Skip to main content
CVE-2023-1499 CRITICAL POC Act Now

A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Simple Art Gallery
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-26905 CRITICAL POC Act Now

An issue was discovered in Alphaware - Simple E-Commerce System v1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Alphaware Simple E Commerce System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-26806 CRITICAL POC Act Now

Tenda W20E v15.11.0.6(US_W20EV4.0br_v15.11.0.6(1068_1546_841 is vulnerable to Buffer Overflow via function formSetSysTime,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tenda W20e Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-26805 CRITICAL POC Act Now

Tenda W20E v15.11.0.6 (US_W20EV4.0br_v15.11.0.6(1068_1546_841)_CN_TDC) is vulnerable to Buffer Overflow via function formIPMacBindModify. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tenda W20e Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-1501 HIGH POC This Week

A vulnerability, which was classified as critical, was found in RockOA 2.3.2. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Rockoa
NVD VulDB
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-1495 HIGH POC PATCH This Week

A vulnerability classified as critical was found in Rebuild up to 3.2.3. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Rebuild
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-1498 CRITICAL Act Now

A vulnerability classified as critical has been found in code-projects Responsive Hotel Site 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Responsive Hotel Site
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-1497 CRITICAL Act Now

A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload PHP Simple And Nice Shopping Cart Script
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-1496 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository imgproxy/imgproxy prior to 3.14.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Imgproxy
NVD GitHub
CVSS 3.1
5.4
EPSS
1.6%
CVE-2023-28617 HIGH PATCH This Week

org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Command Injection Org Mode
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2023-1500 MEDIUM This Month

A vulnerability, which was classified as problematic, has been found in code-projects Simple Art Gallery 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Simple Art Gallery
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy