#ExploitObserverAlert
CVE-2023-0788
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2023-0788. Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
FIRST-EPSS: 0.000760000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-0788
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2023-0788. Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
FIRST-EPSS: 0.000760000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-9j84-h9rr-927m
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to GHSA-9J84-H9RR-927M. Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.
GHSA-9j84-h9rr-927m
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to GHSA-9J84-H9RR-927M. Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.
#ExploitObserverAlert
GHSA-8p37-w86w-447q
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-8P37-W86W-447Q. The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'disqus_name' parameter in all versions up to, and including, 1.0.92.1 due to insufficient input sanitization and output escaping on the executed JS file. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
GHSA-8p37-w86w-447q
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-8P37-W86W-447Q. The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'disqus_name' parameter in all versions up to, and including, 1.0.92.1 due to insufficient input sanitization and output escaping on the executed JS file. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
#ExploitObserverAlert
CVE-2023-0791
DESCRIPTION: Exploit Observer has 4 entries in 4 file formats related to CVE-2023-0791. Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
FIRST-EPSS: 0.000480000
NVD-IS: 2.7
NVD-ES: 2.3
CVE-2023-0791
DESCRIPTION: Exploit Observer has 4 entries in 4 file formats related to CVE-2023-0791. Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
FIRST-EPSS: 0.000480000
NVD-IS: 2.7
NVD-ES: 2.3
#ExploitObserverAlert
CVE-2024-0553
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2024-0553. A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981.
FIRST-EPSS: 0.001290000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2024-0553
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2024-0553. A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981.
FIRST-EPSS: 0.001290000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-4969
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2023-4969. A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures.
FIRST-EPSS: 0.000650000
NVD-IS: 4.0
NVD-ES: 2.0
CVE-2023-4969
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2023-4969. A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures.
FIRST-EPSS: 0.000650000
NVD-IS: 4.0
NVD-ES: 2.0
#ExploitObserverAlert
CVE-2024-21668
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-21668. react-native-mmkv is a library that allows easy use of MMKV inside React Native applications. Before version 2.11.0, the react-native-mmkv logged the optional encryption key for the MMKV database into the Android system log. The key can be obtained by anyone with access to the Android Debugging Bridge (ADB) if it is enabled in the phone settings. This bug is not present on iOS devices. By logging the encryption secret to the system logs, attackers can trivially recover the secret by enabling ADB and undermining an app's thread model. This issue has been patched in version 2.11.0.
FIRST-EPSS: 0.000580000
NVD-IS: 3.6
NVD-ES: 1.2
CVE-2024-21668
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-21668. react-native-mmkv is a library that allows easy use of MMKV inside React Native applications. Before version 2.11.0, the react-native-mmkv logged the optional encryption key for the MMKV database into the Android system log. The key can be obtained by anyone with access to the Android Debugging Bridge (ADB) if it is enabled in the phone settings. This bug is not present on iOS devices. By logging the encryption secret to the system logs, attackers can trivially recover the secret by enabling ADB and undermining an app's thread model. This issue has been patched in version 2.11.0.
FIRST-EPSS: 0.000580000
NVD-IS: 3.6
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2024-0184
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-0184. A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/edit_teacher.php of the component Add Enginer. The manipulation of the argument Firstname/Lastname leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-249442 is the identifier assigned to this vulnerability.
FIRST-EPSS: 0.000510000
NVD-IS: 2.7
NVD-ES: 1.7
CVE-2024-0184
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-0184. A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/edit_teacher.php of the component Add Enginer. The manipulation of the argument Firstname/Lastname leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-249442 is the identifier assigned to this vulnerability.
FIRST-EPSS: 0.000510000
NVD-IS: 2.7
NVD-ES: 1.7
#ExploitObserverAlert
CVE-2024-22922
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-22922. An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php
CVE-2024-22922
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-22922. An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php
#ExploitObserverAlert
PSS-176712
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to PSS-176712. Red Hat Security Advisory 2024-0397-03. Red Hat Security Advisory 2024-0397-03 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include buffer over-read, denial of service, and null pointer vulnerabilities.
PSS-176712
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to PSS-176712. Red Hat Security Advisory 2024-0397-03. Red Hat Security Advisory 2024-0397-03 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include buffer over-read, denial of service, and null pointer vulnerabilities.
#ExploitObserverAlert
CVE-2024-21666
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-21666. The Customer Management Framework (CMF) for Pimcore adds functionality for customer data management, segmentation, personalization and marketing automation. An authenticated and unauthorized user can access the list of potential duplicate users and see their data. Permissions are enforced when reaching the `/admin/customermanagementframework/duplicates/list` endpoint allowing an authenticated user without the permissions to access the endpoint and query the data available there. Unauthorized user(s) can access PII data from customers. This vulnerability has been patched in version 4.0.6.
FIRST-EPSS: 0.000540000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2024-21666
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-21666. The Customer Management Framework (CMF) for Pimcore adds functionality for customer data management, segmentation, personalization and marketing automation. An authenticated and unauthorized user can access the list of potential duplicate users and see their data. Permissions are enforced when reaching the `/admin/customermanagementframework/duplicates/list` endpoint allowing an authenticated user without the permissions to access the endpoint and query the data available there. Unauthorized user(s) can access PII data from customers. This vulnerability has been patched in version 4.0.6.
FIRST-EPSS: 0.000540000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-43997
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-43997. An issue in Yoruichi hobby base mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43997
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-43997. An issue in Yoruichi hobby base mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
#ExploitObserverAlert
CVE-2023-0792
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2023-0792. Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
FIRST-EPSS: 0.000630000
NVD-IS: 2.5
NVD-ES: 2.8
CVE-2023-0792
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2023-0792. Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
FIRST-EPSS: 0.000630000
NVD-IS: 2.5
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-33759
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-33759. SpliceCom Maximiser Soft PBX v1.5 and before does not restrict excessive authentication attempts, allowing attackers to bypass authentication via a brute force attack.
CVE-2023-33759
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-33759. SpliceCom Maximiser Soft PBX v1.5 and before does not restrict excessive authentication attempts, allowing attackers to bypass authentication via a brute force attack.
#ExploitObserverAlert
CVE-2023-51702
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-51702. Since version 5.2.0, when using deferrable mode with the path of a Kubernetes configuration file for authentication, the Airflow worker serializes this configuration file as a dictionary and sends it to the triggerer by storing it in metadata without any encryption. Additionally, if used with an Airflow version between 2.3.0 and 2.6.0, the configuration dictionary will be logged as plain text in the triggerer service without masking. This allows anyone with access to the metadata or triggerer log to obtain the configuration file and use it to access the Kubernetes cluster. This behavior was changed in version 7.0.0, which stopped serializing the file contents and started providing the file path instead to read the contents into the trigger. Users are recommended to upgrade to version 7.0.0, which fixes this issue.
CVE-2023-51702
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-51702. Since version 5.2.0, when using deferrable mode with the path of a Kubernetes configuration file for authentication, the Airflow worker serializes this configuration file as a dictionary and sends it to the triggerer by storing it in metadata without any encryption. Additionally, if used with an Airflow version between 2.3.0 and 2.6.0, the configuration dictionary will be logged as plain text in the triggerer service without masking. This allows anyone with access to the metadata or triggerer log to obtain the configuration file and use it to access the Kubernetes cluster. This behavior was changed in version 7.0.0, which stopped serializing the file contents and started providing the file path instead to read the contents into the trigger. Users are recommended to upgrade to version 7.0.0, which fixes this issue.
#ExploitObserverAlert
CVE-2024-0705
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to CVE-2024-0705. The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.7.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
FIRST-EPSS: 0.000440000
CVE-2024-0705
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to CVE-2024-0705. The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.7.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
FIRST-EPSS: 0.000440000
#ExploitObserverAlert
CVE-2023-52038
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-52038. An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_415C80 function.
CVE-2023-52038
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-52038. An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_415C80 function.
#ExploitObserverAlert
CVE-2024-0183
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-0183. A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/students.php of the component NIA Office. The manipulation leads to basic cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249441 was assigned to this vulnerability.
FIRST-EPSS: 0.000510000
NVD-IS: 2.7
NVD-ES: 1.7
CVE-2024-0183
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-0183. A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/students.php of the component NIA Office. The manipulation leads to basic cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249441 was assigned to this vulnerability.
FIRST-EPSS: 0.000510000
NVD-IS: 2.7
NVD-ES: 1.7
#ExploitObserverAlert
CVE-2023-0739
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-0739. Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in GitHub repository answerdev/answer prior to 1.0.4.
FIRST-EPSS: 0.000560000
NVD-IS: 5.2
NVD-ES: 1.6
CVE-2023-0739
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-0739. Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in GitHub repository answerdev/answer prior to 1.0.4.
FIRST-EPSS: 0.000560000
NVD-IS: 5.2
NVD-ES: 1.6
#ExploitObserverAlert
PSS-176711
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to PSS-176711. Red Hat Security Advisory 2024-0387-03. Red Hat Security Advisory 2024-0387-03 - An update for the php:8.1 module is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
PSS-176711
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to PSS-176711. Red Hat Security Advisory 2024-0387-03. Red Hat Security Advisory 2024-0387-03 - An update for the php:8.1 module is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
#ExploitObserverAlert
CVE-2023-43989
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-43989. An issue in mokumoku chohu mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43989
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-43989. An issue in mokumoku chohu mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.