Skip to main content
CVE-2023-51688 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in impleCode eCommerce Product Catalog Plugin for WordPress.3.26. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress Information Disclosure Ecommerce Product Catalog
NVD
CVSS 3.1
5.3
EPSS
0.7%
CVE-2023-51687 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in impleCode Product Catalog Simple.7.6. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Product Catalog Simple
NVD
CVSS 3.1
5.3
EPSS
0.7%
CVE-2023-51378 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Rise Themes Rise Blocks - A Complete Gutenberg Page Builder.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Rise Blocks
NVD
CVSS 3.1
5.4
EPSS
0.1%
CVE-2023-50878 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in InspireUI MStore API.10.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Mstore Api
NVD
CVSS 3.1
5.4
EPSS
0.1%
CVE-2023-51358 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Bright Plugins Block IPs for Gravity Forms.0.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Block Ips For Gravity Forms
NVD
CVSS 3.1
5.4
EPSS
0.1%
CVE-2023-51527 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Senol Sahin AI Power: Complete AI Pack - Powered by GPT-4.8.2. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Aipower
NVD
CVSS 3.1
5.3
EPSS
0.6%
CVE-2023-51663 MEDIUM PATCH This Month

Hail is an open-source, general-purpose, Python-based data analysis tool with additional data types and methods for working with genomic data. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Python Google Information Disclosure Microsoft Hail
NVD GitHub
CVSS 3.1
5.3
EPSS
0.4%
CVE-2023-31296 MEDIUM This Month

CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows attackers to obtain sensitive information via the User Name field. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cash Point Transport Optimizer
NVD
CVSS 3.1
5.3
EPSS
0.4%
CVE-2023-51676 MEDIUM This Month

Server-Side Request Forgery (SSRF) vulnerability in Leevio Happy Addons for Elementor.9.1.1. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

SSRF Happy Addons For Elementor Elementor
NVD
CVSS 3.1
4.9
EPSS
0.4%
CVE-2023-4466 MEDIUM This Month

A vulnerability has been found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60 and classified as problematic. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Ccx 400 Firmware Ccx 600 Firmware Trio 8800 Firmware Trio C60 Firmware
NVD VulDB GitHub
CVSS 3.1
4.9
EPSS
0.5%
CVE-2023-31298 MEDIUM This Month

Cross Site Scripting (XSS) vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to execute arbitrary code and obtain sensitive information. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE XSS Cash Point Transport Optimizer
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2023-32101 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Pexle Chris Library Viewer.0.6. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Library Viewer
NVD
CVSS 3.1
4.7
EPSS
0.3%
CVE-2023-31095 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms.2.8. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Database For Contact Form 7 Wpforms Elementor Forms Elementor
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-32517 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in PluginOps MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form Builder.0.9.3. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Mailchimp
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-31237 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Dylan James Zephyr Project Manager.3.9. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Zephyr Project Manager
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-31229 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Directory Kit.1.9. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Wp Directory Kit
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-51675 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in AAM Advanced Access Manager - Restricted Content, Users & Roles, Enhanced Security and More.9.18. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Advanced Access Manager
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-51402 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Brain Storm Force Ultimate Addons for WPBakery Page Builder.19.17. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Ultimate Addons For Wpbakery Page Builder WPBakery Page Builder
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2023-51354 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in WebbaPlugins Appointment & Event Booking Calendar Plugin - Webba Booking.5.33. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Webba Booking
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2023-50902 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in WPExpertsio New User Approve.5.1. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF New User Approve
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2023-31293 MEDIUM This Month

An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) 6.3.8.6 (#718), allows remote attackers to obtain sensitive information and bypass profile restriction via improper access. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Cash Point Transport Optimizer
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2023-51517 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CodePeople Calculated Fields Form.2.28. Rated medium severity (CVSS 4.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Open Redirect Calculated Fields Form
NVD
CVSS 3.1
4.1
EPSS
0.1%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy