Skip to main content
CVE-2023-49594 MEDIUM POC This Month

An information disclosure vulnerability exists in the challenge functionality of instipod DuoUniversalKeycloakAuthenticator 1.0.7 plugin. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Duouniversalkeycloakauthenticator
NVD GitHub
CVSS 3.1
6.5
EPSS
1.2%
CVE-2023-5962 MEDIUM This Month

A weak cryptographic algorithm vulnerability has been identified in ioLogik E1200 Series firmware versions v3.3 and prior. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Iologik E1210 Firmware Iologik E1211 Firmware Iologik E1212 Firmware Iologik E1213 Firmware +6
NVD
CVSS 3.1
6.5
EPSS
0.3%
CVE-2023-6744 MEDIUM This Month

The Divi theme for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'et_pb_text' shortcode in all versions up to, and including, 4.23.1 due to insufficient input sanitization. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Divi
NVD VulDB
CVSS 3.1
6.4
EPSS
0.2%
CVE-2023-7008 MEDIUM This Month

A vulnerability was found in systemd-resolved. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Systemd
NVD GitHub
CVSS 3.1
5.9
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy