RedPacket Security - InfoSec News & Tutorials

RapidLoad Power-Up for Autoptimize Plugin for WordPress security bypass | CVE-2023-1336

March 15, 2023

NAME__________RapidLoad Power-Up for Autoptimize Plugin for WordPress security bypassPlatforms Affected:WordPress RapidLoad Power-Up for Autoptimize Plugin for WordPress 1.7.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access...

RapidLoad Power-Up for Autoptimize Plugin for WordPress security bypass | CVE-2023-1339

March 15, 2023

RapidLoad Power-Up for Autoptimize Plugin for WordPress security bypass | CVE-2023-1334

March 15, 2023

RapidLoad Power-Up for Autoptimize Plugin for WordPress security bypass | CVE-2023-1333

March 15, 2023

Roxy-WI directory traversal | CVE-2023-25803

March 15, 2023

NAME__________Roxy-WI directory traversalPlatforms Affected:Roxy-WI Roxy-WI 6.3.4.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Roxy-WI could allow a remote attacker to traverse directories on the system,...

LMXCMS SQL injection | CVE-2023-1322

March 15, 2023

NAME__________LMXCMS SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________LMXCMS is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL...

Online Pizza Ordering System SQL injection | CVE-2023-1365

March 15, 2023

NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote...

CodeIgniter Shield information disclosure | CVE-2023-27580

March 15, 2023

NAME__________CodeIgniter Shield information disclosurePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________CodeIgniter Shield could allow a remote attacker to obtain sensitive information, caused by...

115cms file upload | CVE-2023-1328

March 15, 2023

NAME__________115cms file uploadPlatforms Affected:Risk Level:4.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________115cms could allow a remote authenticated attacker to upload arbitrary files, caused by improper...

Online Pizza Ordering System SQL injection | CVE-2023-1364

March 15, 2023

NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote...

LMXCMS SQL injection | CVE-2023-1321

March 15, 2023

Roxy-WI directory traversal | CVE-2023-25802

March 15, 2023

NAME__________Roxy-WI directory traversalPlatforms Affected:Roxy-WI Roxy-WI 6.3.5.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Roxy-WI could allow a remote attacker to traverse directories on the system,...

AvantFAX Information disclosure | CVE-2023-23327

March 15, 2023

NAME__________AvantFAX Information disclosurePlatforms Affected:AvantFAX AvantFAX 3.3.7Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________AvantFAX could allow a remote attacker to obtain sensitive information, caused by...

Microsoft Dynamics 365 (on-premises) cross-site scripting | CVE-2023-24879

March 15, 2023

NAME__________Microsoft Dynamics 365 (on-premises) cross-site scriptingPlatforms Affected:Microsoft Dynamics 365 (on-premises) 9.0 Microsoft Dynamics 365 (on-premises) 9.1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Microsoft Dynamics...

Computer Parts Sales and Inventory System SQL injection | CVE-2023-1363

March 15, 2023

NAME__________Computer Parts Sales and Inventory System SQL injectionPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Computer Parts Sales and Inventory System is vulnerable to...

NETGEAR products buffer overflow |

March 15, 2023

NAME__________NETGEAR products buffer overflowPlatforms Affected:Netgear R6400 Netgear R7000 Netgear R8000 NETGEAR R7000P NETGEAR R6400v2 NETGEAR R6700v3 NETGEAR RAX200 NETGEAR R6900P...

Microsoft Windows Resilient File System (ReFS) privilege escalation | CVE-2023-23419

March 15, 2023

NAME__________Microsoft Windows Resilient File System (ReFS) privilege escalationPlatforms Affected:Microsoft Windows 11 21H2 for ARM64-based Systems Microsoft Windows 11 21H2 for...

Adobe Experience Manager open redirect | CVE-2023-22259

March 15, 2023

NAME__________Adobe Experience Manager open redirectPlatforms Affected:Adobe Experience Manager Cloud Service (CS) Adobe Experience Manager 6.5.15.0Risk Level:3.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Experience Manager...

Microsoft Dynamics 365 (on-premises) cross-site scripting | CVE-2023-24921

March 15, 2023

NAME__________Microsoft Dynamics 365 (on-premises) cross-site scriptingPlatforms Affected:Risk Level:4.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Microsoft Dynamics 365 (on-premises) is vulnerable to cross-site scripting, caused by...

PrestaShop cross-site request forgery | CVE-2023-25170

March 15, 2023

NAME__________PrestaShop cross-site request forgeryPlatforms Affected:Risk Level:5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PrestaShop is vulnerable to cross-site request forgery, caused by improper validation of user-supplied...

Yoga Class Registration System SQL injection | CVE-2023-1366

March 15, 2023

NAME__________Yoga Class Registration System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Yoga Class Registration System is vulnerable to SQL injection. A remote...

ReadtoMyShoe information disclosure | CVE-2023-27587

March 15, 2023

NAME__________ReadtoMyShoe information disclosurePlatforms Affected:Risk Level:7.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________ReadtoMyShoe could allow a remote attacker to obtain sensitive information, caused by the insertion...

Linux Kernel denial of service | CVE-2023-1032

March 15, 2023

NAME__________Linux Kernel denial of servicePlatforms Affected:Linux KernelRisk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service, caused...

KDAB Hotspot privilege escalation | CVE-2023-28144

March 15, 2023

NAME__________KDAB Hotspot privilege escalationPlatforms Affected:KDAB Hotspot 1.3 KDAB Hotspot 1.4.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________KDAB Hotspot could allow a local authenticated attacker...

Main Story

Insider Threat Management Unlocked: A Practical Guide for 2025

Editor’s Picks

Trending Story

Featured Story

You may have missed