Skip to main content
CVE-2023-41847 MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Notice Bar
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-41797 MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Locations
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-44463 MEDIUM PATCH This Month

An issue was discovered in pretix before 2023.7.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Pretix
NVD GitHub
CVSS 3.1
5.3
EPSS
0.5%
CVE-2023-0809 MEDIUM This Month

In Mosquitto before 2.0.16, excessive memory is allocated based on malicious initial packets that are not CONNECT packets. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Mosquitto
NVD
CVSS 3.1
5.3
EPSS
0.6%
CVE-2023-44266 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wp Adminify
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-44265 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Popup Contact Form
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-44230 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Popup Contact Form
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-44228 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Onclick Show Popup
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2023-44263 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Social Metrics
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-44262 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Blocks
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-44239 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Social Share On Image Hover
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-44479 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wp Jump Menu
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41859 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Order Delivery Date For Wp E Commerce
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41855 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Regpack
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41800 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Cmp For Gdpr Cpra Gpp Tcf
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41737 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Swifty Bar
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41736 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Email Posts To Subscribers
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41734 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Insert Estimated Reading Time
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41733 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Back To The Top Button
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-41731 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Wordpress Publish Post Email Notification
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-32819 MEDIUM This Month

In display, there is a possible information disclosure due to a missing bounds check. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Android
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2023-31042 MEDIUM This Month

A flaw exists in FlashBlade Purity whereby an authenticated user with access to FlashBlade’s object store protocol can impact the availability of the system’s data access and replication protocols. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Purity
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2023-3770 MEDIUM This Month

Incorrect validation vulnerability of the data entered, allowing an attacker with access to the network on which the affected device is located to use the discovery port protocol (1925/UDP) to obtain. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Ingepac Da3451 Firmware
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2023-5160 MEDIUM This Month

Mattermost fails to check the Show Full Name option at the /api/v4/teams/TEAM_ID/top/team_members endpoint allowing a member to get the full name of another user even if the Show Full Name option was. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Mattermost Information Disclosure
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2023-36627 LOW Monitor

A flaw exists in FlashBlade Purity whereby a user with access to an administrative account on a FlashBlade that is configured with timezone-dependent snapshot schedules can configure a timezone to. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Purity
NVD
CVSS 3.1
2.7
EPSS
0.5%
CVE-2023-28372 LOW Monitor

A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user with privileges to extend an object’s retention period can affect the availability of the object lock. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Purity
NVD
CVSS 3.1
2.7
EPSS
0.5%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy