NAME__________JoomUnited WP Table Manager Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress JoomUnited WP Table Manager Plugin for WordPress 3.5.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting...
NAME__________Apple Xcode code executionPlatforms Affected:Apple Xcode 14.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple Xcode could allow a local attacker to execute arbitrary code...
NAME__________Apple Xcode information disclosurePlatforms Affected:Apple Xcode 14.2Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple Xcode could allow a local attacker to obtain sensitive information,...
NAME__________Media Library Categories Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Media Library Categories Plugin for WordPress 1.9.9Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Media Library...
NAME__________Nextcloud Android app security bypassPlatforms Affected:Nextcloud Android app 3.24.0 Nextcloud Android app 3.7.0Risk Level:3.7Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Nextcloud Android app could allow...
NAME__________Mega Main Menu plugin for WordPress cross-site scriptingPlatforms Affected:Risk Level:5.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mega Main Menu plugin for WordPress is vulnerable to...
NAME__________HashiCorp Vault and Vault Enterprise SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________HashiCorp Vault and Vault Enterprise is vulnerable to SQL injection....
NAME__________Nextcloud iOS app security bypassPlatforms Affected:Nextcloud iOS app 4.6.0Risk Level:4.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Nextcloud iOS app could allow a physical authenticated attacker...
NAME__________Nextcloud Server and Nextcloud Enterprise Server denial of servicePlatforms Affected:Nextcloud Nextcloud Server 24.0.9 Nextcloud Nextcloud Server 25.0.3 Nextcloud Nextcloud Server...
NAME__________GitLab information disclosurePlatforms Affected:Risk Level:5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________GitLab could allow a remote authenticated attacker to obtain sensitive information, caused by the...
NAME__________HashiCorp Vault and Vault Enterprise denial of servicePlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________HashiCorp Vault and Vault Enterprise are vulnerable to...
NAME__________Samba security bypassPlatforms Affected:Samba Samba 4.17.0 Samba Samba 4.18.0Risk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Samba could allow a remote authenticated attacker to bypass...
NAME__________Nextcloud Server denial of servicePlatforms Affected:Nextcloud Nextcloud Server 25.0.2Risk Level:5.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Nextcloud Server is vulnerable to a denial of...
NAME__________Nextcloud Server and Nextcloud Enterprise Server information disclosurePlatforms Affected:Nextcloud Nextcloud Server 24.0.9 Nextcloud Nextcloud Server 25.0.3 Nextcloud Nextcloud Server 25.0.0...
NAME__________Nextcloud Server security bypassPlatforms Affected:Nextcloud Nextcloud Server 25.0.0Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Nextcloud Server could allow a remote authenticated attacker to bypass...
NAME__________Samba information disclosurePlatforms Affected:Samba Samba 4.1.1 Samba Samba 4.1.0 Samba Samba 4.0.9 Samba Samba 4.0.8 Samba Samba 4.0.7 Samba Samba...
NAME__________Irssi denial of servicePlatforms Affected:Irssi Irssi 1.3.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Irssi is vulnerable to a denial of service, caused by...
NAME__________Samba information disclosurePlatforms Affected:Samba Samba 4.1.1 Samba Samba 4.1.0 Samba Samba 4.0.9 Samba Samba 4.0.8 Samba Samba 4.0.7 Samba Samba...
NAME__________Vira-Investing Investment Tracking System information disclosurePlatforms Affected:Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Vira-Investing Investment Tracking System could allow a remote attacker to obtain...
NAME__________QNAP QTS, QNAP QuTS hero, QNAP QuTScloud, QNAP QVP (QVR Pro appliances), and QNAP QVR command executionPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access...
NAME__________Vira-Investing Investment Tracking System cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Vira-Investing Investment Tracking System is vulnerable to cross-site scripting, caused by...
Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by various threat actors in hacks targeting...
Unknown threat actors are actively exploiting a recently patched security vulnerability in the Elementor Pro website builder plugin for WordPress....
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-21839Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:...
