Skip to main content
CVE-2023-5952 CRITICAL POC Act Now

The Welcart e-Commerce WordPress plugin before 2.9.5 unserializes user input from cookies, which could allow unautehtniacted users to perform PHP Object Injection when a suitable gadget is present on. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection WordPress PHP Welcart E Commerce
NVD WPScan
CVSS 3.1
9.8
EPSS
1.3%
CVE-2023-48967 CRITICAL POC Act Now

Ssolon <= 2.6.0 and <=2.5.12 is vulnerable to Deserialization of Untrusted Data. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Deserialization Solon
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-48910 CRITICAL POC PATCH Act Now

Microcks up to 1.17.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Microcks
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-48800 CRITICAL POC Act Now

In TOTOLINK X6000R_Firmware V9.4.0cu.852_B20230719, the shttpd file sub_417338 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection X6000r Firmware
NVD
CVSS 3.1
9.8
EPSS
1.6%
CVE-2023-48799 CRITICAL POC Act Now

TOTOLINK-X6000R Firmware-V9.4.0cu.852_B20230719 is vulnerable to Command Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure X6000r Firmware
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2023-49287 CRITICAL POC Act Now

TinyDir is a lightweight C directory and file reader. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tinydir
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-5953 HIGH POC This Week

The Welcart e-Commerce WordPress plugin before 2.9.5 does not validate files to be uploaded, as well as does not have authorisation and CSRF in an AJAX action handling such upload. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload WordPress PHP CSRF Welcart E Commerce
NVD WPScan
CVSS 3.1
8.8
EPSS
0.5%
CVE-2023-5762 HIGH POC This Week

The Filr WordPress plugin before 1.2.3.6 is vulnerable from an RCE (Remote Code Execution) vulnerability, which allows the operating system to execute commands and fully compromise the server on. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection WordPress Filr
NVD WPScan
CVSS 3.1
8.8
EPSS
2.0%
CVE-2023-48966 HIGH POC This Week

An arbitrary file upload vulnerability in the component /admin/api.upload/file of ThinkAdmin v6.1.53 allows attackers to execute arbitrary code via a crafted Zip file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Thinkadmin
NVD GitHub
CVSS 3.1
8.8
EPSS
1.1%
CVE-2023-48965 HIGH POC This Week

An issue in the component /admin/api.plugs/script of ThinkAdmin v6.1.53 allows attackers to getshell via providing a crafted URL to download a malicious PHP file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Thinkadmin
NVD GitHub
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-49093 HIGH POC PATCH This Week

HtmlUnit is a GUI-less browser for Java programs. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Java RCE Code Injection Htmlunit
NVD GitHub
CVSS 3.1
8.8
EPSS
2.4%
CVE-2023-5332 HIGH POC PATCH This Week

Patch in third party library Consul requires 'enable-script-checks' to be set to False. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Gitlab Authentication Bypass HashiCorp Consul
NVD
CVSS 3.1
8.1
EPSS
0.7%
CVE-2023-41613 HIGH POC This Week

EzViz Studio v2.2.0 is vulnerable to DLL hijacking. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ezviz Studio
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2023-6063 HIGH POC THREAT This Week

The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Fastest Cache
NVD WPScan
CVSS 3.1
7.5
EPSS
73.7%
CVE-2023-47633 HIGH POC PATCH This Week

Traefik is an open source HTTP reverse proxy and load balancer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Docker Traefik
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2023-48863 HIGH POC This Week

SEMCMS 3.9 is vulnerable to SQL Injection. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass SQLi Semcms
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2023-5108 HIGH POC This Week

The Easy Newsletter Signups WordPress plugin through 1.0.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Easy Newsletter Signups
NVD WPScan
CVSS 3.1
7.2
EPSS
1.0%
CVE-2023-24046 MEDIUM POC This Month

An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ac21000 G6 Firmware
NVD
CVSS 3.1
6.8
EPSS
0.6%
CVE-2023-49280 MEDIUM POC PATCH This Month

XWiki Change Request is an XWiki application allowing to request changes on a wiki without publishing directly the changes. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Change Request
NVD GitHub
CVSS 3.1
6.5
EPSS
0.9%
CVE-2023-5990 MEDIUM POC This Month

The Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor WordPress plugin before 3.4.2 does not have CSRF checks on some of its form actions such as deletion and duplication,. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress CSRF Funnelforms Free
NVD WPScan
CVSS 3.1
6.5
EPSS
0.3%
CVE-2023-5884 MEDIUM POC This Month

The Word Balloon WordPress plugin before 4.20.3 does not protect some of its actions against CSRF attacks, allowing an unauthenticated attacker to trick a logged in user to delete arbitrary avatars. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress CSRF Word Balloon
NVD WPScan
CVSS 3.1
6.5
EPSS
0.3%
CVE-2023-5105 MEDIUM POC This Month

The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as `wp-config.php`. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal WordPress PHP Frontend File Manager Plugin
NVD WPScan
CVSS 3.1
6.5
EPSS
1.0%
CVE-2023-47106 MEDIUM POC PATCH This Month

Traefik is an open source HTTP reverse proxy and load balancer. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Nginx Traefik
NVD GitHub
CVSS 3.1
6.5
EPSS
0.6%
CVE-2023-49293 MEDIUM POC PATCH This Month

Vite is a website frontend framework. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Vite
NVD GitHub
CVSS 3.1
6.1
EPSS
1.0%
CVE-2023-5951 MEDIUM POC This Month

The Welcart e-Commerce WordPress plugin before 2.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Welcart E Commerce
NVD WPScan
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-5141 MEDIUM POC This Month

The BSK Contact Form 7 Blacklist WordPress plugin through 1.0.1 does not sanitise and escape the inserted_count parameter before outputting it back in the page, leading to a Reflected Cross-Site. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Bsk Contact Form 7 Blacklist
NVD WPScan
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-48815 MEDIUM POC This Month

kkFileView v4.3.0 is vulnerable to Incorrect Access Control. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Open Redirect Kkfileview
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-40082 CRITICAL PATCH Act Now

In modify_for_next_stage of fdt.rs, there is a possible way to render KASLR ineffective due to improperly used crypto. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Privilege Escalation Android
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-40078 CRITICAL PATCH Act Now

In a2dp_vendor_opus_decoder_decode_packet of a2dp_vendor_opus_decoder.cc, there is a possible out of bounds write due to a heap buffer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Privilege Escalation Android
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-35690 CRITICAL Act Now

In RGXDestroyHWRTData of rgxta3d.c, there is a possible arbitrary code execution due to an uncaught exception. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-24052 CRITICAL Act Now

An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not prompt for the current password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Ac21000 G6 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-24051 CRITICAL Act Now

A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via brute force style attacks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Ac21000 G6 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-24049 CRITICAL Act Now

An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges on the device via poor credential management. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Brute Force Ac21000 G6 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-21403 CRITICAL Act Now

In RGXDestroyZSBufferKM of rgxta3d.c, there is a possible arbitrary code execution due to an uncaught exception. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21402 CRITICAL Act Now

In MMU_UnmapPages of mmu_common.c, there is a possible out of bounds read due to improper input validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21401 CRITICAL Act Now

In DevmemIntChangeSparse of devicemem_server.c, there is a possible out of bounds write due to an integer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21263 CRITICAL Act Now

In OSMMapPMRGeneric of pmr_os.c, there is a possible out of bounds write due to an uncaught exception. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21228 CRITICAL Act Now

In PMRChangeSparseMemOSMem of physmem_osmem_linux.c, there is a possible out of bounds write due to an incorrect bounds check. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21218 CRITICAL Act Now

In PMRChangeSparseMemOSMem of physmem_osmem_linux.c, there is a possible out of bounds write due to an incorrect bounds check. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21217 CRITICAL Act Now

In PMRWritePMPageList of TBD, there is a possible out of bounds write due to an integer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21216 CRITICAL Act Now

In PMRChangeSparseMemOSMem of physmem_osmem_linux.c, there is a possible arbitrary code execution due to a use after free. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Denial Of Service Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21215 CRITICAL Act Now

In DevmemIntAcquireRemoteCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21166 CRITICAL Act Now

In RGXBackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Denial Of Service Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21164 CRITICAL Act Now

In DevmemIntMapPMR of devicemem_server.c, there is a possible arbitrary code execution due to a use after free. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Denial Of Service Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21163 CRITICAL Act Now

In PMR_ReadBytes of pmr.c, there is a possible arbitrary code execution due to a use after free. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Denial Of Service Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-21162 CRITICAL Act Now

In RGXUnbackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation RCE Denial Of Service Android
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-44305 CRITICAL Act Now

Dell DM5500 5.14.0.0, contains a Stack-based Buffer Overflow Vulnerability in the appliance. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Stack Overflow Buffer Overflow RCE Dell Dm5500 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-44302 CRITICAL Act Now

Dell DM5500 5.14.0.0 and prior contain an improper authentication vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Dell Authentication Bypass Powerprotect Data Manager Dm5500 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-4460 MEDIUM POC This Month

The Uploading SVG, WEBP and ICO files WordPress plugin through 1.2.1 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Uploading Svg Webp And Ico Files
NVD WPScan
CVSS 3.1
5.4
EPSS
0.9%
CVE-2023-40088 HIGH PATCH This Week

In callback_thread_event of com_android_bluetooth_btservice_AdapterService.cpp, there is a possible memory corruption due to a use after free. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Buffer Overflow Denial Of Service Use After Free RCE Memory Corruption +1
NVD
CVSS 3.1
8.8
EPSS
1.7%
Page 1 of 5 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy