Skip to main content

Nosh Chartingsystem

2 CVEs product

Monthly

CVE-2023-24610 HIGH This Week

NOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary code via the "practice logo" upload feature. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE File Upload PHP Nosh Chartingsystem
NVD GitHub
CVSS 3.1
8.8
EPSS
2.1%
CVE-2023-24065 MEDIUM POC This Month

NOSH 4a5cfdb allows stored XSS via the create user page. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Nosh Chartingsystem
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
EPSS 2% CVSS 8.8
HIGH This Week

NOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary code via the "practice logo" upload feature. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE File Upload PHP +1
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC This Month

NOSH 4a5cfdb allows stored XSS via the create user page. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Nosh Chartingsystem
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy