Skip to main content
CVE-2023-3192 MEDIUM POC PATCH This Month

Session Fixation in GitHub repository froxlor/froxlor prior to 2.1.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Session Fixation Froxlor
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-22585 MEDIUM This Month

The Danfoss AK-EM100 web applications allow for Reflected Cross-Site Scripting in the title parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ak Em100 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.6%
CVE-2023-22582 MEDIUM This Month

The Danfoss AK-EM100 web applications allow for Reflected Cross-Site Scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ak Em100 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.6%
CVE-2023-25912 MEDIUM This Month

The webreport generation feature in the Danfoss AK-EM100 allows an unauthorized actor to generate a web report that discloses sensitive information such as the internal IP address, usernames and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ak Em100 Firmware
NVD
CVSS 3.1
5.3
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy