RedPacket Security - InfoSec News & Tutorials

IntellectualSites FastAsyncWorldEdit denial of service | CVE-2023-35925

June 27, 2023

NAME__________IntellectualSites FastAsyncWorldEdit denial of servicePlatforms Affected:IntellectualSites FastAsyncWorldEdit 2.6.2Risk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________IntellectualSites FastAsyncWorldEdit is vulnerable to a denial of service,...

Datev eG Personal-Management System Comfort cross-site scripting | CVE-2023-33387

June 27, 2023

NAME__________Datev eG Personal-Management System Comfort cross-site scriptingPlatforms Affected:Datev eG Personal-Management System Comfort 16.1.1 Datev eG Personal-Management System Comfort Plus 16.1.1Risk...

HashiCorp Terraform Enterprise security bypass | CVE-2023-3114

June 27, 2023

NAME__________HashiCorp Terraform Enterprise security bypassPlatforms Affected:HashiCorp Terraform Enterprise 202207-1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________HashiCorp Terraform Enterprise could allow a remote attacker to...

Continuous Image Carousel With Lightbox Plugin for WordPress cross-site scripting | CVE-2023-28776

June 27, 2023

NAME__________Continuous Image Carousel With Lightbox Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Continuous Image Carousel With Lightbox Plugin for WordPress 1.0.15Risk...

UpdraftPlus Plugin for WordPress cross-site request forgery | CVE-2023-32960

June 27, 2023

NAME__________UpdraftPlus Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress UpdraftPlus plugin for WordPress 1.23.3Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________UpdraftPlus Plugin for WordPress is...

WoodMart Theme for WordPress cross-site scripting | CVE-2023-32239

June 27, 2023

NAME__________WoodMart Theme for WordPress cross-site scriptingPlatforms Affected:WordPress WoodMart theme for WordPress 7.2.1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WoodMart Theme for WordPress is vulnerable...

ARMember Plugin for WordPress cross-site scripting | CVE-2023-33323

June 27, 2023

NAME__________ARMember Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress ARMember plugin for WordPress 4.0.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ARMember Plugin for WordPress is vulnerable...

NVIDIA Jetson code execution | CVE-2023-25518

June 27, 2023

NAME__________NVIDIA Jetson code executionPlatforms Affected:NVIDIA Jetson Xavier NX NVIDIA Jetson AGX Xavier seriesRisk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NVIDIA Jetson could allow a...

Mediciti Lite Theme for WordPress cross-site scripting | CVE-2023-28418

June 27, 2023

NAME__________Mediciti Lite Theme for WordPress cross-site scriptingPlatforms Affected:WordPress Mediciti Lite Theme for WordPress 1.3.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mediciti Lite Theme for...

Dell BIOS code execution | CVE-2023-32480

June 27, 2023

NAME__________Dell BIOS code executionPlatforms Affected:Dell BIOSRisk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell BIOS could allow a physically proximate attacker to execute arbitrary code...

Online School Fees System cross-site scripting | CVE-2023-3381

June 27, 2023

NAME__________Online School Fees System cross-site scriptingPlatforms Affected:Sourcecodester School Fees Payment System 1.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Online School Fees System is vulnerable...

Contact Form by WPForms Plugin for WordPress cross-site scripting | CVE-2023-30500

June 27, 2023

NAME__________Contact Form by WPForms Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Contact Form by WPForms Plugin for WordPress 1.8.1.2Risk Level:5.8Exploitability:HighConsequences:Cross-Site Scripting...

OrangeScrum information disclosure | CVE-2023-1783

June 27, 2023

NAME__________OrangeScrum information disclosurePlatforms Affected:OrangeScrum OrangeScrum 2.0.11Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________OrangeScrum could allow a remote authenticated attacker to obtain sensitive information, caused...

NVIDIA Jetson Linux Driver Package denial of service | CVE-2023-25520

June 27, 2023

NAME__________NVIDIA Jetson Linux Driver Package denial of servicePlatforms Affected:NVIDIA Jetson Xavier NX NVIDIA Jetson TX2 series NVIDIA Jetson TX2 NX...

WPBakery Page Builder Plugin for WordPress cross-site scripting | CVE-2023-31213

June 27, 2023

NAME__________WPBakery Page Builder Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WPBakery Page Builder Plugin for WordPress 6.13.0Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WPBakery Page...

The7 Theme for WordPress cross-site scripting | CVE-2023-29100

June 27, 2023

NAME__________The7 Theme for WordPress cross-site scriptingPlatforms Affected:WordPress The7 Theme for WordPress 11.6.0Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________The7 Theme for WordPress is vulnerable...

WAGO devices denial of service | CVE-2023-1620

June 27, 2023

NAME__________WAGO devices denial of servicePlatforms Affected:WAGO 750-8202 FW 22 WAGO 750-8203 FW 22 WAGO 750-8204 FW 22 WAGO 750-8206 FW...

Linux Kernel denial of service | CVE-2023-3338

June 27, 2023

NAME__________Linux Kernel denial of servicePlatforms Affected:Linux Kernel 4.14 Linux Kernel 4.19 Linux Kernel 5.4 Linux Kernel 5.10 Linux Kernel 5.15Risk...

Game Result Matrix System SQL injection | CVE-2023-3383

June 27, 2023

NAME__________Game Result Matrix System SQL injectionPlatforms Affected:Sourcecodester Game Result Matrix System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Game Result Matrix System is vulnerable...

User Management components for Atlassian products cross-site scripting | CVE-2023-36662

June 27, 2023

NAME__________User Management components for Atlassian products cross-site scriptingPlatforms Affected:Atlassian User Management for Jira 2.0.0 Atlassian User Management for Confluence 2.0.0...

NVIDIA Jetson code execution | CVE-2023-25515

June 27, 2023

JCVI command execution | CVE-2023-35932

June 27, 2023

NAME__________JCVI command executionPlatforms Affected:JCVI JCVI 1.3.4Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________JCVI could allow a remote authenticated attacker to execute arbitrary commands on...

Shescape information disclosure | CVE-2023-35931

June 27, 2023

NAME__________Shescape information disclosurePlatforms Affected:Shescape Shescape 1.7.0Risk Level:3.1Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________Shescape could allow a remote authenticated attacker to obtain sensitive...

Game Result Matrix System cross-site scripting | CVE-2023-3382

June 27, 2023

NAME__________Game Result Matrix System cross-site scriptingPlatforms Affected:Sourcecodester Game Result Matrix System 1.0Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Game Result Matrix System is vulnerable...

Main Story

Fortifying the Supply Chain through Practical Security for Modern Organizations

Editor’s Picks

Trending Story

Featured Story

You may have missed