Skip to main content
CVE-2023-46604 CRITICAL POC KEV EUVD KEV PATCH THREAT Act Now

The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Java Deserialization Activemq Activemq Legacy Openwire Module Debian Linux +3
NVD
CVSS 3.1
9.8
EPSS
99.7%
CVE-2023-45499 CRITICAL POC Emergency

VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain hardcoded credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Vinchin Backup And Recovery
NVD
CVSS 3.1
9.8
EPSS
7.9%
CVE-2023-45498 CRITICAL POC THREAT Emergency

VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain a command injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Vinchin Backup And Recovery
NVD
CVSS 3.1
9.8
EPSS
20.5%
CVE-2023-5830 CRITICAL POC THREAT Act Now

A vulnerability classified as critical has been found in ColumbiaSoft Document Locator. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Document Locator
NVD VulDB
CVSS 3.1
9.8
EPSS
61.0%
CVE-2023-5828 CRITICAL POC Act Now

A vulnerability was found in Nanning Ontall Longxing Industrial Development Zone Project Construction and Installation Management System up to 20231026. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Longxing Industrial Development Zone Project
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5827 CRITICAL POC Act Now

A vulnerability was found in Shanghai CTI Navigation CTI Monitoring and Early Warning System 2.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Cti Monitoring And Early Warning System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5807 CRITICAL Act Now

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TRtek Software Education Portal allows SQL Injection.2023.29. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Education Portal
NVD VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2023-46510 CRITICAL Act Now

An issue in ZIONCOM (Hong Kong) Technology Limited A7000R v.4.1cu.4154 allows an attacker to execute arbitrary code via the cig-bin/cstecgi.cgi to the settings/setPasswordCfg function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection A7000r Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-46509 CRITICAL Act Now

An issue in Contec SolarView Compact v.6.0 and before allows an attacker to execute arbitrary code via the texteditor.php component. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection PHP Solarview Compact Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-46853 CRITICAL PATCH Act Now

In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy mode, if \n is used instead of \r\n. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Memcached
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy