#ExploitObserverAlert
CVE-2023-43496
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-43496. Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file before it is installed in Jenkins, potentially resulting in arbitrary code execution.
FIRST-EPSS: 0.000550000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-43496
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-43496. Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file before it is installed in Jenkins, potentially resulting in arbitrary code execution.
FIRST-EPSS: 0.000550000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-3329
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-3329. SpiderControl SCADA Webserver versions 2.08 and prior are vulnerable to path traversal. An attacker with administrative privileges could overwrite files on the webserver using the HMI's upload file feature. This could create size zero files anywhere on the webserver, potentially overwriting system files and creating a denial-of-service condition.
FIRST-EPSS: 0.000460000
NVD-IS: 5.2
NVD-ES: 1.2
CVE-2023-3329
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-3329. SpiderControl SCADA Webserver versions 2.08 and prior are vulnerable to path traversal. An attacker with administrative privileges could overwrite files on the webserver using the HMI's upload file feature. This could create size zero files anywhere on the webserver, potentially overwriting system files and creating a denial-of-service condition.
FIRST-EPSS: 0.000460000
NVD-IS: 5.2
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2023-2783
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2783. Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps.
FIRST-EPSS: 0.000450000
NVD-IS: 1.4
NVD-ES: 2.8
CVE-2023-2783
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2783. Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps.
FIRST-EPSS: 0.000450000
NVD-IS: 1.4
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-2509
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2509. A Cross-Site Scripting(XSS) vulnerability was found on ADM, LooksGood and SoundsGood Apps. An attacker can exploit this vulnerability to inject malicious scripts into the target applications to access any cookies or sensitive information retained by the browser and used with that application. Affected products and versions include: ADM 4.0.6.REG2, 4.1.0 and below as well as ADM 4.2.1.RGE2 and below, LooksGood 2.0.0.R129 and below and SoundsGood 2.3.0.r1027 and below.
FIRST-EPSS: 0.000460000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2023-2509
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2509. A Cross-Site Scripting(XSS) vulnerability was found on ADM, LooksGood and SoundsGood Apps. An attacker can exploit this vulnerability to inject malicious scripts into the target applications to access any cookies or sensitive information retained by the browser and used with that application. Affected products and versions include: ADM 4.0.6.REG2, 4.1.0 and below as well as ADM 4.2.1.RGE2 and below, LooksGood 2.0.0.R129 and below and SoundsGood 2.3.0.r1027 and below.
FIRST-EPSS: 0.000460000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-3869
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-3869. The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the voteOnComment function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a comment.
FIRST-EPSS: 0.000520000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2023-3869
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-3869. The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the voteOnComment function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a comment.
FIRST-EPSS: 0.000520000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-31701
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-31701. TP-Link TL-WPA4530 KIT V2 (EU)_170406 and V2 (EU)_161115 is vulnerable to Command Injection via _httpRpmPlcDeviceRemove.
FIRST-EPSS: 0.001300000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-31701
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-31701. TP-Link TL-WPA4530 KIT V2 (EU)_170406 and V2 (EU)_161115 is vulnerable to Command Injection via _httpRpmPlcDeviceRemove.
FIRST-EPSS: 0.001300000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-7020
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-7020. A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. This issue affects some unknown processing of the file general/wiki/cp/ct/view.php. The manipulation of the argument TEMP_ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 11.10 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-248567. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
FIRST-EPSS: 0.000630000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-7020
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-7020. A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. This issue affects some unknown processing of the file general/wiki/cp/ct/view.php. The manipulation of the argument TEMP_ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 11.10 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-248567. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
FIRST-EPSS: 0.000630000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-40627
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-40627. A reflected XSS vulnerability was discovered in the LivingWord component for Joomla.
FIRST-EPSS: 0.000460000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2023-40627
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-40627. A reflected XSS vulnerability was discovered in the LivingWord component for Joomla.
FIRST-EPSS: 0.000460000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
GHSA-x2xm-p6vq-482g
DESCRIPTION: Exploit Observer has 3 entries related to GHSA-X2XM-P6VQ-482G. OroPlatform is a package that assist system and user calendar management. Back-office users can access information from any system calendar event, bypassing ACL security restrictions due to insufficient security checks.
GHSS: 5.0
GHSA-x2xm-p6vq-482g
DESCRIPTION: Exploit Observer has 3 entries related to GHSA-X2XM-P6VQ-482G. OroPlatform is a package that assist system and user calendar management. Back-office users can access information from any system calendar event, bypassing ACL security restrictions due to insufficient security checks.
GHSS: 5.0
#ExploitObserverAlert
CVE-2023-28651
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-28651. Cross-site scripting vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. If a user who can access the affected product with an administrative privilege configures specially crafted settings, an arbitrary script may be executed on the web browser of the other user who is accessing the affected product with an administrative privilege.
FIRST-EPSS: 0.000530000
NVD-IS: 2.7
NVD-ES: 1.7
CVE-2023-28651
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-28651. Cross-site scripting vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. If a user who can access the affected product with an administrative privilege configures specially crafted settings, an arbitrary script may be executed on the web browser of the other user who is accessing the affected product with an administrative privilege.
FIRST-EPSS: 0.000530000
NVD-IS: 2.7
NVD-ES: 1.7
#ExploitObserverAlert
CVE-2023-46408
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-46408. TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution vulnerability via the sub_ The 41DD80 function.
FIRST-EPSS: 0.001920000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-46408
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-46408. TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution vulnerability via the sub_ The 41DD80 function.
