GitLab security bypass | CVE-2023-6680
NAME__________GitLab security bypassPlatforms Affected:GitLab Enterprise Edition 16.6.1 GitLab Enterprise Edition 16.5.3 GitLab Enterprise Edition 16.4.3 GitLab Community Edition 16.5.3 GitLab...
Vulnerabilities
WESEEK GROWI cross-site request forgery | CVE-2023-46699
NAME__________WESEEK GROWI cross-site request forgeryPlatforms Affected:WESEEK GROWIRisk Level:3.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site request forgery, caused by improper...
GitLab privilege escalation | CVE-2023-3907
NAME__________GitLab privilege escalationPlatforms Affected:GitLab Enterprise Edition 16.6.1 GitLab Enterprise Edition 16.5.3 GitLab Enterprise Edition 16.4.3 GitLab Community Edition 16.5.3 GitLab...
Q2W3 Post Order Plugin for WordPress cross-site scripting | CVE-2023-47521
NAME__________Q2W3 Post Order Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Q2W3 Post Order Plugin for WordPress 1.2.8Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Q2W3 Post...
WESEEK GROWI information disclosure | CVE-2023-50294
NAME__________WESEEK GROWI information disclosurePlatforms Affected:WESEEK GROWIRisk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________WESEEK GROWI could allow a remote authenticated attacker to obtain sensitive information,...
WESEEK GROWI cross-site scripting | CVE-2023-49119
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-49598
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-45737
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-49779
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-42436
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
GitLab security bypass | CVE-2023-6051
NAME__________GitLab security bypassPlatforms Affected:GitLab Enterprise Edition 16.6.1 GitLab Enterprise Edition 16.5.3 GitLab Enterprise Edition 16.4.3 GitLab Community Edition 16.5.3 GitLab...
GitLab security bypass | CVE-2023-5512
NAME__________GitLab security bypassPlatforms Affected:GitLab Enterprise Edition 16.6.1 GitLab Enterprise Edition 16.5.3 GitLab Enterprise Edition 16.4.3 GitLab Community Edition 16.5.3 GitLab...
WESEEK GROWI cross-site scripting | CVE-2023-47215
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-45740
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-50339
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
WESEEK GROWI cross-site scripting | CVE-2023-49807
NAME__________WESEEK GROWI cross-site scriptingPlatforms Affected:WESEEK GROWIRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WESEEK GROWI is vulnerable to cross-site scripting, caused by improper validation of...
GitLab security bypass | CVE-2023-3904
NAME__________GitLab security bypassPlatforms Affected:GitLab Enterprise Edition 16.6.1 GitLab Enterprise Edition 16.5.3 GitLab Enterprise Edition 16.4.3 GitLab Community Edition 16.5.3 GitLab...
Linux Kernel denial of service | CVE-2023-6679
NAME__________Linux Kernel denial of servicePlatforms Affected:Linux KernelRisk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service, caused...
linkding cross-site scripting | CVE-2023-6646
NAME__________linkding cross-site scriptingPlatforms Affected:linkding linkding 1.23.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________linkding is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Supermicro BMC IPMI directory traversal | CVE-2023-33411
NAME__________Supermicro BMC IPMI directory traversalPlatforms Affected:Supermicro BMC IPMIRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Supermicro BMC IPMI could allow a remote attacker to traverse...
Simple Student Attendance System SQL injection | CVE-2023-6619
NAME__________Simple Student Attendance System SQL injectionPlatforms Affected:Sourcecodester Simple Student Attendance System 1.0Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Simple Student Attendance System is vulnerable...
Welcart e-Commerce plugin for WordPress directory traversal | CVE-2023-6120
NAME__________Welcart e-Commerce plugin for WordPress directory traversalPlatforms Affected:WordPress Welcart e-Commerce plugin for WordPress 2.8.21 WordPress Welcart e-Commerce plugin for WordPress...
QNAP QTS and QuTS hero buffer overflow | CVE-2023-32968
NAME__________QNAP QTS and QuTS hero buffer overflowPlatforms Affected:QNAP QTS QNAP QuTS heroRisk Level:4.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________QNAP QTS and QuTS hero is...
SAP Fiori Launchpad information disclosure | CVE-2023-49584
NAME__________SAP Fiori Launchpad information disclosurePlatforms Affected:SAP Fiori Launchpad SAP_UI 750 SAP Fiori Launchpad SAP_UI 754 SAP Fiori Launchpad SAP_UI 755...
