Skip to main content
CVE-2023-46139 MEDIUM This Month

KernelSU is a Kernel based root solution for Android. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Google Authentication Bypass Kernelsu
NVD GitHub
CVSS 3.1
5.7
EPSS
0.2%
CVE-2023-24410 MEDIUM This Month

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Contact Form - WPManageNinja LLC Contact Form Plugin - Fastest Contact Form Builder Plugin for. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress SQLi
NVD
CVSS 3.1
5.5
EPSS
0.5%
CVE-2023-25047 MEDIUM This Month

A vulnerability in davidfcarr RSVPMarker rsvpmaker.9.3. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-46250 MEDIUM PATCH This Month

pypdf is a free and open-source pure-python PDF library. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Python Denial Of Service Pypdf
NVD GitHub
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-31794 MEDIUM This Month

MuPDF v1.21.1 was discovered to contain an infinite recursion in the component pdf_mark_list_push. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Mupdf
NVD GitHub
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-43796 MEDIUM PATCH This Month

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Synapse Fedora
NVD GitHub
CVSS 3.1
5.3
EPSS
0.9%
CVE-2023-46237 MEDIUM PATCH This Month

FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Apache Path Traversal Fogproject
NVD GitHub
CVSS 3.1
5.3
EPSS
0.5%
CVE-2023-46138 MEDIUM PATCH This Month

JumpServer is an open source bastion host and maintenance security audit system that complies with 4A specifications. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Jumpserver
NVD GitHub
CVSS 3.1
5.3
EPSS
0.3%
CVE-2023-40681 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Groundhogg
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-46210 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wc Captcha
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2023-43295 LOW Monitor

Cross Site Request Forgery vulnerability in Click Studios (SA) Pty Ltd Passwordstate v.Build 9785 and before allows a local attacker to execute arbitrary code via a crafted request. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE CSRF Passwordstate
NVD
CVSS 3.1
3.5
EPSS
0.2%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy