Skip to main content
CVE-2023-26045 CRITICAL PATCH Act Now

NodeBB is Node.js based forum software. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Node.js Path Traversal Nodebb
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-34478 CRITICAL PATCH Act Now

Apache Shiro, before 1.12.0 or 2.0.0-alpha-3, may be susceptible to a path traversal attack that results in an authentication bypass when used together with APIs or other web frameworks that route. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Path Traversal Authentication Bypass Shiro
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2023-3859 CRITICAL Act Now

A vulnerability was found in phpscriptpoint Car Listing 1.6 and classified as critical.php of the component GET Parameter Handler. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Car Listing
NVD VulDB
CVSS 3.1
9.8
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy