Pow security bypass | CVE-2023-42446
NAME__________Pow security bypassPlatforms Affected:Pow Pow 1.0.33Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Pow could allow a
CVE
OpenKnowledgeMaps cross-site scripting | CVE-2023-40617
NAME__________OpenKnowledgeMaps cross-site scriptingPlatforms Affected:OpenKnowledgeMaps Head Start 7Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________OpenKnowledgeMaps is vulnerable to cross-site scripting, caused by improper validation of...
Feeds for YouTube Plugin for WordPress cross-site scripting | CVE-2023-4841
NAME__________Feeds for YouTube Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Feeds for YouTube Plugin for WordPress 2.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Feeds for...
Booster for WooCommerce plugin for WordPress cross-site scripting | CVE-2023-4945
NAME__________Booster for WooCommerce plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Booster for WooCommerce Plugin for WordPress 3.0.2Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Booster for...
Discourse denial of service | CVE-2023-41043
NAME__________Discourse denial of servicePlatforms Affected:Discourse Discourse 3.1.0.beta8 Discourse Discourse 3.1.0Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Discourse is vulnerable to a denial of...
NLnet Labs bcder library denial of service | CVE-2023-39914
NAME__________NLnet Labs bcder library denial of servicePlatforms Affected:NLnet Labs bcder library 0.7.2Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NLnet Labs bcder library is...
China Unicom TEWA-800G information disclosure | CVE-2023-5028
NAME__________China Unicom TEWA-800G information disclosurePlatforms Affected:China Unicom TEWA-800G 4.16L.04_CT2015_YuemeRisk Level:2.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________China Unicom TEWA-800G could allow a physically proximate attacker...
Strapi information disclosure | CVE-2023-37263
NAME__________Strapi information disclosurePlatforms Affected:Strapi Strapi 4.12.0Risk Level:6.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Strapi could allow a remote authenticated attacker to obtain sensitive information, caused...
Razer Synapse privilege escalation | CVE-2022-47631
NAME__________Razer Synapse privilege escalationPlatforms Affected:Razer Synapse 3.8.0228.022313Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Razer Synapse could allow a local authenticated attacker to gain elevated...
Discourse denial of service | CVE-2023-41042
NAME__________Discourse denial of servicePlatforms Affected:Discourse Discourse 3.1.0.beta8 Discourse Discourse 3.1.0Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Discourse is vulnerable to a denial of...
NCR Teller web app cross-site scripting | CVE-2023-42362
NAME__________NCR Teller web app cross-site scriptingPlatforms Affected:NCR Teller Web App 4.4.0Risk Level:7.2Exploitability:HighConsequences:Gain Access DESCRIPTION__________NCR Teller web app is vulnerable to...
Webmin cross-site scripting | CVE-2023-40986
NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Fortinet FortiAP-W2, FortiAP-C, FortiAP, and FortiAP-U information disclosure | CVE-2023-25608
NAME__________Fortinet FortiAP-W2, FortiAP-C, FortiAP, and FortiAP-U information disclosurePlatforms Affected:Fortinet FortiAP-C 5.4.0 Fortinet FortiAP-U 6.2.0 Fortinet FortiAP 7.2.0 Fortinet FortiAP-W2 7.2.0...
strapi information disclosure | CVE-2023-36472
NAME__________strapi information disclosurePlatforms Affected:Strapi Strapi 4.11.6Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________strapi could allow a remote authenticated attacker to obtain sensitive information, caused...
Engineering & Lifecycle Management SQL injection | CVE-2023-40957
NAME__________Engineering & Lifecycle Management SQL injectionPlatforms Affected:Odoo Apps Engineering & Lifecycle Management 16.0Risk Level:6.5Exploitability:HighConsequences:Gain Access DESCRIPTION__________Engineering & Lifecycle Management is...
Strapi brute force | CVE-2023-38507
NAME__________Strapi brute forcePlatforms Affected:Strapi Strapi 4.12.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Strapi is vulnerable to a brute force attack, caused by improper rate...
Lenosp SQL Injection | CVE-2023-42178
NAME__________Lenosp SQL InjectionPlatforms Affected:lenosp lenosp 1.0-1.2.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Lenosp is vulnerable to SQL injection. A remote attacker could send specially...
Webmin cross-site scripting | CVE-2023-40984
NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
WooCommerce CVR Payment Gateway Plugin for WordPress security bypass | CVE-2023-4948
NAME__________WooCommerce CVR Payment Gateway Plugin for WordPress security bypassPlatforms Affected:WordPress WooCommerce CVR Payment Gateway Plugin for WordPress 6.1.0Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security...
Dell PowerEdge BIOS and Dell Precision BIOS privilege escalation | CVE-2023-32461
NAME__________Dell PowerEdge BIOS and Dell Precision BIOS privilege escalationPlatforms Affected:Dell BIOSRisk Level:5Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Dell PowerEdge BIOS and Dell Precision BIOS...
NLnet Labs Routinator denial of service | CVE-2023-39915
NAME__________NLnet Labs Routinator denial of servicePlatforms Affected:NLnet Labs Routinator 0.12.1Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NLnet Labs Routinator is vulnerable to a...
HashiCorp Vault and Vault Enterprise information disclosure | CVE-2023-4680
NAME__________HashiCorp Vault and Vault Enterprise information disclosurePlatforms Affected:HashiCorp Vault 1.13.0 HashiCorp Vault Enterprise 1.13.0 HashiCorp Vault Enterprise 1.14.0 HashiCorp Vault...
Eclipse Jetty security bypass | CVE-2023-41900
NAME__________Eclipse Jetty security bypassPlatforms Affected:Eclipse Jetty 11.0.15 Eclipse Jetty 9.4.51 Eclipse Jetty 10.0.15Risk Level:3.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Eclipse Jetty could allow a...
Webmin cross-site scripting | CVE-2023-40983
NAME__________Webmin cross-site scriptingPlatforms Affected:Webmin Webmin 2.100Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Webmin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
