Skip to main content
CVE-2023-36812 CRITICAL POC PATCH THREAT Act Now

OpenTSDB is a open source, distributed, scalable Time Series Database (TSDB). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Opentsdb
NVD GitHub
CVSS 3.1
9.8
EPSS
16.5%
CVE-2023-2834 CRITICAL POC PATCH Act Now

The BookIt plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.3.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress Authentication Bypass Bookit
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-3490 CRITICAL POC PATCH Act Now

SQL Injection in GitHub repository fossbilling/fossbilling prior to 0.5.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

SQLi Fossbilling
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-31543 CRITICAL POC PATCH Act Now

A dependency confusion in pipreqs v0.3.0 to v0.4.11 allows attackers to execute arbitrary code via uploading a crafted PyPI package to the chosen repository server. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Pipreqs
NVD GitHub
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-37303 CRITICAL POC Act Now

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Mediawiki
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-3473 CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in Campcodes Retro Cellphone Online Store 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Retro Cellphone Online Store
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-26135 CRITICAL POC Act Now

All versions of the package flatnest are vulnerable to Prototype Pollution via the nest() function in the flatnest/nest.js file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Prototype Pollution Flatnest
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-35175 CRITICAL Act Now

Certain HP LaserJet Pro print products are potentially vulnerable to Potential Remote Code Execution and/or Elevation of Privilege via Server-Side Request Forgery (SSRF) using the Web Service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF RCE HP W1A75A Firmware W1A76A Firmware +36
NVD
CVSS 3.1
9.8
EPSS
1.8%
CVE-2023-3249 CRITICAL PATCH Act Now

The Web3 - Crypto wallet Login & NFT token gating plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.6.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

WordPress Authentication Bypass Web3 Crypto Wallet Login Nft Token Gating
NVD VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2023-2846 CRITICAL Act Now

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Fx3U 16Mr Es Firmware Fx3U 16Mt Es Firmware Fx3U 16Mt Ess Firmware Fx3U 32Mr Es Firmware +146
NVD
CVSS 3.1
9.1
EPSS
1.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy