Skip to main content
CVE-2023-0302 HIGH POC PATCH This Week

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Code Injection Radare2
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-0305 HIGH POC This Week

A vulnerability classified as critical was found in SourceCodester Online Food Ordering System. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System V2
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-0304 HIGH POC This Week

A vulnerability classified as critical has been found in SourceCodester Online Food Ordering System. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System V2
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-0303 HIGH POC This Week

A vulnerability was found in SourceCodester Online Food Ordering System. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System V2
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-23595 HIGH POC This Week

BlueCat Device Registration Portal 2.2 allows XXE attacks that exfiltrate single-line files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XXE Device Registration Portal
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2023-23590 HIGH This Week

Mercedes-Benz XENTRY Retail Data Storage 7.8.1 allows remote attackers to cause a denial of service (device restart) via an unauthenticated API request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Xentry Retail Data Storage Firmware
NVD
CVSS 3.1
7.5
EPSS
26.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy