RedPacket Security - InfoSec News & Tutorials

Online Motorcycle (Bike) Rental System cross-site scripting | CVE-2023-5585

October 17, 2023

NAME__________Online Motorcycle (Bike) Rental System cross-site scriptingPlatforms Affected:Sourcecodester Online Motorcycle (Bike) Rental System 1.0Risk Level:2.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Online Motorcycle (Bike) Rental...

Free Hospital Management System for Small Practices SQL injection | CVE-2023-5587

October 17, 2023

NAME__________Free Hospital Management System for Small Practices SQL injectionPlatforms Affected:Sourcecodester Free Hospital Management System for Small Practices 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation...

RANDING UTime Master information dusclosure | CVE-2023-45393

October 17, 2023

NAME__________RANDING UTime Master information dusclosurePlatforms Affected:GRANDING UTime Master 9.0.7Risk Level:4.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________RANDING UTime Master could allow a remote attacker to...

Netis N3Mv2 denial of service | CVE-2023-45468

October 17, 2023

NAME__________Netis N3Mv2 denial of servicePlatforms Affected:Netis N3Mv2 1.0.1.865Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Netis N3Mv2 is vulnerable to a denial of service,...

Lazy Load for Videos Plugin for WordPress cross-site request forgery | CVE-2023-45656

October 17, 2023

NAME__________Lazy Load for Videos Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Lazy Load for Videos Plugin for WordPress 2.18.2Risk Level:5.4Exploitability:UnprovenConsequences:Gain...

Netis N3Mv2 denial of service | CVE-2023-45464

October 17, 2023

Nextcloud Server and Enterprise Server information disclosure | CVE-2023-39960

October 17, 2023

NAME__________Nextcloud Server and Enterprise Server information disclosurePlatforms Affected:Nextcloud Nextcloud Server 25.0.0 Nextcloud Nextcloud Enterprise Server 23.0.0 Nextcloud Nextcloud Enterprise Server...

Constant Contact Forms by MailMunch Plugin for WordPress cross-site request forgery | CVE-2023-45647

October 17, 2023

NAME__________Constant Contact Forms by MailMunch Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Constant Contact Forms by MailMunch Plugin for WordPress...

Apache InLong SQL injection | CVE-2023-43667

October 17, 2023

NAME__________Apache InLong SQL injectionPlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0 Apache InLong 1.6.0 Apache InLong 1.7.0 Apache InLong 1.8.0Risk Level:6.5Exploitability:HighConsequences:Data...

MailChimp Forms by MailMunch Plugin for WordPress cross-site request forgery | CVE-2023-45748

October 17, 2023

NAME__________MailChimp Forms by MailMunch Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MailChimp Forms by MailMunch Plugin for WordPress 3.1.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain...

WP Attachments Plugin for WordPress cross-site request forgery | CVE-2023-45651

October 17, 2023

NAME__________WP Attachments Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP Attachments Plugin for WordPress 5.0.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WP Attachments Plugin...

HTML5 Maps Plugin for WordPress cross-site request forgery | CVE-2023-45650

October 17, 2023

NAME__________HTML5 Maps Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress HTML5 Maps Plugin for WordPress 1.7.1.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HTML5 Maps Plugin...

WP Open Street Map Plugin for WordPress cross-site request forgery | CVE-2023-45645

October 17, 2023

NAME__________WP Open Street Map Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP Open Street Map Plugin for WordPress 1.25Risk Level:5.4Exploitability:UnprovenConsequences:Gain...

CPT Shortcode Generator Plugin for WordPress cross-site request forgery | CVE-2023-45643

October 17, 2023

NAME__________CPT Shortcode Generator Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress CPT Shortcode Generator Plugin for WordPress 1.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CPT...

Apache bRPC cross-site scripting | CVE-2023-45757

October 17, 2023

NAME__________Apache bRPC cross-site scriptingPlatforms Affected:Apache bRPC 0.9.0 Apache bRPC 1.0.0 Apache bRPC 1.1.0 Apache bRPC 1.2.0 Apache bRPC 1.3.0 Apache...

Apache InLong security bypass | CVE-2023-43668

October 17, 2023

NAME__________Apache InLong security bypassPlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0 Apache InLong 1.6.0 Apache InLong 1.7.0 Apache InLong 1.8.0Risk Level:7.5Exploitability:UnprovenConsequences:Bypass...

LibreNMS SQL injection | CVE-2023-5591

October 17, 2023

NAME__________LibreNMS SQL injectionPlatforms Affected:LibreNMS LibreNMS 1.47 LibreNMS LibreNMS 21.0 LibreNMS LibreNMS 20.0 LibreNMS LibreNMS 23.8.1 LibreNMS LibreNMS 23.8.0Risk Level:7.8Exploitability:UnprovenConsequences:Data Manipulation...

Apache InLong information disclosure | CVE-2023-43666

October 17, 2023

NAME__________Apache InLong information disclosurePlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0 Apache InLong 1.6.0 Apache InLong 1.7.0 Apache InLong 1.8.0Risk Level:6.5Exploitability:UnprovenConsequences:Obtain...

PixFields Plugin for WordPress cross-site request forgery | CVE-2023-45655

October 17, 2023

NAME__________PixFields Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress PixFields plugin for WordPress 0.7.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PixFields Plugin for WordPress is...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed