Skip to main content
CVE-2023-4543 CRITICAL POC Act Now

A vulnerability was found in IBOS OA 4.5.5. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Ibos
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-4542 CRITICAL POC THREAT Act Now

A vulnerability was found in D-Link DAR-8000-10 up to 20230809. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP D-Link Command Injection Dar 8000 10 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
86.5%
CVE-2023-40799 CRITICAL POC Act Now

Tenda AC23 Vv16.03.07.45_cn is vulnerable to Buffer Overflow via sub_450A4C function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tenda Ac23 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-39699 CRITICAL POC Act Now

IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion (LFI) vulnerability via the component /calendar/minimizer/index.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal PHP Mail Server
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-40571 CRITICAL Act Now

weblogic-framework is a tool for detecting weblogic vulnerabilities. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Oracle Deserialization Weblogic Framework
NVD GitHub
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-32757 CRITICAL Act Now

e-Excellence U-Office Force file uploading function does not restrict upload of file with dangerous type. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload Microsoft U Office Force
NVD
CVSS 3.1
9.8
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy