GitLab denial of service | CVE-2023-3424
NAME__________GitLab denial of servicePlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0...
Vulnerabilities
GitLab information disclosure | CVE-2023-2620
NAME__________GitLab information disclosurePlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0 GitLab...
GitLab information disclosure | CVE-2023-1936
NAME__________GitLab information disclosurePlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0 GitLab...
Spina cross-site scripting | CVE-2023-3445
NAME__________Spina cross-site scriptingPlatforms Affected:spinacms spina 2.15.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Spina is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
GitLab information disclosure | CVE-2023-3363
NAME__________GitLab information disclosurePlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0 GitLab...
Ovarro TBox RTUs information disclosure | CVE-2023-36608
NAME__________Ovarro TBox RTUs information disclosurePlatforms Affected:Ovarro TBox LT2 Ovarro TBox MS-CPU32 Ovarro TBox MS-CPU32-S2 Ovarro TBox RM2 Ovarro TBox TG2Risk...
Ovarro TBox RTUs information disclosure | CVE-2023-36611
NAME__________Ovarro TBox RTUs information disclosurePlatforms Affected:Ovarro TBox LT2 Ovarro TBox MS-CPU32 Ovarro TBox MS-CPU32-S2 Ovarro TBox RM2 Ovarro TBox TG2Risk...
Delta Electronics InfraSuite Device Master security bypass | CVE-2023-34316
NAME__________Delta Electronics InfraSuite Device Master security bypassPlatforms Affected:Delta Electronics InfraSuite Device Master 1.0.6Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Delta Electronics InfraSuite Device Master...
Mitsubishi Electric MELSEC-F Series security bypass | CVE-2023-2846
NAME__________Mitsubishi Electric MELSEC-F Series security bypassPlatforms Affected:Mitsubishi Electric FX3U-xMy/z x=1632486480128 y=TR z=ESESSDSDSS *1 Mitsubishi Electric FX3U-32MR/UA1 FX3U-64MR/UA1 *1Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security...
Ovarro TBox RTUs information disclosure | CVE-2023-3395
NAME__________Ovarro TBox RTUs information disclosurePlatforms Affected:Ovarro TBox LT2 Ovarro TBox MS-CPU32 Ovarro TBox MS-CPU32-S2 Ovarro TBox RM2 Ovarro TBox TG2Risk...
GitLab cross-site scripting | CVE-2023-2200
NAME__________GitLab cross-site scriptingPlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0 GitLab...
Microworld Technologies eScan Management Console cross-site scripting | CVE-2023-34835
NAME__________Microworld Technologies eScan Management Console cross-site scriptingPlatforms Affected:Microworld Technologies eScan Management Console 14.0.1400.2281Risk Level:6.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Microworld Technologies eScan Management Console...
Microworld Technologies eScan Management Console cross-site scripting | CVE-2023-34837
NAME__________Microworld Technologies eScan Management Console cross-site scriptingPlatforms Affected:Microworld Technologies eScan Management Console 14.0.1400.2281Risk Level:6.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Microworld Technologies eScan Management Console...
IssabelPBX cross-site request forgery | CVE-2023-34839
NAME__________IssabelPBX cross-site request forgeryPlatforms Affected:Issabel IssabelPBX 4.0.0-6Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IssabelPBX is vulnerable to cross-site request forgery, caused by improper validation...
DataEase information disclosure | CVE-2023-35168
NAME__________DataEase information disclosurePlatforms Affected:DataEase DataEase 1.18.7Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________DataEase could allow a remote authetnicated attacker to obtain sensitive information, caused...
Microworld Technologies eScan Management Console cross-site scripting | CVE-2023-34836
NAME__________Microworld Technologies eScan Management Console cross-site scriptingPlatforms Affected:Microworld Technologies eScan Management Console 14.0.1400.2281Risk Level:6.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Microworld Technologies eScan Management Console...
ROS2 Foxy Fitzroy denial of service | CVE-2023-33566
NAME__________ROS2 Foxy Fitzroy denial of servicePlatforms Affected:ROS2 Foxy Fitzroy ROS_VERSION 2 ROS2 Foxy Fitzroy ROS_PYTHON_VERSION 2Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________ROS2...
Microworld Technologies eScan Management Console cross-site scripting | CVE-2023-34838
NAME__________Microworld Technologies eScan Management Console cross-site scriptingPlatforms Affected:Microworld Technologies eScan Management Console 14.0.1400.2281Risk Level:7.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Microworld Technologies eScan Management Console...
Apple macOS Ventura security bypass | CVE-2022-48505
NAME__________Apple macOS Ventura security bypassPlatforms Affected:Apple macOS VenturaRisk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apple macOS Ventura could allow a remote attacker to bypass...
Mailchimp module for Drupal cross-site request forgery |
NAME__________Mailchimp module for Drupal cross-site request forgeryPlatforms Affected:Drupal Mailchimp module for Drupal 2.2.1Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mailchimp module for Drupal is...
DataEase security bypass | CVE-2023-35164
NAME__________DataEase security bypassPlatforms Affected:DataEase DataEase 1.18.7Risk Level:6.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________DataEase could allow a remote authenticated attacker to bypass security restrictions, caused...
OpenFGA denial of service | CVE-2023-35933
NAME__________OpenFGA denial of servicePlatforms Affected:OpenFGA OpenFGA 1.1.0Risk Level:5.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenFGA is vulnerable to a denial of service, caused by...
CloudExplorer-Lite brute force | CVE-2023-34240
NAME__________CloudExplorer-Lite brute forcePlatforms Affected:CloudExplorer-Lite Team of @fit2cloud CloudExplorer-Lite 1.1.0Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CloudExplorer-Lite is vulnerable to a brute force attack, caused...
authzed SpiceDB information disclosure | CVE-2023-35930
NAME__________authzed SpiceDB information disclosurePlatforms Affected:authzed SpiceDB 1.22.0Risk Level:3.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________authzed SpiceDB could allow a remote attacker to obtain sensitive information,...
