Skip to main content
CVE-2023-0302 HIGH POC PATCH This Week

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Code Injection Radare2
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-0305 HIGH POC This Week

A vulnerability classified as critical was found in SourceCodester Online Food Ordering System. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System V2
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-0304 HIGH POC This Week

A vulnerability classified as critical has been found in SourceCodester Online Food Ordering System. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System V2
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-0303 HIGH POC This Week

A vulnerability was found in SourceCodester Online Food Ordering System. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System V2
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-23595 HIGH POC This Week

BlueCat Device Registration Portal 2.2 allows XXE attacks that exfiltrate single-line files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XXE Device Registration Portal
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2023-0311 CRITICAL PATCH Act Now

Improper Authentication in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Phpmyfaq
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-0307 CRITICAL PATCH Act Now

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Brute Force Phpmyfaq
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-23590 HIGH This Week

Mercedes-Benz XENTRY Retail Data Storage 7.8.1 allows remote attackers to cause a denial of service (device restart) via an unauthenticated API request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Xentry Retail Data Storage Firmware
NVD
CVSS 3.1
7.5
EPSS
26.4%
CVE-2023-0314 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-0312 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
6.1
EPSS
0.6%
CVE-2023-0313 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-0310 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0309 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0308 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0306 MEDIUM PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Phpmyfaq
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy