βΌ CVE-2023-32740 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Kunal Nagar Custom 404 Pro plugin <=Γ 3.8.1 versions.π Read
via "National Vulnerability Database".
π’ Qakbot forced offline, but history suggests it probably wonβt be forever π’
π Read
via "ITPro".
Operation Duck Hunt was one of the largest of its kind but similar attempts in the past have struggled to achieve long-lasting success π Read
via "ITPro".
ITPro
Qakbot forced offline, but history suggests it probably wonβt be forever
Operation Duck Hunt was one of the largest of its kind but similar attempts in the past have struggled to achieve long-lasting success
β€1
βΌ CVE-2023-32597 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Video Gallery plugin <=Γ 1.0.10 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32801 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce Composite Products plugin <=Γ 8.7.5 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41553 βΌ
π Read
via "National Vulnerability Database".
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter list at url /goform/SetStaticRouteCfg.π Read
via "National Vulnerability Database".
βΌ CVE-2023-4624 βΌ
π Read
via "National Vulnerability Database".
Server-Side Request Forgery (SSRF) in GitHub repository bookstackapp/bookstack prior to v23.08.π Read
via "National Vulnerability Database".
βΌ CVE-2023-4600 βΌ
π Read
via "National Vulnerability Database".
The AffiliateWP for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'affwp_activate_addons_page_plugin' function called via an AJAX action in versions up to, and including, 2.14.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to activate arbitrary plugins.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41558 βΌ
π Read
via "National Vulnerability Database".
Tenda AC7 V1.0 V15.03.06.44 was discovered to contain a stack overflow via parameter timeZone at url /goform/SetSysTimeCfg.π Read
via "National Vulnerability Database".
βΌ CVE-2023-25462 βΌ
π Read
via "National Vulnerability Database".
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP htaccess Control plugin <=Γ 3.5.1 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32746 βΌ
π Read
via "National Vulnerability Database".
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Brands plugin <=Γ 1.6.45 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41559 βΌ
π Read
via "National Vulnerability Database".
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter page at url /goform/NatStaticSetting.π Read
via "National Vulnerability Database".
βΌ CVE-2023-27426 βΌ
π Read
via "National Vulnerability Database".
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Notifyvisitors NotifyVisitors plugin <=Γ 1.0 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33929 βΌ
π Read
via "National Vulnerability Database".
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in JoaquΓΒn Ruiz Easy Admin Menu plugin <=Γ 1.3 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32793 βΌ
π Read
via "National Vulnerability Database".
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Pre-Orders plugin <=Γ 2.0.0 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41557 βΌ
π Read
via "National Vulnerability Database".
Tenda AC7 V1.0 V15.03.06.44 and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter entrys and mitInterface at url /goform/addressNat.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41563 βΌ
π Read
via "National Vulnerability Database".
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter mac at url /goform/GetParentControlInfo.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41561 βΌ
π Read
via "National Vulnerability Database".
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter startIp and endIp at url /goform/SetPptpServerCfg.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32802 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Pre-Orders plugin <=Γ 1.9.0 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33320 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Mohammad I. Okfie WP-Hijri plugin <=Γ 1.5.1 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41555 βΌ
π Read
via "National Vulnerability Database".
Tenda AC7 V1.0 V15.03.06.44 was discovered to contain a stack overflow via parameter security_5g at url /goform/WifiBasicSet.π Read
via "National Vulnerability Database".
βΌ CVE-2023-25019 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Premio Chaty plugin <=Γ 3.0.9 versionsπ Read
via "National Vulnerability Database".