Micro Focus products information disclosure | CVE-2023-32265
NAME__________Micro Focus products information disclosurePlatforms Affected:Micro Focus Enterprise Server 6.0 Micro Focus Enterprise Test Server 6.0 Micro Focus Enterprise Developer...
Vulnerabilities
GMOD GBrowse file upload | CVE-2023-32637
NAME__________GMOD GBrowse file uploadPlatforms Affected:GMOD GBrowse 1.70 GMOD GBrowse 2.55Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GMOD GBrowse could allow a remote attacker to...
IBM Cognos Analytics cross-site scripting | CVE-2023-25929
NAME__________IBM Cognos Analytics cross-site scriptingPlatforms Affected:IBM Cognos Analytics 11.1 IBM Cognos Analytics 11.2Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________IBM Cognos Analytics 11.1 and...
Mozilla Thunderbird spoofing | CVE-2023-3417
NAME__________Mozilla Thunderbird spoofingPlatforms Affected:Mozilla Thunderbird 115.0Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Thunderbird could allow a remote attacker to conduct spoofing attacks. By...
PaulPrinting CMS /account/delivery cross-site scripting |
NAME__________PaulPrinting CMS /account/delivery cross-site scriptingPlatforms Affected:CodePaul PaulPrinting CMSRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PaulPrinting CMS is vulnerable to cross-site scripting, caused by improper...
IBM Cognos Analytics cross-site scripting | CVE-2023-28530
NAME__________IBM Cognos Analytics cross-site scriptingPlatforms Affected:IBM Cognos Analytics 11.1 IBM Cognos Analytics 11.2Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________IBM Cognos Analytics 11.1 and...
Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK unspecified | CVE-2023-22045
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK unspecifiedPlatforms Affected:Oracle GraalVM for JDK 17.0.7 Oracle GraalVM for...
Daily Vulnerability Trends: Sat Jul 22 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-20323A POST based reflected Cross Site Scripting vulnerability on has been identified...
xHTTP denial of service | CVE-2023-38434
NAME__________xHTTP denial of servicePlatforms Affected:xHTTP xHTTPRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________xHTTP is vulnerable to a denial of service, caused...
AutomateWoo plugin for WordPress cross-site request forgery | CVE-2023-36513
NAME__________AutomateWoo plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress AutomateWoo Plugin for WordPress 5.7.5Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AutomateWoo plugin for WordPress is...
Open Enclave security bypass | CVE-2023-37479
NAME__________Open Enclave security bypassPlatforms Affected:Open Enclave Open Enclave SDK 0.19.2Risk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Open Enclave could allow a remote attacker to...
WooCommerce Ship to Multiple Addresses plugin for WordPress cross-site request forgery | CVE-2023-36514
NAME__________WooCommerce Ship to Multiple Addresses plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WooCommerce Shipping Multiple Addresses 3.8.5Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WooCommerce...
InfoDoc Document On-line Submission and Approval System server-side request forgery | CVE-2023-37290
NAME__________InfoDoc Document On-line Submission and Approval System server-side request forgeryPlatforms Affected:InfoDoc Document On-line Submission and Approval System 22547 InfoDoc Document...
Recipe Maker For Your Food Blog from Zip Recipes plugin for WordPress cross-site request forgery | CVE-2023-35089
NAME__________Recipe Maker For Your Food Blog from Zip Recipes plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Recipe Maker For Your...
myCred plugin for WordPress cross-site request forgery | CVE-2023-35096
NAME__________myCred plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress myCred plugin for WordPress 2.5Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________myCred plugin for WordPress is...
MeterSphere directory traversal | CVE-2023-37461
NAME__________MeterSphere directory traversalPlatforms Affected:MeterSphere MeterSphere 2.10.2 LTSRisk Level:3.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MeterSphere could allow a remote authenticated attacker to traverse directories on...
Oracle MySQL Server unspecified | CVE-2023-22005
NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 8.0.33Risk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle MySQL Server related to...
WooCommerce Order Barcodes plugin for WordPress cross-site request forgery | CVE-2023-36511
NAME__________WooCommerce Order Barcodes plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WooCommerce Order Barcodes Plugin for WordPress 1.6.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WooCommerce...
Ultimate Member plugin for WordPress cross-site request forgery | CVE-2023-31216
NAME__________Ultimate Member plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Membership Plugin for WordPress 3.2.2Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Ultimate Member plugin for...
Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK unspecified | CVE-2023-22051
NAME__________Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 21.3.6 Oracle GraalVM Enterprise Edition 22.3.2...
WooCommerce Brands plugin for WordPress cross-site request forgery | CVE-2023-35880
NAME__________WooCommerce Brands plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WooCommerce Brands plugin for WordPress 1.6.49Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WooCommerce Brands plugin...
KOMET privilege escalation | CVE-2023-3786
NAME__________KOMET privilege escalationPlatforms Affected:AURES Technologies KOMETRisk Level:4.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________KOMET could allow a physical attacker to gain elevated privileges on the...
VMware Tanzu Spring Security security bypass | CVE-2023-34035
NAME__________VMware Tanzu Spring Security security bypassPlatforms Affected:VMware Tanzu Spring Security 5.8.0 VMware Tanzu Spring Security 6.0.0 VMware Tanzu Spring Security...
Event Manager for WooCommerce plugin for WordPress cross-site scripting | CVE-2023-36383
NAME__________Event Manager for WooCommerce plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Event Manager for WooCommerce plugin for WordPress 3.9.5Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting...
