Skip to main content
CVE-2023-4451 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit prior to 2.6.4. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Cockpit
NVD GitHub
CVSS 3.1
6.1
EPSS
2.3%
CVE-2023-4434 MEDIUM POC PATCH This Month

Missing Authorization in GitHub repository hamza417/inure prior to build88. Rated medium severity (CVSS 6.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Inure
NVD GitHub
CVSS 3.1
6.1
EPSS
0.3%
CVE-2023-4435 MEDIUM POC PATCH This Month

Improper Input Validation in GitHub repository hamza417/inure prior to build88. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Inure
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-4439 MEDIUM This Month

A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as problematic. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Card Holder Management System
NVD VulDB
CVSS 3.1
5.3
EPSS
0.4%
CVE-2023-36674 MEDIUM PATCH This Month

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x before 1.39.4, and 1.40.x before 1.40.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Mediawiki
NVD
CVSS 3.1
5.3
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy