Skip to main content
CVE-2023-0783 CRITICAL POC Act Now

A vulnerability was found in EcShop 4.1.5. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Ecshop
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-0782 CRITICAL POC Act Now

A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tenda Ac23 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.5%
CVE-2023-0781 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Canteen Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Canteen Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-0127 HIGH POC This Week

A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Dwl 2600Ap Firmware
NVD
CVSS 3.1
7.8
EPSS
2.0%
CVE-2023-0776 CRITICAL PATCH Act Now

Baicells Nova 436Q, Nova 430E, Nova 430I, and Neutrino 430 LTE TDD eNodeB devices with firmware through QRTB 2.12.7 are vulnerable to remote shell code exploitation via HTTP command injections. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Neutrino 430 Firmware Nova430L Firmware Nova430E Firmware Nova436Q Firmware
NVD
CVSS 3.1
10.0
EPSS
1.2%
CVE-2023-25562 CRITICAL Act Now

DataHub is an open-source metadata platform. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Datahub
NVD GitHub
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-25561 CRITICAL Act Now

DataHub is an open-source metadata platform. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Java Information Disclosure Datahub
NVD GitHub
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-25560 CRITICAL Act Now

DataHub is an open-source metadata platform. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Datahub
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-0780 MEDIUM POC PATCH This Month

Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9-dev. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Cockpit
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-25557 CRITICAL Act Now

DataHub is an open-source metadata platform. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Datahub
NVD GitHub
CVSS 3.1
9.1
EPSS
0.7%
CVE-2023-25558 HIGH PATCH This Week

DataHub is an open-source metadata platform. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Deserialization of Untrusted Data vulnerability could allow attackers to execute arbitrary code through malicious serialized objects.

Java RCE Deserialization Datahub
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-25559 HIGH This Week

DataHub is an open-source metadata platform. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Datahub
NVD GitHub
CVSS 3.1
8.1
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy