Security Bulletin 7 June 2023

Published on 07 Jun 2023

SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.

The vulnerabilities are tabled based on severity, in accordance to their CVSSv3 base scores:

Critical	vulnerabilities with a base score of 9.0 to 10.0
High	vulnerabilities with a base score of 7.0 to 8.9
Medium	vulnerabilities with a base score of 4.0 to 6.9
Low	vulnerabilities with a base score of 0.1 to 3.9
None	vulnerabilities with a base score of 0.0

For those vulnerabilities without assigned CVSS scores, please visit NVD for the updated CVSS vulnerability entries.

CRITICAL VULNERABILITIES

CVE Number	Description	Base Score	Reference
CVE-2023-31241	\n\n\n\n\nSnap One OvrC cloud servers contain a route an attacker can use to bypass requirements and claim devices outright.\n\n\n\n\n\n\n\n\n\n	10	https://nvd.nist.gov/vuln/detail/CVE-2023-31241
CVE-2019-18604	In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2019-18604
CVE-2021-21741	There is a command execution vulnerability in a ZTE conference management system. As some services are enabled by default, the attacker could exploit this vulnerability to execute arbitrary commands by sending specific serialization command.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-21741
CVE-2022-30133	Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-30133
CVE-2022-34715	Windows Network File System Remote Code Execution Vulnerability	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34715
CVE-2022-3214	Delta Industrial Automation's DIAEnergy, an industrial energy management system, is vulnerable to CWE-798, Use of Hard-coded Credentials. Versions prior to \n\n1.9.03.009\n\n have this vulnerability. Executable files could be uploaded to certain directories using hard-coded bearer authorization, allowing remote code execution.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-3214
CVE-2023-24838	HGiga PowerStation has a vulnerability of Information Leakage. An unauthenticated remote attacker can exploit this vulnerability to obtain the administrator's credential. This credential can then be used to login PowerStation or Secure Shell to achieve remote code execution.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-24838
CVE-2022-23121	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parse_entries function. The issue results from the lack of proper error handling when parsing AppleDouble entries. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-15819.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-23121
CVE-2023-30771	Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component on 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database.\n\nThis problem is fixed from version 0.13.4 of iotdb-web-workbench onwards.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30771
CVE-2023-20873	In Spring Boot versions 3.0.0 - 3.0.5, 2.7.0 - 2.7.10, and older unsupported versions, an application that is deployed to Cloud Foundry could be susceptible to a security bypass. Users of affected versions should apply the following mitigation: 3.0.x users should upgrade to 3.0.6+. 2.7.x users should upgrade to 2.7.11+. Users of older, unsupported versions should upgrade to 3.0.6+ or 2.7.11+.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-20873
CVE-2022-36327	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could allow an attacker to write files to locations with certain critical filesystem types leading to remote code execution was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk ibi and Western Digital My Cloud OS 5 devices. This issue requires an authentication bypass issue to be triggered before this can be exploited. \nThis issue affects My Cloud Home and My Cloud Home Duo: before 9.4.0-191; ibi: before 9.4.0-191; My Cloud OS 5: before 5.26.202.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-36327
CVE-2023-2704	The BP Social Connect plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.5. This is due to insufficient verification on the user being supplied during a Facebook login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2704
CVE-2023-32347	\nTeltonika’s Remote Management System versions prior to 4.10.0 use device serial numbers and MAC addresses to identify devices from the user perspective for device claiming and from the device perspective for authentication. If an attacker obtained the serial number and MAC address of a device, they could authenticate as that device and steal communication credentials of the device. This could allow an attacker to enable arbitrary command execution as root by utilizing management options within the newly registered devices.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32347
CVE-2023-2586	\nTeltonika’s Remote Management System versions 4.14.0 is vulnerable to an unauthorized attacker registering previously unregistered devices through the RMS platform. If the user has not disabled the "RMS management feature" enabled by default, then an attacker could register that device to themselves. This could enable the attacker to perform different operations on the user's devices, including remote code execution with 'root' privileges (using the 'Task Manager' feature on RMS).\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2586
CVE-2023-31098	Weak Password Requirements vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.6.0. \n\nWhen users change their password to a simple password (with any character or\nsymbol), attackers can easily guess the user's password and access the account.\n\nUsers are advised to upgrade to Apache InLong's 1.7.0 or cherry-pick https://github.com/apache/inlong/pull/7805 https://github.com/apache/inlong/pull/7805 to solve it.\n\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31098
CVE-2023-31240	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nSnap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31240
CVE-2023-2504	\n\n\n\n\nFiles present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials.\n\n\n\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2504
CVE-2022-46738	The affected product exposes multiple sensitive data fields of the affected product. An attacker can use the SNMP command to get device mac address and login as admin.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46738
CVE-2023-32697	SQLite JDBC is a library for accessing and creating SQLite database files in Java. Sqlite-jdbc addresses a remote code execution vulnerability via JDBC URL. This issue impacting versions 3.6.14.1 through 3.41.2.1 and has been fixed in version 3.41.2.2.\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32697
CVE-2023-2750	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cityboss E-municipality allows SQL Injection.This issue affects E-municipality: before 6.05.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2750
CVE-2023-33009	A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions 4.32 through 5.36 Patch 1, USG FLEX series firmware versions 4.50 through 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 through 5.36 Patch 1, USG20(W)-VPN firmware versions 4.25 through 5.36 Patch 1, VPN series firmware versions 4.30 through 5.36 Patch 1, ZyWALL/USG series firmware versions 4.25 through 4.73 Patch 1, could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and even a remote code execution on an affected device.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33009
CVE-2023-33010	A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 through 5.36 Patch 1, USG FLEX series firmware versions 4.50 through 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 through 5.36 Patch 1, USG20(W)-VPN firmware versions 4.25 through 5.36 Patch 1, VPN series firmware versions 4.30 through 5.36 Patch 1, ZyWALL/USG series firmware versions 4.25 through 4.73 Patch 1, could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and even a remote code execution on an affected device.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33010
CVE-2023-2045	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ipekyolu Software Auto Damage Tracking Software allows SQL Injection.This issue affects Auto Damage Tracking Software: before 4.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2045
CVE-2023-2064	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Minova Technology eTrace allows SQL Injection.This issue affects eTrace: before 23.05.20.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2064
CVE-2023-33246	For RocketMQ versions 5.1.0 and below, under certain conditions, there is a risk of remote command execution. \n\nSeveral components of RocketMQ, including NameServer, Broker, and Controller, are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the update configuration function to execute commands as the system users that RocketMQ is running as. Additionally, an attacker can achieve the same effect by forging the RocketMQ protocol content. \n\nTo prevent these attacks, users are recommended to upgrade to version 5.1.1 or above for using RocketMQ 5.x or 4.9.6 or above for using RocketMQ 4.x .\n\n\n\n\n\n\n\n\n\n\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33246
CVE-2023-1174	This vulnerability exposes a network port in minikube running on macOS with Docker driver that could enable unexpected remote access to the minikube container.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-1174
CVE-2023-2868	A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2868
CVE-2023-31457	A vulnerability in the Headquarters server component of Mitel MiVoice Connect versions 19.3 SP2 (22.24.1500.0) and earlier could allow an unauthenticated attacker with internal network access to execute arbitrary scripts due to improper access control.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31457
CVE-2023-29721	SofaWiki <= 3.8.9 has a file upload vulnerability that leads to command execution.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29721
CVE-2023-31458	A vulnerability in the Edge Gateway component of Mitel MiVoice Connect versions 19.3 SP2 (22.24.1500.0) and earlier could allow an unauthenticated attacker with internal network access to authenticate with administrative privileges, because initial installation does not enforce a password change. A successful exploit could allow an attacker to make arbitrary configuration changes and execute arbitrary commands.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31458
CVE-2023-2732	The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.9.2. This is due to insufficient verification on the user being supplied during the add listing REST API request through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the user id.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2732
CVE-2023-2733	The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.9.0. This is due to insufficient verification on the user being supplied during the coupon redemption REST API request through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the user id.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2733
CVE-2023-2882	Generation of Incorrect Security Tokens vulnerability in CBOT Chatbot allows Token Impersonation, Privilege Abuse.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2882
CVE-2023-2884	Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG), Use of Insufficiently Random Values vulnerability in CBOT Chatbot allows Signature Spoofing by Key Recreation.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2884
CVE-2023-2887	Authentication Bypass by Spoofing vulnerability in CBOT Chatbot allows Authentication Bypass.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2887
CVE-2023-0950	Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet formulas, such as AGGREGATE, could be created with less parameters passed to the formula interpreter than it expected, leading to an array index underflow, in which case there is a risk that arbitrary code could be executed. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.6; 7.5 versions prior to 7.5.1.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0950
CVE-2023-33278	In the Store Commander scexportcustomers module for PrestaShop through 3.6.1, sensitive SQL calls can be executed with a trivial HTTP request and exploited to forge a blind SQL injection.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33278
CVE-2023-33279	In the Store Commander scfixmyprestashop module through 2023-05-09 for PrestaShop, sensitive SQL calls can be executed with a trivial HTTP request and exploited to forge a blind SQL injection.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33279
CVE-2023-33280	In the Store Commander scquickaccounting module for PrestaShop through 3.7.3, multiple sensitive SQL calls can be executed with a trivial HTTP request and exploited to forge a blind SQL injection.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33280
CVE-2023-32074	user_oidc app is an OpenID Connect user backend for Nextcloud. Authentication can be broken/bypassed in user_oidc app. It is recommended that the Nextcloud user_oidc app is upgraded to 1.3.2\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32074
CVE-2023-30145	Camaleon CMS v2.7.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the formats parameter.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30145
CVE-2023-21514	Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-21514
CVE-2023-32321	CKAN is an open-source data management system for powering data hubs and data portals. Multiple vulnerabilities have been discovered in Ckan which may lead to remote code execution. An arbitrary file write in `resource_create` and `package_update` actions, using the `ResourceUploader` object. Also reachable via `package_create`, `package_revise`, and `package_patch` via calls to `package_update`. Remote code execution via unsafe pickle loading, via Beaker's session store when configured to use the file session store backend. Potential DOS due to lack of a length check on the resource id. Information disclosure: A user with permission to create a resource can access any other resource on the system if they know the id, even if they don't have access to it. Resource overwrite: A user with permission to create a resource can overwrite any resource if they know the id, even if they don't have access to it. A user with permissions to create or edit a dataset can upload a resource with a specially crafted id to write the uploaded file in an arbitrary location. This can be leveraged to Remote Code Execution via Beaker's insecure pickle loading. All the above listed vulnerabilities have been fixed in CKAN 2.9.9 and CKAN 2.10.1. Users are advised to upgrade. There are no known workarounds for these issues.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32321
CVE-2023-2923	A vulnerability classified as critical was found in Tenda AC6 US_AC6V1.0BR_V15.03.05.19. Affected by this vulnerability is the function fromDhcpListClient. The manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-230077 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2923
CVE-2023-2924	A vulnerability, which was classified as critical, has been found in Supcon SimField up to 1.80.00.00. Affected by this issue is some unknown functionality of the file /admin/reportupload.aspx. The manipulation of the argument files[] leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-230078 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2924
CVE-2023-2927	A vulnerability was found in JIZHICMS 2.4.5. It has been classified as critical. Affected is the function index of the file TemplateController.php. The manipulation of the argument webapi leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-230082 is the identifier assigned to this vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2927
CVE-2015-20108	xml_security.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2015-20108
CVE-2014-125101	A vulnerability classified as critical has been found in Portfolio Gallery Plugin up to 1.1.8 on WordPress. This affects an unknown part. The manipulation leads to sql injection. It is possible to initiate the attack remotely. Upgrading to version 1.1.9 is able to address this issue. The name of the patch is 58ed88243e17df766036f4857041edaf358076d3. It is recommended to upgrade the affected component. The identifier VDB-230085 was assigned to this vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2014-125101
CVE-2021-4336	A vulnerability was found in ITRS Group monitor-ninja up to 2021.11.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file modules/reports/models/scheduled_reports.php. The manipulation leads to sql injection. Upgrading to version 2021.11.30 is able to address this issue. The name of the patch is 6da9080faec9bca1ca5342386c0421dca0a6c0cc. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230084.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-4336
CVE-2023-2955	A vulnerability, which was classified as critical, was found in SourceCodester Students Online Internship Timesheet System 1.0. Affected is an unknown function of the file rendered_report.php of the component GET Parameter Handler. The manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-230142 is the identifier assigned to this vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2955
CVE-2023-2962	A vulnerability, which was classified as critical, has been found in SourceCodester Faculty Evaluation System 1.0. Affected by this issue is some unknown functionality of the file index.php?page=edit_user. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-230150 is the identifier assigned to this vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2962
CVE-2019-19791	In LemonLDAP::NG (aka lemonldap-ng) before 2.0.7, the default Apache HTTP Server configuration does not properly restrict access to SOAP/REST endpoints (when some LemonLDAP::NG setup options are used). For example, an attacker can insert index.fcgi/index.fcgi into a URL to bypass a Require directive.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2019-19791
CVE-2022-24627	An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is an unauthenticated SQL injection in the p parameter of the process_login.php login form.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-24627
CVE-2022-24629	An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. Remote code execution can be achieved via directory traversal in the dir parameter of the file upload functionality of BrowseFiles.php. An attacker can upload a .php file to WebAdmin/admin/AudioCodes_files/ajax/.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-24629
CVE-2023-32692	CodeIgniter is a PHP full-stack web framework. This vulnerability allows attackers to execute arbitrary code when you use Validation Placeholders. The vulnerability exists in the Validation library, and validation methods in the controller and in-model validation are also vulnerable because they use the Validation library internally. This issue is patched in version 4.3.5.\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32692
CVE-2023-33189	Pomerium is an identity and context-aware access proxy. With specially crafted requests, incorrect authorization decisions may be made by Pomerium. This issue has been patched in versions 0.17.4, 0.18.1, 0.19.2, 0.20.1, 0.21.4 and 0.22.2.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33189
CVE-2023-2972	Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2972
CVE-2023-2978	A vulnerability was found in Abstrium Pydio Cells 4.2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Change Subscription Handler. The manipulation leads to authorization bypass. Upgrading to version 4.2.1 is able to address this issue. It is recommended to upgrade the affected component. VDB-230210 is the identifier assigned to this vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2978
CVE-2023-2979	A vulnerability classified as critical has been found in Abstrium Pydio Cells 4.2.0. This affects an unknown part of the component User Creation Handler. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. Upgrading to version 4.2.1 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230211.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2979
CVE-2023-2980	A vulnerability classified as critical was found in Abstrium Pydio Cells 4.2.0. This vulnerability affects unknown code of the component User Creation Handler. The manipulation leads to improper control of resource identifiers. The attack can be initiated remotely. Upgrading to version 4.2.1 is able to address this issue. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230212.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2980
CVE-2022-36246	Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Insecure Permissions.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-36246
CVE-2023-29732	SoLive 1.6.14 thru 1.6.20 for Android exists exposed component, the component provides the method to modify the SharedPreference file. The attacker can use the method to modify the data in any SharedPreference file, these data will be loaded into the memory when the application is opened. Depending on how the data is used, this can result in various attack consequences, such as ad display exceptions.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29732
CVE-2023-29734	An issue found in edjing Mix v.7.09.01 for Android allows unauthorized apps to cause escalation of privilege attacks by manipulating the database.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29734
CVE-2023-33734	BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33734
CVE-2023-29739	An issue found in Alarm Clock for Heavy Sleepers v.5.3.2 for Android allows unauthorized apps to cause escalation of privilege attacks by manipulating the component.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29739
CVE-2023-29741	An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause an escalation of privileges attack by manipulating the database.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29741
CVE-2023-2987	The Wordapp plugin for WordPress is vulnerable to authorization bypass due to an use of insufficiently unique cryptographic signature on the 'wa_pdx_op_config_set' function in versions up to, and including, 1.5.0. This makes it possible for unauthenticated attackers to the plugin to change the 'validation_token' in the plugin config, providing access to the plugin's remote control functionalities, such as creating an admin access URL, which can be used for privilege escalation.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2987
CVE-2023-3003	A vulnerability classified as critical was found in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_prices.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230347.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-3003
CVE-2023-3004	A vulnerability, which was classified as critical, has been found in SourceCodester Simple Chat System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=read_msg of the component POST Parameter Handler. The manipulation of the argument convo_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230348.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-3004
CVE-2023-3007	A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak password recovery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-230354 is the identifier assigned to this vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-3007
CVE-2023-3008	A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230355.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-3008
CVE-2023-33486	TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contain a command insertion vulnerability in setOpModeCfg. This vulnerability allows an attacker to execute arbitrary commands through the "hostName" parameter.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33486
CVE-2023-33487	TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contains a command insertion vulnerability in setDiagnosisCfg.This vulnerability allows an attacker to execute arbitrary commands through the "ip" parameter.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33487
CVE-2023-33508	KramerAV VIA GO² < 4.0.1.1326 is vulnerable to unauthenticated file upload resulting in Remote Code Execution (RCE).	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33508
CVE-2023-33509	KramerAV VIA GO² < 4.0.1.1326 is vulnerable to SQL Injection.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33509
CVE-2023-34218	In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions was possible	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-34218
CVE-2022-35744	Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35744
CVE-2023-23952	Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-23952
CVE-2022-4333	Hardcoded Credentials in multiple SPRECON-E CPU variants of Sprecher Automation allows an remote attacker to take over the device. These accounts should be deactivated according to Sprecher's hardening guidelines.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-4333
CVE-2023-3000	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Erikoglu Technology ErMon allows Command Line Execution through SQL Injection, Authentication Bypass.This issue affects ErMon: before 230602.\n\n	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-3000
CVE-2023-28698	Wade Graphic Design FANTSY has a vulnerability of insufficient authorization check. An unauthenticated remote user can exploit this vulnerability by modifying URL parameters to gain administrator privileges to perform arbitrary system operation or disrupt service.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28698
CVE-2023-28701	ELITE TECHNOLOGY CORP. Web Fax has a vulnerability of SQL Injection. An unauthenticated remote attacker can inject SQL commands into the input field of the login page to perform arbitrary system commands, disrupt service or terminate service.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28701
CVE-2023-30603	Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is no warning or prompt to ask users to change the default password and account. An unauthenticated remote attackers can exploit this vulnerability to obtain the administrator’s privilege, resulting in performing arbitrary system operation or disrupt service.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30603
CVE-2023-30604	It is identified a vulnerability of insufficient authentication in the system configuration interface of Hitron Technologies CODA-5310. An unauthorized remote attacker can exploit this vulnerability to access system configuration interface, resulting in performing arbitrary system operation or disrupt service.	9.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30604
CVE-2022-33649	Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability	9.6	https://nvd.nist.gov/vuln/detail/CVE-2022-33649
CVE-2023-21516	XSS vulnerability from InstantPlay in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.	9.6	https://nvd.nist.gov/vuln/detail/CVE-2023-21516
CVE-2023-28347	An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for an attacker to create a proof-of-concept script that functions similarly to a Student Console, providing unauthenticated attackers with the ability to exploit XSS vulnerabilities within the Teacher Console application and achieve remote code execution as NT AUTHORITY/SYSTEM on all connected Student Consoles and the Teacher Console in a Zero Click manner.	9.6	https://nvd.nist.gov/vuln/detail/CVE-2023-28347
CVE-2022-29830	Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 all versions and Motion Control Setting(GX Works3 related software) all versions allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a result, unauthenticated users may obtain information about project files illegally.	9.1	https://nvd.nist.gov/vuln/detail/CVE-2022-29830
CVE-2023-28322	An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer. The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST.	9.1	https://nvd.nist.gov/vuln/detail/CVE-2023-28322
CVE-2023-2951	A vulnerability classified as critical has been found in code-projects Bus Dispatch and Information System 1.0. Affected is an unknown function of the file delete_bus.php. The manipulation of the argument busid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230112.	9.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2951
CVE-2023-33193	Emby Server is a user-installable home media server which stores and organizes a user's media files of virtually any format and makes them available for viewing at home and abroad on a broad range of client devices. This vulnerability may allow administrative access to an Emby Server system, depending on certain user account settings. By spoofing certain headers which are intended for interoperation with reverse proxy servers, it may be possible to affect the local/non-local network determination to allow logging in without password or to view a list of user accounts which may have no password configured. Impacted are all Emby Server system which are publicly accessible and where the administrator hasn't tightened the account login configuration for administrative users. This issue has been patched in Emby Server Beta version 4.8.31 and Emby Server version 4.7.12.\n\n	9.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33193
CVE-2022-36247	Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to IDOR via controlpanel.shopbeat.co.za.	9.1	https://nvd.nist.gov/vuln/detail/CVE-2022-36247

OTHER VULNERABILITIES

CVE Number	Description	Base Score	Reference
CVE-2018-20967	The wp-ultimate-csv-importer plugin before 5.6.1 for WordPress has CSRF.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2018-20967
CVE-2020-16009	Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2020-16009
CVE-2022-34691	Active Directory Domain Services Elevation of Privilege Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34691
CVE-2022-34717	Microsoft Office Remote Code Execution Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34717
CVE-2022-35777	Visual Studio Remote Code Execution Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35777
CVE-2022-35804	SMB Client and Server Remote Code Execution Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35804
CVE-2022-35825	Visual Studio Remote Code Execution Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35825
CVE-2022-35826	Visual Studio Remote Code Execution Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35826
CVE-2022-35827	Visual Studio Remote Code Execution Vulnerability	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35827
CVE-2023-0455	Unrestricted Upload of File with Dangerous Type in GitHub repository unilogies/bumsys prior to v1.0.3-beta.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0455
CVE-2023-20877	VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with ReadOnly privileges can perform code execution leading to privilege escalation.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-20877
CVE-2023-31923	Suprema BioStar 2 before 2022 Q4, v2.9.1 has Insecure Permissions. A vulnerability in the web application allows an authenticated attacker with "User Operator" privileges to create a highly privileged user account. The vulnerability is caused by missing server-side validation, which can be exploited to gain full administrator privileges on the system.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31923
CVE-2023-2588	\nTeltonika’s Remote Management System versions prior to 4.10.0 have a feature allowing users to access managed devices’ local secure shell (SSH)/web management services over the cloud proxy. A user can request a web proxy and obtain a URL in the Remote Management System cloud subdomain. This URL could be shared with others without Remote Management System authentication . An attacker could exploit this vulnerability to create a malicious webpage that uses a trusted and certified domain. An attacker could initiate a reverse shell when a victim connects to the malicious webpage, achieving remote code execution on the victim device.\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2588
CVE-2023-32349	\nVersion 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI configuration utility to change these variables and enable malicious parameters in the dump utility, which could result in arbitrary code execution.\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32349
CVE-2023-32350	\nVersions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system (OS) command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a malicious name that contains an OS command injection payload.\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32350
CVE-2023-2505	\nThe affected products have a CSRF vulnerability that could allow an attacker to execute code and upload malicious files.\n\n\n\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2505
CVE-2022-47311	A proprietary protocol for iBoot devices is used for control and keepalive commands. The function compares the username and password; it also contains the configuration data for the user specified. If the user does not exist, then it sends a value for username and password, which allows successful authentication for a connection.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47311
CVE-2023-31996	Hanwha IP Camera ANE-L7012R 1.41.01 is vulnerable to Command Injection due to improper sanitization of special characters for the NAS storage test function.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31996
CVE-2022-46813	Cross-Site Request Forgery (CSRF) vulnerability in Younes JFR. Advanced Database Cleaner plugin <= 3.1.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46813
CVE-2023-26011	Cross-Site Request Forgery (CSRF) vulnerability in Tim Eckel Read More Excerpt Link plugin <= 1.6 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-26011
CVE-2023-26014	Cross-Site Request Forgery (CSRF) vulnerability in Tim Eckel Minify HTML plugin <= 2.1.7 vulnerability.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-26014
CVE-2023-2065	Authorization Bypass Through User-Controlled Key vulnerability in Armoli Technology Cargo Tracking System allows Authentication Abuse, Authentication Bypass.This issue affects Cargo Tracking System: before 3558f28 .\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2065
CVE-2022-45364	Cross-Site Request Forgery (CSRF) vulnerability in Glen Don L. Mongaya Drag and Drop Multiple File Upload – Contact Form 7 plugin <= 1.3.6.5 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-45364
CVE-2022-46794	Cross-Site Request Forgery (CSRF) vulnerability in weightbasedshipping.Com WooCommerce Weight Based Shipping plugin <= 5.4.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46794
CVE-2022-46816	Cross-Site Request Forgery (CSRF) vulnerability in Booking Ultra Pro Appointments Booking Calendar Plugin plugin <= 1.1.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46816
CVE-2022-47152	Cross-Site Request Forgery (CSRF) vulnerability in Etison, LLC ClickFunnels plugin <= 3.1.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47152
CVE-2022-47180	Cross-Site Request Forgery (CSRF) vulnerability in Kopa Theme Kopa Framework plugin <= 1.3.5 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47180
CVE-2023-31459	A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect versions 9.6.2208.101 and earlier could allow an unauthenticated attacker with internal network access to authenticate with administrative privileges, because the initial installation does not enforce a password change. A successful exploit could allow an attacker to make arbitrary configuration changes and execute arbitrary commands.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31459
CVE-2022-4815	\nHitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.3, including 8.3.x deserialize untrusted JSON data without constraining the parser to approved classes and methods. \n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-4815
CVE-2023-2500	The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 3.3.19 via deserialization of untrusted input from the 'go_pricing' shortcode 'data' parameter. This allows authenticated attackers, with subscriber-level permissions and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2500
CVE-2022-41635	Cross-Site Request Forgery (CSRF) vulnerability in Zorem Advanced Shipment Tracking for WooCommerce plugin <= 3.5.2 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-41635
CVE-2022-46800	Cross-Site Request Forgery (CSRF) vulnerability in LiteSpeed Technologies LiteSpeed Cache plugin <= 5.3 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46800
CVE-2022-46812	Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Thank You Page Customizer for WooCommerce – Increase Your Sales plugin <= 1.0.13 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46812
CVE-2022-46865	Cross-Site Request Forgery (CSRF) vulnerability in Marty Thornley Bulk Resize Media plugin <= 1.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46865
CVE-2022-46866	Cross-Site Request Forgery (CSRF) vulnerability in Marty Thornley Import External Images plugin <= 1.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46866
CVE-2022-47135	Cross-Site Request Forgery (CSRF) vulnerability in chronoengine.Com Chronoforms plugin <= 7.0.9 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47135
CVE-2022-47138	Cross-Site Request Forgery (CSRF) vulnerability in German Krutov LOGIN AND REGISTRATION ATTEMPTS LIMIT plugin <= 2.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47138
CVE-2022-47139	Cross-Site Request Forgery (CSRF) vulnerability in Damir Calusic WP Basic Elements plugin <= 5.2.15 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47139
CVE-2023-2883	Authorization Bypass Through User-Controlled Key vulnerability in CBOT Chatbot allows Authentication Abuse, Authentication Bypass.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2883
CVE-2022-47149	Cross-Site Request Forgery (CSRF) vulnerability in Pretty Links plugin <= 1.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47149
CVE-2022-38356	Cross-Site Request Forgery (CSRF) vulnerability in StylemixThemes WordPress Header Builder Plugin – Pearl plugin <= 1.3.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-38356
CVE-2022-38716	Cross-Site Request Forgery (CSRF) vulnerability in StylemixThemes Motors – Car Dealer, Classifieds & Listing plugin <= 1.4.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-38716
CVE-2022-41987	Cross-Site Request Forgery (CSRF) vulnerability in LearningTimes BadgeOS plugin <= 3.7.1.6 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-41987
CVE-2022-43490	Cross-Site Request Forgery (CSRF) vulnerability in XWP Stream plugin <= 3.9.2 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-43490
CVE-2022-45371	Cross-Site Request Forgery (CSRF) vulnerability in Wpmet ShopEngine plugin <= 4.1.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-45371
CVE-2022-45815	Cross-Site Request Forgery (CSRF) vulnerability in StylemixThemes GDPR Compliance & Cookie Consent plugin <= 1.2 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-45815
CVE-2022-46810	Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Thank You Page Customizer for WooCommerce – Increase Your Sales plugin <= 1.0.13 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46810
CVE-2022-46814	Cross-Site Request Forgery (CSRF) vulnerability in Pierre Lebedel Kodex Posts likes plugin <= 2.4.3 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46814
CVE-2022-46820	Cross-Site Request Forgery (CSRF) vulnerability in WPJoli Joli Table Of Contents plugin <= 1.3.9 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46820
CVE-2022-46856	Cross-Site Request Forgery (CSRF) vulnerability in ORION Woocommerce Products Designer plugin <= 4.3.3 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46856
CVE-2022-47136	Cross-Site Request Forgery (CSRF) vulnerability in WPManageNinja LLC Ninja Tables – Best Data Table Plugin for WordPress plugin <= 4.3.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47136
CVE-2022-47144	Cross-Site Request Forgery (CSRF) vulnerability in Plugincraft Mediamatic – Media Library Folders plugin <= 2.8.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47144
CVE-2022-47174	Cross-Site Request Forgery (CSRF) vulnerability in WordPress Performance Team Performance Lab plugin <= 2.2.0 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47174
CVE-2023-2888	A vulnerability, which was classified as problematic, was found in PHPOK 6.4.100. This affects an unknown part of the file /admin.php?c=upload&f=zip&_noCache=0.1683794968. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The identifier VDB-229953 was assigned to this vulnerability.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2888
CVE-2023-23714	Cross-Site Request Forgery (CSRF) vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash plugin <= 3.6.4.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-23714
CVE-2023-24007	Cross-Site Request Forgery (CSRF) vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin <= 7.1.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-24007
CVE-2023-25971	Cross-Site Request Forgery (CSRF) vulnerability in FixBD Educare plugin <= 1.4.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25971
CVE-2023-25976	Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.2.2 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25976
CVE-2023-22693	Cross-Site Request Forgery (CSRF) vulnerability in conlabzgmbh WP Google Tag Manager plugin <= 1.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-22693
CVE-2023-24008	Cross-Site Request Forgery (CSRF) vulnerability in yonifre Maspik – Spam Blacklist plugin <= 0.7.8 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-24008
CVE-2023-25038	Cross-Site Request Forgery (CSRF) vulnerability in 984.Ru For the visually impaired plugin <= 0.58 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25038
CVE-2023-25029	Cross-Site Request Forgery (CSRF) vulnerability in utahta WP Social Bookmarking Light plugin <= 2.0.7 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25029
CVE-2023-25470	Cross-Site Request Forgery (CSRF) vulnerability in Anton Skorobogatov Rus-To-Lat plugin <= 0.3 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25470
CVE-2023-25034	Cross-Site Request Forgery (CSRF) vulnerability in BoLiQuan WP Clean Up plugin <= 1.2.3 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25034
CVE-2023-25058	Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force Schema – All In One Schema Rich Snippets plugin <= 1.6.5 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25058
CVE-2023-25467	Cross-Site Request Forgery (CSRF) vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin <= 1.3 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25467
CVE-2023-32964	Cross-Site Request Forgery (CSRF) vulnerability in Made with Fuel Better Notifications for WP plugin <= 1.9.2 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32964
CVE-2023-33779	A lateral privilege escalation vulnerability in XXL-Job v2.4.1 allows users to execute arbitrary commands on another user's account via a crafted POST request to the component /jobinfo/.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33779
CVE-2023-21515	InstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-21515
CVE-2023-31128	NextCloud Cookbook is a recipe library app. Prior to commit a46d9855 on the `master` branch and commit 489bb744 on the `main-0.9.x` branch, the `pull-checks.yml` workflow is vulnerable to command injection attacks because of using an untrusted `github.head_ref` field. The `github.head_ref` value is an attacker-controlled value. Assigning the value to `zzz";echo${IFS}"hello";#` can lead to command injection. Since the permission is not restricted, the attacker has a write-access to the repository. This issue is fixed in commit a46d9855 on the `master` branch and commit 489bb744 on the `main-0.9.x` branch. There is no risk for the user of the app within the NextCloud server. This only affects the main repository and possible forks of it. Those who have forked the NextCloud Cookbook repository should make sure their forks are on the latest version to prevent code injection attacks and similar.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31128
CVE-2023-2928	A vulnerability was found in DedeCMS up to 5.7.106. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file uploads/dede/article_allowurl_edit.php. The manipulation of the argument allurls leads to code injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230083.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2928
CVE-2023-2943	Code Injection in GitHub repository openemr/openemr prior to 7.0.1.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2943
CVE-2023-33212	Cross-Site Request Forgery (CSRF) vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin <= 3.0.6 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33212
CVE-2023-33314	Cross-Site Request Forgery (CSRF) vulnerability in realmag777 BEAR plugin <= 1.1.3.1 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33314
CVE-2023-33315	Cross-Site Request Forgery (CSRF) vulnerability in Stephen Darlington, Wandle Software Limited Smart App Banner plugin <= 1.1.2 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33315
CVE-2023-33931	Cross-Site Request Forgery (CSRF) vulnerability in Ciprian Popescu YouTube Playlist Player plugin <= 4.6.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33931
CVE-2023-33313	Cross-Site Request Forgery (CSRF) vulnerability in ThemeinProgress WIP Custom Login plugin <= 1.2.9 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33313
CVE-2023-33316	Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Follow-Up Emails (AutomateWoo) plugin <= 4.9.40 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33316
CVE-2022-36345	Cross-Site Request Forgery (CSRF) vulnerability in Metagauss Download Plugin <= 2.0.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-36345
CVE-2023-33926	Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Easy Google Maps plugin <= 1.11.7 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33926
CVE-2023-30350	FS S3900-24T4S devices allow authenticated attackers with guest access to escalate their privileges and reset the admin password.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30350
CVE-2023-31874	Yank Note (YN) 3.52.1 allows execution of arbitrary code when a crafted file is opened, e.g., via nodeRequire('child_process').	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31874
CVE-2022-33974	Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Custom Twitter Feeds (Tweets Widget) plugin <= 1.8.4 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-33974
CVE-2022-45372	Cross-Site Request Forgery (CSRF) vulnerability in Codeixer Product Gallery Slider for WooCommerce plugin <= 2.2.8 versions.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-45372
CVE-2023-30253	Dolibarr before 17.0.1 allows remote code execution by an authenticated user via an uppercase manipulation: <?PHP instead of <?php in injected data.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30253
CVE-2023-33245	Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and possibly code execution, via crafted world data that contains a symlink.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33245
CVE-2023-33191	Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity `validate.podSecurity` subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33191
CVE-2023-0766	The Newsletter Popup WordPress plugin through 1.2 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks as the wp_newsletter_show_localrecord page is not protected with a nonce.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0766
CVE-2023-1938	The WP Fastest Cache WordPress plugin before 1.1.5 does not have CSRF check in an AJAX action, and does not validate user input before using it in the wp_remote_get() function, leading to a Blind SSRF issue	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-1938
CVE-2023-2288	The Otter WordPress plugin before 2.2.6 does not sanitize some user-controlled file paths before performing file operations on them. This leads to a PHAR deserialization vulnerability on PHP < 8.0 using the phar:// stream wrapper.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2288
CVE-2023-2983	Privilege Defined With Unsafe Actions in GitHub repository pimcore/pimcore prior to 10.5.23.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2983
CVE-2023-2984	Path Traversal: '\\..\\filename' in GitHub repository pimcore/pimcore prior to 10.5.22.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2984
CVE-2023-32696	CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the `ckan` user (equivalent to www-data) owned code and configuration files in the docker container and the `ckan` user had the permissions to use sudo. These issues allowed for code execution or privilege escalation if an arbitrary file write bug was available. Versions 2.9.9, 2.9.9-dev, 2.10.1, and 2.10.1-dev contain a patch.\n\n\n\n	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32696
CVE-2022-36250	Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Cross Site Request Forgery (CSRF).	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-36250
CVE-2023-33177	Xibo is a content management system (CMS). A path traversal vulnerability exists in the Xibo CMS whereby a specially crafted zip file can be uploaded to the CMS via the layout import function by an authenticated user which would allow creation of files outside of the CMS library directory as the webserver user. This can be used to upload a PHP webshell inside the web root directory and achieve remote code execution as the webserver user. Users should upgrade to version 2.3.17 or 3.3.5, which fix this issue. Customers who host their CMS with Xibo Signage have already received an upgrade or patch to resolve this issue regardless of the CMS version that they are running.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33177
CVE-2023-2929	Out of bounds write in Swiftshader in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2929
CVE-2023-2930	Use after free in Extensions in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2930
CVE-2023-2931	Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2931
CVE-2023-2932	Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2932
CVE-2023-2933	Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2933
CVE-2023-2934	Out of bounds memory access in Mojo in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2934
CVE-2023-2935	Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2935
CVE-2023-2936	Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2936
CVE-2012-10015	A vulnerability was found in BestWebSoft Twitter Plugin up to 2.14 on WordPress. It has been classified as problematic. Affected is the function twttr_settings_page of the file twitter.php of the component Settings Page. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. Upgrading to version 2.15 is able to address this issue. The name of the patch is a6d4659cbb2cbf18ccb0fb43549d5113d74e0146. It is recommended to upgrade the affected component. VDB-230154 is the identifier assigned to this vulnerability.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2012-10015
CVE-2023-28349	An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for an attacker to create a crafted program that functions similarly to the Teacher Console. This can compel Student Consoles to connect and put themselves at risk automatically. Connected Student Consoles can be compelled to write arbitrary files to arbitrary locations on disk with NT AUTHORITY/SYSTEM level permissions, enabling remote code execution.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28349
CVE-2023-2545	The Feather Login Page plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'getListOfUsers' function in versions starting from 1.0.7 up to, and including, 1.1.1. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to access the login links, which can be used for privilege escalation.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2545
CVE-2023-2549	The Feather Login Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions starting from 1.0.7 up to, and including, 1.1.1. This is due to missing nonce validation in the 'createTempAccountLink' function. This makes it possible for unauthenticated attackers to create a new user with administrator role via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. An attacker can leverage CVE-2023-2545 to get the login link or request a password reset to the new user's email address.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2549
CVE-2023-33485	TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contains a post-authentication buffer overflow via parameter sPort/ePort in the addEffect function.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33485
CVE-2015-10108	A vulnerability was found in meitar Inline Google Spreadsheet Viewer Plugin up to 0.9.6 on WordPress and classified as problematic. Affected by this issue is the function displayShortcode of the file inline-gdocs-viewer.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. Upgrading to version 0.9.6.1 is able to address this issue. The name of the patch is 2a8057df8ca30adc859cecbe5cad21ac28c5b747. It is recommended to upgrade the affected component. VDB-230234 is the identifier assigned to this vulnerability.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2015-10108
CVE-2022-46307	SGUDA U-Lock central lock control service’s lock management function has incorrect authorization. A remote attacker with general privilege can exploit this vulnerability to call privileged APIs to acquire information, manipulate or disrupt the functionality of arbitrary electronic locks.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46307
CVE-2022-46308	SGUDA U-Lock central lock control service’s user management function has incorrect authorization. A remote attacker with general user privilege can exploit this vulnerability to call privileged APIs to access, modify and delete user information.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46308
CVE-2023-28699	Wade Graphic Design FANTSY has a vulnerability of insufficient filtering for file type in its file update function. An authenticated remote attacker with general user privilege can exploit this vulnerability to upload a PHP file containing a webshell to perform arbitrary system operation or disrupt service.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28699
CVE-2023-28702	ASUS RT-AC86U does not filter special characters for parameters in specific web URLs. A remote attacker with normal user privileges can exploit this vulnerability to perform command injection attack to execute arbitrary system commands, disrupt system or terminate service.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28702
CVE-2023-28704	Furbo dog camera has insufficient filtering for special parameter of device log management function. An unauthenticated remote attacker in the Bluetooth network with normal user privileges can exploit this vulnerability to perform command injection attack to execute arbitrary system commands or disrupt service.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28704
CVE-2023-0985	An Authorization Bypass vulnerability was found in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual version <= 2.13.3. An authenticated remote user with low privileges can change the password of any user in the same account. This allows to take over the admin user and therefore fully compromise the account.	8.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0985
CVE-2022-33636	Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability	8.3	https://nvd.nist.gov/vuln/detail/CVE-2022-33636
CVE-2023-23693	\nDell VxRail, versions prior to 7.0.450, contains an OS command injection Vulnerability in DCManager command-line utility. A local high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. Exploitation may lead to a system take over by an attacker.\n\n	8.2	https://nvd.nist.gov/vuln/detail/CVE-2023-23693
CVE-2022-34702	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-34702
CVE-2022-34714	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-34714
CVE-2022-35766	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35766
CVE-2022-35767	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35767
CVE-2022-35794	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35794
CVE-2022-35802	Azure Site Recovery Elevation of Privilege Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35802
CVE-2023-2706	The OTP Login Woocommerce & Gravity Forms plugin for WordPress is vulnerable to authentication bypass. This is due to the fact that when generating OTP codes for users to use in order to login via phone number, the plugin returns these codes in an AJAX response. This makes it possible for unauthenticated attackers to obtain login codes for administrators. This does require an attacker have access to the phone number configured for an account, which can be obtained via social engineering or reconnaissance.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2706
CVE-2022-47320	The iBoot device’s basic discovery protocol assists in initial device configuration. The discovery protocol shows basic information about devices on the network and allows users to perform configuration changes.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-47320
CVE-2023-1424	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets. A system reset of the product is required for recovery from a denial of service (DoS) condition and malicious code execution.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-1424
CVE-2023-33945	SQL injection vulnerability in the upgrade process for SQL Server in Liferay Portal 7.3.1 through 7.4.3.17, and Liferay DXP 7.3 before update 6, and 7.4 before update 18 allows attackers to execute arbitrary SQL commands via the name of a database table's primary key index. This vulnerability is only exploitable when chained with other attacks. To exploit this vulnerability, the attacker must modify the database and wait for the application to be upgraded.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33945
CVE-2023-2885	Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle (AiTM).This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.\n\n	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2885
CVE-2023-28382	Directory traversal vulnerability in ESS REC Agent Server Edition series allows an authenticated attacker to view or alter an arbitrary file on the server. Affected products and versions are as follows: ESS REC Agent Server Edition for Linux V1.0.0 to V1.4.3, ESS REC Agent Server Edition for Solaris V1.1.0 to V1.4.0, ESS REC Agent Server Edition for HP-UX V1.1.0 to V1.4.0, and ESS REC Agent Server Edition for AIX V1.2.0 to V1.4.1	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-28382
CVE-2023-2942	Improper Input Validation in GitHub repository openemr/openemr prior to 7.0.1.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2942
CVE-2023-2946	Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2946
CVE-2023-2950	Improper Authorization in GitHub repository openemr/openemr prior to 7.0.1.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2950
CVE-2022-35745	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35745
CVE-2022-35752	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35752
CVE-2022-35753	Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability	8.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35753
CVE-2023-23955	Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Server-Side Request Forgery vulnerability.	8.1	https://nvd.nist.gov/vuln/detail/CVE-2023-23955
CVE-2022-21980	Microsoft Exchange Server Elevation of Privilege Vulnerability	8	https://nvd.nist.gov/vuln/detail/CVE-2022-21980
CVE-2022-24477	Microsoft Exchange Server Elevation of Privilege Vulnerability	8	https://nvd.nist.gov/vuln/detail/CVE-2022-24477
CVE-2022-24516	Microsoft Exchange Server Elevation of Privilege Vulnerability	8	https://nvd.nist.gov/vuln/detail/CVE-2022-24516
CVE-2021-38185	GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c ds_fgetstr integer overflow that triggers an out-of-bounds heap write. NOTE: it is unclear whether there are common cases where the pattern file, associated with the -E option, is untrusted data.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2021-38185
CVE-2022-30175	Azure RTOS GUIX Studio Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-30175
CVE-2022-30176	Azure RTOS GUIX Studio Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-30176
CVE-2022-33640	System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-33640
CVE-2022-33648	Microsoft Excel Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-33648
CVE-2022-33670	Windows Partition Management Driver Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-33670
CVE-2022-34687	Azure RTOS GUIX Studio Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34687
CVE-2022-34696	Windows Hyper-V Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34696
CVE-2022-34699	Windows Win32k Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34699
CVE-2022-34703	Windows Partition Management Driver Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34703
CVE-2022-34705	Windows Defender Credential Guard Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34705
CVE-2022-34706	Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34706
CVE-2022-34707	Windows Kernel Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34707
CVE-2022-34713	Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34713
CVE-2022-35760	Microsoft ATA Port Driver Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35760
CVE-2022-35761	Windows Kernel Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35761
CVE-2022-35762	Storage Spaces Direct Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35762
CVE-2022-35763	Storage Spaces Direct Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35763
CVE-2022-35764	Storage Spaces Direct Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35764
CVE-2022-35765	Storage Spaces Direct Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35765
CVE-2022-35768	Windows Kernel Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35768
CVE-2022-35771	Windows Defender Credential Guard Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35771
CVE-2022-35773	Azure RTOS GUIX Studio Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35773
CVE-2022-35779	Azure RTOS GUIX Studio Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35779
CVE-2022-35792	Storage Spaces Direct Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35792
CVE-2022-35795	Windows Error Reporting Service Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35795
CVE-2022-35806	Azure RTOS GUIX Studio Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35806
CVE-2022-35820	Windows Bluetooth Driver Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35820
CVE-2022-34711	Windows Defender Credential Guard Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-34711
CVE-2022-25743	Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-25743
CVE-2023-0341	A stack buffer overflow exists in the ec_glob function of editorconfig-core-c before v0.12.6 which allowed an attacker to arbitrarily write to the stack and possibly allows remote code execution. editorconfig-core-c v0.12.6 resolved this vulnerability by bound checking all write operations over the p_pcre buffer.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0341
CVE-2023-0461	There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIG_TLS or CONFIG_XFRM_ESPINTCP has to be configured, but the operation does not require any privilege.\n\nThere is a use-after-free bug of icsk_ulp_data of a struct inet_connection_sock.\n\nWhen CONFIG_TLS is enabled, user can install a tls context (struct tls_context) on a connected tcp socket. The context is not cleared if this socket is disconnected and reused as a listener. If a new socket is created from the listener, the context is inherited and vulnerable.\n\nThe setsockopt TCP_ULP operation does not require any privilege.\n\nWe recommend upgrading past commit 2c02d41d71f90a5168391b6a5f2954112ba2307c	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0461
CVE-2023-0386	A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-0386
CVE-2022-44370	NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-44370
CVE-2023-25542	\nDell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to escalated privileges.\n\n	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25542
CVE-2023-1829	A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex_delete function which does not properly deactivate filters in case of a perfect hashes while deleting the underlying structure which can later lead to double freeing the structure. A local attacker user can use this vulnerability to elevate its privileges to root.\nWe recommend upgrading past commit 8c710f75256bb3cf05ac7b1672c82b92c43f3d28.\n\n	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-1829
CVE-2023-31436	qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31436
CVE-2023-2236	A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation.\n\nBoth io_install_fixed_file and its callers call fput in a file in case of an error, causing a reference underflow which leads to a use-after-free vulnerability.\n\nWe recommend upgrading past commit 9d94c04c0db024922e886c9fd429659f22f48ea4.\n\n	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2236
CVE-2023-21665	Memory corruption in Graphics while importing a file.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-21665
CVE-2023-21666	Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-21666
CVE-2023-32233	In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32233
CVE-2023-2629	Improper Neutralization of Formula Elements in a CSV File in GitHub repository pimcore/customer-data-framework prior to 3.3.9.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2629
CVE-2023-2124	An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2124
CVE-2023-32700	LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs because luatex-core.lua lets the original io.popen be accessed. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32700
CVE-2023-23694	\nDell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. A local authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. Exploitation may lead to a system take over by an attacker.\n\n	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-23694
CVE-2023-31747	Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privileges.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31747
CVE-2022-0357	Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an attacker to elevate privileges to SYSTEM.\n\nThis issue affects:\n\nBitdefender Total Security\nversions prior to 26.0.10.45.\nBitdefender Internet Security\nversions prior to 26.0.10.45.\nBitdefender Antivirus Plus\nversions prior to 26.0.10.45.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-0357
CVE-2023-31748	Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local admin via replacing the executable file.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31748
CVE-2021-25749	Windows workloads can run as ContainerAdministrator even when those workloads set the runAsNonRoot option to true.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2021-25749
CVE-2023-1944	This vulnerability enables ssh access to minikube container using a default password.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-1944
CVE-2023-2873	A vulnerability classified as critical was found in Twister Antivirus 8. This vulnerability affects the function 0x804f2143/0x804f217f/0x804f214b/0x80800043 in the library filppd.sys of the component IoControlCode Handler. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-229852. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2873
CVE-2023-27529	Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution before file access vulnerability. When a user is tricked to execute a small malicious script before executing the affected version of the installer, arbitrary code may be executed with the root privilege.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-27529
CVE-2023-2480	Missing access permissions checks in M-Files Client before 23.5.12598.0 allows elevation of privilege via UI extension applications	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2480
CVE-2023-22970	Bottles before 51.0 mishandles YAML load, which allows remote code execution via a crafted file.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-22970
CVE-2023-26127	All versions of the package n158 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports' function.\r\rNote:\r\rTo execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. This typically requires some level of access to the system or application hosting the Node.js environment.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-26127
CVE-2023-26128	All versions of the package keep-module-latest are vulnerable to Command Injection due to missing input sanitization or other checks and sandboxes being employed to the installModule function.\r\rNote:\r\rTo execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. This typically requires some level of access to the system or application hosting the Node.js environment.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-26128
CVE-2023-26129	All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. \r\rNote:\r\rTo execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. This typically requires some level of access to the system or application hosting the Node.js environment.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-26129
CVE-2023-31873	Gin 0.7.4 allows execution of arbitrary code when a crafted file is opened, e.g., via require('child_process').	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31873
CVE-2023-30601	Privilege escalation when enabling FQL/Audit logs allows user with JMX access to run arbitrary commands as the user running Apache Cassandra\nThis issue affects Apache Cassandra: from 4.0.0 through 4.0.9, from 4.1.0 through 4.1.1.\n\nWORKAROUND\nThe vulnerability requires nodetool/JMX access to be exploitable, disable access for any non-trusted users.\n\nMITIGATION\nUpgrade to 4.0.10 or 4.1.2 and leave the new FQL/Auditlog configuration property allow_nodetool_archive_command as false.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-30601
CVE-2023-28079	\nPowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions vulnerability. A regular user (non-admin) can exploit the weak folder and file permissions to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\\SYSTEM.\n\n	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28079
CVE-2022-47029	An issue was found in Action Launcher v50.5 allows an attacker to escalate privilege via modification of the intent string to function update.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-47029
CVE-2023-29733	The Lock Master app 2.2.4 for Android allows unauthorized apps to modify the values in its SharedPreference files. These files hold data that affects many app functions. Malicious modifications by unauthorized apps can cause security issues, such as functionality manipulation, resulting in a severe escalation of privilege attack.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29733
CVE-2023-31184	ROZCOM client CWE-798: Use of Hard-coded Credentials	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-31184
CVE-2023-2939	Insufficient data validation in Installer in Google Chrome on Windows prior to 114.0.5735.90 allowed a local attacker to perform privilege escalation via crafted symbolic link. (Chromium security severity: Medium)	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2939
CVE-2023-29738	An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause code execution and escalation of Privileges via the database files.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29738
CVE-2023-3012	NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-3012
CVE-2022-35743	Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35743
CVE-2022-35746	Windows Digital Media Receiver Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35746
CVE-2022-35749	Windows Digital Media Receiver Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35749
CVE-2022-35750	Win32k Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35750
CVE-2022-35751	Windows Hyper-V Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35751
CVE-2022-35756	Windows Kerberos Elevation of Privilege Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2022-35756
CVE-2023-23953	Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to an Elevation of Privilege vulnerability.	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-23953
CVE-2023-29344	Microsoft Office Remote Code Execution Vulnerability	7.8	https://nvd.nist.gov/vuln/detail/CVE-2023-29344
CVE-2023-0779	At the most basic level, an invalid pointer can be input that crashes the device, but with more knowledge of the device’s memory layout, further exploitation is possible.	7.7	https://nvd.nist.gov/vuln/detail/CVE-2023-0779
CVE-2023-33248	Amazon Alexa software version 8960323972 on Echo Dot 2nd generation and 3rd generation devices potentially allows attackers to deliver security-relevant commands via an audio signal between 16 and 22 kHz (often outside the range of human adult hearing). Commands at these frequencies are essentially never spoken by authorized actors, but a substantial fraction of the commands are successful.	7.6	https://nvd.nist.gov/vuln/detail/CVE-2023-33248
CVE-2018-8065	An issue was discovered in the web server in Flexense SyncBreeze Enterprise 10.6.24. There is a user mode write access violation on the syncbrs.exe memory region that can be triggered by rapidly sending a variety of HTTP requests with long HTTP header values or long URIs.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2018-8065
CVE-2019-2822	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Shell: Admin / InnoDB Cluster). Supported versions that are affected are 8.0.16 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).	7.5	https://nvd.nist.gov/vuln/detail/CVE-2019-2822
CVE-2021-3610	A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2021-3610
CVE-2022-30144	Windows Bluetooth Service Remote Code Execution Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-30144
CVE-2022-30194	Windows WebBrowser Control Remote Code Execution Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-30194
CVE-2022-34701	Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-34701
CVE-2022-35769	Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35769
CVE-2022-35796	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35796
CVE-2022-25164	Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 all versions and Mitsubishi Electric MX OPC UA Module Configurator-R all versions allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users can gain unauthorized access to the MELSEC CPU module and the MELSEC OPC UA server module.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-25164
CVE-2022-29825	Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U and GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C allows an unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29825
CVE-2022-29826	Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control Setting(GX Works3 related software) versions from 1.000A to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29826
CVE-2022-29827	Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 all versions allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29827
CVE-2022-29828	Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 all versions allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project file or execute programs illegally.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29828
CVE-2022-29829	Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C and Motion Control Setting(GX Works3 related software) versions from 1.035M to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29829
CVE-2022-29831	Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthenticated attacker to obtain information about the project file for MELSEC safety CPU modules.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29831
CVE-2023-24329	An issue in the urllib.parse component of Python before v3.11 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-24329
CVE-2023-0464	A security vulnerability has been identified in all supported versions\n\nof OpenSSL related to the verification of X.509 certificate chains\nthat include policy constraints. Attackers may be able to exploit this\nvulnerability by creating a malicious certificate chain that triggers\nexponential use of computational resources, leading to a denial-of-service\n(DoS) attack on affected systems.\n\nPolicy processing is disabled by default but can be enabled by passing\nthe `-policy' argument to the command line utilities or by calling the\n`X509_VERIFY_PARAM_set1_policies()' function.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-0464
CVE-2023-28625	mod_auth_openidc is an authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. In versions 2.0.0 through 2.4.13.1, when `OIDCStripCookies` is set and a crafted cookie supplied, a NULL pointer dereference would occur, resulting in a segmentation fault. This could be used in a Denial-of-Service attack and thus presents an availability risk. Version 2.4.13.2 contains a patch for this issue. As a workaround, avoid using `OIDCStripCookies`.\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-28625
CVE-2023-30846	typed-rest-client is a library for Node Rest and Http Clients with typings for use with TypeScript. Users of the typed-rest-client library version 1.7.3 or lower are vulnerable to leak authentication data to 3rd parties. The flow of the vulnerability is as follows: First, send any request with `BasicCredentialHandler`, `BearerCredentialHandler` or `PersonalAccessTokenCredentialHandler`. Second, the target host may return a redirection (3xx), with a link to a second host. Third, the next request will use the credentials to authenticate with the second host, by setting the `Authorization` header. The expected behavior is that the next request will NOT set the `Authorization` header. The problem was fixed in version 1.8.0. There are no known workarounds.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-30846
CVE-2023-25934	\nDELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. A network attacker with an ability to intercept the request could potentially exploit this vulnerability to modify the body data of the request.\n\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-25934
CVE-2023-32758	giturlparse (aka git-url-parse) through 1.2.2, as used in Semgrep 1.5.2 through 1.24.1, is vulnerable to ReDoS (Regular Expression Denial of Service) if parsing untrusted URLs. This might be relevant if Semgrep is analyzing an untrusted package (for example, to check whether it accesses any Git repository at an http:// URL), and that package's author placed a ReDoS attack payload in a URL used by the package.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32758
CVE-2023-33000	Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.149 and earlier does not mask credentials displayed on the configuration form, increasing the potential for attackers to observe and capture them.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33000
CVE-2023-33297	Bitcoin Core before 24.1, when debug mode is not used, allows attackers to cause a denial of service (CPU consumption) because draining the inventory-to-send queue is inefficient, as exploited in the wild in May 2023.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33297
CVE-2023-31206	Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.6.0. Attackers can change the immutable name and type of nodes of InLong. Users are advised to upgrade to Apache InLong's 1.7.0 or cherry-pick [1] to solve it.\n\n [1] https://cveprocess.apache.org/cve5/[1]%C2%A0https://github.com/apache/inlong/pull/7891 https://github.com/apache/inlong/pull/7891 https://github.com/apache/inlong/pull/7891 \n\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31206
CVE-2023-31670	An issue in wasm2c 1.0.32, wasm2wat 1.0.32, wasm-decompile 1.0.32, and wasm-validate 1.0.32 allows attackers to cause a Denial of Service (DoS) via running a crafted binary.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31670
CVE-2023-31726	AList 3.15.1 is vulnerable to Incorrect Access Control, which can be exploited by attackers to obtain sensitive information.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31726
CVE-2023-2496	The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to unauthorized arbitrary file uploads due to an improper capability check on the 'validate_upload' function in versions up to, and including, 3.3.19. This makes it possible for authenticated attackers with a role that the administrator previously granted access to the plugin to upload arbitrary files on the affected site's server which may make remote code execution possible.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2496
CVE-2023-31759	Weak Security in the 433MHz keyfob of Kerui W18 Alarm System v1.0 allows attackers to gain full access via a code replay attack.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31759
CVE-2023-31761	Weak security in the transmitter of Blitzwolf BW-IS22 Smart Home Security Alarm v1.0 allows attackers to gain full access to the system via a code replay attack.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31761
CVE-2023-31762	Weak security in the transmitter of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to gain full access to the system via a code replay attack.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31762
CVE-2023-31763	Weak security in the transmitter of AGShome Smart Alarm v1.0 allows attackers to gain full access to the system via a code replay attack.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31763
CVE-2023-33948	The Dynamic Data Mapping module in Liferay Portal 7.4.3.67, and Liferay DXP 7.4 update 67 does not limit Document and Media files which can be downloaded from a Form, which allows remote attackers to download any file from Document and Media via a crafted URL.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33948
CVE-2023-33949	In Liferay Portal 7.3.0 and earlier, and Liferay DXP 7.2 and earlier the default configuration does not require users to verify their email address, which allows remote attackers to create accounts using fake email addresses or email addresses which they don't control. The portal property `company.security.strangers.verify` should be set to true.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33949
CVE-2023-33950	Pattern Redirects in Liferay Portal 7.4.3.48 through 7.4.3.76, and Liferay DXP 7.4 update 48 through 76 allows regular expressions that are vulnerable to ReDoS attacks to be used as patterns, which allows remote attackers to consume an excessive amount of server resources via crafted request URLs.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33950
CVE-2023-33980	Bramble Synchronisation Protocol (BSP) in Briar before 1.4.22 allows attackers to cause a denial of service (repeated application crashes) via a series of long messages to a contact.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33980
CVE-2023-31595	IC Realtime ICIP-P2012T 2.420 is vulnerable to Incorrect Access Control via unauthenticated port access.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31595
CVE-2023-31594	IC Realtime ICIP-P2012T 2.420 is vulnerable to Incorrect Access Control via an exposed HTTP channel using VLC network.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31594
CVE-2023-31861	ZLMediaKit 4.0 is vulnerable to Directory Traversal.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31861
CVE-2023-2798	Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks (DoS). If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue affects htmlunit before 2.70.0.\n\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2798
CVE-2023-33263	In WFTPD 3.25, usernames and password hashes are stored in an openly viewable wftpd.ini configuration file within the WFTPD directory. NOTE: this is a product from 2006.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33263
CVE-2023-2900	A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. VDB-229974 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2900
CVE-2023-32067	c-ares is an asynchronous resolver library. c-ares is vulnerable to denial of service. If a target resolver sends a query, the attacker forges a malformed UDP packet with a length of 0 and returns them to the target resolver. The target resolver erroneously interprets the 0 length as a graceful shutdown of the connection. This issue has been patched in version 1.19.1.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32067
CVE-2022-46945	Nagvis before 1.9.34 was discovered to contain an arbitrary file read vulnerability via the component /core/classes/NagVisHoverUrl.php.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-46945
CVE-2023-33247	Talend Data Catalog remote harvesting server before 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated WAR file to be deployed on the server. (A mitigation is that the remote harvesting server should be behind a firewall that only allows access to the Talend Data Catalog server.)	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33247
CVE-2023-28319	A use after free vulnerability exists in curl <v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash. This flaw risks inserting sensitive heap-based data into the error message that might be shown to users or otherwise get leaked and revealed.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-28319
CVE-2023-28321	An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS library. This private wildcard matching function would match IDN (International Domain Name) hosts incorrectly and could as a result accept patterns that otherwise should mismatch. IDN hostnames are converted to puny code before used for certificate checks. Puny coded names always start with `xn--` and should not be allowed to pattern match, but the wildcard check in curl could still check for `x*`, which would match even though the IDN name most likely contained nothing even resembling an `x`.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-28321
CVE-2023-2879	GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2879
CVE-2023-32315	Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup Environment in an already configured Openfire environment to access restricted pages in the Openfire Admin Console reserved for administrative users. This vulnerability affects all versions of Openfire that have been released since April 2015, starting with version 3.10.0. The problem has been patched in Openfire release 4.7.5 and 4.6.8, and further improvements will be included in the yet-to-be released first version on the 4.8 branch (which is expected to be version 4.8.0). Users are advised to upgrade. If an Openfire upgrade isn’t available for a specific release, or isn’t quickly actionable, users may see the linked github advisory (GHSA-gw42-f939-fhvm) for mitigation advice.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32315
CVE-2023-32688	parse-server-push-adapter is the official Push Notification adapter for Parse Server. The Parse Server Push Adapter can crash Parse Server due to an invalid push notification payload. This issue has been patched in version 4.1.3.\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32688
CVE-2023-33192	ntpd-rs is an NTP implementation written in Rust. ntpd-rs does not validate the length of NTS cookies in received NTP packets to the server. An attacker can crash the server by sending a specially crafted NTP packet containing a cookie shorter than what the server expects. The server also crashes when it is not configured to handle NTS packets. The issue was caused by improper slice indexing. The indexing operations were replaced by safer alternatives that do not crash the ntpd-rs server process but instead properly handle the error condition. A patch was released in version 0.3.3.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33192
CVE-2023-32695	socket.io parser is a socket.io encoder and decoder written in JavaScript complying with version 5 of socket.io-protocol. A specially crafted Socket.IO packet can trigger an uncaught exception on the Socket.IO server, thus killing the Node.js process. A patch has been released in version 4.2.3.\n\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32695
CVE-2023-32763	An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32763
CVE-2023-29380	Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29380
CVE-2023-30570	pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-30570
CVE-2021-27825	A directory traversal vulnerability on Mercury MAC1200R devices allows attackers to read arbitrary files via a web-static/ URL.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2021-27825
CVE-2014-125102	A vulnerability classified as problematic was found in Bestwebsoft Relevant Plugin up to 1.0.7 on WordPress. Affected by this vulnerability is an unknown functionality of the component Thumbnail Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 1.0.8 is able to address this issue. The name of the patch is 860d1891025548cf0f5f97364c1f51a888f523c3. It is recommended to upgrade the affected component. The identifier VDB-230113 was assigned to this vulnerability.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2014-125102
CVE-2023-33198	tgstation-server is a production scale tool for BYOND server management. The DreamMaker API (DMAPI) chat channel cache can possibly be poisoned by a tgstation-server (TGS) restart and reattach. This can result in sending chat messages to one of any of the configured IRC or Discord channels for the instance on enabled chat bots. This lasts until the instance's chat channels are updated in TGS or DreamDaemon is restarted. TGS chat commands are unaffected, custom or otherwise.\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33198
CVE-2023-30196	Prestashop salesbooster <= 1.10.4 is vulnerable to Incorrect Access Control via modules/salesbooster/downloads/download.php.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-30196
CVE-2023-2650	Issue summary: Processing some specially crafted ASN.1 object identifiers or\ndata containing them may be very slow.\n\nImpact summary: Applications that use OBJ_obj2txt() directly, or use any of\nthe OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message\nsize limit may experience notable to very long delays when processing those\nmessages, which may lead to a Denial of Service.\n\nAn OBJECT IDENTIFIER is composed of a series of numbers - sub-identifiers -\nmost of which have no size limit. OBJ_obj2txt() may be used to translate\nan ASN.1 OBJECT IDENTIFIER given in DER encoding form (using the OpenSSL\ntype ASN1_OBJECT) to its canonical numeric text form, which are the\nsub-identifiers of the OBJECT IDENTIFIER in decimal form, separated by\nperiods.\n\nWhen one of the sub-identifiers in the OBJECT IDENTIFIER is very large\n(these are sizes that are seen as absurdly large, taking up tens or hundreds\nof KiBs), the translation to a decimal number in text may take a very long\ntime. The time complexity is O(n^2) with 'n' being the size of the\nsub-identifiers in bytes (*).\n\nWith OpenSSL 3.0, support to fetch cryptographic algorithms using names /\nidentifiers in string form was introduced. This includes using OBJECT\nIDENTIFIERs in canonical numeric text form as identifiers for fetching\nalgorithms.\n\nSuch OBJECT IDENTIFIERs may be received through the ASN.1 structure\nAlgorithmIdentifier, which is commonly used in multiple protocols to specify\nwhat cryptographic algorithm should be used to sign or verify, encrypt or\ndecrypt, or digest passed data.\n\nApplications that call OBJ_obj2txt() directly with untrusted data are\naffected, with any version of OpenSSL. If the use is for the mere purpose\nof display, the severity is considered low.\n\nIn OpenSSL 3.0 and newer, this affects the subsystems OCSP, PKCS7/SMIME,\nCMS, CMP/CRMF or TS. It also impacts anything that processes X.509\ncertificates, including simple things like verifying its signature.\n\nThe impact on TLS is relatively low, because all versions of OpenSSL have a\n100KiB limit on the peer's certificate chain. Additionally, this only\nimpacts clients, or servers that have explicitly enabled client\nauthentication.\n\nIn OpenSSL 1.1.1 and 1.0.2, this only affects displaying diverse objects,\nsuch as X.509 certificates. This is assumed to not happen in such a way\nthat it would cause a Denial of Service, so these versions are considered\nnot affected by this issue in such a way that it would be cause for concern,\nand the severity is therefore considered low.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2650
CVE-2022-4240	Missing Authentication for Critical Function vulnerability in Honeywell OneWireless allows Authentication Bypass. This issue affects OneWireless version 322.1	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-4240
CVE-2023-23755	An issue was discovered in Joomla! 4.2.0 through 4.3.1. The lack of rate limiting allowed brute force attacks against MFA methods.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-23755
CVE-2023-24826	RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2023.04, an attacker can send crafted frames to the device to trigger the usage of an uninitialized object leading to denial of service. This issue is fixed in version 2023.04. As a workaround, disable fragment forwarding or SFR.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-24826
CVE-2023-33973	RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. In versions 2023.01 and prior, an attacker can send a crafted frame which is forwarded by the device. During encoding of the packet a NULL pointer dereference occurs. This crashes the device leading to denial of service. A patch is available at pull request 19678. There are no known workarounds.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33973
CVE-2023-2968	A remote attacker can trigger a denial of service in the socket.remoteAddress variable, by sending a crafted HTTP request. Usage of the undefined variable raises a TypeError exception.\n\n	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2968
CVE-2023-29731	SoLive 1.6.14 thru 1.6.20 for Android has an exposed component that provides a method to modify the SharedPreference file. An attacker can leverage this method to inject a large amount of data into any SharedPreference file, which will be loaded into memory when the application is opened. When an attacker injects too much data, the application will trigger an OOM error and crash at startup, resulting in a persistent denial of service.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29731
CVE-2023-31185	ROZCOM server framework - Misconfiguration may allow information disclosure via an unspecified request.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31185
CVE-2023-2953	A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2953
CVE-2023-32342	IBM GSKit could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial messages for decryption, an attacker could exploit this vulnerability to obtain sensitive information. IBM X-Force ID: 255828.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32342
CVE-2023-33740	Incorrect access control in luowice v3.5.18 allows attackers to access cloud source code information via modification fo the Verify parameter in a warning message.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33740
CVE-2023-33741	Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33741
CVE-2023-29740	An issue found in Alarm Clock for Heavy Sleepers v.5.3.2 for Android allows unauthorized apps to cause a denial of service attack by manipulating the database.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29740
CVE-2023-29743	An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause a persistent denial of service attack by manipulating the database.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29743
CVE-2021-31233	SQL Injection vulnerability found in Fighting Cock Information System v.1.0 allows a remote attacker to obtain sensitive information via the edit_breed.php parameter.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2021-31233
CVE-2023-33507	KramerAV VIA GO² < 4.0.1.1326 is vulnerable to Unauthenticated arbitrary file read.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33507
CVE-2023-34227	In JetBrains TeamCity before 2023.05 a specific endpoint was vulnerable to brute force attacks	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-34227
CVE-2022-35748	HTTP.sys Denial of Service Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35748
CVE-2022-35742	Microsoft Outlook Denial of Service Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35742
CVE-2023-30602	Hitron Technologies CODA-5310’s Telnet function transfers sensitive data in plaintext. An unauthenticated remote attacker can exploit this vulnerability to access credentials of normal users and administrator.	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-30602
CVE-2023-33143	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	7.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33143
CVE-2023-33983	The Introduction Client in Briar through 1.5.3 does not implement out-of-band verification for the public keys of introducees. An introducer can launch man-in-the-middle attacks against later private communication between two introduced parties.	7.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33983
CVE-2023-25599	A vulnerability in the conferencing component of Mitel MiVoice Connect through 19.3 SP2 and 20.x, 21.x, and 22.x through 22.24.1500.0 could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the test_presenter.php page. A successful exploit could allow an attacker to execute arbitrary scripts.	7.4	https://nvd.nist.gov/vuln/detail/CVE-2023-25599
CVE-2023-33291	In ebankIT 6, the public endpoints /public/token/Email/generate and /public/token/SMS/generate allow generation of OTP messages to any e-mail address or phone number without validation. (It cannot be exploited with e-mail addresses or phone numbers that are registered in the application.)	7.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33291
CVE-2023-28348	An issue was discovered in Faronics Insight 10.0.19045 on Windows. A suitably positioned attacker could perform a man-in-the-middle attack on either a connected student or teacher, enabling them to intercept student keystrokes or modify executable files being sent from teachers to students.	7.4	https://nvd.nist.gov/vuln/detail/CVE-2023-28348
CVE-2019-14866	In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting archive may contain files with permissions the attacker did not have or in paths he did not have access to. Extracting those archives from a high-privilege user without carefully reviewing them may lead to the compromise of the system.	7.3	https://nvd.nist.gov/vuln/detail/CVE-2019-14866
CVE-2022-33631	Microsoft Excel Security Feature Bypass Vulnerability	7.3	https://nvd.nist.gov/vuln/detail/CVE-2022-33631
CVE-2022-35793	Windows Print Spooler Elevation of Privilege Vulnerability	7.3	https://nvd.nist.gov/vuln/detail/CVE-2022-35793
CVE-2023-30382	A buffer overflow in the component hl.exe of Valve Half-Life up to 5433873 allows attackers to execute arbitrary code and escalate privileges by supplying crafted parameters.	7.3	https://nvd.nist.gov/vuln/detail/CVE-2023-30382
CVE-2023-28080	\nPowerPath for Windows, versions 7.0, 7.1 & 7.2 contains DLL Hijacking Vulnerabilities. A regular user (non-admin) can exploit these issues to potentially escalate privileges and execute arbitrary code in the context of NT AUTHORITY\\SYSTEM.\n\n	7.3	https://nvd.nist.gov/vuln/detail/CVE-2023-28080
CVE-2023-28346	An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for a remote attacker to communicate with the private API endpoints exposed at /login, /consoleSettings, /console, etc. despite Virtual Host Routing being used to block this access. Remote attackers can interact with private pages on the web server, enabling them to perform privileged actions such as logging into the console and changing console settings if they have valid credentials.	7.3	https://nvd.nist.gov/vuln/detail/CVE-2023-28346
CVE-2022-35755	Windows Print Spooler Elevation of Privilege Vulnerability	7.3	https://nvd.nist.gov/vuln/detail/CVE-2022-35755
CVE-2022-35757	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability	7.3	https://nvd.nist.gov/vuln/detail/CVE-2022-35757
CVE-2022-35772	Azure Site Recovery Remote Code Execution Vulnerability	7.2	https://nvd.nist.gov/vuln/detail/CVE-2022-35772
CVE-2022-35824	Azure Site Recovery Remote Code Execution Vulnerability	7.2	https://nvd.nist.gov/vuln/detail/CVE-2022-35824
CVE-2023-29084	Zoho ManageEngine ADManager Plus through 7180 allows for authenticated users to exploit command injection via Proxy settings.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-29084
CVE-2023-20878	VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-20878
CVE-2023-25183	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nIn Snap One OvrC Pro versions prior to 7.2, when logged into the superuser account, a new functionality appears that could allow users to execute arbitrary commands on the hub device.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-25183
CVE-2023-31741	There is a command injection vulnerability in the Linksys E2000 router with firmware version 1.0.06. If an attacker gains web management privileges, they can inject commands into the post request parameters wl_ssid, wl_ant, wl_rate, WL_atten_ctl, ttcp_num, ttcp_size in the httpd s Start_EPI() function, thereby gaining shell privileges.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-31741
CVE-2023-31460	A vulnerability in the Connect Mobility Router component of MiVoice Connect versions 9.6.2208.101 and earlier could allow an authenticated attacker with internal network access to conduct a command injection attack due to insufficient restriction on URL parameters.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-31460
CVE-2023-26216	The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable vulnerability that allows an attacker to upload files to a directory accessible by the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below.\n\n	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-26216
CVE-2023-33440	Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33440
CVE-2023-32317	Autolab is a course management service that enables auto-graded programming assignments. A Tar slip vulnerability was found in the MOSS cheat checker functionality of Autolab. To exploit this vulnerability an authenticated attacker with instructor permissions needs to upload a specially crafted Tar file. Both "Base File Tar" and "Additional file archive" can be fed with Tar files that contain paths outside their target directories (e.g., `../../../../tmp/tarslipped2.sh`). When the MOSS cheat checker is started the files inside of the archives are expanded to the attacker-chosen locations. This issue may lead to arbitrary file write within the scope of the running process. This issue has been addressed in version 2.11.0. Users are advised to upgrade.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-32317
CVE-2023-32676	Autolab is a course management service that enables auto-graded programming assignments. A Tar slip vulnerability was found in the Install assessment functionality of Autolab. To exploit this vulnerability an authenticated attacker with instructor permissions needs to upload a specially crafted Tar file. Using the install assessment functionality an attacker can feed a Tar file that contain files with paths pointing outside of the target directory (e.g., `../../../../tmp/tarslipped1.sh`). When the Install assessment form is submitted the files inside of the archives are expanded to the attacker-chosen locations. This issue has been addressed in version 2.11.0. Users are advised to upgrade.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-32676
CVE-2022-24628	An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is authenticated SQL injection in the id parameter of IPPhoneFirmwareEdit.php.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2022-24628
CVE-2022-24630	An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. BrowseFiles.php allows a ?cmd=ssh POST request with an ssh_command field that is executed.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2022-24630
CVE-2023-27988	The post-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.13)C0 could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device remotely.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-27988
CVE-2023-0329	The Elementor Website Builder WordPress plugin before 3.12.2 does not properly sanitize and escape the Replace URL parameter in the Tools module before using it in a SQL statement, leading to a SQL injection exploitable by users with the Administrator role.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-0329
CVE-2023-33234	Arbitrary code execution in Apache Airflow CNCF Kubernetes provider version 5.0.0 allows user to change xcom sidecar image and resources via Airflow connection.\n\nIn order to exploit this weakness, a user would already need elevated permissions (Op or Admin) to change the connection object in this manner. Operators should upgrade to provider version 7.0.0 which has removed the vulnerability.\n\n	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33234
CVE-2023-2435	The Blog-in-Blog plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 1.1.1 via a shortcode attribute. This allows editor-level, and above, attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-2435
CVE-2023-33627	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateSnat interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33627
CVE-2023-33628	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelvsList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33628
CVE-2023-33629	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DeltriggerList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33629
CVE-2023-33630	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the EditvsList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33630
CVE-2023-33631	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelSTList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33631
CVE-2023-33632	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqos_lanip_dellist interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33632
CVE-2023-33633	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateWanParams interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33633
CVE-2023-33634	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33634
CVE-2023-33635	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateMacClone interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33635
CVE-2023-33636	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33636
CVE-2023-33637	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33637
CVE-2023-33638	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the Edit_BasicSSID_5G interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33638
CVE-2023-33639	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the SetMobileAPInfoById interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33639
CVE-2023-33640	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the SetAPWifiorLedInfoById interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33640
CVE-2023-33641	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the AddMacList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33641
CVE-2023-33642	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the Edit_BasicSSID interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33642
CVE-2023-33643	H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the AddWlanMacList interface at /goform/aspForm.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-33643
CVE-2022-47616	Hitron CODA-5310 has insufficient filtering for specific parameters in the connection test function. A remote attacker authenticated as an administrator, can use the management page to perform command injection attacks, to execute arbitrary system command, manipulate system or disrupt service.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2022-47616
CVE-2022-47617	Hitron CODA-5310 has hard-coded encryption/decryption keys in the program code. A remote attacker authenticated as an administrator can decrypt system files using the hard-coded keys for file access, modification, and cause service disruption.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2022-47617
CVE-2023-28703	ASUS RT-AC86U’s specific cgi function has a stack-based buffer overflow vulnerability due to insufficient validation for network packet header length. A remote attacker with administrator privileges can exploit this vulnerability to execute arbitrary system commands, disrupt system or terminate service.	7.2	https://nvd.nist.gov/vuln/detail/CVE-2023-28703
CVE-2022-34690	Windows Fax Service Elevation of Privilege Vulnerability	7.1	https://nvd.nist.gov/vuln/detail/CVE-2022-34690
CVE-2022-35822	Windows Defender Credential Guard Security Feature Bypass Vulnerability	7.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35822
CVE-2022-42855	A logic issue was addressed with improved state management. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2. An app may be able to use arbitrary entitlements.	7.1	https://nvd.nist.gov/vuln/detail/CVE-2022-42855
CVE-2022-41221	The client in OpenText Archive Center Administration through 21.2 allows XXE attacks. Authenticated users of the OpenText Archive Center Administration client (Versions 16.2.3, 21.2, and older versions) could upload XML files to the application that it did not sufficiently validate. As a result, attackers could craft XML files that, when processed by the application, would cause a negative security impact such as data exfiltration or localized denial of service against the application instance and system of the user running it.	7.1	https://nvd.nist.gov/vuln/detail/CVE-2022-41221
CVE-2023-32698	nFPM is an alternative to fpm. The file permissions on the checked-in files were not maintained. Hence, when nfpm packaged \nthe files (without extra config for enforcing it’s own permissions) files could go out with bad permissions (chmod 666 or 777). Anyone using nfpm for creating packages without checking/setting file permissions before packaging could result in bad permissions for files/folders.	7.1	https://nvd.nist.gov/vuln/detail/CVE-2023-32698
CVE-2023-28344	An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application allows unauthenticated attackers to view constantly updated screenshots of student desktops and to submit falsified screenshots on behalf of students. Attackers are able to view screenshots of student desktops without their consent. These screenshots may potentially contain sensitive/personal data. Attackers can also rapidly submit falsified images, hiding the actual contents of student desktops from the Teacher Console.	7.1	https://nvd.nist.gov/vuln/detail/CVE-2023-28344
CVE-2023-3013	Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2.	7.1	https://nvd.nist.gov/vuln/detail/CVE-2023-3013
CVE-2022-33646	Azure Batch Node Agent Elevation of Privilege Vulnerability	7	https://nvd.nist.gov/vuln/detail/CVE-2022-33646
CVE-2023-1077	In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused sched_rt_entity,causing memory corruption.	7	https://nvd.nist.gov/vuln/detail/CVE-2023-1077
CVE-2023-1989	A use-after-free flaw was found in btsdio_remove in drivers\\bluetooth\\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices.	7	https://nvd.nist.gov/vuln/detail/CVE-2023-1989
CVE-2023-1872	A use-after-free vulnerability in the Linux Kernel io_uring system can be exploited to achieve local privilege escalation.\n\nThe io_file_get_fixed function lacks the presence of ctx->uring_lock which can lead to a Use-After-Free vulnerability due a race condition with fixed files getting unregistered.\n\nWe recommend upgrading past commit da24142b1ef9fd5d36b76e36bab328a5b27523e8.\n\n	7	https://nvd.nist.gov/vuln/detail/CVE-2023-1872
CVE-2022-21216	Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access.	6.8	https://nvd.nist.gov/vuln/detail/CVE-2022-21216
CVE-2022-46361	An attacker having physical access to WDM can plug USB device to gain access and execute unwanted commands. A malicious user could enter a system command along with a backup configuration, which could result in the execution of unwanted commands. This issue affects OneWireless all versions up to 322.1 and fixed in version 322.2.	6.8	https://nvd.nist.gov/vuln/detail/CVE-2022-46361
CVE-2022-4332	In Sprecher Automation SPRECON-E-C/P/T3 CPU in variant PU244x a vulnerable firmware verification has been identified. Through physical access and hardware manipulation, an attacker might be able to bypass hardware-based code verification and thus inject and execute arbitrary code and gain full access of the device.	6.8	https://nvd.nist.gov/vuln/detail/CVE-2022-4332
CVE-2023-28700	OMICARD EDM backend system’s file uploading function does not restrict upload of file with dangerous type. A local area network attacker with administrator privileges can exploit this vulnerability to upload and run arbitrary executable files to perform arbitrary system commands or disrupt service.	6.8	https://nvd.nist.gov/vuln/detail/CVE-2023-28700
CVE-2023-28772	An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2023-28772
CVE-2022-37704	Amanda 3.5.1 allows privilege escalation from the regular user backup to root. The SUID binary located at /lib/amanda/rundump will execute /usr/sbin/dump as root with controlled arguments from the attacker which may lead to escalation of privileges, denial of service, and information disclosure.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2022-37704
CVE-2022-37705	A privilege escalation flaw was found in Amanda 3.5.1 in which the backup user can acquire root privileges. The vulnerable component is the runtar SUID program, which is a wrapper to run /usr/bin/tar with specific arguments that are controllable by the attacker. This program mishandles the arguments passed to tar binary (it expects that the argument name and value are separated with a space; however, separating them with an equals sign is also supported),	6.7	https://nvd.nist.gov/vuln/detail/CVE-2022-37705
CVE-2022-28699	Improper input validation for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2022-28699
CVE-2023-20879	VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2023-20879
CVE-2020-36694	An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurrent iptables rules replacement. This could be exploited with the CAP_NET_ADMIN capability in an unprivileged namespace. NOTE: cc00bca was reverted in 5.12.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2020-36694
CVE-2023-32318	Nextcloud server provides a home for data. A regression in the session handling between Nextcloud Server and the Nextcloud Text app prevented a correct destruction of the session on logout if cookies were not cleared manually. After successfully authenticating with any other account the previous session would be continued and the attacker would be authenticated as the previously logged in user. It is recommended that the Nextcloud Server is upgraded to 25.0.6 or 26.0.1.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2023-32318
CVE-2022-45853	The privilege escalation vulnerability in the Zyxel GS1900-8 firmware version \n\nV2.70(AAHH.3) and the GS1900-8HP firmware version V2.70(AAHI.3) could allow an authenticated, local attacker with administrator privileges to execute some system commands as 'root' on a vulnerable device via SSH.	6.7	https://nvd.nist.gov/vuln/detail/CVE-2022-45853
CVE-2022-35754	Unified Write Filter Elevation of Privilege Vulnerability	6.7	https://nvd.nist.gov/vuln/detail/CVE-2022-35754
CVE-2021-3782	An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int; on LP64 systems this can cause the reference count to overflow if the client creates a large number of wl_shm buffer objects, or if it can coerce the server to create a large number of external references to the buffer storage. With the reference count overflowing, a use-after-free can be constructed on the wl_shm_pool tracking structure, where values may be incremented or decremented; it may also be possible to construct a limited oracle to leak 4 bytes of server-side memory to the attacking client at a time.	6.6	https://nvd.nist.gov/vuln/detail/CVE-2021-3782
CVE-2018-3073	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2018-3073
CVE-2018-3137	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2018-3137
CVE-2018-3145	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2018-3145
CVE-2018-3182	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2018-3182
CVE-2018-3203	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2018-3203
CVE-2019-2746	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Data Dictionary). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2019-2746
CVE-2022-30134	Microsoft Exchange Server Information Disclosure Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-30134
CVE-2022-35775	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35775
CVE-2022-35780	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35780
CVE-2022-35781	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35781
CVE-2022-35782	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35782
CVE-2022-35784	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35784
CVE-2022-35785	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35785
CVE-2022-35786	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35786
CVE-2022-35788	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35788
CVE-2022-35789	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35789
CVE-2022-35790	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35790
CVE-2022-35791	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35791
CVE-2022-35799	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35799
CVE-2022-35801	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35801
CVE-2022-35807	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35807
CVE-2022-35808	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35808
CVE-2022-35809	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35809
CVE-2022-35810	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35810
CVE-2022-35811	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35811
CVE-2022-35813	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35813
CVE-2022-35814	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35814
CVE-2022-35815	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35815
CVE-2022-35816	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35816
CVE-2022-35817	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35817
CVE-2022-35818	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35818
CVE-2022-35819	Azure Site Recovery Elevation of Privilege Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35819
CVE-2022-29832	Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users could obtain information about the project file for MELSEC safety CPU modules or project file for MELSEC Q/FX/L series with security setting.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29832
CVE-2022-29833	Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users could access to MELSEC safety CPU modules illgally.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-29833
CVE-2022-47015	MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-47015
CVE-2023-26043	GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. GeoNode is vulnerable to an XML External Entity (XXE) injection in the style upload functionality of GeoServer leading to Arbitrary File Read. This issue has been patched in version 4.0.3.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-26043
CVE-2023-28488	client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating the connman process.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-28488
CVE-2023-28856	Redis is an open source, in-memory database that persists on disk. Authenticated users can use the `HINCRBYFLOAT` command to create an invalid hash field that will crash Redis on access in affected versions. This issue has been addressed in in versions 7.0.11, 6.2.12, and 6.0.19. Users are advised to upgrade. There are no known workarounds for this issue.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-28856
CVE-2023-28484	In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-28484
CVE-2023-29469	An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29469
CVE-2023-1972	A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-1972
CVE-2023-26595	Denial-of-service (DoS) vulnerability in Message of Cybozu Garoon 4.10.0 to 5.9.2 allows a remote authenticated attacker to cause a denial of service condition.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-26595
CVE-2021-25748	A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization of the `spec.rules[].http.paths[].path` field of an Ingress object (in the `networking.k8s.io` or `extensions` API group) to obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2021-25748
CVE-2023-33981	Briar before 1.4.22 allows attackers to spoof other users' messages in a blog, forum, or private group, but each spoofed message would need to be an exact duplicate of a legitimate message displayed alongside the spoofed one.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33981
CVE-2022-30025	SQL injection in "/Framewrk/Home.jsp" file (POST method) in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-30025
CVE-2023-22504	Affected versions of Atlassian Confluence Server allow remote attackers who have read permissions to a page, but not write permissions, to upload attachments via a Broken Access Control vulnerability in the attachments feature.\n\nThe affected versions are before version 7.19.9.\n\nThis vulnerability was discovered by Rojan Rijal of the Tinder Security Engineering Team.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-22504
CVE-2023-26215	The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that allows an attacker with low-privileged application access to read system files that are accessible to the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below.\n\n	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-26215
CVE-2023-2804	A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2_merged_upsample_internal() function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could craft a 12-bit lossless JPEG image that contains out-of-range 12-bit samples. An application attempting to decompress such image using merged upsampling would lead to segmentation fault or buffer overflows, causing an application to crash.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2804
CVE-2023-2901	A vulnerability was found in NFine Rapid Development Platform 20230511. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /SystemManage/User/GetGridJson?_search=false&nd=1680855479750&rows=50&page=1&sidx=F_CreatorTime+desc&sord=asc. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-229975. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2901
CVE-2023-2902	A vulnerability was found in NFine Rapid Development Platform 20230511. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /SystemManage/Organize/GetTreeGridJson?_search=false&nd=1681813520783&rows=10000&page=1&sidx=&sord=asc. The manipulation leads to improper access controls. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-229976. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2902
CVE-2023-31124	c-ares is an asynchronous resolver library. When cross-compiling c-ares and using the autotools build system, CARES_RANDOM_FILE will not be set, as seen when cross compiling aarch64 android. This will downgrade to using rand() as a fallback which could allow an attacker to take advantage of the lack of entropy by not using a CSPRNG. This issue was patched in version 1.19.1.\n	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31124
CVE-2023-31147	c-ares is an asynchronous resolver library. When /dev/urandom or RtlGenRandom() are unavailable, c-ares uses rand() to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand() so will generate predictable output. Input from the random number generator is fed into a non-compilant RC4 implementation and may not be as strong as the original RC4 implementation. No attempt is made to look for modern OS-provided CSPRNGs like arc4random() that is widely available. This issue has been fixed in version 1.19.1.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31147
CVE-2023-2903	A vulnerability classified as problematic has been found in NFine Rapid Development Platform 20230511. This affects an unknown part of the file /SystemManage/Role/GetGridJson?keyword=&page=1&rows=20. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-229977 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2903
CVE-2022-39374	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the same room, the malicious homeserver can trick Synapse into accepting previously rejected events into its view of the current state of that room. This can be exploited in a way that causes all further messages and state changes sent in that room from the vulnerable homeserver to be rejected. This issue has been patched in version 1.68.0\n\n	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-39374
CVE-2023-33720	mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33720
CVE-2023-1664	A flaw was found in Keycloak. This flaw depends on a non-default configuration "Revalidate Client Certificate" to be enabled and the reverse proxy is not validating the certificate before Keycloak. Using this method an attacker may choose the certificate which will be validated by the server. If this happens and the KC_SPI_TRUSTSTORE_FILE_FILE variable is missing/misconfigured, any trustfile may be accepted with the logging information of "Cannot validate client certificate trust: Truststore not available". This may not impact availability as the attacker would have no access to the server, but consumer applications Integrity or Confidentiality may be impacted considering a possible access to them. Considering the environment is correctly set to use "Revalidate Client Certificate" this flaw is avoidable.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-1664
CVE-2023-1667	A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-1667
CVE-2023-2283	A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The problem is caused by the return value `rc,` which is initialized to SSH_ERROR and later rewritten to save the return value of the function call `pki_key_check_hash_compatible.` The value of the variable is not changed between this point and the cryptographic verification. Therefore any error between them calls `goto error` returning SSH_OK.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2283
CVE-2023-2854	BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2854
CVE-2023-2855	Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2855
CVE-2023-2856	VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2856
CVE-2023-2857	BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2857
CVE-2023-2858	NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2858
CVE-2023-33187	Highlight is an open source, full-stack monitoring platform. Highlight may record passwords on customer deployments when a password html input is switched to `type="text"` via a javascript "Show Password" button. This differs from the expected behavior which always obfuscates `type="password"` inputs. A customer may assume that switching to `type="text"` would also not record this input; hence, they would not add additional `highlight-mask` css-class obfuscation to this part of the DOM, resulting in unintentional recording of a password value when a `Show Password` button is used. This issue was patched in version 6.0.0.\nThis patch tracks changes to the `type` attribute of an input to ensure an input that used to be a `type="password"` continues to be obfuscated. \n	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33187
CVE-2023-32319	Nextcloud server is an open source personal cloud implementation. Missing brute-force protection on the WebDAV endpoints via the basic auth header allowed to brute-force user credentials when the provided user name was not an email address. Users from version 24.0.0 onward are affected. This issue has been addressed in releases 24.0.11, 25.0.5 and 26.0.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32319
CVE-2023-2926	A vulnerability was found in SeaCMS 11.6 and classified as problematic. This issue affects some unknown processing of the file member.php of the component Picture Upload Handler. The manipulation of the argument oldpic leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-230081 was assigned to this vulnerability.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2926
CVE-2023-24603	OX App Suite before backend 7.10.6-rev37 does not check size limits when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of data.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-24603
CVE-2023-32687	tgstation-server is a toolset to manage production BYOND servers. Starting in version 4.7.0 and prior to 5.12.1, instance users with the list chat bots permission can read chat bot connections strings without the associated permission. This issue is patched in version 5.12.1. As a workaround, remove the list chat bots permission from users that should not have the ability to view connection strings. Invalidate any credentials previously stored for safety.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32687
CVE-2023-2970	A vulnerability classified as problematic was found in MindSpore 2.0.0-alpha/2.0.0-rc1. This vulnerability affects the function JsonHelper::UpdateArray of the file mindspore/ccsrc/minddata/dataset/util/json_helper.cc. The manipulation leads to memory corruption. The name of the patch is 30f4729ea2c01e1ed437ba92a81e2fc098d608a9. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-230176.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2970
CVE-2023-1524	The Download Manager WordPress plugin before 3.2.71 does not adequately validate passwords for password-protected files. Upon validation, a master key is generated and exposed to the user, which may be used to download any password-protected file on the server, allowing a user to download any file with the knowledge of any one file's password.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-1524
CVE-2022-43485	\nUse of Insufficiently Random Values in Honeywell OneWireless. This vulnerability may allow attacker to manipulate claims in client's JWT token. This issue affects OneWireless version 322.1	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-43485
CVE-2023-32689	Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Versions prior to 5.4.4 and 6.1.1 are vulnerable to a phishing attack vulnerability that involves a user uploading malicious files. A malicious user could upload an HTML file to Parse Server via its public API. That HTML file would then be accessible at the internet domain at which Parse Server is hosted. The URL of the the uploaded HTML could be shared for phishing attacks. The HTML page may seem legitimate because it is served under the internet domain where Parse Server is hosted, which may be the same as a company's official website domain.\n\nAn additional security issue arises when the Parse JavaScript SDK is used. The SDK stores sessions in the internet browser's local storage, which usually restricts data access depending on the internet domain. A malicious HTML file could contain a script that retrieves the user's session token from local storage and then share it with the attacker.\n\nThe fix included in versions 5.4.4 and 6.1.1 adds a new Parse Server option `fileUpload.fileExtensions` to restrict file upload on Parse Server by file extension. It is recommended to restrict file upload for HTML file extensions, which this fix disables by default. If an app requires upload of files with HTML file extensions, the option can be set to `['.*']` or another custom value to override the default.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32689
CVE-2023-32699	MeterSphere is an open source continuous testing platform. Version 2.9.1 and prior are vulnerable to denial of service. ?The `checkUserPassword` method is used to check whether the password provided by the user matches the password saved in the database, and the `CodingUtil.md5` method is used to encrypt the original password with MD5 to ensure that the password will not be saved in plain text when it is stored. If a user submits a very long password when logging in, the system will be forced to execute the long password MD5 encryption process, causing the server CPU and memory to be exhausted, thereby causing a denial of service attack on the server. This issue is fixed in version 2.10.0-lts with a maximum password length.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32699
CVE-2023-31187	Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31187
CVE-2023-33178	Xibo is a content management system (CMS). An SQL injection vulnerability was discovered in the `/dataset/data/{id}` API route inside the CMS starting in version 1.4.0 and prior to versions 2.3.17 and 3.3.5. This allows an authenticated user to exfiltrate data from the Xibo database by injecting specially crafted values in to the `filter` parameter. Values allowed in the filter parameter are checked against a deny list of commands that should not be allowed, however this checking was done in a case sensitive manor and so it is possible to bypass these checks by using unusual case combinations. Users should upgrade to version 2.3.17 or 3.3.5, which fix this issue. There are no workarounds aside from upgrading.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33178
CVE-2023-33179	Xibo is a content management system (CMS). An SQL injection vulnerability was discovered starting in version 3.2.0 and prior to version 3.3.5 in the `nameFilter` function used throughout the CMS. This allows an authenticated user to exfiltrate data from the Xibo database by injecting specially crafted values for logical operators. Users should upgrade to version 3.3.5 which fixes this issue. There are no known workarounds aside from upgrading.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33179
CVE-2023-33180	Xibo is a content management system (CMS). An SQL injection vulnerability was discovered starting in version 3.2.0 and prior to version 3.3.2 in the `/display/map` API route inside the CMS. This allows an authenticated user to exfiltrate data from the Xibo database by injecting specially crafted values in to the `bounds` parameter. Users should upgrade to version 3.3.5, which fixes this issue. There are no known workarounds aside from upgrading.	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33180
CVE-2023-2940	Inappropriate implementation in Downloads in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2940
CVE-2023-2952	XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file	6.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2952
CVE-2022-35759	Windows Local Security Authority (LSA) Denial of Service Vulnerability	6.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35759
CVE-2023-31130	c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1.\n	6.4	https://nvd.nist.gov/vuln/detail/CVE-2023-31130
CVE-2023-28153	An issue was discovered in the Kiddoware Kids Place Parental Control application before 3.8.50 for Android. The child can remove all restrictions temporarily without the parents noticing by rebooting into Android Safe Mode and disabling the "Display over other apps" permission.	6.4	https://nvd.nist.gov/vuln/detail/CVE-2023-28153
CVE-2022-35776	Azure Site Recovery Denial of Service Vulnerability	6.2	https://nvd.nist.gov/vuln/detail/CVE-2022-35776
CVE-2015-9306	The wp-ultimate-csv-importer plugin before 3.8.1 for WordPress has XSS.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2015-9306
CVE-2022-35797	Windows Hello Security Feature Bypass Vulnerability	6.1	https://nvd.nist.gov/vuln/detail/CVE-2022-35797
CVE-2023-0527	A vulnerability was found in PHPGurukul Online Security Guards Hiring System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file search-request.php. The manipulation of the argument searchdata with the input ">--redacted-- leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-219596	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-0527
CVE-2022-41330	An improper neutralization of input during web page generation vulnerability ('Cross-site Scripting') [CWE-79] in Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.9, version 6.4.0 through 6.4.11 and before 6.2.12 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an unauthenticated attacker to perform an XSS attack via crafted HTTP GET requests.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2022-41330
CVE-2023-30394	Progress Ipswitch MoveIT 1.1.11 was discovered to contain a cross-site scripting (XSS) vulenrability via the API authentication function.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-30394
CVE-2023-30868	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Jon Christopher CMS Tree Page View plugin <= 1.6.7 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-30868
CVE-2023-31245	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nDevices using Snap One OvrC cloud are sent to a web address when accessing a web management interface using a HTTP connection. Attackers could impersonate a device and supply malicious information about the device’s web server interface. By supplying malicious parameters, an attacker could redirect the user to arbitrary and dangerous locations on the web.\n\n\n\n\n\n\n\n\n\n\n\n\n\n	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-31245
CVE-2023-2862	A vulnerability, which was classified as problematic, was found in SiteServer CMS up to 7.2.1. Affected is an unknown function of the file /api/stl/actions/search. The manipulation of the argument ajaxDivId leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. VDB-229818 is the identifier assigned to this vulnerability.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2862
CVE-2023-33938	Cross-site scripting (XSS) vulnerability in the App Builder module's custom object details page in Liferay Portal 7.3.0 through 7.4.0, and Liferay DXP 7.3 before update 14 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an App Builder custom object's `Name` field.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33938
CVE-2023-33941	Multiple cross-site scripting (XSS) vulnerabilities in the Plugin for OAuth 2.0 module's OAuth2ProviderApplicationRedirect class in Liferay Portal 7.4.3.41 through 7.4.3.52, and Liferay DXP 7.4 update 41 through 52 allow remote attackers to inject arbitrary web script or HTML via the (1) code, or (2) error parameter.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33941
CVE-2023-33944	Cross-site scripting (XSS) vulnerability in Layout module in Liferay Portal 7.3.4 through 7.4.3.68, and Liferay DXP 7.3 before update 24, and 7.4 before update 69 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a container type layout fragment's `URL` text field.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33944
CVE-2023-25598	A vulnerability in the conferencing component of Mitel MiVoice Connect through 19.3 SP2 and 20.x, 21.x, and 22.x through 22.24.1500.0 could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the home.php page. A successful exploit could allow an attacker to execute arbitrary scripts.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-25598
CVE-2022-46907	A carefully crafted request on several JSPWiki plugins could trigger an XSS vulnerability on Apache JSPWiki, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim. Apache JSPWiki users should upgrade to 2.12.0 or later.\n	6.1	https://nvd.nist.gov/vuln/detail/CVE-2022-46907
CVE-2023-28370	Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-28370
CVE-2022-45366	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Jason Crouse, VeronaLabs Slimstat Analytics plugin <= 5.0.4 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2022-45366
CVE-2023-25439	Stored Cross Site Scripting (XSS) vulnerability in Square Pig FusionInvoice 2023-1.0, allows attackers to execute arbitrary code via the description or content fields to the expenses, tasks, and customer details.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-25439
CVE-2023-29098	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ArtistScope CopySafe Web Protection plugin <= 3.13 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-29098
CVE-2023-20868	NSX-T contains a reflected cross-site scripting vulnerability due to a lack of input validation. A remote attacker can inject HTML or JavaScript to redirect to malicious pages.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-20868
CVE-2023-32681	Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirected to an HTTPS endpoint. This is a product of how we use `rebuild_proxies` to reattach the `Proxy-Authorization` header to requests. For HTTP connections sent through the tunnel, the proxy will identify the header in the request itself and remove it prior to forwarding to the destination server. However when sent over HTTPS, the `Proxy-Authorization` header must be sent in the CONNECT request as the proxy has no visibility into the tunneled request. This results in Requests forwarding proxy credentials to the destination server unintentionally, allowing a malicious actor to potentially exfiltrate sensitive information. This issue has been patched in version 2.31.0.\n\n	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-32681
CVE-2023-33255	An issue was discovered in Papaya Viewer 4a42701. User-supplied input in form of DICOM or NIFTI images can be loaded into the Papaya web application without any kind of sanitization. This allows injection of arbitrary JavaScript code into image metadata, which is executed when that metadata is displayed in the Papaya web application	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33255
CVE-2023-32325	PostHog-js is a library to interface with the PostHog analytics tool. Versions prior to 1.57.2 have the potential for cross-site scripting. Problem has been patched in 1.57.2. Users are advised to upgrade. Users unable to upgrade should ensure that their Content Security Policy is in place.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-32325
CVE-2023-33195	Craft is a CMS for creating custom digital experiences on the web. A malformed RSS feed can deliver an XSS payload. This issue was patched in version 4.4.6.\n\n\n	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33195
CVE-2023-2922	A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230076.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2922
CVE-2023-2948	Cross-site Scripting (XSS) - Generic in GitHub repository openemr/openemr prior to 7.0.1.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2948
CVE-2023-2949	Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.1.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2949
CVE-2023-33309	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Awesome Motive Duplicator Pro plugin <= 4.5.11 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33309
CVE-2023-33326	Unauth. Reflected (XSS) Cross-Site Scripting (XSS) vulnerability in EventPrime plugin <= 2.8.6 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33326
CVE-2023-32800	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in One Rank Math SEO PRO plugin <= 3.0.35 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-32800
CVE-2023-33319	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Follow-Up Emails (AutomateWoo) plugin <= 4.9.40 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33319
CVE-2023-33332	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce Product Vendors plugin <= 2.1.76 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33332
CVE-2023-24601	OX App Suite before frontend 7.10.6-rev24 allows XSS via a non-app deeplink such as the jslob API's registry sub-tree.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-24601
CVE-2023-24602	OX App Suite before frontend 7.10.6-rev24 allows XSS via data to the Tumblr portal widget, such as a post title.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-24602
CVE-2023-27613	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in MonitorClick Forms Ada – Form Builder plugin <= 1.0 versions.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-27613
CVE-2023-33186	Zulip is an open-source team collaboration tool with unique topic-based threading that combines the best of email and chat to make remote work productive and delightful. The main development branch of Zulip Server from May 2, 2023 and later, including beta versions 7.0-beta1 and 7.0-beta2, is vulnerable to a cross-site scripting vulnerability in tooltips on the message feed. An attacker who can send messages could maliciously craft a topic for the message, such that a victim who hovers the tooltip for that topic in their message feed triggers execution of JavaScript code controlled by the attacker.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33186
CVE-2023-0733	The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-0733
CVE-2023-2023	The Custom 404 Pro WordPress plugin before 3.7.3 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2023
CVE-2023-2256	The Product Addons & Fields for WooCommerce WordPress plugin before 32.0.7 does not sanitize and escape some URL parameters, leading to Reflected Cross-Site Scripting.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2256
CVE-2023-2296	The Loginizer WordPress plugin before 1.7.9 does not escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2296
CVE-2023-2518	The Easy Forms for Mailchimp WordPress plugin through 6.8.8 does not sanitise and escape a parameter before outputting it back in the page when the debug option is enabled, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2518
CVE-2023-2973	A vulnerability, which was classified as problematic, has been found in SourceCodester Students Online Internship Timesheet Syste 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=save_company. The manipulation of the argument name with the input --redacted-- leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230204	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2973
CVE-2023-2981	A vulnerability, which was classified as problematic, has been found in Abstrium Pydio Cells 4.2.0. This issue affects some unknown processing of the component Chat. The manipulation leads to basic cross site scripting. The attack may be initiated remotely. Upgrading to version 4.2.1 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-230213 was assigned to this vulnerability.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2981
CVE-2023-20884	VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-20884
CVE-2023-23754	An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-23754
CVE-2023-32218	Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-32218
CVE-2023-33962	JStachio is a type-safe Java Mustache templating engine. Prior to version 1.0.1, JStachio fails to escape single quotes `'` in HTML, allowing an attacker to inject malicious code. This vulnerability can be exploited by an attacker to execute arbitrary JavaScript code in the context of other users visiting pages that use this template engine. This can lead to various consequences, including session hijacking, defacement of web pages, theft of sensitive information, or even the propagation of malware.\n\nVersion 1.0.1 contains a patch for this issue. To mitigate this vulnerability, the template engine should properly escape special characters, including single quotes. Common practice is to escape `'` as `&#39`. As a workaround, users can avoid this issue by using only double quotes `"` for HTML attributes.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-33962
CVE-2023-2998	Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2998
CVE-2023-2999	Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-2999
CVE-2014-125103	A vulnerability was found in BestWebSoft Twitter Plugin up to 1.3.2 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function twttr_settings_page of the file twitter.php. The manipulation of the argument twttr_url_twitter/bws_license_key/bws_license_plugin leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.3.7 is able to address this issue. The name of the patch is e04d59ab578316ffeb204cf32dc71c0d0e1ff77c. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230155.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2014-125103
CVE-2015-10107	A vulnerability was found in Simplr Registration Form Plus+ Plugin up to 2.3.4 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 2.3.5 is able to address this issue. The name of the patch is d588446844dd49232ab400ef213ff5b92121c33e. It is recommended to upgrade the affected component. The identifier VDB-230153 was assigned to this vulnerability.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2015-10107
CVE-2023-3005	A vulnerability, which was classified as problematic, was found in SourceCodester Local Service Search Engine Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=save_area of the component POST Parameter Handler. The manipulation of the argument area with the input --redacted-- leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-230349 was assigned to this vulnerability	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-3005
CVE-2023-34222	In JetBrains TeamCity before 2023.05 possible XSS in the Plugin Vendor URL was possible	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-34222
CVE-2023-34226	In JetBrains TeamCity before 2023.05 reflected XSS in the Subscriptions page was possible	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-34226
CVE-2023-3014	A vulnerability, which was classified as problematic, was found in BeipyVideoResolution up to 2.6. Affected is an unknown function of the file admin/admincore.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-230358 is the identifier assigned to this vulnerability.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-3014
CVE-2023-3020	Cross-site Scripting (XSS) - Reflected in GitHub repository mkucej/i-librarian-free prior to 5.10.4.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-3020
CVE-2023-3026	Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio prior to 21.2.8.	6.1	https://nvd.nist.gov/vuln/detail/CVE-2023-3026
CVE-2022-34709	Windows Defender Credential Guard Security Feature Bypass Vulnerability	6	https://nvd.nist.gov/vuln/detail/CVE-2022-34709
CVE-2022-32577	Improper input validation in BIOS Firmware for some Intel(R) NUC Kits before version PY0081 may allow a privileged user to potentially enable information disclosure or denial of service via local access	6	https://nvd.nist.gov/vuln/detail/CVE-2022-32577
CVE-2022-34716	.NET Spoofing Vulnerability	5.9	https://nvd.nist.gov/vuln/detail/CVE-2022-34716
CVE-2023-23520	A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. A user may be able to read arbitrary files as root.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-23520
CVE-2023-27536	An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously established connections with incorrect user permissions due to a failure to check for changes in the CURLOPT_GSSAPI_DELEGATION option. This vulnerability affects krb5/kerberos/negotiate/GSSAPI transfers and could potentially result in unauthorized access to sensitive information. The safest option is to not reuse connections if the CURLOPT_GSSAPI_DELEGATION option has been changed.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-27536
CVE-2023-33982	Bramble Handshake Protocol (BHP) in Briar before 1.5.3 is not forward secure: eavesdroppers can decrypt network traffic between two accounts if they later compromise both accounts. NOTE: the eavesdropping is typically impractical because BHP runs over an encrypted session that uses the Tor hidden service protocol.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-33982
CVE-2023-20882	In Cloud foundry routing release versions from 0.262.0 and prior to 0.266.0,a bug in the gorouter process can lead to a denial of service of applications hosted on Cloud Foundry. Under the right circumstances, when client connections are closed prematurely, gorouter marks the currently selected backend as failed and removes it from the routing pool.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-20882
CVE-2023-28320	A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time. If it is built to use the synchronous resolver, it allows name resolves to time-out slow operations using `alarm()` and `siglongjmp()`. When doing this, libcurl used a global buffer that was not mutex protected and a multi-threaded application might therefore crash or otherwise misbehave.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-28320
CVE-2020-29547	An issue was discovered in Citadel through webcit-926. Meddler-in-the-middle attackers can pipeline commands after POP3 STLS, IMAP STARTTLS, or SMTP STARTTLS commands, injecting cleartext commands into an encrypted user session. This can lead to credential disclosure.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2020-29547
CVE-2023-32691	gost (GO Simple Tunnel) is a simple tunnel written in golang. Sensitive secrets such as passwords, token and API keys should be compared only using a constant-time comparison function. Untrusted input, sourced from a HTTP header, is compared directly with a secret. Since this comparison is not secure, an attacker can mount a side-channel timing attack to guess the password. As a workaround, this can be easily fixed using a constant time comparing function such as `crypto/subtle`'s `ConstantTimeCompare`. \n	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-32691
CVE-2023-33974	RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. In versions 2023.01 and prior, an attacker can send multiple crafted frames to the device to trigger a race condition. The race condition invalidates assumptions about the program state and leads to an invalid memory access resulting in denial of service. This issue is patched in pull request 19679. There are no known workarounds.	5.9	https://nvd.nist.gov/vuln/detail/CVE-2023-33974
CVE-2022-35747	Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability	5.9	https://nvd.nist.gov/vuln/detail/CVE-2022-35747
CVE-2023-32348	\nTeltonika’s Remote Management System versions prior to 4.10.0 contain a virtual private network (VPN) hub feature for cross-device communication that uses OpenVPN. It connects new devices in a manner that allows the new device to communicate with all Teltonika devices connected to the VPN. The OpenVPN server also allows users to route through it. An attacker could route a connection to a remote server through the OpenVPN server, enabling them to scan and access data from other Teltonika devices connected to the VPN.\n\n	5.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32348
CVE-2022-34397	\nDell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 10.0.0.5 and below contains an authorization bypass vulnerability, allowing users to perform actions in which they are not authorized.\n\n	5.7	https://nvd.nist.gov/vuln/detail/CVE-2022-34397
CVE-2023-25780	It is identified a vulnerability of insufficient authentication in an important specific function of Status PowerBPM. A LAN attacker with normal user privilege can exploit this vulnerability to modify substitute agent to arbitrary users, resulting in serious consequence.	5.7	https://nvd.nist.gov/vuln/detail/CVE-2023-25780
CVE-2018-3195	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).	5.5	https://nvd.nist.gov/vuln/detail/CVE-2018-3195
CVE-2022-30197	Windows Kernel Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-30197
CVE-2022-34685	Azure RTOS GUIX Studio Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-34685
CVE-2022-34686	Azure RTOS GUIX Studio Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-34686
CVE-2022-34708	Windows Kernel Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-34708
CVE-2022-34710	Windows Defender Credential Guard Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-34710
CVE-2022-34712	Windows Defender Credential Guard Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-34712
CVE-2022-45869	A race condition in the x86 KVM subsystem in the Linux kernel through 6.1-rc6 allows guest OS users to cause a denial of service (host OS crash or host OS memory corruption) when nested virtualisation and the TDP MMU are enabled.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-45869
CVE-2022-46703	A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-46703
CVE-2022-0010	Insertion of Sensitive Information into Log File vulnerability in ABB QCS 800xA, ABB QCS AC450, ABB Platform Engineering Tools.\n\n\nAn attacker, who already has local access to the QCS nodes, could successfully obtain the password for a system user account. Using this information, the attacker could have the potential to exploit this vulnerability to gain control of system nodes. \n\nThis issue affects QCS 800xA: from 1.0;0 through 6.1SP2; QCS AC450: from 1.0;0 through 5.1SP2; Platform Engineering Tools: from 1.0:0 through 2.3.0.\n\n	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-0010
CVE-2023-31518	A heap use-after-free in the component CDataFileReader::GetItem of teeworlds v0.7.5 allows attackers to cause a Denial of Service (DoS) via a crafted map file.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-31518
CVE-2023-2863	A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SQLite Database. The manipulation leads to cleartext storage in a file or on disk. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-229819.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2863
CVE-2023-2870	A vulnerability was found in EnTech Monitor Asset Manager 2.9. It has been declared as problematic. Affected by this vulnerability is the function 0x80002014 of the component IoControlCode Handler. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The identifier VDB-229849 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2870
CVE-2023-2871	A vulnerability was found in FabulaTech USB for Remote Desktop 6.1.0.0. It has been rated as problematic. Affected by this issue is the function 0x220448/0x220420/0x22040c/0x220408 of the component IoControlCode Handler. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. VDB-229850 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2871
CVE-2023-2872	A vulnerability classified as problematic has been found in FlexiHub 5.5.14691.0. This affects the function 0x220088 in the library fusbhub.sys of the component IoControlCode Handler. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-229851. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2872
CVE-2023-2874	A vulnerability, which was classified as problematic, has been found in Twister Antivirus 8. This issue affects the function 0x804f2158/0x804f2154/0x804f2150/0x804f215c/0x804f2160/0x80800040/0x804f214c/0x804f2148/0x804f2144/0x801120e4/0x804f213c/0x804f2140 in the library filppd.sys of the component IoControlCode Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-229853 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2874
CVE-2023-2875	A vulnerability, which was classified as problematic, was found in eScan Antivirus 22.0.1400.2443. Affected is the function 0x22E008u in the library PROCOBSRVESX.SYS of the component IoControlCode Handler. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. VDB-229854 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-2875
CVE-2023-0459	Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We recommend upgrading beyond commit 74e19ef0ff8061ef55957c3abd71614ef0f42f47	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-0459
CVE-2023-1981	A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemon to crash.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-1981
CVE-2023-33188	Omni-notes is an open source note-taking application for Android. The Omni-notes Android app had an insufficient path validation vulnerability when displaying the details of a note received through an externally-provided intent. The paths of the note's attachments were not properly validated, allowing malicious or compromised applications in the same device to force Omni-notes to copy files from its internal storage to its external storage directory, where they would have become accessible to any component with permission to read the external storage. Updating to the newest version (6.2.7) of Omni-notes Android fixes this vulnerability.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33188
CVE-2023-32448	\nPowerPath for Windows, versions 7.0, 7.1 & 7.2 contains License Key Stored in Cleartext vulnerability. A local user with access to the installation directory can retrieve the license key of the product and use it to install and license PowerPath on different systems.\n\n	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32448
CVE-2023-29737	An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause a denial of service via the database files.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29737
CVE-2023-33656	A memory leak vulnerability exists in NanoMQ 0.17.2. The vulnerability is located in the file message.c. An attacker could exploit this vulnerability to cause a denial of service attack by causing the program to consume all available memory resources.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-33656
CVE-2022-47028	An issue discovered in Action Launcher for Android v50.5 allows an attacker to cause a denial of service via arbitary data injection to function insert.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-47028
CVE-2023-23561	Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control: authenticated users can read sensitive information.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-23561
CVE-2023-29735	An issue found in edjing Mix v.7.09.01 for Android allows a local attacker to cause a denial of service via the database files.	5.5	https://nvd.nist.gov/vuln/detail/CVE-2023-29735
CVE-2022-35758	Windows Kernel Memory Information Disclosure Vulnerability	5.5	https://nvd.nist.gov/vuln/detail/CVE-2022-35758
CVE-2021-32862	The GitHub Security Lab discovered sixteen ways to exploit a cross-site scripting vulnerability in nbconvert. When using nbconvert to generate an HTML version of a user-controllable notebook, it is possible to inject arbitrary HTML which may lead to cross-site scripting (XSS) vulnerabilities if these HTML notebooks are served by a web server (eg: nbviewer).	5.4	https://nvd.nist.gov/vuln/detail/CVE-2021-32862
CVE-2022-4829	The Show-Hide / Collapse-Expand WordPress plugin before 1.3.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2022-4829
CVE-2023-31779	Wekan v6.84 and earlier is vulnerable to Cross Site Scripting (XSS). An attacker with user privilege on kanban board can insert JavaScript code in in "Reaction to comment" feature.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-31779
CVE-2023-1209	Cross-Site Scripting (XSS) vulnerabilities exist in ServiceNow records allowing an authenticated attacker to inject arbitrary scripts.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-1209
CVE-2023-2498	The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 3.3.19 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2498
CVE-2023-33939	Cross-site scripting (XSS) vulnerability in the Modified Facet widget in Liferay Portal 7.1.0 through 7.4.3.12, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 18, 7.3 before update 4, and 7.4 before update 9 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a facet label.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33939
CVE-2023-33940	Cross-site scripting (XSS) vulnerability in IFrame type Remote Apps in Liferay Portal 7.4.0 through 7.4.3.30, and Liferay DXP 7.4 before update 31 allows remote attackers to inject arbitrary web script or HTML via the Remote App's IFrame URL.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33940
CVE-2023-33942	Cross-site scripting (XSS) vulnerability in the Web Content Display widget's article selector in Liferay Liferay Portal 7.4.3.50, and Liferay DXP 7.4 update 50 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a web content article's `Title` field.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33942
CVE-2023-33943	Cross-site scripting (XSS) vulnerability in the Account module in Liferay Portal 7.4.3.21 through 7.4.3.62, and Liferay DXP 7.4 update 21 through 62 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user's (1) First Name, (2) Middle Name, (3) Last Name, or (4) Job Title text field.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33943
CVE-2022-42225	Jumpserver 2.10.0 <= version <= 2.26.0 contains multiple stored XSS vulnerabilities because of improper filtering of user input, which can execute any javascript under admin's permission.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2022-42225
CVE-2023-33829	A stored cross-site scripting (XSS) vulnerability in Cloudogu GmbH SCM Manager v1.2 to v1.60 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description text field.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33829
CVE-2023-32694	Saleor Core is a composable, headless commerce API. Saleor's `validate_hmac_signature` function is vulnerable to timing attacks. Malicious users could abuse this vulnerability on Saleor deployments having the Adyen plugin enabled in order to determine the secret key and forge fake events, this could affect the database integrity such as marking an order as paid when it is not. This issue has been patched in versions 3.7.68, 3.8.40, 3.9.49, 3.10.36, 3.11.35, 3.12.25, and 3.13.16.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-32694
CVE-2023-33750	A stored cross-site scripting (XSS) vulnerability in mipjz v5.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description parameter at /index.php?s=/article/ApiAdminArticle/itemAdd.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33750
CVE-2023-33751	A stored cross-site scripting (XSS) vulnerability in mipjz v5.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter at /app/tag/controller/ApiAdminTagCategory.php.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33751
CVE-2023-30615	Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations . The vulnerability in allows an attacker to inject malicious scripts into the application, which are then executed when a user visits the affected locations. This can lead to unauthorized access, data theft, or other malicious activities. An attacker need to be authenticated on the application to exploit this vulnerability. The issue was patched in version 2.2.1 of iris-web. \n	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-30615
CVE-2023-33394	skycaiji v2.5.4 is vulnerable to Cross Site Scripting (XSS). Attackers can achieve backend XSS by deploying malicious JSON data.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33394
CVE-2023-2817	A post-authentication stored cross-site scripting vulnerability exists in Craft CMS versions <= 4.4.11. HTML, including script tags can be injected into field names which, when the field is added to a category or section, will trigger when users visit the Categories or Entries pages respectively.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2817
CVE-2023-33780	A stored cross-site scripting (XSS) vulnerability in TFDi Design smartCARS 3 v0.7.0 and below allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the body of news article.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33780
CVE-2023-33197	Craft is a CMS for creating custom digital experiences on the web. Cross-site scripting (XSS) can be triggered via the Update Asset Index utility. This issue has been patched in version 4.4.6.\n	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33197
CVE-2023-33185	Django-SES is a drop-in mail backend for Django. The django_ses library implements a mail backend for Django using AWS Simple Email Service. The library exports the `SESEventWebhookView class` intended to receive signed requests from AWS to handle email bounces, subscriptions, etc. These requests are signed by AWS and are verified by django_ses, however the verification of this signature was found to be flawed as it allowed users to specify arbitrary public certificates. This issue was patched in version 3.5.0.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33185
CVE-2023-33196	Craft is a CMS for creating custom digital experiences. Cross site scripting (XSS) can be triggered by review volumes. This issue has been fixed in version 4.4.7.\n\n	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33196
CVE-2023-32686	Kiwi TCMS is an open source test management system for both manual and automated testing. Kiwi TCMS allows users to upload attachments to test plans, test cases, etc. Earlier versions of Kiwi TCMS had introduced upload validators in order to prevent potentially dangerous files from being uploaded. The upload validation checks were not robust enough which left the possibility of an attacker to circumvent them and upload a potentially dangerous file. Exploiting this flaw, a combination of files could be uploaded so that they work together to circumvent the existing Content-Security-Policy and allow execution of arbitrary JavaScript in the browser. This issue has been patched in version 12.3.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-32686
CVE-2023-2925	A vulnerability, which was classified as problematic, was found in Webkul krayin crm 1.2.4. This affects an unknown part of the file /admin/contacts/organizations/edit/2 of the component Edit Person Page. The manipulation of the argument Organization leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230079. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2925
CVE-2023-2944	Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2944
CVE-2023-2945	Missing Authorization in GitHub repository openemr/openemr prior to 7.0.1.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2945
CVE-2023-28785	Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Yoast Yoast SEO: Local plugin <= 14.9 versions.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-28785
CVE-2023-33311	Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CRM Perks Contact Form Entries plugin <= 1.3.0 versions.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33311
CVE-2023-2954	Cross-site Scripting (XSS) - Stored in GitHub repository liangliangyy/djangoblog prior to master.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2954
CVE-2023-23699	Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Chris Reynolds Progress Bar plugin <= 2.2.1 versions.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-23699
CVE-2022-24631	An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is stored XSS via the ajaxTenants.php desc parameter.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2022-24631
CVE-2022-4676	The OSM WordPress plugin through 6.01 does not validate and escape some of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2022-4676
CVE-2022-36244	Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 suffers from Multiple Stored Cross-Site Scripting (XSS) vulnerabilities via Shop Beat Control Panel found at www.shopbeat.co.za controlpanel.shopbeat.co.za.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2022-36244
CVE-2022-36249	Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Bypass 2FA via APIs. For Controlpanel Lite. "After login we are directly able to use the bearer token or jsession ID to access the apis instead of entering the 2FA code. Thus, leading to bypass of 2FA on API level.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2022-36249
CVE-2023-23956	A user can supply malicious HTML and JavaScript code that will be executed in the client browser	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-23956
CVE-2023-33961	Leantime is a lean open source project management system. Starting in version 2.3.21, an authenticated user with commenting privileges can inject malicious Javascript into a comment. Once the malicious comment is loaded in the browser by a user, the malicious Javascript code executes. As of time of publication, a patch does not exist.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33961
CVE-2023-2547	The Feather Login Page plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'deleteUser' function in versions starting from 1.0.7 up to, and including, 1.1.1. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to delete the temp user generated by the plugin.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2547
CVE-2023-1661	The Display post meta, term meta, comment meta, and user meta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post metadata in versions up to, and including, 0.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-1661
CVE-2023-2304	The Favorites plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'user_favorites' shortcode in versions up to, and including, 2.3.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-2304
CVE-2023-33736	A stored cross-site scripting (XSS) vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-33736
CVE-2023-3009	Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-3009
CVE-2023-26842	A stored Cross-site scripting (XSS) vulnerability in ChurchCRM 4.5.3 allows remote attackers to inject arbitrary web script or HTML via the OptionManager.php.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-26842
CVE-2023-31548	A stored Cross-site scripting (XSS) vulnerability in the FundRaiserEditor.php component of ChurchCRM v4.5.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-31548
CVE-2023-34220	In JetBrains TeamCity before 2023.05 stored XSS in the Commit Status Publisher window was possible	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-34220
CVE-2023-34221	In JetBrains TeamCity before 2023.05 stored XSS in the Show Connection page was possible	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-34221
CVE-2023-34225	In JetBrains TeamCity before 2023.05 stored XSS in the NuGet feed page was possible	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-34225
CVE-2023-3021	Cross-site Scripting (XSS) - Stored in GitHub repository mkucej/i-librarian-free prior to 5.10.4.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-3021
CVE-2023-23954	Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Stored Cross-Site Scripting vulnerability.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-23954
CVE-2023-28705	Openfind Mail2000 has insufficient filtering special characters of email content of its content filtering function. A remote attacker can exploit this vulnerability using phishing emails that contain malicious web pages injected with JavaScript. When users access the system and open the email, it triggers an XSS (Reflected Cross-site scripting) attack.	5.4	https://nvd.nist.gov/vuln/detail/CVE-2023-28705
CVE-2018-3074	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are affected are 8.0.11 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).	5.3	https://nvd.nist.gov/vuln/detail/CVE-2018-3074
CVE-2019-2743	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are affected are 8.0.12 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).	5.3	https://nvd.nist.gov/vuln/detail/CVE-2019-2743
CVE-2022-34692	Microsoft Exchange Server Information Disclosure Vulnerability	5.3	https://nvd.nist.gov/vuln/detail/CVE-2022-34692
CVE-2023-0465	Applications that use a non-default option when verifying certificates may be\nvulnerable to an attack from a malicious CA to circumvent certain checks.\n\nInvalid certificate policies in leaf certificates are silently ignored by\nOpenSSL and other certificate policy checks are skipped for that certificate.\nA malicious CA could use this to deliberately assert invalid certificate policies\nin order to circumvent policy checking on the certificate altogether.\n\nPolicy processing is disabled by default but can be enabled by passing\nthe `-policy' argument to the command line utilities or by calling the\n`X509_VERIFY_PARAM_set1_policies()' function.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-0465
CVE-2023-0466	The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-0466
CVE-2023-27043	The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-27043
CVE-2023-32346	\nTeltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been claimed, or whether the attempt to claim a device was successful. An attacker could exploit this to create a list of the serial numbers and MAC addresses of all devices cloud-connected to the Remote Management System.\n\n	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32346
CVE-2023-28015	The HCL Domino AppDev Pack IAM service is susceptible to a User Account Enumeration vulnerability. During a failed login attempt a difference in messages could allow an attacker to determine if the user is valid or not. The attacker could use this information to focus a brute force attack on valid users.\n	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-28015
CVE-2023-30851	Cilium is a networking, observability, and security solution with an eBPF-based dataplane. This issue only impacts users who have a HTTP policy that applies to multiple `toEndpoints` AND have an allow-all rule in place that affects only one of those endpoints. In such cases, a wildcard rule will be appended to the set of HTTP rules, which could cause bypass of HTTP policies. This issue has been patched in Cilium 1.11.16, 1.12.9, and 1.13.2.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-30851
CVE-2023-2255	Improper access control in editor components of The Document Foundation LibreOffice allowed an attacker to craft a document that would cause external links to be loaded without prompt. In the affected versions of LibreOffice documents that used "floating frames" linked to external files, would load the contents of those frames without prompting the user for permission to do so. This was inconsistent with the treatment of other linked content in LibreOffice. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.7; 7.5 versions prior to 7.5.3.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2255
CVE-2023-27311	NetApp Blue XP Connector versions prior to 3.9.25 expose information via a directory listing. A new Connector architecture resolves this issue - obtaining the fix requires redeploying a fresh Connector.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-27311
CVE-2023-33199	Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the `intoto/v0.0.2` type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error message and service still continues, so the availability impact of this is minimal. This has been fixed in v1.2.0 of Rekor. Users are advised to upgrade. There are no known workarounds for this vulnerability.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33199
CVE-2023-33184	Nextcloud Mail is a mail app in Nextcloud. A blind SSRF attack allowed to send GET requests to services running in the same web server. It is recommended that the Mail app is update to version 3.02, 2.2.5 or 1.15.3.\n\n	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33184
CVE-2023-32762	An issue was discovered in Qt before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. Qt Network incorrectly parses the strict-transport-security (HSTS) header, allowing unencrypted connections to be established, even when explicitly prohibited by the server. This happens if the case used for this header does not exactly match.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32762
CVE-2023-24597	OX App Suite before frontend 7.10.6-rev24 allows the loading (without user consent) of an e-mail message's remote resources during printing.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-24597
CVE-2023-2808	Mattermost fails to normalize UTF confusable characters when determining if a preview should be generated for a hyperlink, allowing an attacker to trigger link preview on a disallowed domain using a specially crafted link.\n\n	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2808
CVE-2023-30571	Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask() call inside archive_write_disk_posix.c changes the umask of the whole process for a very short period of time; a race condition with another thread can lead to a permanent umask 0 setting. Such a race condition could lead to implicit directory creation with permissions 0777 (without the sticky bit), which means that any low-privileged local user can delete and rename files inside those directories.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-30571
CVE-2022-24632	An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is directory traversal during file download via the BrowseFiles.php view parameter.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2022-24632
CVE-2023-33955	Minio Console is the UI for MinIO Object Storage. Unicode RIGHT-TO-LEFT OVERRIDE characters can be used to mask the original filename. This issue has been patched in version 0.28.0.\n\n	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33955
CVE-2023-0443	The AnyWhere Elementor WordPress plugin before 1.2.8 discloses a Freemius Secret Key which could be used by an attacker to purchase the pro subscription using test credit card numbers without actually paying the amount. Such key has been revoked.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-0443
CVE-2022-36243	Shop Beat Solutions (pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Directory Traversal via server.shopbeat.co.za. Information Exposure Through Directory Listing vulnerability in "studio" software of Shop Beat. This issue affects: Shop Beat studio studio versions prior to 3.2.57 on arm.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2022-36243
CVE-2023-31186	Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-31186
CVE-2023-33181	Xibo is a content management system (CMS). Starting in version 3.0.0 and prior to version 3.3.5, some API routes will print a stack trace when called with missing or invalid parameters revealing sensitive information about the locations of paths that the server is using. Users should upgrade to version 3.3.5, which fixes this issue. There are no known workarounds aside from upgrading.	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33181
CVE-2023-34223	In JetBrains TeamCity before 2023.05 parameters of the "password" type from build dependencies could be logged in some cases	5.3	https://nvd.nist.gov/vuln/detail/CVE-2023-34223
CVE-2022-39335	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The Matrix Federation API allows remote homeservers to request the authorization events in a room. This is necessary so that a homeserver receiving some events can validate that those events are legitimate and permitted in their room. However, in versions of Synapse up to and including 1.68.0, a Synapse homeserver answering a query for authorization events does not sufficiently check that the requesting server should be able to access them. The issue was patched in Synapse 1.69.0. Homeserver administrators are advised to upgrade.	5	https://nvd.nist.gov/vuln/detail/CVE-2022-39335
CVE-2018-3067	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3067
CVE-2018-3075	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3075
CVE-2018-3078	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3078
CVE-2018-3079	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3079
CVE-2018-3080	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3080
CVE-2018-3170	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3170
CVE-2018-3186	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3186
CVE-2018-3212	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Information Schema). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3212
CVE-2018-3279	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3279
CVE-2018-3280	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: JSON). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3280
CVE-2018-3285	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Windows). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2018-3285
CVE-2019-2494	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2019-2494
CVE-2019-2495	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2019-2495
CVE-2019-2502	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2019-2502
CVE-2019-2747	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: GIS). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.9	https://nvd.nist.gov/vuln/detail/CVE-2019-2747
CVE-2022-35774	Azure Site Recovery Elevation of Privilege Vulnerability	4.9	https://nvd.nist.gov/vuln/detail/CVE-2022-35774
CVE-2022-35787	Azure Site Recovery Elevation of Privilege Vulnerability	4.9	https://nvd.nist.gov/vuln/detail/CVE-2022-35787
CVE-2022-35800	Azure Site Recovery Elevation of Privilege Vulnerability	4.9	https://nvd.nist.gov/vuln/detail/CVE-2022-35800
CVE-2022-35812	Azure Site Recovery Elevation of Privilege Vulnerability	4.9	https://nvd.nist.gov/vuln/detail/CVE-2022-35812
CVE-2023-2881	Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10.	4.9	https://nvd.nist.gov/vuln/detail/CVE-2023-2881
CVE-2023-2111	The Fast & Effective Popups & Lead-Generation for WordPress plugin before 2.1.4 concatenates user input into an SQL query without escaping it first in the plugin's report API endpoint, which could allow administrators in multi-site configuration to leak sensitive information from the site's database.	4.9	https://nvd.nist.gov/vuln/detail/CVE-2023-2111
CVE-2022-21979	Microsoft Exchange Server Information Disclosure Vulnerability	4.8	https://nvd.nist.gov/vuln/detail/CVE-2022-21979
CVE-2023-25781	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Sebastian Krysmanski Upload File Type Settings plugin <= 1.1 versions.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-25781
CVE-2023-33194	Craft is a CMS for creating custom digital experiences on the web.The platform does not filter input and encode output in Quick Post validation error message, which can deliver an XSS payload. Old CVE fixed the XSS in label HTML but didn’t fix it when clicking save. This issue was patched in version 4.4.6.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33194
CVE-2023-2947	Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr prior to 7.0.1.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2947
CVE-2023-33216	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in gVectors Team WooDiscuz – WooCommerce Comments woodiscuz-woocommerce-comments allows Stored XSS.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.2.9.\n\n	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33216
CVE-2023-32958	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nose Graze Novelist plugin <= 1.2.0 versions.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32958
CVE-2023-33328	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PluginOps MailChimp Subscribe Form plugin <= 4.0.9.1 versions.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33328
CVE-2023-33211	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in André Bräkling WP-Matomo Integration (WP-Piwik) plugin <= 1.0.27 versions.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-33211
CVE-2023-32072	Tuleap is an open source tool for end to end traceability of application and system developments. Tuleap Community Edition prior to version 14.8.99.60 and Tuleap Enterprise edition prior to 14.8-3 and 14.7-7, the logs of the triggered Jenkins job URLs are not properly escaped. A malicious Git administrator can setup a malicious Jenkins hook to make a victim, also a Git administrator, execute uncontrolled code. Tuleap Community Edition 14.8.99.60, Tuleap Enterprise Edition 14.8-3, and Tuleap Enterprise Edition 14.7-7 contain a patch for this issue.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-32072
CVE-2023-2113	The Autoptimize WordPress plugin before 3.1.7 does not sanitise and escape the settings imported from a previous export, allowing high privileged users (such as an administrator) to inject arbitrary javascript into the admin panel, even when the unfiltered_html capability is disabled, such as in a multisite setup.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2113
CVE-2023-2223	The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2223
CVE-2023-2470	The Add to Feedly WordPress plugin through 1.2.11 does not sanitize and escape its settings, allowing high-privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2470
CVE-2023-2436	The Blog-in-Blog plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blog_in_blog' shortcode in versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with editor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2436
CVE-2023-2836	The CRM Perks Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via form settings in versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2836
CVE-2023-34224	In JetBrains TeamCity before 2023.05 open redirect during oAuth configuration was possible	4.8	https://nvd.nist.gov/vuln/detail/CVE-2023-34224
CVE-2022-34704	Windows Defender Credential Guard Information Disclosure Vulnerability	4.7	https://nvd.nist.gov/vuln/detail/CVE-2022-34704
CVE-2023-2898	There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.	4.7	https://nvd.nist.gov/vuln/detail/CVE-2023-2898
CVE-2023-28345	An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application exposes the teacher's Console password in cleartext via an API endpoint accessible from localhost. Attackers with physical access to the Teacher Console can open a web browser, navigate to the affected endpoint and obtain the teacher's password. This enables them to log into the Teacher Console and begin trivially attacking student machines.	4.6	https://nvd.nist.gov/vuln/detail/CVE-2023-28345
CVE-2020-10732	A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and exfiltrate private kernel data.	4.4	https://nvd.nist.gov/vuln/detail/CVE-2020-10732
CVE-2022-35783	Azure Site Recovery Elevation of Privilege Vulnerability	4.4	https://nvd.nist.gov/vuln/detail/CVE-2022-35783
CVE-2022-35821	Azure Sphere Information Disclosure Vulnerability	4.4	https://nvd.nist.gov/vuln/detail/CVE-2022-35821
CVE-2022-31477	Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.	4.4	https://nvd.nist.gov/vuln/detail/CVE-2022-31477
CVE-2023-1711	A vulnerability exists in a FOXMAN-UN and UNEM logging component, it only affects systems that use remote authentication to the network elements. \nIf exploited an attacker could obtain confidential information.\n\n\n\nList of CPEs:\n * cpe:2.3:a:hitachienergy:foxman_un:R9C:::::::\n cpe:2.3:a:hitachienergy:foxman_un:R10C:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R11A:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R11B:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R14A:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R14B:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R15A:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R15B:::::::\n\n cpe:2.3:a:hitachienergy:foxman_un:R16A:::::::\n\n \n * cpe:2.3:a:hitachienergy:unem:R9C:::::::\n cpe:2.3:a:hitachienergy: unem :R10C:::::::\n\n cpe:2.3:a:hitachienergy: unem :R11A:::::::\n\n cpe:2.3:a:hitachienergy: unem :R11B:::::::\n\n cpe:2.3:a:hitachienergy: unem :R14A:::::::\n\n cpe:2.3:a:hitachienergy: unem :R14B:::::::\n\n cpe:2.3:a:hitachienergy: unem :R15A:::::::\n\n cpe:2.3:a:hitachienergy: unem :R15B:::::::\n\n cpe:2.3:a:hitachienergy: unem :R16A:::::::*\n\n\n	4.4	https://nvd.nist.gov/vuln/detail/CVE-2023-1711
CVE-2018-3286	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).	4.3	https://nvd.nist.gov/vuln/detail/CVE-2018-3286
CVE-2022-46705	A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, Safari 16.2. Visiting a malicious website may lead to address bar spoofing.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2022-46705
CVE-2023-1204	An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A user could use an unverified email as a public email and commit email by sending a specifically crafted request on user update settings.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-1204
CVE-2023-32996	A missing permission check in Jenkins SAML Single Sign On(SSO) Plugin 2.0.0 and earlier allows attackers with Overall/Read permission to send an HTTP POST request with JSON body containing attacker-specified content, to miniOrange's API for sending emails.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32996
CVE-2023-32999	A missing permission check in Jenkins AppSpider Plugin 1.0.15 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL and send an HTTP POST request with a JSON payload consisting of attacker-specified credentials.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32999
CVE-2023-33264	In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, configuration routines don't mask passwords in the member configuration properly. This allows Hazelcast Management Center users to view some of the secrets.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33264
CVE-2023-27304	Operation restriction bypass vulnerability in Message and Bulletin of Cybozu Garoon 4.6.0 to 5.9.2 allows a remote authenticated attacker to alter the data of Message and/or Bulletin.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-27304
CVE-2023-33946	The Object module in Liferay Portal 7.4.3.4 through 7.4.3.48, and Liferay DXP 7.4 before update 49 does properly isolate objects in difference virtual instances, which allows remote authenticated users in one virtual instance to view objects in a different virtual instance via OAuth 2 scope administration page.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33946
CVE-2023-33947	The Object module in Liferay Portal 7.4.3.4 through 7.4.3.60, and Liferay DXP 7.4 before update 61 does not segment object definition by virtual instance in search which allows remote authenticated users in one virtual instance to view object definition from a second virtual instance by searching for the object definition.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33947
CVE-2023-1158	\nHitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.3, including 8.3.x expose dashboard prompts to users who are not part of the authorization list. \n\n	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-1158
CVE-2023-2886	Missing Origin Validation in WebSockets vulnerability in CBOT Chatbot allows Content Spoofing Via Application API Manipulation.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.\n\n	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2886
CVE-2023-32323	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. A malicious user on a Synapse homeserver X with permission to create certain state events can disable outbound federation from X to an arbitrary homeserver Y. Synapse instances with federation disabled are not affected. In versions of Synapse up to and including 1.73, Synapse did not limit the size of `invite_room_state`, meaning that it was possible to create an arbitrarily large invite event. Synapse 1.74 refuses to create oversized `invite_room_state` fields. Server operators should upgrade to Synapse 1.74 or newer urgently.\n\n	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32323
CVE-2023-32311	CloudExplorer Lite is an open source cloud management platform. In CloudExplorer Lite prior to version 1.1.0 users organization/workspace permissions are not properly checked. This allows users to add themselves to any organization. This vulnerability has been fixed in v1.1.0. Users are advised to upgrade. There are no known workarounds for this issue.\n	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32311
CVE-2023-32316	CloudExplorer Lite is an open source cloud management tool. In affected versions users can add themselves to any organization in CloudExplorer Lite. This is due to a missing permission check on the user profile. It is recommended to upgrade the version to v1.1.0. There are no known workarounds for this vulnerability.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-32316
CVE-2023-24598	OX App Suite before backend 7.10.6-rev37 has an information leak in the handling of distribution lists, e.g., partial disclosure of the private contacts of another user.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-24598
CVE-2023-24599	OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-24599
CVE-2023-24600	OX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls (for reading contacts) via a move to their own address book.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-24600
CVE-2023-24604	OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-24604
CVE-2022-41766	An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name (when the user has been revision deleted/suppressed).	4.3	https://nvd.nist.gov/vuln/detail/CVE-2022-41766
CVE-2023-33182	Contacts app for Nextcloud easily syncs contacts from various devices with your Nextcloud and allows editing. The unsanitized SVG is converted to a JavaScript blob (in memory data) that the Avatar can't render. Due to this constellation the missing sanitization does not seem to be exploitable. It is recommended that the Contacts app is upgraded to 5.0.3 or 4.2.4\n\n	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33182
CVE-2023-33183	Calendar app for Nextcloud easily sync events from various devices with your Nextcloud. Some internal paths of the website are disclosed when the SMTP server is unavailable. It is recommended that the Calendar app is updated to 3.5.5 or 4.2.3\n\n	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-33183
CVE-2023-2287	The Orbit Fox by ThemeIsle WordPress plugin before 2.10.24 does not limit URLs which may be used for the stock photo import feature, allowing the user to specify arbitrary URLs. This leads to a server-side request forgery as the user may force the server to access any URL of their choosing.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2287
CVE-2023-2937	Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2937
CVE-2023-2938	Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2938
CVE-2023-2941	Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to spoof the contents of the UI via a crafted Chrome Extension. (Chromium security severity: Low)	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-2941
CVE-2023-34219	In JetBrains TeamCity before 2023.05 improper permission checks allowed users without appropriate permissions to edit Build Configuration settings via REST API	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-34219
CVE-2023-1779	Exposure of Sensitive Information to an unauthorized actor vulnerability in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual in versions <=2.13.3 allow an authorized remote attacker with low privileges to view a limited amount of another accounts contact information.	4.3	https://nvd.nist.gov/vuln/detail/CVE-2023-1779
CVE-2023-24605	OX App Suite before backend 7.10.6-rev37 does not enforce 2FA for all endpoints, e.g., reading from a drive, reading contact data, and renaming tokens.	4.2	https://nvd.nist.gov/vuln/detail/CVE-2023-24605
CVE-2019-2535	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected are 8.0.13 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.1 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).	4.1	https://nvd.nist.gov/vuln/detail/CVE-2019-2535
CVE-2023-2434	The Nested Pages plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'reset' function in versions up to, and including, 3.2.3. This makes it possible for authenticated attackers, with editor-level permissions and above, to reset plugin settings.	3.8	https://nvd.nist.gov/vuln/detail/CVE-2023-2434
CVE-2021-37845	An issue was discovered in Citadel through webcit-932. A meddler-in-the-middle attacker can fixate their own session during the cleartext phase before a STARTTLS command (a violation of "The STARTTLS command is only valid in non-authenticated state." in RFC2595). This potentially allows an attacker to cause a victim's e-mail messages to be stored into an attacker's IMAP mailbox, but depends on details of the victim's client behavior.	3.7	https://nvd.nist.gov/vuln/detail/CVE-2021-37845
CVE-2020-8908	A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the created directory is world-readable (readable by an attacker with access to the system). The method in question has been marked @Deprecated in versions 30.0 and later and should not be used. For Android developers, we recommend choosing a temporary directory API provided by Android, such as context.getCacheDir(). For other Java developers, we recommend migrating to the Java 7 API java.nio.file.Files.createTempDirectory() which explicitly configures permissions of 700, or configuring the Java runtime's java.io.tmpdir system property to point to a location whose permissions are appropriately configured.\n\n	3.3	https://nvd.nist.gov/vuln/detail/CVE-2020-8908
CVE-2022-30130	.NET Framework Denial of Service Vulnerability	3.3	https://nvd.nist.gov/vuln/detail/CVE-2022-30130
CVE-2023-31225	The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and affect product availability.	3.3	https://nvd.nist.gov/vuln/detail/CVE-2023-31225
CVE-2018-3084	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Shell: Core / Client). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.0 Base Score 2.8 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L).	2.8	https://nvd.nist.gov/vuln/detail/CVE-2018-3084
CVE-2018-3082	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).	2.7	https://nvd.nist.gov/vuln/detail/CVE-2018-3082
CVE-2023-2117	The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitize the dir parameter when handling the get_subdirs ajax action, allowing a high privileged users such as admins to inspect names of files and directories outside of the sites root.	2.7	https://nvd.nist.gov/vuln/detail/CVE-2023-2117
CVE-2019-2513	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Shell). Supported versions that are affected are 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 2.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N).	2.5	https://nvd.nist.gov/vuln/detail/CVE-2019-2513
CVE-2023-32684	Lima launches Linux virtual machines, typically on macOS, for running containerd. Prior to version 0.16.0, a virtual machine instance with a malicious disk image could read a single file on the host filesystem, even when no filesystem is mounted from the host. The official templates of Lima and the well-known third party products (Colima, Rancher Desktop, and Finch) are unlikely to be affected by this issue. To exploit this issue, the attacker has to embed the target file path (an absolute or a relative path from the instance directory) in a malicious disk image, as the qcow2 (or vmdk) backing file path string. As Lima refuses to run as the root, it is practically impossible for the attacker to read the entire host disk via `/dev/rdiskN`. Also, practically, the attacker cannot read at least the first 512 bytes (MBR) of the target file. The issue has been patched in Lima in version 0.16.0 by prohibiting using a backing file path in the VM base image.	2.5	https://nvd.nist.gov/vuln/detail/CVE-2023-32684
CVE-2022-46717	A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features	2.4	https://nvd.nist.gov/vuln/detail/CVE-2022-46717
CVE-2005-1513	Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.	–	https://nvd.nist.gov/vuln/detail/CVE-2005-1513
CVE-2010-4605	Unspecified vulnerability in the backup-archive client in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.3, 6.1.x before 6.1.4, and 6.2.x before 6.2.2 on Unix and Linux allows local users to overwrite arbitrary files via unknown vectors.	–	https://nvd.nist.gov/vuln/detail/CVE-2010-4605
CVE-2014-0177	The am function in lib/hub/commands.rb in hub before 1.12.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary patch file.	–	https://nvd.nist.gov/vuln/detail/CVE-2014-0177
CVE-2023-32307	Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification.\nReferring to [GHSA-8599-x7rq-fr54](https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-8599-x7rq-fr54), several other potential heap-over-flow and integer-overflow in stun_parse_attr_error_code and stun_parse_attr_uint32 were found because the lack of attributes length check when Sofia-SIP handles STUN packets. The previous patch of [GHSA-8599-x7rq-fr54](https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-8599-x7rq-fr54) fixed the vulnerability when attr_type did not match the enum value, but there are also vulnerabilities in the handling of other valid cases. The OOB read and integer-overflow made by attacker may lead to crash, high consumption of memory or even other more serious consequences. These issue have been addressed in version 1.13.15. Users are advised to upgrade.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32307
CVE-2023-34151	A vulnerability was found in ImageMagick. This security flaw ouccers as an undefined behaviors of casting double to size_t in svg, mvg and other coders (recurring bugs of CVE-2022-32546).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34151
CVE-2023-34152	A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34152
CVE-2023-34153	A vulnerability was found in ImageMagick. This security flaw causes a shell command injection vulnerability via video:vsync or video:pixel-format options in VIDEO encoding/decoding.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34153
CVE-2022-39071	There is an unauthorized access vulnerability in some ZTE mobile phones. If a malicious application is installed on the phone, it could overwrite some system configuration files and user installers without user permission.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-39071
CVE-2022-39074	There is an unauthorized access vulnerability in some ZTE mobile phones. If a malicious application is installed on the phone, it could start a non-public interface of an application without user permission.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-39074
CVE-2022-39075	There is an unauthorized access vulnerability in some ZTE mobile phones. If a malicious application is installed on the phone, it could delete some system files without user permission.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-39075
CVE-2023-29726	The Call Blocker application 6.6.3 for Android incorrectly opens a key component that an attacker can use to inject large amounts of dirty data into the application's database. When the application starts, it loads the data from the database into memory. Once the attacker injects too much data, the application triggers an OOM error and crashes, resulting in a persistent denial of service.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29726
CVE-2023-29727	The Call Blocker application 6.6.3 for Android allows unauthorized applications to use exposed components to delete data stored in its database that is related to user privacy settings and affects the implementation of the normal functionality of the application. An attacker can use this to cause an escalation of privilege attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29727
CVE-2023-29728	The Call Blocker application 6.6.3 for Android allows attackers to tamper with feature-related data, resulting in a severe elevation of privilege attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29728
CVE-2022-47525	Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 suffers from a Divide-by-Zero vulnerability in the packet parser. A remote attacker could leverage this vulnerability to cause a denial-of-service. Exploitation of this issue does not require user interaction.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-47525
CVE-2022-47526	Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 suffers from a path traversal vulnerability with resultant arbitrary writing of files. A remote attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the downstream node user. Exploitation of this issue does not require user interaction.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-47526
CVE-2023-28350	An issue was discovered in Faronics Insight 10.0.19045 on Windows. Attacker-supplied input is not validated/sanitized before being rendered in both the Teacher and Student Console applications, enabling an attacker to execute JavaScript in these applications. Due to the rich and highly privileged functionality offered by the Teacher Console, the ability to silently exploit Cross Site Scripting (XSS) on the Teacher Machine enables remote code execution on any connected student machine (and the teacher's machine).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28350
CVE-2023-28351	An issue was discovered in Faronics Insight 10.0.19045 on Windows. Every keystroke made by any user on a computer with the Student application installed is logged to a world-readable directory. A local attacker can trivially extract these cleartext keystrokes, potentially enabling them to obtain PII and/or to compromise personal accounts owned by the victim.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28351
CVE-2023-28352	An issue was discovered in Faronics Insight 10.0.19045 on Windows. By abusing the Insight UDP broadcast discovery system, an attacker-controlled artificial Student Console can connect to and attack a Teacher Console even after Enhanced Security Mode has been enabled.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28352
CVE-2023-28353	An issue was discovered in Faronics Insight 10.0.19045 on Windows. An unauthenticated attacker is able to upload any type of file to any location on the Teacher Console's computer, enabling a variety of different exploitation paths including code execution. It is also possible for the attacker to chain this vulnerability with others to cause a deployed DLL file to immediately execute as NT AUTHORITY/SYSTEM.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28353
CVE-2023-29742	An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause a code execution attack by manipulating the database.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29742
CVE-2023-29745	An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause a persistent denial of service attack by manipulating the database.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29745
CVE-2023-2612	Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2612
CVE-2023-23562	Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control that allows an authenticated user can update global parameters.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23562
CVE-2023-30197	Incorrect Access Control in the module "My inventory" (myinventory) <= 1.6.6 from Webbax for PrestaShop, allows a guest to download personal information without restriction by performing a path traversal attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30197
CVE-2023-25539	\nDell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. This is a high severity vulnerability as the exploitation allows an attacker to take complete control of a system, so Dell recommends customers to upgrade at the earliest opportunity.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25539
CVE-2023-26131	All versions of the package github.com/xyproto/algernon/engine; all versions of the package github.com/xyproto/algernon/themes are vulnerable to Cross-site Scripting (XSS) via the themes.NoPage(filename, theme) function due to improper user input sanitization. Exploiting this vulnerability is possible when a file/resource is not found.\r\r	–	https://nvd.nist.gov/vuln/detail/CVE-2023-26131
CVE-2023-2749	Download Center fails to properly validate the file path submitted by a user, An attacker can exploit this vulnerability to gain unauthorized access to sensitive files or directories without appropriate permission restrictions. Download Center on ADM 4.0 and above will be affected. Affected products and versions include: Download Center 1.1.5.r1280 and below.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2749
CVE-2023-2909	EZ Sync service fails to adequately handle user input, allowing an attacker to navigate beyond the intended directory structure and delete files. Affected products and versions include: ADM 4.0.6.REG2, 4.1.0 and below as well as ADM 4.2.1.RGE2 and below.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2909
CVE-2023-30285	An issue in Deviniti Issue Sync Synchronization v3.5.2 for Jira allows attackers to obtain the login credentials of a user via a crafted request sent to /rest/synchronizer/1.0/technicalUser.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30285
CVE-2023-34228	In JetBrains TeamCity before 2023.05 authentication checks were missing – 2FA was not checked for some sensitive account actions	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34228
CVE-2023-34229	In JetBrains TeamCity before 2023.05 stored XSS in GitLab Connection page was possible	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34229
CVE-2023-3015	A vulnerability has been found in yiwent Vip Video Analysis 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file data/title.php. The manipulation of the argument titurl leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230359.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3015
CVE-2023-3016	A vulnerability was found in yiwent Vip Video Analysis 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/admincore.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230360.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3016
CVE-2023-2758	A denial of service vulnerability exists in Contec CONPROSYS HMI System versions 3.5.2 and prior. When there is a time-zone mismatch in certain configuration files, a remote, unauthenticated attacker may deny logins for an extended period of time.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2758
CVE-2023-3017	A vulnerability was found in SourceCodester Lost and Found Information System 1.0. It has been classified as problematic. This affects an unknown part of the file admin/?page=user/manage_user of the component Manage User Page. The manipulation of the argument First Name/Middle Name/Last Name leads to basic cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-230361 was assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3017
CVE-2023-3018	A vulnerability was found in SourceCodester Lost and Found Information System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/?page=user/list. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-230362 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3018
CVE-2023-29747	Story Saver for Instragram - Video Downloader 1.0.6 for Android exists exposed component, the component provides the method to modify the SharedPreference file. The attacker can use the method to modify the data in any SharedPreference file, these data will be loaded into the memory when the application is opened. Depending on how the data is used, this can result in various attack consequences, such as ad display exceptions.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29747
CVE-2023-33964	mx-chain-go is an implementation of the MultiversX blockchain protocol written in the Go language. Metachain cannot process a cross-shard miniblock. Prior to version 1.4.16, an invalid transaction with the wrong username on metachain is not treated correctly on the metachain transaction processor. This is strictly a processing issue that could have happened on MultiversX chain. If an error like this had occurred, the metachain would have stopped notarizing blocks from the shard chains. The resuming of notarization is possible only after applying a patched binary version. A patch in version 1.4.16 introduces `processIfTxErrorCrossShard` for the metachain transaction processor. There are no known workarounds for this issue.\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33964
CVE-2023-33966	Deno is a runtime for JavaScript and TypeScript. In deno 1.34.0 and deno_runtime 0.114.0, outbound HTTP requests made using the built-in `node:http` or `node:https` modules are incorrectly not checked against the network permission allow list (`--allow-net`). Dependencies relying on these built-in modules are subject to the vulnerability too. Users of Deno versions prior to 1.34.0 are unaffected. Deno Deploy users are unaffected. This problem has been patched in Deno v1.34.1 and deno_runtime 0.114.1 and all users are recommended to update to this version. No workaround is available for this issue.\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33966
CVE-2023-33967	EaseProbe is a tool that can do health/status checking. An SQL injection issue was discovered in EaseProbe before 2.1.0 when using MySQL/PostgreSQL data checking. This problem has been fixed in v2.1.0.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33967
CVE-2023-33971	Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of `##FULLFORM##` for rendering. This could result in arbitrary javascript code execution in an admin/tech context. A patch is unavailable as of time of publication. As a workaround, one may use a regular expression to remove `< > "` in all fields.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33971
CVE-2023-26277	IBM QRadar WinCollect Agent 10.0 though 10.1.3 could allow a local user to execute commands on the system due to execution with unnecessary privileges. IBM X-Force ID: 248156.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-26277
CVE-2023-33718	mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33718
CVE-2023-33722	EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33722
CVE-2023-33979	gpt_academic provides a graphical interface for ChatGPT/GLM. A vulnerability was found in gpt_academic 3.37 and prior. This issue affects some unknown processing of the component Configuration File Handler. The manipulation of the argument file leads to information disclosure. Since no sensitive files are configured to be off-limits, sensitive information files in some working directories can be read through the `/file` route, leading to sensitive information leakage. This affects users that uses file configurations via `config.py`, `config_private.py`, `Dockerfile`. A patch is available at commit 1dcc2873d2168ad2d3d70afcb453ac1695fbdf02. As a workaround, one may use environment variables instead of `config*.py` files to configure this project, or use docker-compose installation to configure this project.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33979
CVE-2023-34088	Collabora Online is a collaborative online office suite. A stored cross-site scripting (XSS) vulnerability was found in Collabora Online prior to versions 22.05.13, 21.11.9.1, and 6.4.27. An attacker could create a document with an XSS payload as a document name. Later, if an administrator opened the admin console and navigated to the history page, the document name was injected as unescaped HTML and executed as a script inside the context of the admin console. The administrator JSON web token (JWT) used for the websocket connection could be leaked through this flaw. Users should upgrade to Collabora Online 22.05.13 or higher; Collabora Online 21.11.9.1 or higher; Collabora Online 6.4.27 or higher to receive a patch.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34088
CVE-2021-45039	Multiple models of the Uniview IP Camera (e.g., IPC_G6103 B6103.16.10.B25.201218, IPC_G61, IPC21, IPC23, IPC32, IPC36, IPC62, and IPC_HCMN) offer an undocumented UDP service on port 7788 that allows a remote unauthenticated attacker to overflow an internal buffer and achieve code execution. By using this buffer overflow, a remote attacker can start the telnetd service. This service has a hardcoded default username and password (root/123456). Although it has a restrictive shell, this can be easily bypassed via the built-in ECHO shell command.	–	https://nvd.nist.gov/vuln/detail/CVE-2021-45039
CVE-2022-48502	An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads, leading to an out-of-bounds read in ntfs_set_ea in fs/ntfs3/xattr.c.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48502
CVE-2023-26278	IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system. IBM X-Force ID: 248158.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-26278
CVE-2023-33287	A stored cross-site scripting (XSS) vulnerability in the Inline Table Editing application before 3.8.0 for Confluence allows attackers to store and execute arbitrary JavaScript via a crafted payload injected into the tables.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33287
CVE-2023-33730	Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33730
CVE-2023-33732	Cross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33732
CVE-2023-33735	D-Link DIR-846 v1.00A52 was discovered to contain a remote command execution (RCE) vulnerability via the tomography_ping_address parameter in the /HNAP1 interface.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33735
CVE-2023-34258	An issue was discovered in BMC Patrol before 22.1.00. The agent's configuration can be remotely queried. This configuration contains the Patrol account password, encrypted with a default AES key. This account can then be used to achieve remote code execution.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34258
CVE-2023-3006	A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch history (stored in the CPU Branch History Buffer, or BHB) to influence mispredicted branches within the victim's hardware context. Once that occurs, speculation caused by the mispredicted branches can cause cache allocation. This issue leads to obtaining information that should not be accessible.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3006
CVE-2023-2598	A flaw was found in the fixed buffer registration code for io_uring (io_sqe_buffer_register in io_uring/rsrc.c) in the Linux kernel that allows out-of-bounds access to physical memory beyond the end of the buffer. This flaw enables full local privilege escalation.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2598
CVE-2023-2977	A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package. The attacker can supply a smart card package with malformed ASN1 context. The cardos_have_verifyrc_package function scans the ASN1 buffer for 2 tags, where remaining length is wrongly caculated due to moved starting pointer. This leads to possible heap-based buffer oob read. In cases where ASAN is enabled while compiling this causes a crash. Further info leak or more damage is possible.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2977
CVE-2023-2985	A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2985
CVE-2023-28399	Incorrect permission assignment for critical resource exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. ACL (Access Control List) is not appropriately set to the local folder where the affected product is installed, therefore a wide range of privileges is permitted to a user of the PC where the affected product is installed. As a result, the user may be able to destroy the system and/or execute a malicious program.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28399
CVE-2023-28651	Cross-site scripting vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. If a user who can access the affected product with an administrative privilege configures specially crafted settings, an arbitrary script may be executed on the web browser of the other user who is accessing the affected product with an administrative privilege.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28651
CVE-2023-28657	Improper access control vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. A user of the PC where the affected product is installed may gain an administrative privilege. As a result, information regarding the product may be obtained and/or altered by the user.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28657
CVE-2023-28713	Plaintext storage of a password exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. Because account information of the database is saved in a local file in plaintext, a user who can access the PC where the affected product is installed can obtain the information. As a result, information in the database may be obtained and/or altered by the user.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28713
CVE-2023-28824	Server-side request forgery vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. A user who can access the affected product with an administrative privilege may bypass the database restriction set on the query setting page, and connect to a user unintended database.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28824
CVE-2023-28937	DataSpider Servista version 4.4 and earlier uses a hard-coded cryptographic key. DataSpider Servista is data integration software. ScriptRunner and ScriptRunner for Amazon SQS are used to start the configured processes on DataSpider Servista. The cryptographic key is embedded in ScriptRunner and ScriptRunner for Amazon SQS, which is common to all users. If an attacker who can gain access to a target DataSpider Servista instance and obtain a Launch Settings file of ScriptRunner and/or ScriptRunner for Amazon SQS, the attacker may perform operations with the user privilege encrypted in the file.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28937
CVE-2023-29154	SQL injection vulnerability exists in the CONPROSYS HMI System (CHS) versions prior to 3.5.3. A user who can access the affected product with an administrative privilege may execute an arbitrary SQL command via specially crafted input to the query setting page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29154
CVE-2023-29159	Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to view files in a web service which was built using Starlette.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29159
CVE-2023-30758	Cross-site scripting vulnerability in Pleasanter 1.3.38.1 and earlier allows a remote authenticated attacker to inject an arbitrary script.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30758
CVE-2023-29748	Story Saver for Instragram - Video Downloader 1.0.6 for Android has an exposed component that provides a method to modify the SharedPreference file. An attacker can leverage this method to inject a large amount of data into any SharedPreference file, which will be loaded into memory when the application is opened. When an attacker injects too much data, the application will trigger an OOM error and crash at startup, resulting in a persistent denial of service.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29748
CVE-2023-33461	iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33461
CVE-2023-33716	mp4v2 v2.1.3 was discovered to contain a memory leak via the class MP4StringProperty at mp4property.cpp.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33716
CVE-2023-33719	mp4v2 v2.1.3 was discovered to contain a memory leak via MP4SdpAtom::Read() at atom_sdp.cpp	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33719
CVE-2023-34312	In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine.dll do not validate pointers from inter-process communication, which leads to a write-what-where condition.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34312
CVE-2023-33778	Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their own account. Attackers are then able to create WCF and DrayDDNS licenses and synchronize them from the website.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33778
CVE-2010-10010	A vulnerability classified as problematic has been found in Stars Alliance PsychoStats up to 3.2.2a. This affects an unknown part of the file upload/admin/login.php. The manipulation of the argument ref leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 3.2.2b is able to address this issue. The name of the patch is 5d3b7311fd5085ec6ea1b1bfa9a05285964e07e4. It is recommended to upgrade the affected component. The identifier VDB-230265 was assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2010-10010
CVE-2023-24584	\nController 6000 is vulnerable to a buffer overflow via the Controller diagnostic web interface upload feature. \n\n\n\n\nThis issue affects Controller 6000: before vCR8.80.230201a, before vCR8.70.230201a, before vCR8.60.230201b, before vCR8.50.230201a, all versions of vCR8.40 and prior.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-24584
CVE-2023-3028	Insufficient authentication in the MQTT backend (broker) allows an attacker to access and even manipulate the telemetry data of the entire fleet of vehicles using the HopeChart HQT-401 telematics unit. Other models are possibly affected too.\n\n\n\n\n\n\n\n\nMultiple vulnerabilities were identified:\n\n\n\n- The MQTT backend does not require authentication, allowing unauthorized connections from an attacker.\n\n\n\n- The vehicles publish their telemetry data (e.g. GPS Location, speed, odometer, fuel, etc) as messages in public topics. The backend also sends commands to the vehicles as MQTT posts in public topics. As a result, an attacker can access the confidential data of the entire fleet that is managed by the backend.\n\n\n\n- The MQTT messages sent by the vehicles or the backend are not encrypted or authenticated. An attacker can create and post messages to impersonate a vehicle or the backend. The attacker could then, for example, send incorrect information to the backend about the vehicle's location.\n\n\n\n- The backend can inject data into a vehicle´s CAN bus by sending a specific MQTT message on a public topic. Because these messages are not authenticated or encrypted, an attacker could impersonate the backend, create a fake message and inject CAN data in any vehicle managed by the backend.\n\n\nThe confirmed version is 201808021036, however further versions have been also identified as potentially impacted.\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3028
CVE-2023-3029	A vulnerability has been found in Guangdong Pythagorean OA Office System up to 4.50.31 and classified as problematic. This vulnerability affects unknown code of the file /note/index/delete. The manipulation of the argument id leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-230458 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3029
CVE-2018-25086	A vulnerability was found in sea75300 FanPress CM up to 3.6.3. It has been classified as problematic. This affects the function getArticlesPreview of the file inc/controller/action/system/templatepreview.php of the component Template Preview. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 3.6.4 is able to address this issue. The name of the patch is c380d343c2107fcee55ab00eb8d189ce5e03369b. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230235.	–	https://nvd.nist.gov/vuln/detail/CVE-2018-25086
CVE-2023-22652	A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in openSUSE libeconf leads to DoS via malformed config files.\nThis issue affects libeconf: before 0.5.2.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-22652
CVE-2023-32181	A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in openSUSE libeconf allows for DoS via malformed configuration files\nThis issue affects libeconf: before 0.5.2.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32181
CVE-2014-125104	A vulnerability was found in VaultPress Plugin up to 1.6.0 on WordPress. It has been declared as critical. Affected by this vulnerability is the function protect_aioseo_ajax of the file class.vaultpress-hotfixes.php of the component MailPoet Plugin. The manipulation leads to unrestricted upload. The attack can be launched remotely. Upgrading to version 1.6.1 is able to address this issue. The name of the patch is e3b92b14edca6291c5f998d54c90cbe98a1fb0e3. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230263.	–	https://nvd.nist.gov/vuln/detail/CVE-2014-125104
CVE-2015-10109	A vulnerability was found in Video Playlist and Gallery Plugin up to 1.136 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality of the file wp-media-cincopa.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. Upgrading to version 1.137 is able to address this issue. The name of the patch is ee28e91f4d5404905204c43b7b84a8ffecad932e. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230264.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10109
CVE-2022-43760	An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SUSE Rancher allows users in some higher-privileged groups to to inject code that is \nexecuted within another user's browser, allowing the attacker to steal \nsensitive information, manipulate web content, or perform other \nmalicious activities on behalf of the victims. This could result in a \nuser with write access to the affected areas being able to act on behalf\n of an administrator, once an administrator opens the affected web page.\n\n\nThis issue affects Rancher: from >= 2.6.0 before < 2.6.13, from >= 2.7.0 before < 2.7.4.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2022-43760
CVE-2023-22647	An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate Kubernetes secrets in the local\n cluster, resulting in the secret being deleted, but their read-level \npermissions to the secret being preserved. When this operation was \nfollowed-up by other specially crafted commands, it could result in the \nuser gaining access to tokens belonging to service accounts in the local cluster.\n\n\nThis issue affects Rancher: from >= 2.6.0 before < 2.6.13, from >= 2.7.0 before < 2.7.4.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-22647
CVE-2023-22648	A Improper Privilege Management vulnerability in SUSE Rancher causes permission changes in Azure AD not to be reflected to users \nwhile they are logged in the Rancher UI. This would cause the users to \nretain their previous permissions in Rancher, even if they change groups\n on Azure AD, for example, to a lower privileged group, or are removed \nfrom a group, thus retaining their access to Rancher instead of losing \nit.\nThis issue affects Rancher: from >= 2.6.7 before < 2.6.13, from >= 2.7.0 before < 2.7.4.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-22648
CVE-2023-33544	hawtio 2.17.2 is vulnerable to Path Traversal. it is possible to input malicious zip files, which can result in the high-risk files after decompression being stored in any location, even leading to file overwrite.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33544
CVE-2023-33546	janino 3.1.9 and earlier are subject to denial of service (DOS) attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33546
CVE-2023-3035	A vulnerability has been found in Guangdong Pythagorean OA Office System up to 4.50.31 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Schedule Handler. The manipulation of the argument description leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230467.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3035
CVE-2023-33551	Heap Buffer Overflow in the erofsfsck_dirent_iter function in fsck/main.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33551
CVE-2023-33552	Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33552
CVE-2023-33965	Brook is a cross-platform programmable network tool. The `tproxy` server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local `tproxy` service leading to remote code execution. A patch is available in version 20230606.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33965
CVE-2023-28043	\nDell SCG 5.14 contains an information disclosure vulnerability during the SRS to SCG upgrade path. A remote low privileged malicious user could potentially exploit this vulnerability to retrieve the plain text.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28043
CVE-2023-28066	\nDell OS Recovery Tool, versions 2.2.4013 and 2.3.7012.0, contain an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this vulnerability in order to elevate privileges on the system.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28066
CVE-2023-32310	DataEase is an open source data visualization and analysis tool. The API interface for DataEase delete dashboard and delete system messages is vulnerable to insecure direct object references (IDOR). This could result in a user deleting another user's dashboard or messages or interfering with the interface for marking messages read. The vulnerability has been fixed in v1.18.7. There are no known workarounds aside from upgrading.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32310
CVE-2023-33963	DataEase is an open source data visualization and analysis tool. Prior to version 1.18.7, a deserialization vulnerability exists in the DataEase datasource, which can be exploited to execute arbitrary code. The vulnerability has been fixed in v1.18.7. There are no known workarounds aside from upgrading.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33963
CVE-2023-32324	OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file `cupsd.conf` sets the value of `loglevel `to `DEBUG`. No known patches or workarounds exist at time of publication.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32324
CVE-2023-32690	libspdm is a sample implementation that follows the DMTF SPDM specifications. Prior to versions 2.3.3 and 3.0, following a successful CAPABILITIES response, a libspdm Requester stores the Responder's CTExponent into its context without validation. If the Requester sends a request message that requires a cryptography operation by the Responder, such as CHALLENGE, libspdm will calculate the timeout value using the Responder's unvalidated CTExponent.\n\nA patch is available in version 2.3.3. A workaround is also available. After completion of VCA, the Requester can check the value of the Responder's CTExponent. If it greater than or equal to 64, then the Requester can stop communication with the Responder.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32690
CVE-2023-32706	On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, an unauthenticated attacker can send specially-crafted messages to the XML parser within SAML authentication to cause a denial of service in the Splunk daemon.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32706
CVE-2023-32707	In versions of Splunk Enterprise below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform below version 9.0.2303.100, a low-privileged user who holds a role that has the ‘edit_user’ capability assigned to it can escalate their privileges to that of the admin user by providing specially crafted web requests.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32707
CVE-2023-32708	In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions below 9.0.2303.100, a low-privileged user can trigger an HTTP response splitting vulnerability with the ‘rest’ SPL command that lets them potentially access other REST endpoints in the system arbitrarily.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32708
CVE-2023-32709	In Splunk Enterprise versions below 9.0.5, 8.2.11. and 8.1.14, and Splunk Cloud Platform versions below 9.0.2303.100, a low-privileged user who holds the ‘user’ role can see the hashed version of the initial user name and password for the Splunk instance by using the ‘rest’ SPL command against the ‘conf-user-seed’ REST endpoint.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32709
CVE-2023-32710	In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and in Splunk Cloud Platform versions below 9.0.2303.100, a low-privileged user can perform an unauthorized transfer of data from a search using the ‘copyresults’ command if they know the search ID (SID) of a search job that has recently run.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32710
CVE-2023-32711	In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, a Splunk dashboard view lets a low-privileged user exploit a vulnerability in the Bootstrap web framework (CVE-2019-8331) and build a stored cross-site scripting (XSS) payload.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32711
CVE-2023-32712	In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, an attacker can use a specially crafted web URL in their browser to cause log file poisoning. The attack requires the attacker to have secure shell (SSH) access to the instance and use a terminal program that supports a certain feature set to execute the attack successfully.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32712
CVE-2023-32713	In Splunk App for Stream versions below 8.1.1, a low-privileged user could use a vulnerability in the streamfwd process within the Splunk App for Stream to escalate their privileges on the machine that runs the Splunk Enterprise instance, up to and including the root user.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32713
CVE-2023-32714	In the Splunk App for Lookup File Editing versions below 4.0.1, a low-privileged user can, with a specially crafted web request, trigger a path traversal exploit that can then be used to read and write to restricted areas of the Splunk installation directory.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32714
CVE-2023-32715	In the Splunk App for Lookup File Editing versions below 4.0.1, a user can insert potentially malicious JavaScript code into the app, which causes that code to run on the user’s machine. The app itself does not contain the potentially malicious JavaScript code. The vulnerability requires the attacker to phish the victim by tricking them into initiating a request within their browser, and requires additional user interaction to trigger. The attacker cannot exploit the vulnerability at will.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32715
CVE-2023-32716	In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions below 9.0.2303.100, an attacker can exploit a vulnerability in the {{dump}} SPL command to cause a denial of service by crashing the Splunk daemon.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32716
CVE-2023-32717	On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and in Splunk Cloud Platform versions below 9.0.2303.100, an unauthorized user can access the {{/services/indexing/preview}} REST endpoint to overwrite search results if they know the search ID (SID) of an existing search job.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32717
CVE-2023-33960	OpenProject is web-based project management software. For any OpenProject installation, a `robots.txt` file is generated through the server to denote which routes shall or shall not be accessed by crawlers. These routes contain project identifiers of all public projects in the instance. Prior to version 12.5.6, even if the entire instance is marked as `Login required` and prevents all truly anonymous access, the `/robots.txt` route remains publicly available.\n\nVersion 12.5.6 has a fix for this issue. Alternatively, users can download a patchfile to apply the patch to any OpenProject version greater than 10.0 As a workaround, one may mark any public project as non-public and give anyone in need of access to the project a membership.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33960
CVE-2023-34091	Kyverno is a policy engine designed for Kubernetes. In versions of Kyverno prior to 1.10.0, resources which have the `deletionTimestamp` field defined can bypass validate, generate, or mutate-existing policies, even in cases where the `validationFailureAction` field is set to `Enforce`. This situation occurs as resources pending deletion were being consciously exempted by Kyverno, as a way to reduce processing load as policies are typically not applied to objects which are being deleted. However, this could potentially result in allowing a malicious user to leverage the Kubernetes finalizers feature by setting a finalizer which causes the Kubernetes API server to set the `deletionTimestamp` and then not completing the delete operation as a way to explicitly to bypass a Kyverno policy. Note that this is not applicable to Kubernetes Pods but, as an example, a Kubernetes Service resource can be manipulated using an indefinite finalizer to bypass policies. This is resolved in Kyverno 1.10.0. There is no known workaround.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34091
CVE-2023-34092	Vite provides frontend tooling. Prior to versions 2.9.16, 3.2.7, 4.0.5, 4.1.5, 4.2.3, and 4.3.9, Vite Server Options (`server.fs.deny`) can be bypassed using double forward-slash (//) allows any unauthenticated user to read file from the Vite root-path of the application including the default `fs.deny` settings (`['.env', '.env.', '.{crt,pem}']`). Only users explicitly exposing the Vite dev server to the network (using `--host` or `server.host` config option) are affected, and only files in the immediate Vite project root folder could be exposed. This issue is fixed in vite@4.3.9, vite@4.2.3, vite@4.1.5, vite@4.0.5, vite@3.2.7, and vite@2.9.16.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34092
CVE-2023-34339	In JetBrains Ktor before 2.3.1 headers containing authentication data could be added to the exception's message	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34339
CVE-2023-33754	The captive portal in Inpiazza Cloud WiFi versions prior to v4.2.17 does not enforce limits on the number of attempts for password recovery, allowing attackers to brute force valid user accounts to gain access to login credentials.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33754
CVE-2023-33764	eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the component #/de/casting/show/detail/<ID>.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33764
CVE-2023-27639	An issue was discovered in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter file_name in the tshirtecommerce/ajax.php?type=svg endpoint, to allow a remote attacker to traverse directories on the system in order to open files (without restriction on the extension and path). Only files that can be parsed in XML can be opened. This is exploited in the wild in March 2023.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27639
CVE-2023-27640	An issue was discovered in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter type in the /tshirtecommerce/fonts.php endpoint, to allow a remote attacker to traverse directories on the system in order to open files (without restriction on the extension and path). The content of the file is returned with base64 encoding. This is exploited in the wild in March 2023.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27640
CVE-2023-29722	The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized apps to actively request permission to modify data in the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the app is opened. An attacker could tamper with this data to cause an escalation of privilege attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29722
CVE-2023-29723	The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized applications to actively request permission to insert data into the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the application is opened. By injecting data, the attacker can force the application to load malicious image URLs and display them in the UI. As the amount of data increases, it will eventually cause the application to trigger an OOM error and crash, resulting in a persistent denial of service attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29723
CVE-2023-29736	Keyboard Themes 1.275.1.164 for Android contains a dictionary traversal vulnerability that allows unauthorized apps to overwrite arbitrary files in its internal storage and achieve arbitrary code execution.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29736
CVE-2015-10110	A vulnerability classified as problematic was found in ruddernation TinyChat Room Spy Plugin up to 1.2.8 on WordPress. This vulnerability affects the function wp_show_room_spy of the file room-spy.php. The manipulation of the argument room leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 1.2.9 is able to address this issue. The name of the patch is ab72627a963d61fb3bc31018e3855b08dc94a979. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230392.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10110
CVE-2023-28147	An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28147
CVE-2022-45938	An issue was discovered in Comcast Defined Technologies microeisbss through 2021. An attacker can inject a stored XSS payload in the Device ID field under Inventory Management to achieve Remote Code Execution and privilege escalation..	–	https://nvd.nist.gov/vuln/detail/CVE-2022-45938
CVE-2023-27744	An issue was discovered in South River Technologies TitanFTP NextGen server that allows for a vertical privilege escalation leading to remote code execution.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27744
CVE-2023-27745	An issue in South River Technologies TitanFTP Before v2.0.1.2102 allows attackers with low-level privileges to perform Administrative actions by sending requests to the user server.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27745
CVE-2023-29724	The BT21 x BTS Wallpaper app 12 for Android allows unauthorized apps to actively request permission to modify data in the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the app is opened. An attacker could tamper with this data to cause an escalation of privilege attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29724
CVE-2023-29725	The BT21 x BTS Wallpaper app 12 for Android allows unauthorized applications to actively request permission to insert data into the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the application is opened. By injecting data, the attacker can force the application to load malicious image URLs and display them in the UI. As the amount of data increases, it will eventually cause the application to trigger an OOM error and crash, resulting in a persistent denial of service attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29725
CVE-2023-29746	An issue found in The Thaiger v.1.2 for Android allows unauthorized apps to cause a code execution attack by manipulating the SharedPreference files.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29746
CVE-2023-2201	The Web Directory Free for WordPress is vulnerable to SQL Injection via the ‘post_id’ parameter in versions up to, and including, 1.6.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers with contributor-level privileges to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2201
CVE-2023-2060	Weak Password Requirements vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to access to the module via FTP by dictionary attack or password sniffing.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2060
CVE-2023-2061	Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to obtain a hard-coded password and access to the module via FTP.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2061
CVE-2023-2062	Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP configuration tools SW1DNN-EIPCT-BD and SW1DNN-EIPCTFX5-BD allows a remote unauthenticated attacker to know the password for MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP. This vulnerability results in authentication bypass vulnerability, which allows the attacker to access MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP via FTP.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2062
CVE-2023-2063	Unrestricted Upload of File with Dangerous Type vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to cause information disclosure, tampering, deletion or destruction via file upload/download. As a result, the attacker may be able to exploit this for further attacks.\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2063
CVE-2023-1159	The Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via service titles in versions up to, and including, 21.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with administrative privileges to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-1159
CVE-2023-2835	The WP Directory Kit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'search' parameter in versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2835
CVE-2022-24695	Bluetooth Classic in Bluetooth Core Specification through 5.3 does not properly conceal device information for Bluetooth transceivers in Non-Discoverable mode. By conducting an efficient over-the-air attack, an attacker can fully extract the permanent, unique Bluetooth MAC identifier, along with device capabilities and identifiers, some of which may contain identifying information about the device owner. This additionally allows the attacker to establish a connection to the target device.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-24695
CVE-2023-28469	An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28469
CVE-2023-33717	mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes() had allocated memory but did not catch exceptions thrown by ReadBytes()	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33717
CVE-2023-33731	Reflected Cross Site Scripting (XSS) in the view dashboard detail feature in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the URL directly.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33731
CVE-2023-3056	A vulnerability was found in YFCMF up to 3.0.4. It has been declared as problematic. This vulnerability affects unknown code of the file index.php. The manipulation leads to path traversal: '../filedir'. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-230542 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3056
CVE-2023-3031	Improper Limitation of a Pathname leads to a Path Traversal vulnerability in the module King-Avis for Prestashop, allowing a user knowing the download token to read arbitrary local files.This issue affects King-Avis: before 17.3.15.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3031
CVE-2023-3032	Unrestricted Upload of File with Dangerous Type vulnerability in Mobatime web application (Documentary proof upload modules) allows a malicious user to Upload a Web Shell to a Web Server.This issue affects Mobatime web application: through 06.7.22.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3032
CVE-2023-3033	Incorrect Authorization vulnerability in Mobatime web application allows Privilege Escalation, Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mobatime web application: through 06.7.22.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3033
CVE-2023-3057	A vulnerability was found in YFCMF up to 3.0.4. It has been rated as problematic. This issue affects some unknown processing of the file app/admin/controller/Ajax.php. The manipulation of the argument controllername leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230543.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3057
CVE-2023-3058	A vulnerability was found in 07FLY CRM up to 1.2.0. It has been declared as problematic. This vulnerability affects unknown code of the component User Profile Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230560.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3058
CVE-2023-3059	A vulnerability, which was classified as critical, was found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown part of the file /admin/update_s6.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-230565 was assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3059
CVE-2023-33476	ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the length of the allocated buffer, resulting in out-of-bounds read/write.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33476
CVE-2023-34362	In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database, and execute SQL statements that alter or delete database elements. NOTE: this is exploited in the wild in May and June 2023; exploitation of unpatched systems can occur via HTTP or HTTPS. All versions (e.g., 2020.0 and 2019x) before the five explicitly mentioned versions are affected, including older unsupported versions.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34362
CVE-2023-3060	A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as problematic. This vulnerability affects the function doAddQuestion of the file btn_functions.php. The manipulation of the argument Question leads to cross site scripting. The attack can be initiated remotely. VDB-230566 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3060
CVE-2023-3061	A vulnerability was found in code-projects Agro-School Management System 1.0 and classified as critical. This issue affects some unknown processing of the file btn_functions.php of the component Attachment Image Handler. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-230567.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3061
CVE-2023-3062	A vulnerability was found in code-projects Agro-School Management System 1.0. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument password leads to sql injection. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-230568.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3062
CVE-2023-30149	SQL injection vulnerability in the City Autocomplete (cityautocomplete) module from ebewe.net for PrestaShop, prior to version 1.8.12 (for PrestaShop version 1.5/1.6) or prior to 2.0.3 (for PrestaShop version 1.7), allows remote attackers to execute arbitrary SQL commands via the type, input_name. or q parameter in the autocompletion.php front controller.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30149
CVE-2023-2687	Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4.2.1 and earlier allows user to overwrite limited structures on the heap.\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2687
CVE-2023-34094	ChuanhuChatGPT is a graphical user interface for ChatGPT and many large language models. A vulnerability in versions 20230526 and prior allows unauthorized access to the config.json file of the privately deployed ChuanghuChatGPT project, when authentication is not configured. The attacker can exploit this vulnerability to steal the API keys in the configuration file. The vulnerability has been fixed in commit bfac445. As a workaround, setting up access authentication can help mitigate the vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34094
CVE-2023-3067	Cross-site Scripting (XSS) - Stored in GitHub repository zadam/trilium prior to 0.59.4.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3067
CVE-2023-3068	A vulnerability classified as critical has been found in Campcodes Retro Cellphone Online Store 1.0. Affected is an unknown function of the file /admin/modal_add_product.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230580.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3068
CVE-2023-0430	Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. This vulnerability affects Thunderbird < 102.7.1.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0430
CVE-2023-0547	OCSP revocation status of recipient certificates was not checked when sending S/Mime encrypted email, and revoked certificates would be accepted. Thunderbird versions from 68 to 102.9.1 were affected by this bug. This vulnerability affects Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0547
CVE-2023-0616	If a MIME email combines OpenPGP and OpenPGP MIME data in a certain way Thunderbird repeatedly attempts to process and display the message, which could cause Thunderbird's user interface to lock up and no longer respond to the user's actions. An attacker could send a crafted message with this structure to attempt a DoS attack. This vulnerability affects Thunderbird < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0616
CVE-2023-0767	An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0767
CVE-2023-1945	Unexpected data returned from the Safe Browsing API could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 102.10 and Firefox ESR < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-1945
CVE-2023-23597	A compromised web child process could disable web security opening restrictions, leading to a new child process being spawned within the <code>file://</code> context. Given a reliable exploit primitive, this new process could be exploited again leading to arbitrary file read. This vulnerability affects Firefox < 109.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23597
CVE-2023-23598	Due to the Firefox GTK wrapper code's use of text/plain for drag data and GTK treating all text/plain MIMEs containing file URLs as being dragged a website could arbitrarily read a file via a call to <code>DataTransfer.setData</code>. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23598
CVE-2023-23599	When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands to be hidden within. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23599
CVE-2023-23600	Per origin notification permissions were being stored in a way that didn't take into account what browsing context the permission was granted in. This lead to the possibility of notifications to be displayed during different browsing sessions.<br>This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox < 109.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23600
CVE-2023-23601	Navigations were being allowed when dragging a URL from a cross-origin iframe into the same tab which could lead to website spoofing attacks. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23601
CVE-2023-23602	A mishandled security check when creating a WebSocket in a WebWorker caused the Content Security Policy connect-src header to be ignored. This could lead to connections to restricted origins from inside WebWorkers. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23602
CVE-2023-23603	Regular expressions used to filter out forbidden properties and values from style directives in calls to <code>console.log</code> weren't accounting for external URLs. Data could then be potentially exfiltrated from the browser. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23603
CVE-2023-23604	A duplicate <code>SystemPrincipal</code> object could be created when parsing a non-system html document via <code>DOMParser::ParseFromSafeString</code>. This could have lead to bypassing web security checks. This vulnerability affects Firefox < 109.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23604
CVE-2023-23605	Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 108 and Firefox ESR 102.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23605
CVE-2023-23606	Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 108. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 109.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-23606
CVE-2023-25728	The <code>Content-Security-Policy-Report-Only</code> header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe triggers a redirect. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25728
CVE-2023-25729	Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25729
CVE-2023-25730	A background script invoking <code>requestFullscreen</code> and then blocking the main thread could force the browser into fullscreen mode indefinitely, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25730
CVE-2023-25731	Due to URL previews in the network panel of developer tools improperly storing URLs, query parameters could potentially be used to overwrite global objects in privileged code. This vulnerability affects Firefox < 110.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25731
CVE-2023-25732	When encoding data from an <code>inputStream</code> in <code>xpcom</code> the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25732
CVE-2023-25734	After downloading a Windows <code>.url</code> shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.<br>This bug only affects Firefox on Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25734
CVE-2023-25735	Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment resulting in a use-after-free after unwrapping the proxy. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25735
CVE-2023-25737	An invalid downcast from <code>nsTextNode</code> to <code>SVGElement</code> could have lead to undefined behavior. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25737
CVE-2023-25738	Members of the <code>DEVMODEW</code> struct set by the printer device driver weren't being validated and could have resulted in invalid values which in turn would cause the browser to attempt out of bounds access to related variables.<br>This bug only affects Firefox on Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25738
CVE-2023-25739	Module load requests that failed were not being checked as to whether or not they were cancelled causing a use-after-free in <code>ScriptLoadContext</code>. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25739
CVE-2023-25740	After downloading a Windows <code>.scf</code> script from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.<br>This bug only affects Firefox for Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 110.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25740
CVE-2023-25741	When dragging and dropping an image cross-origin, the image's size could potentially be leaked. This behavior was shipped in 109 and caused web compatibility problems as well as this security concern, so the behavior was disabled until further review. This vulnerability affects Firefox < 110.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25741
CVE-2023-25742	When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25742
CVE-2023-25743	A lack of in app notification for entering fullscreen mode could have lead to a malicious website spoofing browser chrome.<br>This bug only affects Firefox Focus. Other versions of Firefox are unaffected.. This vulnerability affects Firefox < 110 and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25743
CVE-2023-25744	Mozilla developers Kershaw Chang and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 109 and Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 110 and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25744
CVE-2023-25745	Mozilla developers Timothy Nikkel, Gabriele Svelto, Jeff Muizelaar and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 109. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 110.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25745
CVE-2023-25746	Mozilla developers Philipp and Gabriele Svelto reported memory safety bugs present in Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 102.8 and Firefox ESR < 102.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25746
CVE-2023-25748	By displaying a prompt with a long description, the fullscreen notification could have been hidden, resulting in potential user confusion or spoofing attacks. <br>This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25748
CVE-2023-25749	Android applications with unpatched vulnerabilities can be launched from a browser using Intents, exposing users to these vulnerabilities. Firefox will now confirm with users that they want to launch an external application before doing so. <br>This bug only affects Firefox for Android. Other versions of Firefox are unaffected.. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25749
CVE-2023-25750	Under certain circumstances, a ServiceWorker's offline cache may have leaked to the file system when using private browsing mode. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25750
CVE-2023-25751	Sometimes, when invalidating JIT code while following an iterator, the newly generated code could be overwritten incorrectly. This could lead to a potentially exploitable crash. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25751
CVE-2023-25752	When accessing throttled streams, the count of available bytes needed to be checked in the calling function to be within bounds. This may have lead future code to be incorrect and vulnerable. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-25752
CVE-2023-28159	The fullscreen notification could have been hidden on Firefox for Android by using download popups, resulting in potential user confusion or spoofing attacks. <br>This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28159
CVE-2023-28160	When following a redirect to a publicly accessible web extension file, the URL may have been translated to the actual local path, leaking potentially sensitive information. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28160
CVE-2023-28161	If temporary "one-time" permissions, such as the ability to use the Camera, were granted to a document loaded using a file: URL, that permission persisted in that tab for all other documents loaded from a file: URL. This is potentially dangerous if the local files came from different sources, such as in a download directory. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28161
CVE-2023-28162	While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic type. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28162
CVE-2023-28163	When downloading files through the Save As dialog on Windows with suggested filenames containing environment variable names, Windows would have resolved those in the context of the current user. <br>This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28163
CVE-2023-28164	Dragging a URL from a cross-origin iframe that was removed during the drag could have led to user confusion and website spoofing attacks. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28164
CVE-2023-28176	Mozilla developers Timothy Nikkel, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 110 and Firefox ESR 102.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28176
CVE-2023-28177	Mozilla developers and community members Calixte Denizet, Gabriele Svelto, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 110. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 111.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28177
CVE-2023-29533	A website could have obscured the fullscreen notification by using a combination of <code>window.open</code>, fullscreen requests, <code>window.name</code> assignments, and <code>setInterval</code> calls. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29533
CVE-2023-29535	Following a Garbage Collector compaction, weak maps may have been accessed before they were correctly traced. This resulted in memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29535
CVE-2023-29536	An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29536
CVE-2023-29537	Multiple race conditions in the font initialization could have led to memory corruption and execution of attacker-controlled code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29537
CVE-2023-29538	Under specific circumstances a WebExtension may have received a <code>jar:file:///</code> URI instead of a <code>moz-extension:///</code> URI during a load request. This leaked directory paths on the user's machine. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29538
CVE-2023-29539	When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to install malware. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29539
CVE-2023-29540	Using a redirect embedded into <code>sourceMappingUrls</code> could allow for navigation to external protocol links in sandboxed iframes without <code>allow-top-navigation-to-custom-protocols</code>. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29540
CVE-2023-29541	Firefox did not properly handle downloads of files ending in <code>.desktop</code>, which can be interpreted to run attacker-controlled commands. <br>This bug only affects Firefox for Linux on certain Distributions. Other operating systems are unaffected, and Mozilla is unable to enumerate all affected Linux Distributions.. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29541
CVE-2023-29543	An attacker could have caused memory corruption and a potentially exploitable use-after-free of a pointer in a global object's debugger vector. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29543
CVE-2023-29544	If multiple instances of resource exhaustion occurred at the incorrect time, the garbage collector could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29544
CVE-2023-29547	When a secure cookie existed in the Firefox cookie jar an insecure cookie for the same domain could have been created, when it should have silently failed. This could have led to a desynchronization in expected results when reading from the secure cookie. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29547
CVE-2023-29548	A wrong lowering instruction in the ARM64 Ion compiler resulted in a wrong optimization result. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29548
CVE-2023-29549	Under certain circumstances, a call to the <code>bind</code> function may have resulted in the incorrect realm. This may have created a vulnerability relating to JavaScript-implemented sandboxes such as SES. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29549
CVE-2023-29550	Mozilla developers Randell Jesup, Andrew Osmond, Sebastian Hengst, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29550
CVE-2023-29551	Mozilla developers Randell Jesup, Andrew McCreight, Gabriele Svelto, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29551
CVE-2023-32205	In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32205
CVE-2023-32206	An out-of-bound read could have led to a crash in the RLBox Expat driver. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32206
CVE-2023-32207	A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32207
CVE-2023-32211	A type checking bug would have led to invalid code being compiled. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32211
CVE-2023-32212	An attacker could have positioned a <code>datalist</code> element to obscure the address bar. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32212
CVE-2023-32213	When reading a file, an uninitialized value could have been used as read limit. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32213
CVE-2023-32215	Mozilla developers and community members Gabriele Svelto, Andrew Osmond, Emily McDonough, Sebastian Hengst, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 112 and Firefox ESR 102.10. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32215
CVE-2023-3069	Unverified Password Change in GitHub repository tsolucio/corebos prior to 8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3069
CVE-2023-3070	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3070
CVE-2023-3071	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3071
CVE-2023-3074	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3074
CVE-2023-3075	Cross-Site Request Forgery (CSRF) in GitHub repository tsolucio/corebos prior to 8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3075
CVE-2023-3073	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3073
CVE-2023-33669	Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the timeZone parameter in the sub_44db3c function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33669
CVE-2023-33670	Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the sub_4a79ec function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33670
CVE-2023-33671	Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the deviceId parameter in the saveParentControlInfo function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33671
CVE-2023-33672	Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33672
CVE-2023-33673	Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33673
CVE-2023-33675	Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the get_parentControl_list_Info function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33675
CVE-2023-33761	eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /view/cb/format_642.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33761
CVE-2023-33762	eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a SQL injection vulnerability via the Activity parameter.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33762
CVE-2023-33763	eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /scheduler/index.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33763
CVE-2023-1297	Consul and Consul Enterprise's cluster peering implementation contained a flaw whereby a peer cluster with service of the same name as a local service could corrupt Consul state, resulting in denial of service. This vulnerability was resolved in Consul 1.14.5, and 1.15.3	–	https://nvd.nist.gov/vuln/detail/CVE-2023-1297
CVE-2023-2816	Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the service(s) corresponding to those modified proxies.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2816
CVE-2023-3044	An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code.\n\n\n\n\nThis is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate.\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3044
CVE-2023-2781	The User Email Verification for WooCommerce plugin for WordPress is vulnerable to authentication bypass via authenticate_user_by_email in versions up to, and including, 3.5.0. This is due to a random token generation weakness in the resend_verification_email function. This allows unauthenticated attackers to impersonate users and trigger an email address verification for arbitrary accounts, including administrative accounts, and automatically be logged in as that user, including any site administrators. This requires the Allow Automatic Login After Successful Verification setting to be enabled, which it is not by default.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2781
CVE-2023-3051	The Page Builder by AZEXO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'azh_post' shortcode in versions up to, and including, 1.27.133 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3051
CVE-2023-3052	The Page Builder by AZEXO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.27.133. This is due to missing or incorrect nonce validation on the 'azh_add_post', 'azh_duplicate_post', 'azh_update_post' and 'azh_remove_post' functions. This makes it possible for unauthenticated attackers to create, modify, and delete a post via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3052
CVE-2023-3053	The Page Builder by AZEXO plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'azh_add_post' function in versions up to, and including, 1.27.133. This makes it possible for authenticated attackers to create a post with any post type and post status.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3053
CVE-2023-3055	The Page Builder by AZEXO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.27.133. This is due to missing or incorrect nonce validation on the 'azh_save' function. This makes it possible for unauthenticated attackers to update the post content and inject malicious JavaScript via a forged request, granted they can trick a site administrator into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3055
CVE-2023-0583	The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST 'update_vk_blocks_options' function in versions up to, and including, 1.57.0.5. This allows authenticated attackers, with contributor-level permissions or above, to change plugin settings including default icons.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0583
CVE-2023-0584	The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST 'update_options' function in versions up to, and including, 1.57.0.5. This allows authenticated attackers, with contributor-level permissions or above, to change the 'vk_font_awesome_version' option to an arbitrary value.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0584
CVE-2023-2298	The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'business_id' parameter in versions up to, and including, 4.2.10 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2298
CVE-2023-2299	The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized medication of data via the /wp-json/vcita-wordpress/v1/actions/auth REST-API endpoint in versions up to, and including, 4.2.10 due to a missing capability check on the processAction function. This makes it possible for unauthenticated attackers modify the plugin's settings.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2299
CVE-2023-2300	The Contact Form Builder by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 4.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with the edit_posts capability, such as contributors and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2300
CVE-2023-2301	The Contact Form Builder by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.9.1. This is due to missing nonce validation on the ls_parse_vcita_callback function. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious JavaScript via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2301
CVE-2023-2302	The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 2.6.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with the edit_posts capability, such as contributors and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2302
CVE-2023-2303	The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.6.4. This is due to missing nonce validation in the vcita-callback.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious JavaScript via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2303
CVE-2023-2404	The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 2.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with the edit_posts capability, such as contributors and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2404
CVE-2023-2405	The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.6.2. This is due to missing nonce validation in the vcita-callback.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious JavaScript via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2405
CVE-2023-2406	The Event Registration Calendar By vcita plugin, versions up to and including 3.9.1, and Online Payments – Get Paid with PayPal, Square & Stripe plugin, for WordPress are vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 1.3.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with the edit_posts capability, such as contributors and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2406
CVE-2023-2407	The Event Registration Calendar By vcita plugin, versions up to and including 3.9.1, and Online Payments – Get Paid with PayPal, Square & Stripe plugin, for WordPress are vulnerable to Cross-Site Request Forgery. This is due to missing nonce validation in the ls_parse_vcita_callback() function. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious JavaScript via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2407
CVE-2023-2415	The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the vcita_logout_callback function in versions up to, and including, 4.2.10. This makes it possible for authenticated attackers with minimal permissions, such as a subscriber, to logout a vctia connected account which would cause a denial of service on the appointment scheduler.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2415
CVE-2023-2416	The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the vcita_logout_callback function in versions up to, and including, 4.2.10. This makes it possible for unauthenticated to logout a vctia connected account which would cause a denial of service on the appointment scheduler, via a forged request granted they can trick a site user into performing an action such as clicking on a link.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2416
CVE-2023-3083	Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3083
CVE-2023-3084	Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3084
CVE-2023-3085	A vulnerability, which was classified as problematic, has been found in X-WRT luci up to 22.10_b202303061504. This issue affects the function run_action of the file modules/luci-base/ucode/dispatcher.uc of the component 404 Error Template Handler. The manipulation of the argument request_path leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 22.10_b202303121313 is able to address this issue. The name of the patch is 24d7da2416b9ab246825c33c213fe939a89b369c. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230663.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3085
CVE-2023-32582	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kyle Maurer Don8 plugin <= 0.4 versions.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32582
CVE-2023-3086	Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3086
CVE-2023-3094	A vulnerability classified as critical has been found in code-projects Agro-School Management System 1.0. Affected is the function doUpdateQuestion of the file btn_functions.php. The manipulation of the argument question_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-230670 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3094
CVE-2023-3095	Improper Access Control in GitHub repository nilsteampassnet/teampass prior to 3.0.9.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3095
CVE-2015-10111	A vulnerability was found in Watu Quiz Plugin up to 2.6.7 on WordPress. It has been rated as critical. This issue affects the function watu_exams of the file controllers/exam.php of the component Exam Handler. The manipulation of the argument quiz leads to sql injection. The attack may be initiated remotely. Upgrading to version 2.6.8 is able to address this issue. The name of the patch is bf42e7cfd819a3e76cf3e1465697e89f4830590c. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230651.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10111
CVE-2013-10027	A vulnerability was found in Blogger Importer Plugin up to 0.5 on WordPress. It has been classified as problematic. Affected is the function start/restart of the file blogger-importer.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. Upgrading to version 0.6 is able to address this issue. The name of the patch is b83fa4f862b0f19a54cfee76060ec9c2e7f7ca70. It is recommended to upgrade the affected component. VDB-230658 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2013-10027
CVE-2013-10028	A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function style_newsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The name of the patch is 3339b42316c5edf73e56eb209b6a3bb3e868d6ed. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230660.	–	https://nvd.nist.gov/vuln/detail/CVE-2013-10028
CVE-2023-22862	IBM Aspera Connect 4.2.5 and IBM Aspera Cargo 4.2.5 transmits authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval. IBM X-Force ID: 244107.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-22862
CVE-2023-27285	IBM Aspera Connect 4.2.5 and IBM Aspera Cargo 4.2.5 is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow a buffer and execute arbitrary code on the system. IBM X-Force ID: 248625.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27285
CVE-2014-125105	A vulnerability was found in Broken Link Checker Plugin up to 1.10.1 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function options_page of the file core/core.php of the component Settings Page. The manipulation of the argument exclusion_list/blc_custom_fields leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.10.2 is able to address this issue. The name of the patch is 90615fe9b0b6f9e6fb254d503c302e53a202e561. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230659.	–	https://nvd.nist.gov/vuln/detail/CVE-2014-125105
CVE-2023-0041	IBM Security Guardium 11.5 could allow a user to take over another user's session due to insufficient session expiration. IBM X-Force ID: 243657.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0041
CVE-2023-27861	IBM Maximo Application Suite - Manage Component 8.8.0 and 8.9.0 transmits sensitive information in cleartext that could be intercepted by an attacker using man in the middle techniques. IBM X-Force ID: 249208.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27861
CVE-2023-32334	IBM Maximo Asset Management 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8.0 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 255074.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32334
CVE-2023-34407	OfflinePlayerService.exe in Harbinger Offline Player 4.0.6.0.2 allows directory traversal as LocalSystem via ..\\ in a URL.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34407
CVE-2023-34408	DokuWiki before 2023-04-04a allows XSS via RSS titles.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34408
CVE-2023-34410	An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34410
CVE-2023-0635	Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100110R2021, 2CQG100112R2021, 2CQG100103R2021, 2CQG100107R2021, 2CQG100108R2021, 2CQG100109R2021, 2CQG100111R2021, 2CQG100113R2021 modules), ABB Ltd. MATRIX Series on MATRIX Series, Linux (2CQG100102R1021, 2CQG100103R1021, 2CQG100104R1021, 2CQG100105R1021, 2CQG100106R1021 modules) allows Privilege Escalation.This issue affects ASPECT®-Enterprise: from 3.0;0 before 3.07.01; NEXUS Series: from 3.0;0 before 3.07.01; MATRIX Series: from 3.0;0 before 3.07.01.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0635
CVE-2023-0636	Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100110R2021, 2CQG100112R2021, 2CQG100103R2021, 2CQG100107R2021, 2CQG100108R2021, 2CQG100109R2021, 2CQG100111R2021, 2CQG100113R2021 modules), ABB Ltd. MATRIX Series on MATRIX Series, Linux (2CQG100102R1021, 2CQG100103R1021, 2CQG100104R1021, 2CQG100105R1021, 2CQG100106R1021 modules) allows Command Injection.This issue affects ASPECT®-Enterprise: from 3.0;0 before 3.07.0; NEXUS Series: from 3.0;0 before 3.07.0; MATRIX Series: from 3.0;0 before 3.07.1.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0636
CVE-2023-32217	IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p3, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p6, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6 allow an authenticated user to invoke a Java constructor with no arguments or a Java constructor with a single Map argument in any Java class available in the IdentityIQ application classpath.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32217
CVE-2023-34411	The xml-rs crate before 0.8.14 for Rust and Crab allows a denial of service (panic) via an invalid <! token (such as <!DOCTYPEs/%<!A nesting) in an XML document.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34411
CVE-2023-3096	A vulnerability was found in KylinSoft kylin-software-properties on KylinOS. It has been declared as critical. This vulnerability affects the function changedSource. The manipulation leads to improper access controls. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. Upgrading to version 0.0.1-130 is able to address this issue. It is recommended to upgrade the affected component. VDB-230686 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3096
CVE-2023-3097	A vulnerability was found in KylinSoft kylin-software-properties on KylinOS. It has been rated as critical. This issue affects the function setMainSource. The manipulation leads to os command injection. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 0.0.1-130 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230687. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3097
CVE-2023-3098	A vulnerability classified as critical has been found in KylinSoft youker-assistant on KylinOS. Affected is the function restore_all_sound_file. The manipulation leads to path traversal: '../filedir'. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. Upgrading to version 3.0.2-0kylin6k70-23 is able to address this issue. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230688. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3098
CVE-2023-3099	A vulnerability classified as critical was found in KylinSoft youker-assistant on KylinOS. Affected by this vulnerability is the function delete_file in the library dbus.SystemBus of the component Arbitrary File Handler. The manipulation leads to improper access controls. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. Upgrading to version 3.0.2-0kylin6k70-23 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-230689 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3099
CVE-2015-10112	A vulnerability classified as problematic has been found in WooFramework Branding Plugin up to 1.0.1 on WordPress. Affected is the function admin_screen_logic of the file wooframework-branding.php. The manipulation of the argument url leads to open redirect. It is possible to launch the attack remotely. Upgrading to version 1.0.2 is able to address this issue. The name of the patch is f12fccd7b5eaf66442346f748c901ef504742f78. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230652.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10112
CVE-2023-3100	A vulnerability, which was classified as critical, has been found in IBOS 4.5.5. Affected by this issue is the function actionDel of the file ?r=dashboard/approval/del. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-230690 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3100
CVE-2023-3064	Anonymous user may get the list of existing users managed by the application, that could ease further attacks (see CVE-2023-3065 and 3066)This issue affects Mobatime mobile application AMXGT100 through 1.3.20.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3064
CVE-2023-3065	Improper Authentication vulnerability in Mobatime mobile application AMXGT100 allows Authentication Bypass.This issue affects Mobatime mobile application AMXGT100 through 1.3.20.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3065
CVE-2023-3066	Incorrect Authorization vulnerability in Mobatime mobile application AMXGT100 allows a low-privileged user to impersonate anyone else, including administratorsThis issue affects Mobatime mobile application AMXGT100: through 1.3.20.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3066
CVE-2023-27989	A buffer overflow vulnerability in the CGI program of the Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 could allow a remote authenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27989
CVE-2022-4946	The Frontend Post WordPress Plugin WordPress plugin through 2.8.4 does not validate an attribute of one of its shortcode, which could allow users with a role as low as contributor to add a malicious shortcode to a page/post, which will redirect users to an arbitrary domain.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-4946
CVE-2023-0152	The WP Multi Store Locator WordPress plugin through 2.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0152
CVE-2023-0545	The Hostel WordPress plugin before 1.1.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0545
CVE-2023-0900	The Pricing Table Builder WordPress plugin through 1.1.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high-privilege users such as admins.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0900
CVE-2023-2224	The SEO by 10Web WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2224
CVE-2023-2337	The ConvertKit WordPress plugin before 2.2.1 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2337
CVE-2023-2472	The Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue WordPress plugin before 3.1.61 does not sanitise and escape a parameter before outputting it back in the admin dashboard when the WPML plugin is also active and configured, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2472
CVE-2023-2488	The Stop Spammers Security \| Block Spam Users, Comments, Forms WordPress plugin before 2023 does not sanitise and escape various parameters before outputting them back in admin dashboard pages, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2488
CVE-2023-2489	The Stop Spammers Security \| Block Spam Users, Comments, Forms WordPress plugin before 2023 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2489
CVE-2023-2503	The 10Web Social Post Feed WordPress plugin before 1.2.9 does not sanitise and escape some parameter before outputting it back in a page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2503
CVE-2023-2571	The Quiz Maker WordPress plugin before 6.4.2.7 does not escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2571
CVE-2023-2572	The Survey Maker WordPress plugin before 3.4.7 does not escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2572
CVE-2023-2634	The Get your number WordPress plugin through 1.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2634
CVE-2023-32766	Gitpod before 2022.11.3 allows XSS because redirection can occur for some protocols outside of the trusted set of three (vscode: vscode-insiders: jetbrains-gateway:).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32766
CVE-2023-33386	MarsCTF 1.2.1 has an arbitrary file upload vulnerability in the interface for uploading attachments in the background.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33386
CVE-2023-33518	emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33518
CVE-2015-10113	A vulnerability classified as problematic was found in WooFramework Tweaks Plugin up to 1.0.1 on WordPress. Affected by this vulnerability is the function admin_screen_logic of the file wooframework-tweaks.php. The manipulation of the argument url leads to open redirect. The attack can be launched remotely. Upgrading to version 1.0.2 is able to address this issue. The identifier of the patch is 3b57d405149c1a59d1119da6e0bb8212732c9c88. It is recommended to upgrade the affected component. The identifier VDB-230653 was assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10113
CVE-2015-10114	A vulnerability, which was classified as problematic, has been found in WooSidebars Plugin up to 1.4.1 on WordPress. Affected by this issue is the function enable_custom_post_sidebars of the file classes/class-woo-sidebars.php. The manipulation of the argument sendback leads to open redirect. The attack may be launched remotely. Upgrading to version 1.4.2 is able to address this issue. The patch is identified as 1ac6d6ac26e185673f95fc1ccc56a392169ba601. It is recommended to upgrade the affected component. VDB-230654 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10114
CVE-2023-33690	SonicJS up to v0.7.0 allows attackers to execute an authenticated path traversal when an attacker injects special characters into the filename of a backup CMS.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33690
CVE-2023-33693	A buffer overflow in EasyPlayerPro-Win v3.2.19.0106 to v3.6.19.0823 allows attackers to cause a Denial of Service (DoS) via a crafted XML file.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33693
CVE-2023-33733	Reportlab up to v3.6.12 allows attackers to execute arbitrary code via supplying a crafted PDF file.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33733
CVE-2023-3109	Cross-site Scripting (XSS) - Stored in GitHub repository admidio/admidio prior to 4.2.8.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3109
CVE-2023-33524	Advent/SSC Inc. Tamale RMS < 23.1 is vulnerable to Directory Traversal. If one traverses to the affected URL, one enumerates Contact information on the host which contains usernames, e-mail addresses, and other internal information stored within the web app.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33524
CVE-2015-10115	A vulnerability, which was classified as problematic, was found in WooSidebars Sidebar Manager Converter Plugin up to 1.1.1 on WordPress. This affects the function process_request of the file classes/class-woosidebars-sbm-converter.php. The manipulation leads to open redirect. It is possible to initiate the attack remotely. Upgrading to version 1.1.2 is able to address this issue. The patch is named a0efb4ffb9dfe2925b889c1aa5ea40b4abbbda8a. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230655.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10115
CVE-2023-33968	Kanboard is open source project management software that focuses on the Kanban methodology. Versions prior to 1.2.30 are subject to a missing access control vulnerability that allows a user with low privileges to create or transfer tasks to any project within the software, even if they have not been invited or the project is personal. The vulnerable features are `Duplicate to project` and `Move to project`, which both utilize the `checkDestinationProjectValues()` function to check his values. This issue has been addressed in version 1.2.30. Users are advised to upgrade. There are no known workarounds for this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33968
CVE-2023-33969	Kanboard is open source project management software that focuses on the Kanban methodology. A stored Cross site scripting (XSS) allows an attacker to execute arbitrary Javascript and any user who views the task containing the malicious code will be exposed to the XSS attack. Note: The default CSP header configuration blocks this javascript attack. This issue has been addressed in version 1.2.30. Users are advised to upgrade. Users unable to upgrade should ensure that they have a restrictive CSP header config.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33969
CVE-2023-33970	Kanboard is open source project management software that focuses on the Kanban methodology. A vulnerability related to a `missing access control` was found, which allows a User with the lowest privileges to leak all the tasks and projects titles within the software, even if they are not invited or it's a personal project. This could also lead to private/critical information being leaked if such information is in the title. This issue has been addressed in version 1.2.30. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33970
CVE-2013-10029	A vulnerability classified as problematic was found in Exit Box Lite Plugin up to 1.06 on WordPress. Affected by this vulnerability is the function exitboxadmin of the file wordpress-exit-box-lite.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. Upgrading to version 1.10 is able to address this issue. The patch is named fad26701addb862c51baf85c6e3cc136aa79c309. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230671.	–	https://nvd.nist.gov/vuln/detail/CVE-2013-10029
CVE-2020-19028	*File Upload vulnerability found in Emlog EmlogCMS v.6.0.0 allows a remote attacker to gain access to sensitive information via the /admin/plugin.php function.	–	https://nvd.nist.gov/vuln/detail/CVE-2020-19028
CVE-2022-4569	A local privilege escalation vulnerability in the ThinkPad Hybrid USB-C with USB-A Dock Firmware Update Tool could allow an attacker with local access to execute code with elevated privileges during the package upgrade or installation.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-4569
CVE-2023-29629	PrestaShop jmsthemelayout 2.5.5 is vulnerable to SQL Injection via ajax_jmsvermegamenu.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29629
CVE-2023-29630	PrestaShop jmsmegamenu 1.1.x and 2.0.x is vulnerable to SQL Injection via ajax_jmsmegamenu.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29630
CVE-2023-29631	PrestaShop jmsslider 1.6.0 is vulnerable to Incorrect Access Control via ajax_jmsslider.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29631
CVE-2023-31893	Telefnica Brasil Vivo Play (IPTV) Firmware: 2023.04.04.01.06.15 is vulnerable to Denial of Service (DoS) via DNS Recursion.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-31893
CVE-2023-33408	Minical 1.0.0 is vulnerable to Cross Site Scripting (XSS). The vulnerability exists due to insufficient input validation in the application's user input handling in the security_helper.php file.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33408
CVE-2023-33409	Minical 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF) via minical/public/application/controllers/settings/company.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33409
CVE-2023-33410	Minical 1.0.0 and earlier contains a CSV injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on the Customer Name field in the Accounting module that is used to construct a CSV file.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33410
CVE-2023-34097	hoppscotch is an open source API development ecosystem. In versions prior to 2023.4.5 the database password is exposed in the logs when showing the database connection string. Attackers with access to read system logs will be able to elevate privilege with full access to the database. Users are advised to upgrade. There are no known workarounds for this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34097
CVE-2023-3111	A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3111
CVE-2013-10030	A vulnerability, which was classified as problematic, has been found in Exit Box Lite Plugin up to 1.06 on WordPress. Affected by this issue is some unknown functionality of the file wordpress-exit-box-lite.php. The manipulation leads to information disclosure. The attack may be launched remotely. Upgrading to version 1.10 is able to address this issue. The name of the patch is fad26701addb862c51baf85c6e3cc136aa79c309. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230672.	–	https://nvd.nist.gov/vuln/detail/CVE-2013-10030
CVE-2022-48181	An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow an attacker with local access to elevate their privileges and execute arbitrary code.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48181
CVE-2022-48188	A buffer overflow vulnerability in the SecureBootDXE BIOS driver of some Lenovo Desktop and ThinkStation models could allow an attacker with local access to elevate their privileges to execute arbitrary code.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48188
CVE-2023-24510	On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-24510
CVE-2023-3027	The grc-policy-propagator allows security escalation within the cluster. The propagator allows policies which contain some dynamically obtained values (instead of the policy apply a static manifest on a managed cluster) of taking advantage of cluster scoped access in a created policy. This feature does not restrict properly to lookup content from the namespace where the policy was created.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3027
CVE-2023-3079	Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3079
CVE-2023-34102	Avo is an open source ruby on rails admin panel creation framework. The polymorphic field type stores the classes to operate on when updating a record with user input, and does not validate them in the back end. This can lead to unexpected behavior, remote code execution, or application crashes when viewing a manipulated record. This issue has been addressed in commit `ec117882d` which is expected to be included in subsequent releases. Users are advised to limit access to untrusted users until a new release is made.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34102
CVE-2023-34103	Avo is an open source ruby on rails admin panel creation framework. In affected versions some avo fields are vulnerable to Cross Site Scripting (XSS) when rendering html based content. Attackers do need form edit privilege in order to successfully exploit this vulnerability, but the results are stored and no specific timing is required. This issue has been addressed in commit `7891c01e` which is expected to be included in the next release of avo. Users are advised to configure CSP headers for their application and to limit untrusted user access as a mitigation.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34103
CVE-2023-22450	\n\n\nIn Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to upload an ASP script file to a webserver when logged in as manager user, which can lead to arbitrary code execution.\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-22450
CVE-2023-32540	\nIn Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could lead to arbitrary code execution.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32540
CVE-2023-32628	\n\n\n\n\nIn Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to modify the file extension of a certificate file to ASP when uploading it, which can lead to remote code execution.\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32628
CVE-2015-10116	A vulnerability classified as problematic has been found in RealFaviconGenerator Favicon Plugin up to 1.2.12 on WordPress. This affects the function install_new_favicon of the file admin/class-favicon-by-realfavicongenerator-admin.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. Upgrading to version 1.2.13 is able to address this issue. The identifier of the patch is 949a1ae7216216350458844f50a72f100b56d4e7. It is recommended to upgrade the affected component. The identifier VDB-230661 was assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10116
CVE-2015-10117	A vulnerability, which was classified as problematic, was found in Gravity Forms DPS PxPay Plugin up to 1.4.2 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 1.4.3 is able to address this issue. The name of the patch is 5966a5e6343e3d5610bdfa126a5cfbae95e629b6. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230664.	–	https://nvd.nist.gov/vuln/detail/CVE-2015-10117
CVE-2023-2546	The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.2. This is due to incorrect authentication checking in the 'wpus_allow_user_to_admin_bar_menu' function with the 'wpus_who_switch' cookie value. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the username.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2546
CVE-2018-25087	A vulnerability classified as problematic was found in Arborator Server. This vulnerability affects the function start of the file project.cgi. The manipulation of the argument project leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The patch is identified as cdbdbcbd491db65e9d697ab4365605fdfab1a604. It is recommended to apply a patch to fix this issue. VDB-230662 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2018-25087
CVE-2022-48390	In telephony service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48390
CVE-2022-48391	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48391
CVE-2022-48392	In dialer service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48392
CVE-2022-48438	In cp_dump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48438
CVE-2022-48439	In cp_dump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48439
CVE-2022-48440	In dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48440
CVE-2022-48441	In dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48441
CVE-2022-48442	In dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48442
CVE-2022-48443	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48443
CVE-2022-48444	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48444
CVE-2022-48445	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48445
CVE-2022-48446	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48446
CVE-2022-48447	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48447
CVE-2022-48448	In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-48448
CVE-2023-30863	In Connectivity Service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30863
CVE-2023-30864	In Connectivity Service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30864
CVE-2023-30865	In dialer service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30865
CVE-2023-30866	In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30866
CVE-2023-30914	In email service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30914
CVE-2023-30915	In email service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30915
CVE-2022-22060	Assertion occurs while processing Reconfiguration message due to improper validation	–	https://nvd.nist.gov/vuln/detail/CVE-2022-22060
CVE-2022-22076	information disclosure due to cryptographic issue in Core during RPMB read request.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-22076
CVE-2022-33224	Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl queries.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33224
CVE-2022-33226	Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33226
CVE-2022-33227	Memory corruption in Linux android due to double free while calling unregister provider after register call.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33227
CVE-2022-33230	Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33230
CVE-2022-33240	Memory corruption in Audio due to incorrect type cast during audio use-cases.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33240
CVE-2022-33251	Transient DOS due to reachable assertion in Modem because of invalid network configuration.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33251
CVE-2022-33263	Memory corruption due to use after free in Core when multiple DCI clients register and deregister.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33263
CVE-2022-33264	Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33264
CVE-2022-33267	Memory corruption in Linux while sending DRM request.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33267
CVE-2022-33303	Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager message queue.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33303
CVE-2022-33307	Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-33307
CVE-2022-40507	Memory corruption due to double free in Core while mapping HLOS address to the list.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40507
CVE-2022-40521	Transient DOS due to improper authorization in Modem	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40521
CVE-2022-40522	Memory corruption in Linux Networking due to double free while handling a hyp-assign.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40522
CVE-2022-40523	Information disclosure in Kernel due to indirect branch misprediction.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40523
CVE-2022-40525	Information disclosure in Linux Networking Firmware due to unauthorized information leak during side channel analysis.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40525
CVE-2022-40529	Memory corruption due to improper access control in kernel while processing a mapping request from root process.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40529
CVE-2022-40533	Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40533
CVE-2022-40536	Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40536
CVE-2022-40538	Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-40538
CVE-2023-21628	Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21628
CVE-2023-21632	Memory corruption in Automotive GPU while querying a gsl memory node.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21632
CVE-2023-21656	Memory corruption in WLAN HOST while receiving an WMI event from firmware.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21656
CVE-2023-21657	Memoru corruption in Audio when ADSP sends input during record use case.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21657
CVE-2023-21658	Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21658
CVE-2023-21659	Transient DOS in WLAN Firmware while processing frames with missing header fields.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21659
CVE-2023-21660	Transient DOS in WLAN Firmware while parsing FT Information Elements.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21660
CVE-2023-21661	Transient DOS while parsing WLAN beacon or probe-response frame.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21661
CVE-2023-21669	Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21669
CVE-2023-21670	Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-21670
CVE-2023-20727	In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588531; Issue ID: ALPS07588531.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20727
CVE-2023-2833	The ReviewX plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.13 due to insufficient restriction on the 'rx_set_screen_options' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their user role by supplying the 'wp_screen_options[option]' and 'wp_screen_options[value]' parameters during a screen option update.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2833
CVE-2023-3119	A vulnerability, which was classified as critical, has been found in SourceCodester Service Provider Management System 1.0. Affected by this issue is some unknown functionality of the file view.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-230798 is the identifier assigned to this vulnerability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3119
CVE-2023-3120	A vulnerability, which was classified as critical, was found in SourceCodester Service Provider Management System 1.0. This affects an unknown part of the file view_service.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-230799.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3120
CVE-2023-3121	A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. This vulnerability affects unknown code of the file /ipms/imageConvert/image. The manipulation of the argument fileUrl leads to server-side request forgery. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230800. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-3121
CVE-2023-33381	A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router (firmware version AR_g5.8_110WVN0b7_2). The vulnerability allows an authenticated user to execute arbitrary OS commands by sending specially crafted input to the router via the ping function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33381
CVE-2023-33460	There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33460
CVE-2023-33659	A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nmq_subinfo_decode() in the file mqtt_parser.c. An attacker could exploit this vulnerability to cause a denial of service attack.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33659
CVE-2023-20712	In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07796914; Issue ID: ALPS07796914.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20712
CVE-2023-20715	In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07796900; Issue ID: ALPS07796900.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20715
CVE-2023-20716	In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07796883; Issue ID: ALPS07796883.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20716
CVE-2023-20723	In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843845.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20723
CVE-2023-20724	In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843841.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20724
CVE-2023-20725	In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only); Issue ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only).	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20725
CVE-2023-20728	In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573603; Issue ID: ALPS07573603.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20728
CVE-2023-20729	In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573575.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20729
CVE-2023-20730	In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573552.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20730
CVE-2023-20731	In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573495; Issue ID: ALPS07573495.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20731
CVE-2023-20732	In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573480; Issue ID: ALPS07573480.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20732
CVE-2023-20733	In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645149.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20733
CVE-2023-20734	In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645184.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20734
CVE-2023-20735	In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645178.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20735
CVE-2023-20736	In vcu, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645189.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20736
CVE-2023-20737	In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645167.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20737
CVE-2023-20738	In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645173.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20738
CVE-2023-20739	In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559819; Issue ID: ALPS07559819.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20739
CVE-2023-20740	In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559819; Issue ID: ALPS07559840.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20740
CVE-2023-20741	In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628591; Issue ID: ALPS07628606.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20741
CVE-2023-20742	In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628591; Issue ID: ALPS07628540.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20742
CVE-2023-20743	In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519142.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20743
CVE-2023-20744	In vcu, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519200.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20744
CVE-2023-20745	In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07560694.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20745
CVE-2023-20746	In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519217.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20746
CVE-2023-20747	In vcu, there is a possible memory corruption due to type confusion. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519103; Issue ID: ALPS07519121.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20747
CVE-2023-20749	In swpm, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07780926; Issue ID: ALPS07780926.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20749
CVE-2023-20750	In swpm, there is a possible out of bounds write due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07780926; Issue ID: ALPS07780928.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20750
CVE-2023-20751	In keymange, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07825502; Issue ID: ALPS07825502.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20751
CVE-2023-20752	In keymange, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07826586; Issue ID: ALPS07826586.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-20752
CVE-2023-33530	There is a command injection vulnerability in the Tenda G103 Gigabit GPON Terminal with firmware version V1.0.0.5. If an attacker gains web management privileges, they can inject commands gaining shell privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33530
CVE-2023-31569	TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection via the setWanCfg function.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-31569
CVE-2023-33457	In Sogou Workflow v0.10.6, memcpy a negtive size in URIParser::parse , may cause buffer-overflow and crash.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33457
CVE-2023-33532	There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an attacker gains web management privileges, they can inject commands into the post request parameters, thereby gaining shell privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33532
CVE-2023-33533	Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and R6900 with Firmware Version 1.0.2.26 are vulnerable to Command Injection. If an attacker gains web management privileges, they can inject commands into the post request parameters, gaining shell privileges.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33533
CVE-2023-30948	A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to comments not being gated by additional authorization checks. This could enable an authenticated user to inject a prior discovered attachment UUID into other arbitrary comments to discover it's content.\n\nThis defect was fixed in Foundry Comments 2.249.0, and a patch was rolled out to affected Foundry environments. No further intervention is required at this time.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-30948
CVE-2023-32545	\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., CSP). This could lead to an out-of-bounds read in Cscape!CANPortMigration. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process. \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32545
CVE-2023-32281	\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., CSP). This could lead to an out-of-bounds read in the FontManager. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process.\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32281
CVE-2023-32289	\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g.., CSP). This could lead to an out-of-bounds read in IO_CFG. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process. \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32289
CVE-2023-32539	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., HMI). This could lead to an out-of-bounds write at CScape_EnvisionRV+0x2e3c04. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process.\n\n \n\n \n\n \n\n \n\n \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32539
CVE-2023-32549	Landscape cryptographic keys were insecurely generated with a weak pseudo-random generator.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32549
CVE-2023-32550	Landscape's server-status page exposed sensitive system information. This data leak included GET requests which contain information to attack and leak further information from the Landscape API.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32550
CVE-2023-32551	Landscape allowed URLs which caused open redirection.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32551
CVE-2023-0921	A lack of length validation in GitLab CE/EE affecting all versions from 8.3 before 15.10.8, 15.11 before 15.11.7, and 16.0 before 16.0.2 allows an authenticated attacker to create a large Issue description via GraphQL which, when repeatedly requested, saturates CPU usage.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-0921
CVE-2023-27916	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing font files (e.g., FNT). This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process. \n\n \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27916
CVE-2023-28653	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., CSP). This could lead to a use-after-free vulnerability. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process. \n\n \n\n \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-28653
CVE-2023-29503	\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., CSP). This could lead to a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process. \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29503
CVE-2023-2132	An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A DollarMathPostFilter Regular Expression Denial of Service in was possible by sending crafted payloads to the preview_markdown endpoint.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2132
CVE-2023-31244	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected product does not properly validate user-supplied data. If a user opens a maliciously formed CSP file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer. \n\n \n\n \n\n \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-31244
CVE-2023-31278	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., HMI). This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process. \n\n\n\n \n\n \n\n \n\n \n\n \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-31278
CVE-2023-31606	A Regular Expression Denial of Service (ReDoS) issue was discovered in the sanitize_html function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-31606
CVE-2023-32203	\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nThe affected application lacks proper validation of user-supplied data when parsing project files (e.g., HMI). This could lead to an out-of-bounds write at CScape_EnvisionRV+0x2e374b. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process. \n\n \n\n \n\n \n\n \n\n \n\n\n\n \n\n\n\n\n\n\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32203
CVE-2023-34111	The `Release PR Merged` workflow in the github repo taosdata/grafanaplugin is subject to a command injection vulnerability which allows for arbitrary code execution within the github action context due to the insecure usage of `${{ github.event.pull_request.title }}` in a bash command within the GitHub workflow. Attackers can inject malicious commands which will be executed by the workflow. This happens because `${{ github.event.pull_request.title }}` is directly passed to bash command on like 25 of the workflow. This may allow an attacker to gain access to secrets which the github action has access to or to otherwise make use of the compute resources.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34111
CVE-2022-46165	Syncthing is an open source, continuous file synchronization program. In versions prior to 1.23.5 a compromised instance with shared folders could sync malicious files which contain arbitrary HTML and JavaScript in the name. If the owner of another device looks over the shared folder settings and moves the mouse over the latest sync, a script could be executed to change settings for shared folders or add devices automatically. Additionally adding a new device with a malicious name could embed HTML or JavaScript inside parts of the page. As a result the webUI may be subject to a stored cross site scripting attack. This issue has been addressed in version 1.23.5. Users are advised to upgrade. Users unable to upgrade should avoid sharing folders with untrusted users.	–	https://nvd.nist.gov/vuln/detail/CVE-2022-46165
CVE-2023-27126	The AES Key-IV pair used by the TP-Link TAPO C200 camera V3 (EU) on firmware version 1.1.22 Build 220725 is reused across all cameras. An attacker with physical access to a camera is able to extract and decrypt sensitive data containing the Wifi password and the TP-LINK account credential of the victim.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-27126
CVE-2023-33613	axTLS v2.1.5 was discovered to contain a heap buffer overflow in the bi_import function in axtls-code/crypto/bigint.c. This vulnerability allows attackers to cause a Denial of Service (DoS) when parsing a private key.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33613
CVE-2023-33747	CloudPanel v2.2.2 allows attackers to execute a path traversal.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33747
CVE-2023-34104	fast-xml-parser is an open source, pure javascript xml parser. fast-xml-parser allows special characters in entity names, which are not escaped or sanitized. Since the entity name is used for creating a regex for searching and replacing entities in the XML body, an attacker can abuse it for denial of service (DoS) attacks. By crafting an entity name that results in an intentionally bad performing regex and utilizing it in the entity replacement step of the parser, this can cause the parser to stall for an indefinite amount of time. This problem has been resolved in v4.2.4. Users are advised to upgrade. Users unable to upgrade should avoid using DOCTYPE parsing by setting the `processEntities: false` option.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34104
CVE-2023-22833	Palantir discovered a software bug in a recently released version of Foundry’s Lime2 service, one of the services backing the Ontology. The software bug has been fixed and the fix has been deployed to your hosted Foundry environment. The vulnerability allowed authenticated users within a Foundry organization to potentially bypass discretionary or mandatory access controls under certain circumstances.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-22833
CVE-2023-2183	Grafana is an open-source platform for monitoring and observability. \n\nThe option to send a test alert is not available from the user panel UI for users having the Viewer role. It is still possible for a user with the Viewer role to send a test alert using the API as the API does not check access to this function.\n\nThis might enable malicious users to abuse the functionality by sending multiple alert messages to e-mail and Slack, spamming users, prepare Phishing attack or block SMTP server.\n\nUsers may upgrade to version 9.5.3, 9.4.12, 9.3.15, 9.2.19 and 8.5.26 to receive a fix.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2183
CVE-2023-2801	Grafana is an open-source platform for monitoring and observability. \n\nUsing public dashboards users can query multiple distinct data sources using mixed queries. However such query has a possibility of crashing a Grafana instance.\n\nThe only feature that uses mixed queries at the moment is public dashboards, but it's also possible to cause this by calling the query API directly.\n\nThis might enable malicious users to crash Grafana instances through that endpoint.\n\nUsers may upgrade to version 9.4.12 and 9.5.3 to receive a fix.\n\n	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2801
CVE-2023-32682	Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In affected versions it may be possible for a deactivated user to login when using uncommon configurations. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the `jwt_config.enabled` configuration setting. 2. The local password database is enabled via the `password_config.enabled` and `password_config.localdb_enabled` configuration settings and a user's password is updated via an admin API after a user is deactivated. Note that the local password database is enabled by default, but it is uncommon to set a user's password after they've been deactivated. Installations that are configured to only allow login via Single Sign-On (SSO) via CAS, SAML or OpenID Connect (OIDC); or via an external password provider (e.g. LDAP) are not affected. If not using JSON Web Tokens, ensure that deactivated users do not have a password set. This issue has been addressed in version 1.85.0. Users are advised to upgrade.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32682
CVE-2023-32683	Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. A discovered oEmbed or image URL can bypass the `url_preview_url_blacklist` setting potentially allowing server side request forgery or bypassing network policies. Impact is limited to IP addresses allowed by the `url_preview_ip_range_blacklist` setting (by default this only allows public IPs) and by the limited information returned to the client: 1. For discovered oEmbed URLs, any non-JSON response or a JSON response which includes non-oEmbed information is discarded. 2. For discovered image URLs, any non-image response is discarded. Systems which have URL preview disabled (via the `url_preview_enabled` setting) or have not configured a `url_preview_url_blacklist` are not affected. This issue has been addressed in version 1.85.0. Users are advised to upgrade. User unable to upgrade may also disable URL previews.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-32683
CVE-2023-33651	An issue in the MVC Device Simulator of Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) v9.0 Initial Release to v13.0 Initial Release allows attackers to bypass authorization rules.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33651
CVE-2023-33652	Sitecore Experience Platform (XP) v9.3 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the component /sitecore/shell/Invoke.aspx.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33652
CVE-2023-33653	Sitecore Experience Platform (XP) v9.3 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the component /Applications/Content%20Manager/Execute.aspx?cmd=convert&mode=HTML.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33653
CVE-2023-33957	notation is a CLI tool to sign and verify OCI artifacts and container images. An attacker who has compromised a registry and added a high number of signatures to an artifact can cause denial of service of services on the machine, if a user runs notation inspect command on the same machine. The problem has been fixed in the release v1.0.0-rc.6. Users should upgrade their notation packages to v1.0.0-rc.6 or above. Users are advised to upgrade. Users unable to upgrade may restrict container registries to a set of secure and trusted container registries.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33957
CVE-2023-33958	notation is a CLI tool to sign and verify OCI artifacts and container images. An attacker who has compromised a registry and added a high number of signatures to an artifact can cause denial of service of services on the machine, if a user runs notation verify command on the same machine. The problem has been fixed in the release v1.0.0-rc.6. Users should upgrade their notation packages to v1.0.0-rc.6 or above. Users unable to upgrade may restrict container registries to a set of secure and trusted container registries.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33958
CVE-2023-33959	notation is a CLI tool to sign and verify OCI artifacts and container images. An attacker who has compromised a registry can cause users to verify the wrong artifact. The problem has been fixed in the release v1.0.0-rc.6. Users should upgrade their notation-go library to v1.0.0-rc.6 or above. Users unable to upgrade may restrict container registries to a set of secure and trusted container registries.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33959
CVE-2023-33977	Kiwi TCMS is an open source test management system for both manual and automated testing. Kiwi TCMS allows users to upload attachments to test plans, test cases, etc. Earlier versions of Kiwi TCMS had introduced upload validators in order to prevent potentially dangerous files from being uploaded and Content-Security-Policy definition to prevent cross-site-scripting attacks. The upload validation checks were not 100% robust which left the possibility to circumvent them and upload a potentially dangerous file which allows execution of arbitrary JavaScript in the browser. Additionally we've discovered that Nginx's `proxy_pass` directive will strip some headers negating protections built into Kiwi TCMS when served behind a reverse proxy. This issue has been addressed in version 12.4. Users are advised to upgrade. Users unable to upgrade who are serving Kiwi TCMS behind a reverse proxy should make sure that additional header values are still passed to the client browser. If they aren't redefining them inside the proxy configuration.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33977
CVE-2023-1621	An issue has been discovered in GitLab EE affecting all versions starting from 12.0 before 15.10.5, all versions starting from 15.11 before 15.11.1. A malicious group member may continue to commit to projects even from a restricted IP address.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-1621
CVE-2023-29632	PrestaShop jmspagebuilder 3.x is vulnerable to SQL Injection via ajax_jmspagebuilder.php.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-29632
CVE-2023-2157	A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to the application crashing.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2157
CVE-2023-2253	A flaw was found in the `/v2/_catalog` endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned (query string: `n`). This vulnerability allows a malicious user to submit an unreasonably large value for `n,` causing the allocation of a massive string array, possibly causing a denial of service through excessive use of memory.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2253
CVE-2023-2602	A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2602
CVE-2023-2603	A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2603
CVE-2023-2961	A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-2961
CVE-2023-33477	In Harmonic NSG 9000-6G devices, an authenticated remote user can obtain source code by directly requesting a special path.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33477
CVE-2023-33569	Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via ip/eval/ajax.php?action=update_user.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33569
CVE-2023-33684	Weak session management in DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Firmware: 1.9.3 Bios firmware: 7.1 (Apr 19 2021) Gui: 2.46 FPGA: 169.55 uc: 6.15 allows attackers on the same network to bypass authentication by re-using the IP address assigned to the device by the NAT protocol.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-33684
CVE-2023-34409	In Percona Monitoring and Management (PMM) server 2.x before 2.37.1, the authenticate function in auth_server.go does not properly formalize and sanitize URL paths to reject path traversal attempts. This allows an unauthenticated remote user, when a crafted POST request is made against unauthenticated API routes, to access otherwise protected API routes leading to escalation of privileges and information disclosure.	–	https://nvd.nist.gov/vuln/detail/CVE-2023-34409