NAME__________Apollo GraphQL Apollo Server cross-site scriptingPlatforms Affected:Apollo GraphQL Apollo Server 4.0.0 Apollo GraphQL Apollo Server 4.7.3Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Apollo GraphQL...
NAME__________wp2syslog Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress wp2syslog Plugin for WordPress 1.0.5Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________wp2syslog Plugin for WordPress is vulnerable...
NAME__________asMembe plugin for WordPress cross-site scriptingPlatforms Affected:WordPress asMember Plugin for WordPress 1.5.4Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________asMembe Plugin for WordPress is vulnerable...
NAME__________JS Job Manager Plugin for WordPress cross-site scriptingPlatforms Affected:Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________JS Job Manager Plugin for WordPress is vulnerable to...
NAME__________xlsxio denial of servicePlatforms Affected:xlsxio xlsxio 0.1.2 xlsxio xlsxio 0.2.34Risk Level:3.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________xlsxio is vulnerable to a denial of...
NAME__________Strong Testimonials plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Strong Testimonials Plugin for WordPress 3.0.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Strong Testimonials Plugin for...
NAME__________OpenZeppelin Contracts security bypassPlatforms Affected:OpenZeppelin OpenZeppelin Contracts 4.9.1Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________OpenZeppelin Contracts could allow a remote authenticated attacker to bypass...
NAME__________HPE Insight Remote Support information disclosurePlatforms Affected:HPE Insight Remote Support Standard Software 7.12Risk Level:7.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HPE Insight Remote Support could...
NAME__________SCRMS SQL injectionPlatforms Affected:SourceCodester Simple Customer Relationship Management CRM 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SCRMS is vulnerable to SQL injection. A remote...
NAME__________Debug Assistant Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Debug Assistant Plugin for WordPress 1.4Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Debug Assistant Plugin for...
NAME__________WP No External Links Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP No External Links Plugin for WordPress 1.0.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting...
NAME__________Apache Airflow information disclosurePlatforms Affected:Apache Airflow 2.5.0 Apache Airflow 2.6.1Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Airflow could allow a remote authenticated attacker...
NAME__________IceFrog code executionPlatforms Affected:IceFrog IceFrog 1.1.8Risk Level:5.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IceFrog could allow a remote authenticated attacker within the local network to...
NAME__________Libtiff denial of servicePlatforms Affected:Libtiff LibTIFF 3.9.0 LibTIFF LibTIFF 4.5.1Risk Level:5.9Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Libtiff is vulnerable to a...
NAME__________Agro-School Management System SQL injectionPlatforms Affected:SourceCode and Projects Agro-School Management System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Agro-School Management System is vulnerable to...
NAME__________Lightdash directory traversalPlatforms Affected:Lightdash Lightdash 0.506.4 Lightdash Lightdash 0.510.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Lightdash could allow a remote attacker to traverse directories...
NAME__________Online Shopping System Advanced cross-site scriptingPlatforms Affected:Risk Level:2.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Online Shopping System Advanced is vulnerable to cross-site scripting, caused by...
NAME__________Resort Reservation System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Resort Reservation System is vulnerable to cross-site scripting, caused by improper validation...
NAME__________Huawei HarmonyOS denial of servicePlatforms Affected:Huawei HarmonyOS 2.0.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Huawei HarmonyOS is vulnerable to a denial of service,...
As Threat Actors Continuously Adapt their TTPs in Today's Threat Landscape, So Must You Earlier this year, threat researchers at...
Individuals in the Pakistan region have been targeted using two rogue Android apps available on the Google Play Store as...
Early Warning is joining MyNCSC Recap of Early Warning Existing users will know that https://www.ncsc.gov.uk/information/early-warning-service" target="_self">Early Warning is a threat-notification...
A malware campaign is using fake OnlyFans content and adult lures to install a remote access trojan known as 'DcRAT,'...
ASUS has released new firmware with cumulative security updates that address vulnerabilities in multiple router models, warning customers to immediately...
