Skip to main content
CVE-2023-3693 CRITICAL POC Act Now

A vulnerability classified as critical was found in SourceCodester Life Insurance Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Life Insurance Management System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-38378 CRITICAL POC Act Now

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Mso5000 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-38379 HIGH POC This Week

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to change the admin password via a zero-length pass0 to the webcontrol changepwd.cgi. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Mso5000 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-3692 HIGH POC PATCH This Week

Unrestricted Upload of File with Dangerous Type in GitHub repository admidio/admidio prior to 4.2.10. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

File Upload Admidio
NVD GitHub
CVSS 3.1
7.2
EPSS
0.8%
CVE-2023-3691 MEDIUM POC PATCH This Month

A vulnerability, which was classified as problematic, was found in layui up to v2.8.0-rc.16. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Layui
NVD VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-3690 CRITICAL Act Now

A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Quickorder
NVD VulDB
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-3689 CRITICAL Act Now

A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Quickqr
NVD VulDB
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-3688 CRITICAL Act Now

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Quickjob
NVD VulDB
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-3687 CRITICAL Act Now

A vulnerability was found in Bylancer QuickVCard 2.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Quickvcard
NVD VulDB
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-3686 CRITICAL Act Now

A vulnerability was found in Bylancer QuickAI OpenAI 3.8.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Quickai Openai
NVD VulDB
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-30989 HIGH PATCH This Week

IBM Performance Tools for i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation IBM
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-30988 HIGH PATCH This Week

The IBM i 7.2, 7.3, 7.4, and 7.5 product Facsimile Support for i contains a local privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation IBM
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-3684 MEDIUM This Month

A vulnerability was found in LivelyWorks Articart 2.0.1 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Articart
NVD VulDB
CVSS 3.1
6.1
EPSS
0.3%
CVE-2023-3685 MEDIUM This Month

A vulnerability was found in Nesote Inout Search Engine AI Edition 1.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Inout Search Engine Ai Edition
NVD VulDB
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-3683 MEDIUM This Month

A vulnerability has been found in LivelyWorks Articart 2.0.1 and classified as problematic. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Articart
NVD VulDB
CVSS 3.1
5.4
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy