Skip to main content
CVE-2023-26055 CRITICAL POC PATCH Act Now

XWiki Commons are technical libraries common to several other top level XWiki projects. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Code Injection Commons
NVD GitHub
CVSS 3.1
9.9
EPSS
1.2%
CVE-2023-26477 CRITICAL POC PATCH THREAT Act Now

XWiki Platform is a generic wiki platform. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Python Code Injection Xwiki
NVD GitHub
CVSS 3.1
9.8
EPSS
74.8%
CVE-2023-26780 CRITICAL POC Act Now

CleverStupidDog yf-exam v 1.8.0 is vulnerable to SQL Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Yf Exam
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1151 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Electronic Medical Records System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-46501 CRITICAL Act Now

Accruent LLC Maintenance Connection 2021 (all) & 2022.2 was discovered to contain a SQL injection vulnerability via the E-Mail to Work Order function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Maintenance Connection
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2021-3854 CRITICAL Act Now

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Glox Technology Useroam Hotspot allows SQL Injection.1.0.15. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Useroam Hotspot
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
CVE-2023-26053 CRITICAL PATCH Act Now

Gradle is a build tool with a focus on build automation and support for multi-language development. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Gradle
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy