Skip to main content
CVE-2022-45725 HIGH POC This Week

Improper Input Validation in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to execute arbitrary code on the target via an HTTP POST request. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Cf Wr610N Firmware
NVD VulDB
CVSS 3.1
8.8
EPSS
8.8%
CVE-2023-24646 CRITICAL POC Act Now

An arbitrary file upload vulnerability in the component /fos/admin/ajax.php of Food Ordering System v2.0 allows attackers to execute arbitrary code via a crafted PHP file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload PHP Online Food Ordering System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-24084 CRITICAL POC Act Now

ChiKoi v1.0 was discovered to contain a SQL injection vulnerability via the load_file function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Chikoi
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-25717 CRITICAL POC KEV PATCH THREAT Act Now

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Code Injection Ruckus Wireless Admin Smartzone Ap Ruckus Smartzone Firmware
NVD
CVSS 3.1
9.8
EPSS
95.3%
CVE-2023-24188 CRITICAL POC Act Now

ureport v2.2.9 was discovered to contain a directory traversal vulnerability via the deletion function which allows for arbitrary files to be deleted. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Ureport
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
1.5%
CVE-2023-25240 HIGH POC PATCH This Week

An improper SameSite Attribute vulnerability in pimCore v10.5.15 allows attackers to execute arbitrary code. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Pimcore
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-25719 HIGH POC This Week

ConnectWise Control before 22.9.10032 (formerly known as ScreenConnect) fails to validate user-supplied parameters such as the Bin/ConnectWiseControl.Client.exe h parameter. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Control
NVD
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-0263 HIGH POC This Week

The WP Yelp Review Slider WordPress plugin before 7.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Yelp Review Slider
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-0262 HIGH POC This Week

The WP Airbnb Review Slider WordPress plugin before 3.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Airbnb Review Slider
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-0261 HIGH POC This Week

The WP TripAdvisor Review Slider WordPress plugin before 10.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Tripadvisor Review Slider
NVD WPScan
CVSS 3.1
8.8
EPSS
4.4%
CVE-2023-0260 HIGH POC This Week

The WP Review Slider WordPress plugin before 12.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Review Slider
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-0259 HIGH POC This Week

The WP Google Review Slider WordPress plugin before 11.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Google SQLi WordPress Wp Google Review Slider
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-0255 HIGH POC This Week

The Enable Media Replace WordPress plugin before 4.0.2 does not prevent authors from uploading arbitrary files to the site, which may allow them to upload PHP shells on affected sites. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload WordPress PHP Enable Media Replace
NVD WPScan
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-0220 HIGH POC This Week

The Pinpoint Booking System WordPress plugin before 2.9.9.2.9 does not validate and escape one of its shortcode attributes before using it in a SQL statement, which could allow any authenticated. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Pinpoint Booking System
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-0098 HIGH POC This Week

The Simple URLs WordPress plugin before 115 does not escape some parameters before using them in various SQL statements used by AJAX actions available by any authenticated users, leading to a SQL. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Simple Urls
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-0080 HIGH POC This Week

The Customer Reviews for WooCommerce WordPress plugin before 5.16.0 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE WordPress PHP Customer Reviews For Woocommerce
NVD WPScan
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-0819 HIGH POC PATCH This Week

Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to v2.3.0-DEV. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Heap Overflow Gpac
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-0817 HIGH POC PATCH This Week

Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Gpac
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-24647 HIGH POC This Week

Food Ordering System v2.0 was discovered to contain a SQL injection vulnerability via the email parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Food Ordering System
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.3%
CVE-2023-0159 HIGH POC THREAT This Week

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation WordPress PHP Extensive Vc Addons For Wpbakery Page Builder
NVD WPScan Exploit-DB
CVSS 3.1
7.5
EPSS
55.7%
CVE-2023-25241 MEDIUM POC This Month

bgERP v22.31 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the Search parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bgerp
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-24648 MEDIUM POC This Month

Zstore v6.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /index.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Zstore
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-24086 MEDIUM POC This Month

SLIMS v9.5.2 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /customs/loan_by_class.php?reportView. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Slims
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-0099 MEDIUM POC This Month

The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Simple Urls
NVD WPScan
CVSS 3.1
6.1
EPSS
1.7%
CVE-2023-25718 CRITICAL Act Now

In ConnectWise Control through 22.9.10032 (formerly known as ScreenConnect), after an executable file is signed, additional instructions can be added without invalidating the signature, such as. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jwt Attack Control
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-23551 CRITICAL Act Now

Control By Web X-600M devices run Lua scripts and are vulnerable to code injection, which could allow an attacker to remotely execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection X 600M Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-45724 MEDIUM POC This Month

Incorrect Access Control in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to perform any HTTP request to an unauthenticated page to force the server to generate a. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Cf Wr610N Firmware
NVD VulDB
CVSS 3.1
5.4
EPSS
0.7%
CVE-2023-0804 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0803 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0802 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0801 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to cause a denial-of-service via a. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0800 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0799 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Use After Free Buffer Overflow Memory Corruption Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0798 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0797 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0796 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0795 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Libtiff
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0818 MEDIUM POC PATCH This Month

Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Gpac
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-24619 MEDIUM POC This Month

Redpanda before 22.3.12 discloses cleartext AWS credentials. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Kubernetes Information Disclosure Redpanda
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-23948 MEDIUM POC This Month

The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google SQLi Owncloud Client
NVD GitHub
CVSS 3.1
5.5
EPSS
0.5%
CVE-2023-25572 MEDIUM POC PATCH This Month

react-admin is a frontend framework for building browser applications on top of REST/GraphQL APIs. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Ra Ui Materialui React Admin
NVD GitHub
CVSS 3.1
5.4
EPSS
0.7%
CVE-2023-0810 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Btcpayserver
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2023-0379 MEDIUM POC This Month

The Spotlight Social Feeds WordPress plugin before 1.4.3 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Spotlight Social Feeds
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0373 MEDIUM POC This Month

The Lightweight Accordion WordPress plugin before 1.5.15 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Lightweight Accordion
NVD WPScan
CVSS 3.1
5.4
EPSS
0.6%
CVE-2023-0362 MEDIUM POC This Month

Themify Portfolio Post WordPress plugin before 1.2.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Portfolio Post
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0360 MEDIUM POC This Month

The Location Weather WordPress plugin before 1.3.4 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Location Weather
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0333 MEDIUM POC This Month

The TemplatesNext ToolKit WordPress plugin before 3.2.9 does not validate some of its shortcode attributes before using them to generate an HTML tag, which could allow users with the contributor role. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Templatesnext Toolkit
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0275 MEDIUM POC This Month

The Easy Accept Payments for PayPal WordPress plugin before 4.9.10 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Easy Accept Payments For Paypal
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0270 MEDIUM POC This Month

The YaMaps for WordPress Plugin WordPress plugin before 0.6.26 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed,. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Yamaps
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-0177 MEDIUM POC This Month

The Social Like Box and Page by WpDevArt WordPress plugin before 0.8.41 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Social Like Box And Page
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy