Skip to main content
CVE-2023-5301 HIGH POC This Week

A vulnerability classified as critical was found in DedeCMS 5.7.111. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Dedecms
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
6.2%
CVE-2023-5298 HIGH POC This Week

A vulnerability was found in Tongda OA 2017. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Tongda Office Anywhere
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-5207 HIGH This Week

A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Gitlab
NVD
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-44488 HIGH PATCH This Week

VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Libvpx Enterprise Linux Debian Linux Fedora
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2023-5318 HIGH PATCH This Week

Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Microweber
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy