Skip to main content
CVE-2023-0675 HIGH POC This Week

A vulnerability, which was classified as critical, was found in Calendar Event Management System 2.3.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Calendar Event Management System
NVD VulDB
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-0671 HIGH POC PATCH This Week

Code Injection in GitHub repository froxlor/froxlor prior to 2.0.10. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

RCE Code Injection Froxlor
NVD GitHub
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-0673 HIGH This Week

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

PHP SQLi Online Eyewear Shop
NVD VulDB
CVSS 3.1
8.1
EPSS
0.5%
CVE-2023-25193 HIGH PATCH This Week

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Harfbuzz Fedora
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy