Vulnerabilities

Xray Audit module for Drupal cross-site scripting |

March 31, 2023

NAME__________Xray Audit module for Drupal cross-site scriptingPlatforms Affected:Drupal Xray Audit module for Drupal 1.1.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Xray Audit module for...

Forcepoint Cloud Security Gateway cross-site scripting | CVE-2023-26290

March 31, 2023

NAME__________Forcepoint Cloud Security Gateway cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Forcepoint Cloud Security Gateway is vulnerable to cross-site scripting, caused by...

Rocket Software UniData and UniVerse denial of service | CVE-2023-28508

March 31, 2023

NAME__________Rocket Software UniData and UniVerse denial of servicePlatforms Affected:Rocket Software UniData 8.2.4 Rocket Software UniVerse 11.3.5 Rocket Software UniVerse 12.2.1Risk...

Forcepoint Cloud Security Gateway cross-site scripting | CVE-2023-26291

March 31, 2023

Forcepoint Cloud Security Gateway cross-site scripting | CVE-2023-26292

March 31, 2023

OpenImageIO Project OpenImageIO information disclosure | CVE-2023-24473

March 31, 2023

NAME__________OpenImageIO Project OpenImageIO information disclosurePlatforms Affected:OpenImageIO OpenImageIO 2.4.7.1Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________OpenImageIO Project OpenImageIO could allow a remote attacker to obtain...

QNAP QTS, QNAP QuTS hero, QNAP QuTScloud, QNAP QVP (QVR Pro appliances), and QNAP QVR command execution | CVE-2023-23355

March 31, 2023

NAME__________QNAP QTS, QNAP QuTS hero, QNAP QuTScloud, QNAP QVP (QVR Pro appliances), and QNAP QVR command executionPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access...

runc denial of service | CVE-2023-25809

March 31, 2023

NAME__________runc denial of servicePlatforms Affected:Risk Level:2.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________runc is vulnerable to a denial of service, caused by improper access...

AngularJS denial of service | CVE-2023-26118

March 31, 2023

NAME__________AngularJS denial of servicePlatforms Affected:Risk Level:5.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________AngularJS is vulnerable to a denial of service, caused by...

OpenImageIO Project OpenImageIO denial of service | CVE-2023-24472

March 31, 2023

NAME__________OpenImageIO Project OpenImageIO denial of servicePlatforms Affected:OpenImageIO OpenImageIO 2.4.7.1Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenImageIO Project OpenImageIO is vulnerable to a denial...

AngularJS denial of service | CVE-2023-26116

March 31, 2023

AngularJS denial of service | CVE-2023-26117

March 31, 2023

OpenImageIO Project OpenImageIO information disclosure | CVE-2023-22845

March 31, 2023

NAME__________OpenImageIO Project OpenImageIO information disclosurePlatforms Affected:OpenImageIO OpenImageIO 2.4.7.1Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________OpenImageIO Project OpenImageIO could allow a remote attacker to obtain...

GoCD cross-site scripting | CVE-2023-28629

March 30, 2023

NAME__________GoCD cross-site scriptingPlatforms Affected:GoCD GoCD 22.3.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________GoCD is vulnerable to cross-site scripting, caused by improper validation of user-supplied...

GoCD information disclosure | CVE-2023-28630

March 30, 2023

NAME__________GoCD information disclosurePlatforms Affected:GoCD GoCD 22.3.0Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________GoCD could allow a local authenticated attacker to obtain sensitive information, caused...

Vulnerabilities

Xray Audit module for Drupal cross-site scripting |

Forcepoint Cloud Security Gateway cross-site scripting | CVE-2023-26290

Rocket Software UniData and UniVerse denial of service | CVE-2023-28508

Forcepoint Cloud Security Gateway cross-site scripting | CVE-2023-26291

Forcepoint Cloud Security Gateway cross-site scripting | CVE-2023-26292

OpenImageIO Project OpenImageIO information disclosure | CVE-2023-24473

QNAP QTS, QNAP QuTS hero, QNAP QuTScloud, QNAP QVP (QVR Pro appliances), and QNAP QVR command execution | CVE-2023-23355

runc denial of service | CVE-2023-25809

AngularJS denial of service | CVE-2023-26118

OpenImageIO Project OpenImageIO denial of service | CVE-2023-24472

AngularJS denial of service | CVE-2023-26116

AngularJS denial of service | CVE-2023-26117

OpenImageIO Project OpenImageIO information disclosure | CVE-2023-22845

GoCD cross-site scripting | CVE-2023-28629

GoCD information disclosure | CVE-2023-28630

Driver Genius code execution | CVE-2023-1678

IObit Malware Fighter denial of service | CVE-2023-1638

Driver Genius denial of service | CVE-2023-1677

Driver Genius code execution | CVE-2023-1679

Driver Genius code execution | CVE-2023-1676

IObit Malware Fighter denial of service | CVE-2023-1640

IObit Malware Fighter buffer overflow | CVE-2023-1646

IObit Malware Fighter denial of service | CVE-2023-1644

Nextcloud Server denial of service | CVE-2023-25817

CVE Alert: CVE-2025-12790 – Red Hat – Red Hat Satellite 6

[INCRANSOM] – Ransomware Victim: Ketat Grundstücksverwertungs GmbH

[INCRANSOM] – Ransomware Victim: prutsch-ra[.]at

[EVEREST] – Ransomware Victim: Everest Exclusive Interview for Dailydarkweb[.]net

[QILIN] – Ransomware Victim: Studio Corvo Parma

You may have missed