Skip to main content
CVE-2023-28115 CRITICAL POC PATCH Act Now

Snappy is a PHP library allowing thumbnail, snapshot or PDF generation from a url or a html page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE PHP Deserialization Snappy
NVD GitHub
CVSS 3.1
9.8
EPSS
2.8%
CVE-2023-1475 CRITICAL POC Act Now

A vulnerability, which was classified as critical, has been found in SourceCodester Canteen Management System 1.0.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Canteen Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1474 CRITICAL POC Act Now

A vulnerability classified as critical was found in SourceCodester Automatic Question Paper Generator System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Automatic Question Paper Generator System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1461 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Canteen Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Canteen Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1459 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Canteen Management System 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Canteen Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1454 CRITICAL POC THREAT Act Now

A vulnerability classified as critical has been found in jeecg-boot 3.5.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Jeecg Boot
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
35.8%
CVE-2023-1441 CRITICAL POC Act Now

A vulnerability has been found in SourceCodester Automatic Question Paper Generator System 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Automatic Question Paper Generator System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1439 CRITICAL POC Act Now

A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracker System 1.0.php of the component GET Parameter Handler. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Medicine Tracker System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-28531 CRITICAL Act Now

ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSH Authentication Bypass Openssh Brocade Fabric Operating System Hci Bootstrap Os +1
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-1152 CRITICAL Act Now

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Utarit Information Technologies Persolus allows SQL Injection.03.93. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Persolus
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
CVE-2023-28116 CRITICAL PATCH Act Now

Contiki-NG is an open-source, cross-platform operating system for internet of things (IoT) devices. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Contiki Ng
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-27595 CRITICAL PATCH Act Now

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Kubernetes Authentication Bypass Cilium
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-1468 CRITICAL Act Now

A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Student Study Center Desk Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-1467 CRITICAL Act Now

A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal PHP Student Study Center Desk Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-1464 CRITICAL Act Now

A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Authentication Bypass Medicine Tracker System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-1460 CRITICAL Act Now

A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Authentication Bypass Online Pizza Ordering System
NVD VulDB
CVSS 3.1
9.8
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy