UNISOC mobile phone chipsets for Android denial of service | CVE-2022-48443
NAME__________UNISOC mobile phone chipsets for Android denial of servicePlatforms Affected:Unisoc SC9863A Unisoc SC9832E Unisoc SC7731E Unisoc T760 Unisoc T610 Unisoc...
CVE
SailPoint IdentityIQ code execution | CVE-2023-32217
NAME__________SailPoint IdentityIQ code executionPlatforms Affected:SailPoint IdentityIQ 8.0 SailPoint IdentityIQ 8.1 SailPoint IdentityIQ 8.2 SailPoint IdentityIQ 8.3Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SailPoint IdentityIQ...
GLPI Project Plugins Form Creator cross-site scripting | CVE-2023-33971
NAME__________GLPI Project Plugins Form Creator cross-site scriptingPlatforms Affected:GLPI Project Plugins Form Creator 2.13.5Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________GLPI Project Plugins Form Creator...
Harbinger Offline Player directory traversal | CVE-2023-34407
NAME__________Harbinger Offline Player directory traversalPlatforms Affected:Harbinger Offline Player 4.0.6.0.2Risk Level:7.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Harbinger Offline Player could allow a remote attacker to...
YFCMF directory traversal | CVE-2023-3057
NAME__________YFCMF directory traversalPlatforms Affected:YFCMF YFCMF 3.0.4Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________YFCMF could allow a remote attacker to traverse directories on the system,...
Vite information disclosure | CVE-2023-34092
NAME__________Vite information disclosurePlatforms Affected:Vite Vite 2.9.15 Vite Vite 3.2.6 Vite Vite 4.0.4 Vite Vite 4.1.4 Vite Vite 4.2.2 Vite Vite...
OpenProject information disclosure | CVE-2023-33960
NAME__________OpenProject information disclosurePlatforms Affected:OpenProject OpenProject 12.5.5Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________OpenProject could allow a remote attacker to obtain sensitive information, caused by...
Xpdf denial of service | CVE-2023-3044
NAME__________Xpdf denial of servicePlatforms Affected:Xpdf Xpdf 4.04Risk Level:3.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Xpdf is vulnerable to a denial of service, caused by...
Advantech WebAccss/SCADA code execution | CVE-2023-22450
NAME__________Advantech WebAccss/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 9.1.3Risk Level:7.2Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Advantech WebAccss/SCADA could allow a remote attacker to upload arbitrary files,...
ChuanhuChatGPT information disclosure | CVE-2023-34094
NAME__________ChuanhuChatGPT information disclosurePlatforms Affected:ChuanhuChatGPT ChuanhuChatGPT 20230526Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________ChuanhuChatGPT could allow a remote attacker to obtain sensitive information, caused by...
Kyverno security bypass | CVE-2023-34091
NAME__________Kyverno security bypassPlatforms Affected:Kyverno Kyverno 1.9.3Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Kyverno could allow a remote authenticated attacker to bypass security restrictions, caused...
JetBrains Ktor information disclosure | CVE-2023-34339
NAME__________JetBrains Ktor information disclosurePlatforms Affected:JetBrains Ktor 2.3.0Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________JetBrains Ktor could allow a local authenticated attacker to obtain sensitive...
Red Bull FC Red Bull Salzburg App for Android security bypass | CVE-2023-29459
NAME__________Red Bull FC Red Bull Salzburg App for Android security bypassPlatforms Affected:Red Bull FC Red Bull Salzburg App for Android...
Advantech WebAccss/SCADA code execution | CVE-2023-32628
NAME__________Advantech WebAccss/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 9.1.3Risk Level:7.2Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Advantech WebAccss/SCADA could allow a remote attacker to upload arbitrary files,...
Rust xml-rs crate denial of service | CVE-2023-34411
NAME__________Rust xml-rs crate denial of servicePlatforms Affected:Rust xml-rs crate 0.8.13Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Rust xml-rs crate is vulnerable to a...
Advantech WebAccss/SCADA code execution | CVE-2023-32540
NAME__________Advantech WebAccss/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 9.1.3Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Advantech WebAccss/SCADA could allow a remote attacker to execute arbitrary code...
Microsoft Edge (Chromium-based) privilege escalation | CVE-2023-33143
NAME__________Microsoft Edge (Chromium-based) privilege escalationPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:7.5Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to gain...
Agro-School Management System SQL injection | CVE-2023-3062
NAME__________Agro-School Management System SQL injectionPlatforms Affected:SourceCode and Projects Agro-School Management System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Agro-School Management System is vulnerable to...
Mobatime AMXGT100 information disclosure | CVE-2023-3064
NAME__________Mobatime AMXGT100 information disclosurePlatforms Affected:Mobatime AMXGT100 1.3.20Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Mobatime AMXGT100 could allow a remote attacker to obtain sensitive information,...
Mobatime privilege escalation | CVE-2023-3033
NAME__________Mobatime privilege escalationPlatforms Affected:Mobatime Mobatime 06.7.2022Risk Level:6.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Mobatime could allow a remote authenticated attacker to gain elevated privileges on...
Page Builder by AZEXO Plugin for WordPress cross-site request forgery | CVE-2023-3055
NAME__________Page Builder by AZEXO Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress RapidExpCart Plugin for WordPress 1.0 WordPress Page Builder by...
Sourcecodester Online Exam Form Submission SQL injection | CVE-2023-3059
NAME__________Sourcecodester Online Exam Form Submission SQL injectionPlatforms Affected:Sourcecodester Online Exam Form Submission 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Sourcecodester Online Exam Form Submission...
Page Builder by AZEXO Plugin for WordPress cross-site scripting | CVE-2023-3051
NAME__________Page Builder by AZEXO Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Page Builder by AZEXO plugin for WordPress 1.27.133Risk Level:6.4Exploitability:HighConsequences:Gain Access...
Webbax King-Avis module for Prestashop directory traversal | CVE-2023-3031
NAME__________Webbax King-Avis module for Prestashop directory traversalPlatforms Affected:Webbax King-Avis module for Prestashop 17.3Risk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Webbax King-Avis module for Prestashop...