FIRST-EPSS: 0.001920000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-33790
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33790. A stored cross-site scripting (XSS) vulnerability in the Create Locations (/dcim/locations/) function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.
FIRST-EPSS: 0.000450000
NVD-IS: 2.7
NVD-ES: 2.3
CVE-2023-33790
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33790. A stored cross-site scripting (XSS) vulnerability in the Create Locations (/dcim/locations/) function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.
FIRST-EPSS: 0.000450000
NVD-IS: 2.7
NVD-ES: 2.3
#ExploitObserverAlert
CVE-2023-3235
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-3235. A vulnerability was found in mccms up to 2.6.5. It has been rated as critical. Affected by this issue is the function pic_api of the file sys/apps/controllers/admin/Comic.php. The manipulation of the argument url leads to server-side request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-231506 is the identifier assigned to this vulnerability.
FIRST-EPSS: 0.000540000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-3235
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-3235. A vulnerability was found in mccms up to 2.6.5. It has been rated as critical. Affected by this issue is the function pic_api of the file sys/apps/controllers/admin/Comic.php. The manipulation of the argument url leads to server-side request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-231506 is the identifier assigned to this vulnerability.
FIRST-EPSS: 0.000540000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-5908
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5908. KEPServerEX is vulnerable to a buffer overflow which may allow an attacker to crash the product being accessed or leak information.
FIRST-EPSS: 0.000690000
NVD-IS: 5.2
NVD-ES: 3.9
CVE-2023-5908
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5908. KEPServerEX is vulnerable to a buffer overflow which may allow an attacker to crash the product being accessed or leak information.
FIRST-EPSS: 0.000690000
NVD-IS: 5.2
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-30440
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-30440. IBM PowerVM Hypervisor FW860.00 through FW860.B3, FW950.00 through FW950.70, FW1010.00 through FW1010.50, FW1020.00 through FW1020.30, and FW1030.00 through FW1030.10 could allow a local attacker with control a partition that has been assigned SRIOV virtual function (VF) to cause a denial of service to a peer partition or arbitrary data corruption. IBM X-Force ID: 253175.
FIRST-EPSS: 0.000420000
NVD-IS: 4.7
NVD-ES: 2.5
CVE-2023-30440
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-30440. IBM PowerVM Hypervisor FW860.00 through FW860.B3, FW950.00 through FW950.70, FW1010.00 through FW1010.50, FW1020.00 through FW1020.30, and FW1030.00 through FW1030.10 could allow a local attacker with control a partition that has been assigned SRIOV virtual function (VF) to cause a denial of service to a peer partition or arbitrary data corruption. IBM X-Force ID: 253175.
FIRST-EPSS: 0.000420000
NVD-IS: 4.7
NVD-ES: 2.5
#ExploitObserverAlert
CVE-2023-22858
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-22858. An Improper Access Control vulnerability in BlogEngine.NET 3.3.8.0, allows unauthenticated visitors to access the files of unpublished blogs.
FIRST-EPSS: 0.000460000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2023-22858
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-22858. An Improper Access Control vulnerability in BlogEngine.NET 3.3.8.0, allows unauthenticated visitors to access the files of unpublished blogs.
FIRST-EPSS: 0.000460000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-2ccf-ffrj-m4qw
DESCRIPTION: Exploit Observer has 5 entries related to GHSA-2CCF-FFRJ-M4QW. The CSRF protection enforced by the @fastify/csrf-protection library, when combined with @fastify/passport, can be bypassed by network and same-site attackers.
GHSS: 6.5
GHSA-2ccf-ffrj-m4qw
DESCRIPTION: Exploit Observer has 5 entries related to GHSA-2CCF-FFRJ-M4QW. The CSRF protection enforced by the @fastify/csrf-protection library, when combined with @fastify/passport, can be bypassed by network and same-site attackers.
GHSS: 6.5
#ExploitObserverAlert
CVE-2023-20843
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-20843. In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340119; Issue ID: ALPS07340119.
FIRST-EPSS: 0.000420000
NVD-IS: 3.6
NVD-ES: 0.6
CVE-2023-20843
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-20843. In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340119; Issue ID: ALPS07340119.
FIRST-EPSS: 0.000420000
NVD-IS: 3.6
NVD-ES: 0.6
#ExploitObserverAlert
CVE-2023-31099
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-31099. Zoho ManageEngine OPManager through 126323 allows an authenticated user to achieve remote code execution via probe servers.
FIRST-EPSS: 0.001760000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-31099
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-31099. Zoho ManageEngine OPManager through 126323 allows an authenticated user to achieve remote code execution via probe servers.
FIRST-EPSS: 0.001760000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-5499
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5499. Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could allow a remote attacker to retrieve all the week's logs stored in the 'log2' directory. An attacker could retrieve sensitive information such as remembered wifi networks, sent messages, SOS device locations and device configurations.
FIRST-EPSS: 0.001030000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-5499
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5499. Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could allow a remote attacker to retrieve all the week's logs stored in the 'log2' directory. An attacker could retrieve sensitive information such as remembered wifi networks, sent messages, SOS device locations and device configurations.
FIRST-EPSS: 0.001030000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-4463
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-4463. A vulnerability classified as problematic was found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument Cookie leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249256.
FIRST-EPSS: 0.000450000
CVE-2023-4463
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-4463. A vulnerability classified as problematic was found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument Cookie leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249256.
FIRST-EPSS: 0.000450000