Intel NUC Kits privilege escalation | CVE-2022-28699
NAME__________Intel NUC Kits privilege escalationPlatforms Affected:Intel NUC NUC11PHKI7C Intel NUC NUC11PHKI7CAA Intel NUC NUC9V7QNX Intel NUC NUC8I5INH Intel NUC NUC8I7INH...
Vulnerabilities
Microsoft Windows NTLM Security Support Provider information disclosure | CVE-2023-24900
NAME__________Microsoft Windows NTLM Security Support Provider information disclosurePlatforms Affected:Microsoft Windows 11 22H2 for ARM64-based Systems Microsoft Windows 11 22H2 for...
Custom Login Page Plugin for WordPress cross-site scripting | CVE-2023-26012
NAME__________Custom Login Page Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Custom Login Page Plugin for WordPress 2.0Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Custom Login...
Ghost information disclosure | CVE-2023-31133
NAME__________Ghost information disclosurePlatforms Affected:Ghost Ghost 5.46.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Ghost could allow a remote attacker to obtain sensitive information, caused by...
YouTube Gallery Plugin for WordPress cross-site scripting | CVE-2023-25979
NAME__________YouTube Gallery Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress YouTube Gallery Plugin for WordPress 1.7.6Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________YouTube Gallery Plugin for...
Sante DICOM Viewer Pro code execution | CVE-2023-32132
NAME__________Sante DICOM Viewer Pro code executionPlatforms Affected:Sante DICOM Viewer ProRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sante DICOM Viewer Pro could allow a remote...
ChurchCRM SQL injection | CVE-2023-29842
NAME__________ChurchCRM SQL injectionPlatforms Affected:ChurchCRM ChurchCRM 4.5.4Risk Level:5.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________ChurchCRM is vulnerable to SQL injection. A remote authenticated attacker could send...
Sante DICOM Viewer Pro code execution | CVE-2023-32133
NAME__________Sante DICOM Viewer Pro code executionPlatforms Affected:Sante DICOM Viewer ProRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sante DICOM Viewer Pro could allow a remote...
Sante DICOM Viewer Pro code execution | CVE-2023-32131
NAME__________Sante DICOM Viewer Pro code executionPlatforms Affected:Sante DICOM Viewer ProRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sante DICOM Viewer Pro could allow a remote...
WPMobile.App Plugin for WordPress cross-site scripting | CVE-2023-26010
NAME__________WPMobile.App Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WPMobile.App Plugin for WordPress 11.18Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WPMobile.App Plugin for WordPress is vulnerable...
Linux Kernel denial of service | CVE-2023-2513
NAME__________Linux Kernel denial of servicePlatforms Affected:Linux Kernel 5.19Risk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service,...
Jedox information disclosure | CVE-2022-47880
NAME__________Jedox information disclosurePlatforms Affected:Jedox Jedox 2022.4.2Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jedox could allow a remote authenticated attacker to obtain sensitive information, caused...
Jedox code execution | CVE-2022-47879
NAME__________Jedox code executionPlatforms Affected:Jedox Jedox 2022.4.2Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Jedox could allow a remote authenticated attacker to execute arbitrary...
UliCMS index.php file upload |
NAME__________UliCMS index.php file uploadPlatforms Affected:UliCMS UliCMS 2023-1Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________UliCMS could allow a remote authenticated attacker to upload...
Sante DICOM Viewer Pro information disclosure | CVE-2023-32135
NAME__________Sante DICOM Viewer Pro information disclosurePlatforms Affected:Sante DICOM Viewer ProRisk Level:3.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sante DICOM Viewer Pro could allow a remote...
Codigo code execution |
NAME__________Codigo code executionPlatforms Affected:Codigo Codigo 1.0.1Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Codigo could allow a remote attacker to execute arbitrary code...
Sante DICOM Viewer Pro code execution | CVE-2023-32134
NAME__________Sante DICOM Viewer Pro code executionPlatforms Affected:Sante DICOM Viewer ProRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sante DICOM Viewer Pro could allow a remote...
Simple Portfolio Gallery Plugin for WordPress cross-site scripting | CVE-2023-26016
NAME__________Simple Portfolio Gallery Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Custom Login Page Plugin for WordPress 2.0Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Portfolio...
EasyPHP Webserver win.ini directory traversal |
NAME__________EasyPHP Webserver win.ini directory traversalPlatforms Affected:EasyPHP Webserver 14.1Risk Level:6.5Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________EasyPHP Webserver could allow a remote authenticated attacker...
Semcms file upload | CVE-2023-30090
NAME__________Semcms file uploadPlatforms Affected:Semcms Semcms 4.2Risk Level:5.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Semcms could allow a remote attacker to upload arbitrary files, caused by...
File Thingie file upload |
NAME__________File Thingie file uploadPlatforms Affected:FileThingie FileThingie 2.5.7Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________File Thingie could allow a remote attacker to upload...
Aruba Networks InstantOS and Aruba Networks ArubaOS command execution | CVE-2023-22789
NAME__________Aruba Networks InstantOS and Aruba Networks ArubaOS command executionPlatforms Affected:Aruba Networks ArubaOS Aruba Networks InstantOSRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Aruba Networks InstantOS...
Aruba Networks InstantOS and Aruba Networks ArubaOS command execution | CVE-2023-22790
NAME__________Aruba Networks InstantOS and Aruba Networks ArubaOS command executionPlatforms Affected:Aruba Networks ArubaOS Aruba Networks InstantOSRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Aruba Networks InstantOS...
Apache Airflow cross-site scripting | CVE-2023-29247
NAME__________Apache Airflow cross-site scriptingPlatforms Affected:Apache Airflow 2.5.3Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Apache is vulnerable to cross-site scripting, caused by improper validation of...
