Skip to main content
CVE-2023-0784 CRITICAL POC Act Now

A vulnerability classified as critical has been found in SourceCodester Best Online News Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Best Online News Portal
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2022-45088 CRITICAL Act Now

Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows PHP Local File Inclusion.01.01. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Smartpower Web
NVD VulDB
CVSS 3.1
9.8
EPSS
0.4%
CVE-2022-4557 CRITICAL Act Now

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection.01.01. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Smartpower
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
CVE-2023-0789 CRITICAL PATCH Act Now

Command Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Command Injection Phpmyfaq
NVD GitHub
CVSS 3.1
9.8
EPSS
1.7%
CVE-2023-0788 CRITICAL PATCH Act Now

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

RCE Code Injection Phpmyfaq
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy