-2015-2968 | Line | Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Line Line@ 1.0.0 LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. | 5.9 |
2023-11-01 | CVE-2023-20071 | Cisco | Unspecified vulnerability in Cisco products Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. | 5.8 |
2023-11-01 | CVE-2023-20245 | Cisco | Unspecified vulnerability in Cisco Adaptive Security Appliance Software Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied to flow through an affected device. | 5.8 |
2023-11-01 | CVE-2023-20256 | Cisco | Unspecified vulnerability in Cisco Adaptive Security Appliance Software Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied to flow through an affected device. | 5.8 |
2023-11-01 | CVE-2023-20270 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense A vulnerability in the interaction between the Server Message Block (SMB) protocol preprocessor and the Snort 3 detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. | 5.8 |
2023-10-31 | CVE-2023-5866 | Phpmyfaq | Unspecified vulnerability in PHPmyfaq Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1. | 5.7 |
2023-10-31 | CVE-2023-46139 | Kernelsu | Unspecified vulnerability in Kernelsu KernelSU is a Kernel based root solution for Android. | 5.7 |
2023-11-03 | CVE-2023-5948 | Teamamaze | Unspecified vulnerability in Teamamaze Amaze File Utilities Improper Authorization in GitHub repository teamamaze/amazefileutilities prior to 1.91. | 5.5 |
2023-11-02 | CVE-2023-39284 | Insyde | Unspecified vulnerability in Insyde Insydeh2O An issue was discovered in IhisiServicesSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. | 5.5 |
2023-11-02 | CVE-2023-31018 | Nvidia | NULL Pointer Dereference vulnerability in Nvidia Virtual GPU NVIDIA GPU Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause a NULL-pointer dereference, which may lead to denial of service. | 5.5 |
2023-11-02 | CVE-2023-31021 | Nvidia | NULL Pointer Dereference vulnerability in Nvidia Virtual GPU NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a malicious user in the guest VM can cause a NULL-pointer dereference, which may lead to denial of service. | 5.5 |
2023-11-02 | CVE-2023-31022 | Nvidia | NULL Pointer Dereference vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a NULL-pointer dereference may lead to denial of service. | 5.5 |
2023-11-02 | CVE-2023-31023 | Nvidia | Unspecified vulnerability in Nvidia Virtual GPU NVIDIA Display Driver for Windows contains a vulnerability where an attacker may cause a pointer dereference of an untrusted value, which may lead to denial of service. | 5.5 |
2023-11-02 | CVE-2023-31026 | Nvidia | NULL Pointer Dereference vulnerability in Nvidia Virtual GPU NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a NULL-pointer dereference may lead to denial of service. | 5.5 |
2023-11-02 | CVE-2022-4900 | PHP Redhat | Out-of-bounds Write vulnerability in multiple products A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow. | 5.5 |
2023-11-02 | CVE-2023-38473 | Avahi Redhat | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
2023-11-02 | CVE-2023-38469 | Avahi Redhat | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record. | 5.5 |
2023-11-02 | CVE-2023-38470 | Avahi Redhat | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
2023-11-02 | CVE-2023-38471 | Avahi Redhat | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
2023-11-02 | CVE-2023-38472 | Avahi Redhat | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
2023-11-02 | CVE-2023-3164 | Libtiff Redhat | Out-of-bounds Write vulnerability in multiple products A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. | 5.5 |
2023-11-01 | CVE-2023-46927 | Gpac | Out-of-bounds Write vulnerability in Gpac 2.3Devrev605Gfc9E29089Master GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box. | 5.5 |
2023-11-01 | CVE-2023-46928 | Gpac | Unspecified vulnerability in Gpac 2.3Devrev605Gfc9E29089Master GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_media_change_pl /afltest/gpac/src/media_tools/isom_tools.c:3293:42. | 5.5 |
2023-11-01 | CVE-2023-46930 | Gpac | Unspecified vulnerability in Gpac 2.3Devrev605Gfc9E29089Master GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_isom_find_od_id_for_track /afltest/gpac/src/isomedia/media_odf.c:522:14. | 5.5 |
2023-11-01 | CVE-2023-46931 | Gpac | Out-of-bounds Write vulnerability in Gpac 2.3Devrev605Gfc9E29089Master GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmx_parse_side_data /afltest/gpac/src/filters/ff_dmx.c:202:14 in gpac/MP4Box. | 5.5 |
2023-11-01 | CVE-2022-48454 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In wifi service, there is a possible out of bounds write due to a missing bounds check. | 5.5 | |
2023-11-01 | CVE-2022-48455 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In wifi service, there is a possible out of bounds write due to a missing bounds check. | 5.5 | |
2023-11-01 | CVE-2022-48457 | Improper Input Validation vulnerability in Google Android 11.0/12.0 In TeleService, there is a possible system crash due to improper input validation. | 5.5 | |
2023-11-01 | CVE-2022-48458 | Improper Input Validation vulnerability in Google Android 11.0/12.0 In TeleService, there is a possible system crash due to improper input validation. | 5.5 | |
2023-11-01 | CVE-2022-48459 | Improper Input Validation vulnerability in Google Android 11.0/12.0 In TeleService, there is a possible system crash due to improper input validation. | 5.5 | |
2023-11-01 | CVE-2022-48460 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 In setting service, there is a possible undefined behavior due to incorrect error handling. | 5.5 | |
2023-11-01 | CVE-2023-42631 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42632 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42633 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42634 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42635 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42636 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42637 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42638 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42639 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42640 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42641 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42642 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42643 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In validationtools, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42644 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In dm service, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42645 | Unspecified vulnerability in Google Android 11.0 In sim service, there is a possible way to write permission usage records of an app due to a missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42646 | Missing Authorization vulnerability in Google Android In Ifaa service, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42647 | Unspecified vulnerability in Google Android In Ifaa service, there is a possible way to write permission usage records of an app due to a missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42648 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In engineermode, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42649 | Unspecified vulnerability in Google Android 11.0/12.0/13.0 In engineermode, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42650 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In engineermode, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42651 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In engineermode, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42652 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In engineermode, there is a possible missing permission check. | 5.5 | |
2023-11-01 | CVE-2023-42653 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0 In faceid service, there is a possible out of bounds write due to a missing bounds check. | 5.5 | |
2023-11-01 | CVE-2023-42654 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In dm service, there is a possible missing permission check. | 5.5 | |
2023-10-31 | CVE-2023-46250 | Pypdf Project | Unspecified vulnerability in Pypdf Project Pypdf pypdf is a free and open-source pure-python PDF library. | 5.5 |
2023-10-31 | CVE-2023-31794 | Artifex | Uncontrolled Recursion vulnerability in Artifex Mupdf 1.21.1 MuPDF v1.21.1 was discovered to contain an infinite recursion in the component pdf_mark_list_push. | 5.5 |
2023-10-30 | CVE-2023-21376 | Unspecified vulnerability in Google Android In Telephony, there is a possible way to retrieve the ICCID due to a logic error in the code. | 5.5 | |
2023-10-30 | CVE-2023-21377 | Unspecified vulnerability in Google Android In SELinux Policy, there is a possible restriction bypass due to a permissions bypass. | 5.5 | |
2023-10-30 | CVE-2023-21382 | Missing Authorization vulnerability in Google Android In Content Resolver, there is a possible method to access metadata about existing content providers on the device due to a missing permission check. | 5.5 | |
2023-10-30 | CVE-2023-21383 | Unspecified vulnerability in Google Android In Settings, there is a possible way for the user to unintentionally send extra data due to an unclear prompt. | 5.5 | |
2023-10-30 | CVE-2023-21384 | Unspecified vulnerability in Google Android In Package Manager, there is a possible possible permissions bypass due to an unsafe PendingIntent. | 5.5 | |
2023-10-30 | CVE-2023-21385 | Out-of-bounds Write vulnerability in Google Android In Whitechapel, there is a possible out of bounds read due to memory corruption. | 5.5 | |
2023-10-30 | CVE-2023-21394 | Unspecified vulnerability in Google Android In registerPhoneAccount of TelecomServiceImpl.java, there is a possible way to reveal images from another user due to a missing permission check. | 5.5 | |
2023-10-30 | CVE-2023-40101 | Out-of-bounds Read vulnerability in Google Android In collapse of canonicalize_md.c, there is a possible out of bounds read due to a missing bounds check. | 5.5 | |
2023-10-30 | CVE-2022-20264 | Information Exposure Through Discrepancy vulnerability in Google Android In Usage Stats Service, there is a possible way to determine whether an app is installed, without query permissions due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21293 | Information Exposure Through Discrepancy vulnerability in Google Android In PackageManagerNative, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21294 | Missing Authorization vulnerability in Google Android In Slice, there is a possible disclosure of installed packages due to a missing permission check. | 5.5 | |
2023-10-30 | CVE-2023-21295 | Unspecified vulnerability in Google Android In SliceManagerService, there is a possible way to check if a content provider is installed due to a missing null check. | 5.5 | |
2023-10-30 | CVE-2023-21296 | Information Exposure Through Discrepancy vulnerability in Google Android In Permission, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21299 | Information Exposure Through Discrepancy vulnerability in Google Android In Package Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21300 | Information Exposure Through Discrepancy vulnerability in Google Android In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21301 | Information Exposure Through Discrepancy vulnerability in Google Android In ActivityManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21302 | Information Exposure Through Discrepancy vulnerability in Google Android In Package Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21303 | Information Exposure Through Discrepancy vulnerability in Google Android In Content, here is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21304 | Information Exposure Through Discrepancy vulnerability in Google Android In Content Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21305 | Information Exposure Through Discrepancy vulnerability in Google Android In Content, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21306 | Information Exposure Through Discrepancy vulnerability in Google Android In ContentService, there is a possible way to read installed sync content providers due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21308 | Out-of-bounds Read vulnerability in Google Android In Composer, there is a possible out of bounds read due to a missing bounds check. | 5.5 | |
2023-10-30 | CVE-2023-21309 | Out-of-bounds Read vulnerability in Google Android In libcore, there is a possible out of bounds read due to a missing bounds check. | 5.5 | |
2023-10-30 | CVE-2023-21311 | Incorrect Authorization vulnerability in Google Android In Settings, there is a possible way to control private DNS settings from a secondary user due to a permissions bypass. | 5.5 | |
2023-10-30 | CVE-2023-21312 | Unspecified vulnerability in Google Android In IntentResolver, there is a possible cross-user media read due to a confused deputy. | 5.5 | |
2023-10-30 | CVE-2023-21316 | Information Exposure Through Discrepancy vulnerability in Google Android In Content, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21317 | Information Exposure Through Discrepancy vulnerability in Google Android In ContentService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21318 | Information Exposure Through Discrepancy vulnerability in Google Android In Content, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21319 | Information Exposure Through Discrepancy vulnerability in Google Android In UsageStatsService, there is a possible way to read installed 3rd party apps due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21320 | Information Exposure Through Discrepancy vulnerability in Google Android In Device Policy, there is a possible way to verify if a particular admin app is registered on the device due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21321 | Missing Authorization vulnerability in Google Android In Package Manager, there is a possible cross-user settings disclosure due to a missing permission check. | 5.5 | |
2023-10-30 | CVE-2023-21323 | Information Exposure Through Discrepancy vulnerability in Google Android In Activity Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21325 | Information Exposure Through Discrepancy vulnerability in Google Android In Settings, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21326 | Information Exposure Through Discrepancy vulnerability in Google Android In Package Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21327 | Information Exposure Through Discrepancy vulnerability in Google Android In Permission Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21329 | Missing Authorization vulnerability in Google Android In Activity Manager, there is a possible way to determine whether an app is installed due to a missing permission check. | 5.5 | |
2023-10-30 | CVE-2023-21330 | Information Exposure Through Discrepancy vulnerability in Google Android In Overlay Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21331 | Information Exposure Through Discrepancy vulnerability in Google Android In InputMethod, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21332 | Information Exposure Through Discrepancy vulnerability in Google Android In Text Services, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21333 | Information Exposure Through Discrepancy vulnerability in Google Android In Text Services, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21334 | Unspecified vulnerability in Google Android In App Ops Service, there is a possible disclosure of information about installed packages due to a logic error in the code. | 5.5 | |
2023-10-30 | CVE-2023-21335 | Information Exposure Through Discrepancy vulnerability in Google Android In Settings, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21336 | Information Exposure Through Discrepancy vulnerability in Google Android In Input Method, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21338 | Information Exposure Through Discrepancy vulnerability in Google Android In Input Method, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21340 | Missing Authorization vulnerability in Google Android In Telecomm, there is a possible way to get the call state due to a missing permission check. | 5.5 | |
2023-10-30 | CVE-2023-21344 | Information Exposure Through Discrepancy vulnerability in Google Android In Job Scheduler, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21350 | Information Exposure Through Discrepancy vulnerability in Google Android 14.0 In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21352 | Out-of-bounds Read vulnerability in Google Android 14.0 In NFA, there is a possible out of bounds read due to a missing bounds check. | 5.5 | |
2023-10-30 | CVE-2023-21354 | Information Exposure Through Discrepancy vulnerability in Google Android 14.0 In Package Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 | |
2023-10-30 | CVE-2023-21362 | Unspecified vulnerability in Google Android In Usage, there is a possible permanent DoS due to resource exhaustion. | 5.5 | |
2023-10-30 | CVE-2023-21364 | Unspecified vulnerability in Google Android In ContactsProvider, there is a possible crash loop due to resource exhaustion. | 5.5 | |
2023-10-30 | CVE-2023-21365 | Unspecified vulnerability in Google Android In Contacts, there is a possible crash loop due to resource exhaustion. | 5.5 | |
2023-10-30 | CVE-2023-21366 | Unspecified vulnerability in Google Android In Scudo, there is a possible way for an attacker to predict heap allocation patterns due to insecure implementation/design. | 5.5 | |
2023-10-30 | CVE-2023-21367 | Unspecified vulnerability in Google Android In Scudo, there is a possible way to exploit certain heap OOB read/write issues due to an insecure implementation/design. | 5.5 | |
2023-10-30 | CVE-2023-21368 | Out-of-bounds Read vulnerability in Google Android In Audio, there is a possible out of bounds read due to missing bounds check. | 5.5 | |
2023-10-30 | CVE-2023-21369 | Unspecified vulnerability in Google Android In Usage Access, there is a possible way to display a Settings usage access restriction toggle screen due to a permissions bypass. | 5.5 | |
2023-11-03 | CVE-2023-5707 | Seothemes | Cross-site Scripting vulnerability in Seothemes SEO Slider The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-11-03 | CVE-2023-5945 | I13Websolution | Cross-Site Request Forgery (CSRF) vulnerability in I13Websolution Video Carousel Slider With Lightbox 1.0 The video carousel slider with lightbox plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. | 5.4 |
2023-11-03 | CVE-2023-41343 | Ragic | Cross-site Scripting vulnerability in Ragic Enterprise Cloud Database Rogic No-Code Database Builder's file uploading function has insufficient filtering for special characters. | 5.4 |
2023-11-03 | CVE-2023-45360 | Mediawiki | Cross-site Scripting vulnerability in Mediawiki An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. | 5.4 |
2023-11-03 | CVE-2023-35896 | IBM | Server-Side Request Forgery (SSRF) vulnerability in IBM Content Navigator 3.0.13 IBM Content Navigator 3.0.13 is vulnerable to server-side request forgery (SSRF). | 5.4 |
2023-11-03 | CVE-2023-42029 | IBM | Cross-site Scripting vulnerability in IBM Cics TX and Txseries for Multiplatforms IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site scripting. | 5.4 |
2023-11-02 | CVE-2023-26456 | Open Xchange | Cross-site Scripting vulnerability in Open-Xchange OX Guard Users were able to set an arbitrary "product name" for OX Guard. | 5.4 |
2023-11-02 | CVE-2023-29044 | Open Xchange | Cross-site Scripting vulnerability in Open-Xchange Appsuite Documents operations could be manipulated to contain invalid data types, possibly script code. | 5.4 |
2023-11-02 | CVE-2023-29045 | Open Xchange | Cross-site Scripting vulnerability in Open-Xchange Appsuite Documents operations, in this case "drawing", could be manipulated to contain invalid data types, possibly script code. | 5.4 |
2023-11-02 | CVE-2023-46475 | Easycorp | Cross-site Scripting vulnerability in Easycorp Zentao 18.3 A Stored Cross-Site Scripting vulnerability was discovered in ZenTao 18.3 where a user can create a project, and in the name field of the project, they can inject malicious JavaScript code. | 5.4 |
2023-11-02 | CVE-2023-46595 | Algosec | Cross-site Scripting vulnerability in Algosec Fireflow A32.20/A32.50/A32.60 Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor allows an attacker to obtain victim’s domain credentials and Net-NTLM hash which can lead to relay domain attacks. | 5.4 |
2023-11-01 | CVE-2023-44954 | Bigtreecms | Cross-site Scripting vulnerability in Bigtreecms Bigtree CMS 4.5.7 Cross Site Scripting vulnerability in BigTree CMS v.4.5.7 allows a remote attacker to execute arbitrary code via the ID parameter in the Developer Settings functions. | 5.4 |
2023-11-01 | CVE-2023-20031 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense A vulnerability in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to restart. | 5.4 |
2023-11-01 | CVE-2023-1715 | Bitrix24 | Cross-site Scripting vulnerability in Bitrix24 22.0.300 A logic error when using mb_strpos() to check for potential XSS payload in Bitrix24 22.0.300 allows attackers to bypass XSS sanitisation via placing HTML tags at the begining of the payload. | 5.4 |
2023-11-01 | CVE-2023-5890 | SFU | Unspecified vulnerability in SFU PKP web Application Library Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 5.4 |
2023-11-01 | CVE-2023-5891 | SFU | Unspecified vulnerability in SFU PKP web Application Library Cross-site Scripting (XSS) - Reflected in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 5.4 |
2023-11-01 | CVE-2023-5892 | SFU | Unspecified vulnerability in SFU PKP web Application Library Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 5.4 |
2023-11-01 | CVE-2023-5894 | SFU | Unspecified vulnerability in SFU Open Journal Systems Cross-site Scripting (XSS) - Stored in GitHub repository pkp/ojs prior to 3.3.0-16. | 5.4 |
2023-11-01 | CVE-2023-5895 | SFU | Unspecified vulnerability in SFU PKP web Application Library Cross-site Scripting (XSS) - DOM in GitHub repository pkp/pkp-lib prior to 3.3.0-16. | 5.4 |
2023-11-01 | CVE-2023-5896 | SFU | Unspecified vulnerability in SFU PKP web Application Library Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib prior to 3.4.0-4. | 5.4 |
2023-11-01 | CVE-2023-47094 | Virtualmin | Cross-site Scripting vulnerability in Virtualmin 7.7 A Stored Cross-Site Scripting (XSS) vulnerability in the Account Plans tab of System Settings in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the Plan name field while editing Account plan details. | 5.4 |
2023-11-01 | CVE-2023-47095 | Virtualmin | Cross-site Scripting vulnerability in Virtualmin 7.7 A Stored Cross-Site Scripting (XSS) vulnerability in the Custom fields of Edit Virtual Server under System Customization in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the Batch Label field while details of Virtual Server. | 5.4 |
2023-11-01 | CVE-2023-47096 | Virtualmin | Cross-site Scripting vulnerability in Virtualmin 7.7 A Reflected Cross-Site Scripting (XSS) vulnerability in the Cloudmin Services Client under System Setting in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the Cloudmin services master field. | 5.4 |
2023-11-01 | CVE-2023-47097 | Virtualmin | Cross-site Scripting vulnerability in Virtualmin 7.7 A Stored Cross-Site Scripting (XSS) vulnerability in the Server Template under System Setting in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the Template name field while creating server templates. | 5.4 |
2023-11-01 | CVE-2023-47099 | Virtualmin | Cross-site Scripting vulnerability in Virtualmin 7.7 A Stored Cross-Site Scripting (XSS) vulnerability in the Create Virtual Server in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via Description field while creating the Virtual server. | 5.4 |
2023-10-31 | CVE-2023-46378 | 1234N | Cross-site Scripting vulnerability in 1234N Minicms 1.11 Stored Cross Site Scripting (XSS) vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php. | 5.4 |
2023-10-31 | CVE-2023-4823 | Prasadkirpekar | Cross-site Scripting vulnerability in Prasadkirpekar WP Meta and Date Remover The WP Meta and Date Remover WordPress plugin before 2.2.0 provides an AJAX endpoint for configuring the plugin settings. | 5.4 |
2023-10-31 | CVE-2023-5237 | Strangerstudios | Cross-site Scripting vulnerability in Strangerstudios Memberlite Shortcodes The Memberlite Shortcodes WordPress plugin before 1.3.9 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admin. | 5.4 |
2023-10-31 | CVE-2023-5458 | Ashik | Cross-site Scripting vulnerability in Ashik Cits Support Svg, Webp Media and Ttf,Otf File Upload The CITS Support svg, webp Media and TTF,OTF File Upload WordPress plugin before 3.0 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads. | 5.4 |
2023-10-31 | CVE-2023-5116 | Ipushpull | Unspecified vulnerability in Ipushpull Live Updates From Excel The Live updates from Excel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ipushpull_page' shortcode in versions up to, and including, 2.3.2 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-31 | CVE-2023-5073 | Jrbecart | Cross-site Scripting vulnerability in Jrbecart Iframe Forms 1.0 The iframe forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'iframe' shortcode in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. | 5.4 |
2023-10-31 | CVE-2023-5114 | Dbbee | Cross-site Scripting vulnerability in Dbbee Idbbee 1.0 The idbbee plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'idbbee' shortcode in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-31 | CVE-2023-5873 | Pimcore | Unspecified vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 11.1.0. | 5.4 |
2023-10-31 | CVE-2023-46451 | Mayurik | Cross-site Scripting vulnerability in Mayurik Best Courier Management System 1.0 Best Courier Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in the change username field. | 5.4 |
2023-10-31 | CVE-2023-46040 | GET Simple | Cross-site Scripting vulnerability in Get-Simple Getsimplecms 3.4.0 Cross Site Scripting vulnerability in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via the a crafted payload to the components.php function. | 5.4 |
2023-10-31 | CVE-2023-5867 | Phpmyfaq | Unspecified vulnerability in PHPmyfaq Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2. | 5.4 |
2023-10-30 | CVE-2023-43797 | Bigbluebutton | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open-source virtual classroom. | 5.4 |
2023-10-30 | CVE-2023-43798 | Bigbluebutton | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open-source virtual classroom. | 5.4 |
2023-10-30 | CVE-2022-39172 | Viva Project | Cross-site Scripting vulnerability in Viva-Project Openviva A stored XSS in the process overview (bersicht zugewiesener Vorgaenge) in mbsupport openVIVA c2 20220101 allows a remote, authenticated, low-privileged attacker to execute arbitrary code in the victim's browser via name field of a process. | 5.4 |
2023-10-30 | CVE-2023-43647 | Basercms | Unspecified vulnerability in Basercms baserCMS is a website development framework. | 5.4 |
2023-10-30 | CVE-2023-5049 | Seedprod | Cross-site Scripting vulnerability in Seedprod Rafflepress The Giveaways and Contests by RafflePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rafflepress' and 'rafflepress_gutenberg' shortcode in versions up to, and including, 1.12.0 due to insufficient input sanitization and output escaping on 'giframe' user supplied attribute. | 5.4 |
2023-10-30 | CVE-2023-5164 | Sevenspark | Cross-site Scripting vulnerability in Sevenspark Bellows Accordion Menu 1.4.2 The Bellows Accordion Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-5251 | G5Theme | Missing Authorization vulnerability in G5Theme Grid Plus 1.3.2 The Grid Plus plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'grid_plus_save_layout_callback' and 'grid_plus_delete_callback' functions in versions up to, and including, 1.3.2. | 5.4 |
2023-10-30 | CVE-2023-5252 | Fareharbor | SQL Injection vulnerability in Fareharbor The FareHarbor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 3.6.7 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-5335 | Buzzsprout | Unspecified vulnerability in Buzzsprout The Buzzsprout Podcasting plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'buzzsprout' shortcode in versions up to, and including, 1.8.3 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-5362 | Spicethemes | Cross-site Scripting vulnerability in Spicethemes Carousel, Recent Post Slider and Banner Slider The Carousel, Recent Post Slider and Banner Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'spice_post_slider' shortcode in versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-5565 | Shortcode Menu Project | Unspecified vulnerability in Shortcode Menu Project Shortcod Menu The Shortcode Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'shortmenu' shortcode in versions up to, and including, 3.2 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-5566 | Simple Shortcodes Project | Unspecified vulnerability in Simple Shortcodes Project Simple Shortcodes The Simple Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 1.0.20 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-5666 | Themepoints | Cross-site Scripting vulnerability in Themepoints Accordion The Accordion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tcpaccordion' shortcode in all versions up to, and including, 2.6 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
2023-10-30 | CVE-2023-42431 | Hallowelt | Cross-site Scripting vulnerability in Hallowelt Bluespice Cross-site Scripting (XSS) vulnerability in BlueSpiceAvatars extension of BlueSpice allows logged in user to inject arbitrary HTML into the profile image dialog on Special:Preferences. | 5.4 |
2023-10-30 | CVE-2023-45746 | Sixapart | Cross-site Scripting vulnerability in Sixapart Movable Type Cross-site scripting vulnerability in Movable Type series allows a remote authenticated attacker to inject an arbitrary script. | 5.4 |
2023-11-04 | CVE-2023-46963 | Kaoshifeng | Improper Authentication vulnerability in Kaoshifeng Yunfan Learning Examination System 6.5 An issue in Beijing Yunfan Internet Technology Co., Ltd, Yunfan Learning Examination System v.6.5 allows a remote attacker to obtain sensitive information via the password parameter in the login function. | 5.3 |
2023-11-03 | CVE-2023-46846 | Squid Cache Redhat | HTTP Request Smuggling vulnerability in multiple products SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems. | 5.3 |
2023-11-03 | CVE-2023-41354 | Nokia | Unspecified vulnerability in Nokia G-040W-Q Firmware G040Wqr201207 Chunghwa Telecom NOKIA G-040W-Q Firewall function does not block ICMP TIMESTAMP requests by default, an unauthenticated remote attacker can exploit this vulnerability by sending a crafted package, resulting in partially sensitive information exposed to an actor. | 5.3 |
2023-11-03 | CVE-2023-34261 | Kyocera | Unspecified vulnerability in Kyocera D-Copia253Mf Plus Firmware 2Vgs000.002.561 Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow identification of valid user accounts via username enumeration because they lead to a "nicht einloggen" error rather than a falsch error. | 5.3 |
2023-11-02 | CVE-2023-43194 | Rcos | Missing Authorization vulnerability in Rcos Submitty 22.06.00 Submitty before v22.06.00 is vulnerable to Incorrect Access Control. | 5.3 |
2023-11-02 | CVE-2023-4217 | Moxa | Exposure of Resource to Wrong Sphere vulnerability in Moxa Eds-G503 Firmware A vulnerability has been identified in PT-G503 Series versions prior to v5.2, where the session cookies attribute is not set properly in the affected application. | 5.3 |
2023-11-02 | CVE-2023-5035 | Moxa | Cleartext Transmission of Sensitive Information vulnerability in Moxa Eds-G503 Firmware A vulnerability has been identified in PT-G503 Series firmware versions prior to v5.2, where the Secure attribute for sensitive cookies in HTTPS sessions is not set, which could cause the cookie to be transmitted in plaintext over an HTTP session. | 5.3 |
2023-11-02 | CVE-2023-5875 | Mattermost | Unspecified vulnerability in Mattermost Desktop Mattermost Desktop fails to correctly handle permissions or prompt the user for consent on certain sensitive ones allowing media exploitation from a malicious mattermost server | 5.3 |
2023-11-02 | CVE-2023-5876 | Mattermost | Unspecified vulnerability in Mattermost Desktop Mattermost fails to properly validate a RegExp built off the server URL path, allowing an attacker in control of an enrolled server to mount a Denial Of Service. | 5.3 |
2023-11-01 | CVE-2023-20246 | Snort Cisco | Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. | 5.3 |
2023-11-01 | CVE-2023-20255 | Cisco | Unspecified vulnerability in Cisco Meeting Server A vulnerability in an API of the Web Bridge feature of Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. | 5.3 |
2023-11-01 | CVE-2023-20267 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense A vulnerability in the IP geolocation rules of Snort 3 could allow an unauthenticated, remote attacker to potentially bypass IP address restrictions. | 5.3 |
2023-11-01 | CVE-2023-5358 | Devolutions | Unspecified vulnerability in Devolutions Server Improper access control in Report log filters feature in Devolutions Server 2023.2.10.0 and earlier allows attackers to retrieve logs from vaults or entries they are not allowed to access via the report request url query parameters. | 5.3 |
2023-11-01 | CVE-2023-5514 | Hitachienergy | Information Exposure Through an Error Message vulnerability in Hitachienergy Esoms The response messages received from the eSOMS report generation using certain parameter queries with full file path can be abused for enumerating the local file system structure. | 5.3 |
2023-11-01 | CVE-2023-5515 | Hitachienergy | Unspecified vulnerability in Hitachienergy Esoms The responses for web queries with certain parameters disclose internal path of resources. | 5.3 |
2023-11-01 | CVE-2023-5516 | Hitachienergy | Unspecified vulnerability in Hitachienergy Esoms Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing information about the underlying technology and other sensitive information details. | 5.3 |
2023-10-31 | CVE-2023-39695 | Elenos | Insufficient Session Expiration vulnerability in Elenos Etg150 Firmware 3.12 Insufficient session expiration in Elenos ETG150 FM Transmitter v3.12 allows attackers to arbitrarily change transmitter configuration and data after logging out. | 5.3 |
2023-10-31 | CVE-2023-37831 | Elenos | Unspecified vulnerability in Elenos Etg150 Firmware 3.12 An issue discovered in Elenos ETG150 FM transmitter v3.12 allows attackers to enumerate user accounts based on server responses when credentials are submitted. | 5.3 |
2023-10-31 | CVE-2023-43796 | Matrix Fedoraproject | Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. | 5.3 |
2023-10-31 | CVE-2023-46237 | Fogproject | Unspecified vulnerability in Fogproject FOG is a free open-source cloning/imaging/rescue suite/inventory management system. | 5.3 |
2023-10-31 | CVE-2023-46138 | Fit2Cloud | Unspecified vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host and maintenance security audit system that complies with 4A specifications. | 5.3 |
2023-10-30 | CVE-2023-42804 | Bigbluebutton | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open-source virtual classroom. | 5.3 |
2023-10-30 | CVE-2023-46864 | Peppermint | Path Traversal vulnerability in Peppermint Peppermint Ticket Management through 0.2.4 allows remote attackers to read arbitrary files via a /api/v1/ticket/1/file/download?filepath=../ POST request. | 5.3 |
2023-10-30 | CVE-2023-21307 | Improper Authentication vulnerability in Google Android In Bluetooth, there is a possible way for a paired Bluetooth device to access a long term identifier for an Android device due to a permissions bypass. | 5.0 | |
2023-11-03 | CVE-2023-34259 | Kyocera | Path Traversal vulnerability in Kyocera D-Copia253Mf Plus Firmware 2Vgs000.002.561 Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. | 4.9 |
2023-11-01 | CVE-2023-33228 | Solarwinds | Unspecified vulnerability in Solarwinds Network Configuration Manager The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. | 4.9 |
2023-11-02 | CVE-2023-46925 | Reportico | Cross-site Scripting vulnerability in Reportico 7.1.21 Reportico 7.1.21 is vulnerable to Cross Site Scripting (XSS). | 4.8 |
2023-11-02 | CVE-2023-5606 | Quantumcloud | Cross-site Scripting vulnerability in Quantumcloud AI Chatbot The ChatBot for WordPress is vulnerable to Stored Cross-Site Scripting via the FAQ Builder in versions 4.8.6 through 4.9.6 due to insufficient input sanitization and output escaping. | 4.8 |
2023-11-01 | CVE-2023-47098 | Virtualmin | Cross-site Scripting vulnerability in Virtualmin 7.7 A Stored Cross-Site Scripting (XSS) vulnerability in the Manage Extra Admins under Administration Options in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the real name or description field. | 4.8 |
2023-10-31 | CVE-2023-4390 | AYS PRO | Cross-site Scripting vulnerability in Ays-Pro Popup BOX The Popup box WordPress plugin before 3.7.2 does not sanitize and escape some Popup fields, which could allow high-privilege users such as an administrator to inject arbitrary web scripts even when the unfiltered_html capability is disallowed (for example in a multisite setup). | 4.8 |
2023-10-31 | CVE-2023-5229 | E2Pdf | Cross-site Scripting vulnerability in E2Pdf The E2Pdf WordPress plugin before 1.20.20 does not sanitize and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed | 4.8 |
2023-10-31 | CVE-2023-5243 | Login Screen Manager Project | Cross-site Scripting vulnerability in Login Screen Manager Project Login Screen Manager The Login Screen Manager WordPress plugin through 3.5.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). | 4.8 |
2023-10-31 | CVE-2023-40681 | Groundhogg | Unspecified vulnerability in Groundhogg Auth. | 4.8 |
2023-10-31 | CVE-2023-46210 | Webcource | Unspecified vulnerability in Webcource WC Captcha 1.4 Auth. | 4.8 |
2023-10-31 | CVE-2023-5861 | Microweber | Cross-site Scripting vulnerability in Microweber Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 2.0. | 4.8 |
2023-10-31 | CVE-2023-5864 | Phpmyfaq | Unspecified vulnerability in PHPmyfaq Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.1. | 4.8 |
2023-10-30 | CVE-2023-5842 | Dolibarr | Unspecified vulnerability in Dolibarr Erp/Crm Cross-site Scripting (XSS) - Stored in GitHub repository dolibarr/dolibarr prior to 16.0.5. | 4.8 |
2023-10-30 | CVE-2023-45671 | Frigate | Unspecified vulnerability in Frigate 0.13.0 Frigate is an open source network video recorder. | 4.7 |
2023-11-03 | CVE-2023-36620 | Nationaledtech | Unspecified vulnerability in Nationaledtech Boomerang An issue was discovered in the Boomerang Parental Control application before 13.83 for Android. | 4.6 |
2023-11-01 | CVE-2022-48456 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In camera driver, there is a possible out of bounds write due to a incorrect bounds check. | 4.4 | |
2023-11-01 | CVE-2022-48461 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In sensor driver, there is a possible out of bounds write due to a missing bounds check. | 4.4 | |
2023-11-01 | CVE-2023-42750 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In gnss service, there is a possible out of bounds write due to a missing bounds check. | 4.4 | |
2023-10-30 | CVE-2023-21379 | Out-of-bounds Read vulnerability in Google Android In Bluetooth, there is a possible out of bounds read due to a missing bounds check. | 4.4 | |
2023-10-30 | CVE-2023-21387 | Information Exposure Through Log Files vulnerability in Google Android In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. | 4.4 | |
2023-10-30 | CVE-2023-21297 | Improper Authentication vulnerability in Google Android In SEPolicy, there is a possible way to access the factory MAC address due to a permissions bypass. | 4.4 | |
2023-10-30 | CVE-2023-21314 | Out-of-bounds Read vulnerability in Google Android In Bluetooth, there is a possible out of bounds read due to a missing bounds check. | 4.4 | |
2023-10-30 | CVE-2023-21357 | Out-of-bounds Read vulnerability in Google Android 14.0 In NFC, there is a possible out of bounds read due to a missing bounds check. | 4.4 | |
2023-10-30 | CVE-2023-21359 | Out-of-bounds Read vulnerability in Google Android 14.0 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. | 4.4 | |
2023-11-03 | CVE-2023-47233 | Linux | Use After Free vulnerability in Linux Kernel The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. | 4.3 |
2023-11-03 | CVE-2023-39301 | Qnap | Unspecified vulnerability in Qnap QTS A server-side request forgery (SSRF) vulnerability has been reported to affect several QNAP operating system versions. | 4.3 |
2023-11-03 | CVE-2023-45362 | Mediawiki | Unspecified vulnerability in Mediawiki An issue was discovered in DifferenceEngine.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. | 4.3 |
2023-11-03 | CVE-2023-36029 | Microsoft | Unspecified vulnerability in Microsoft Edge 112.0.1722.34 Microsoft Edge (Chromium-based) Spoofing Vulnerability | 4.3 |
2023-11-02 | CVE-2023-29046 | Open Xchange | Resource Exhaustion vulnerability in Open-Xchange Appsuite Connections to external data sources, like e-mail autoconfiguration, were not terminated in case they hit a timeout, instead those connections were logged. | 4.3 |
2023-11-02 | CVE-2023-5916 | Dashy | Unspecified vulnerability in Dashy 2.1.1 A vulnerability classified as critical has been found in Lissy93 Dashy 2.1.1. | 4.3 |
2023-11-01 | CVE-2023-20247 | Cisco | Unspecified vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in the remote access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to bypass a configured multiple certificate authentication policy and connect using only a valid username and password. | 4.3 |
2023-11-01 | CVE-2023-5850 | Google Debian Fedoraproject | Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted domain name. | 4.3 |
2023-11-01 | CVE-2023-5851 | Google Debian Fedoraproject | Origin Validation Error vulnerability in multiple products Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. | 4.3 |
2023-11-01 | CVE-2023-5853 | Google Debian Fedoraproject | Origin Validation Error vulnerability in multiple products Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. | 4.3 |
2023-11-01 | CVE-2023-5858 | Google Debian Fedoraproject | Origin Validation Error vulnerability in multiple products Inappropriate implementation in WebApp Provider in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. | 4.3 |
2023-11-01 | CVE-2023-5859 | Google Debian Fedoraproject | Origin Validation Error vulnerability in multiple products Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted local HTML page. | 4.3 |
2023-11-01 | CVE-2023-20213 | Cisco | Unspecified vulnerability in Cisco Identity Services Engine A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition of the CDP process on an affected device. | 4.3 |
2023-11-01 | CVE-2023-2622 | Hitachienergy | Unspecified vulnerability in Hitachienergy Modular Advanced Control for Hvdc 7.10.0.0/7.17.0.0/7.18.0.0 Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call (RPC) of the InspectSetup service endpoint. | 4.3 |
2023-10-31 | CVE-2023-4251 | Metagauss | Cross-Site Request Forgery (CSRF) vulnerability in Metagauss Eventprime The EventPrime WordPress plugin before 3.2.0 does not have CSRF checks when creating bookings, which could allow attackers to make logged in users create unwanted bookings via CSRF attacks. | 4.3 |
2023-10-31 | CVE-2023-4836 | Userprivatefiles | Authorization Bypass Through User-Controlled Key vulnerability in Userprivatefiles Wordpress File Sharing Plugin The WordPress File Sharing Plugin WordPress plugin before 2.0.5 does not check authorization before displaying files and folders, allowing users to gain access to those filed by manipulating IDs which can easily be brute forced | 4.3 |
2023-10-31 | CVE-2023-5519 | Metagauss | Cross-Site Request Forgery (CSRF) vulnerability in Metagauss Eventprime The EventPrime WordPress plugin before 3.2.0 does not have CSRF checks when creating bookings, which could allow attackers to make logged in users create unwanted bookings via CSRF attacks. | 4.3 |
2023-11-01 | CVE-2023-20070 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense 7.2.0/7.2.0.1 A vulnerability in the TLS 1.3 implementation of the Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to unexpectedly restart. | 4.0 |
2023-11-01 | CVE-2023-20177 | Cisco | Unspecified vulnerability in Cisco Firepower Threat Defense A vulnerability in the SSL file policy implementation of Cisco Firepower Threat Defense (FTD) Software that occurs when the SSL/TLS connection is configured with a URL Category and the Snort 3 detection engine could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to unexpectedly restart. | 4.0 |
9 Low Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2023-10-31 | CVE-2023-43295 | Clickstudios | Cross-Site Request Forgery (CSRF) vulnerability in Clickstudios Passwordstate 9.7 Cross Site Request Forgery vulnerability in Click Studios (SA) Pty Ltd Passwordstate v.Build 9785 and before allows a local attacker to execute arbitrary code via a crafted request. | 3.5 |
2023-11-02 | CVE-2023-5920 | Mattermost | Unspecified vulnerability in Mattermost Desktop Mattermost Desktop for MacOS fails to utilize the secure keyboard input functionality provided by macOS, allowing for other processes to read the keyboard input. | 3.3 |
2023-10-31 | CVE-2023-5862 | Hamza417 | Unspecified vulnerability in Hamza417 Inure Missing Authorization in GitHub repository hamza417/inure prior to Build95. | 3.3 |
2023-10-30 | CVE-2023-5349 | Rmagick Fedoraproject | Memory Leak vulnerability in multiple products A memory leak flaw was found in ruby-magick, an interface between Ruby and ImageMagick. | 3.3 |
2023-10-30 | CVE-2023-21345 | Information Exposure Through Discrepancy vulnerability in Google Android In Game Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 | |
2023-10-30 | CVE-2023-21346 | Information Exposure Through Discrepancy vulnerability in Google Android In the Device Idle Controller, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 | |
2023-10-30 | CVE-2023-21348 | Information Exposure Through Discrepancy vulnerability in Google Android In Window Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 | |
2023-10-30 | CVE-2023-21349 | Information Exposure Through Discrepancy vulnerability in Google Android In Package Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 | |
2023-10-31 | CVE-2023-37833 | Elenos | Improper Input Validation vulnerability in Elenos Etg150 Firmware 3.12 Improper access control in Elenos ETG150 FM transmitter v3.12 allows attackers to make arbitrary configuration edits that are only accessed by privileged users. | 2.7 |