Skip to main content
CVE-2023-5301 HIGH POC This Week

A vulnerability classified as critical was found in DedeCMS 5.7.111. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Dedecms
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
6.2%
CVE-2023-5298 HIGH POC This Week

A vulnerability was found in Tongda OA 2017. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Tongda Office Anywhere
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-5201 CRITICAL Act Now

The OpenHook plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 4.3.0 via the 'php' shortcode. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Code Injection WordPress Openhook
NVD VulDB
CVSS 3.1
9.9
EPSS
7.0%
CVE-2023-5300 CRITICAL Act Now

A vulnerability classified as critical has been found in TTSPlanning up to 20230925. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Ttsplanning
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-5227 CRITICAL PATCH Act Now

Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Unrestricted File Upload vulnerability could allow attackers to upload malicious files that can be executed on the server.

File Upload Phpmyfaq
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-5321 MEDIUM POC PATCH This Month

Missing Authorization in GitHub repository hamza417/inure prior to build94. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Authentication Bypass Inure
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-5112 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-5111 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43735 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43734 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43733 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43732 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43731 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43730 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43729 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43728 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43727 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43726 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43725 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43724 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43723 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43722 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43721 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43720 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43719 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43718 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43717 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43716 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43715 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43714 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43713 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability, which allows attackers to inject JS via the "title" parameter, in the "/admin/admin-menu/add-submit" endpoint,. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43712 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-5302 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Courier Management System 1.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Best Courier Management System
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.6%
CVE-2023-43711 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43710 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43709 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43708 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43707 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43706 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43705 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43704 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43703 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-43702 MEDIUM POC This Month

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oscommerce
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-5207 HIGH This Week

A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Gitlab
NVD
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-5313 LOW POC Monitor

A vulnerability classified as problematic was found in phpkobo Ajax Poll Script 3.18. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure PHP Ajax Poll Script
NVD GitHub VulDB
CVSS 3.1
3.7
EPSS
0.5%
CVE-2023-44488 HIGH PATCH This Week

VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Libvpx Enterprise Linux Debian Linux Fedora
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2023-5318 HIGH PATCH This Week

Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Microweber
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-5295 MEDIUM This Month

The Comments by Startbit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'vivafbcomment' shortcode in versions up to, and including, 1.4 due to insufficient input sanitization. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Blog Filter
NVD VulDB
CVSS 3.1
6.4
EPSS
0.1%
CVE-2023-5305 MEDIUM This Month

A vulnerability was found in Online Banquet Booking System 1.0 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Online Banquet Booking System
NVD VulDB
CVSS 3.1
6.1
EPSS
0.3%
CVE-2023-5304 MEDIUM This Month

A vulnerability has been found in Online Banquet Booking System 1.0 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Online Banquet Booking System
NVD VulDB
CVSS 3.1
6.1
EPSS
0.3%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy