NAME__________GraphQL module for Drupal security bypassPlatforms Affected:Drupal GraphQL module for Drupal 8.x-4.5Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GraphQL module for Drupal could allow...
NAME__________GE MiCOM S1 code executionPlatforms Affected:General Electric MiCOM S1 AgileRisk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GE MiCOM S1 Agile allows a local authenticated...
NAME__________Amazonify Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Amazonify Plugin for WordPress 0.8.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Amazonify Plugin for WordPress is...
NAME__________SendPress Newsletters Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress SendPress Newsletters Plugin for WordPress 1.22.3.31Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SendPress Newsletters Plugin for...
NAME__________Telephone Number Linker Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Telephone Number Linker Plugin for WordPress 1.2Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Telephone Number...
NAME__________Videolan VLC Media Player denial of servicePlatforms Affected:Videolan VLC Media Player 3.0.19Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Videolan VLC Media Player is...
NAME__________Puppet Enterprise security bypassPlatforms Affected:Puppet Puppet Enterprise 2021.7.5 Puppet Puppet Enterprise 2023.4Risk Level:6.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Puppet Enterprise could allow a remote...
NAME__________Videolan VLC Media Player denial of servicePlatforms Affected:Videolan VLC Media Player 3.0.19Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Videolan VLC Media Player is...
NAME__________Social Feed Plugin for WordPress and WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Social Feed Plugin for WordPress 1.5.4.6Risk Level:6.4Exploitability:HighConsequences:Cross-Site...
NAME__________GraphQL module for Drupal cross-site request forgeryPlatforms Affected:Drupal GraphQL module for Drupal 8.x-4.5Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GraphQL module for Drupal is...
NAME__________YugabyteDB Anywhere information disclosurePlatforms Affected:Yugabyte YugabyteDB Anywhere 2.0.0.0 Yugabyte YugabyteDB Anywhere 2.18.3.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________YugabyteDB Anywhere could allow a remote...
NAME__________Amazonify Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Amazonify Plugin for WordPress 0.8.1Risk Level:4.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Amazonify Plugin Plugin for WordPress is...
NAME__________Tongda OA SQL injectionPlatforms Affected:Beijing Tongda Xinke Technology Tongda OA 11.10Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Tongda OA is vulnerable to SQL injection....
NAME__________Go filepath directory traversalPlatforms Affected:Golang Go 1.20.10 Golang Go 1.21.3Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Golang Go could allow a remote attacker to...
NAME__________EC-CUBE 3 series and 4 series code executionPlatforms Affected:EC-CUBE EC-CUBE 4.2.2 EC-CUBE EC-CUBE 3.0.18-p6Risk Level:10Exploitability:Consequences:Gain Access DESCRIPTION__________EC-CUBE 3 series and...
NAME__________Golang Go weak securityPlatforms Affected:Golang Go 1.20.10 Golang Go 1.21.3Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Golang Go could provide weaker than expected security,...
NAME__________FreeBSD security bypassPlatforms Affected:Risk Level:6.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________FreeBSD could allow a local attacker to bypass security restrictions, caused by a flaw...
NAME__________UpdraftPlus plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress UpdraftPlus Plugin for WordPress 1.23.10Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________UpdraftPlus plugin for WordPress is...
NAME__________IBM AIX denial of servicePlatforms Affected:IBM AIX 7.3Risk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________IBM AIX's 7.3 Python implementation could allow a non-privileged...
There is a seemingly never-ending quest to find the right security tools that offer the right capabilities for your organization....
Urdu-speaking readers of a regional news website that caters to the Gilgit-Baltistan region have likely emerged as a target of...
A group with links to Iran targeted transportation, logistics, and technology sectors in the Middle East, including Israel, in October...
A new malvertising campaign has been found to employ fake sites that masquerade as legitimate Windows news portal to propagate...
OpenAI has been addressing "periodic outages" due to DDoS attacks targeting its API and ChatGPT services within the last 24...
