โผ CVE-2023-42850 โผ
๐ Read
via "National Vulnerability Database".
The issue was addressed with improved permissions logic. This issue is fixed in macOS Sonoma 14.1. An app may be able to access sensitive user data.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46118 โผ
๐ Read
via "National Vulnerability Database".
RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-40404 โผ
๐ Read
via "National Vulnerability Database".
A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sonoma 14.1. An app may be able to execute arbitrary code with kernel privileges.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-39740 โผ
๐ Read
via "National Vulnerability Database".
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46128 โผ
๐ Read
via "National Vulnerability Database".
Nautobot is a Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. In Nautobot 2.0.x, certain REST API endpoints, in combination with the `?depth=<N>` query parameter, can expose hashed user passwords as stored in the database to any authenticated user with access to these endpoints. The passwords are not exposed in plaintext. This vulnerability has been patched in version 2.0.3.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-41982 โผ
๐ Read
via "National Vulnerability Database".
This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-37913 โผ
๐ Read
via "National Vulnerability Database".
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Starting in version 3.5-milestone-1 and prior to versions 14.10.8 and 15.3-rc-1, triggering the office converter with a specially crafted file name allows writing the attachment's content to an attacker-controlled location on the server as long as the Java process has write access to that location. In particular in the combination with attachment moving, a feature introduced in XWiki 14.0, this is easy to reproduce but it also possible to reproduce in versions as old as XWiki 3.5 by uploading the attachment through the REST API which doesn't remove `/` or `\` from the filename. As the mime type of the attachment doesn't matter for the exploitation, this could e.g., be used to replace the `jar`-file of an extension which would allow executing arbitrary Java code and thus impact the confidentiality, integrity and availability of the XWiki installation. This vulnerability has been patched in XWiki 14.10.8 and 15.3RC1. There are no known workarounds apart from disabling the office converter.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-45829 โผ
๐ Read
via "National Vulnerability Database".
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in HappyBox Newsletter & Bulk Email Sender รขโฌโ Email Newsletter Plugin for WordPress plugin <=ร 2.0.1 versions.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46070 โผ
๐ Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Emmanuel GEORJON EG-Attachments plugin <=ร 2.1.3 versions.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-45761 โผ
๐ Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Joovii Sendle Shipping Plugin plugin <=ร 5.13 versions.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-44794 โผ
๐ Read
via "National Vulnerability Database".
An issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privileges via a crafted payload to the URL.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-42494 โผ
๐ Read
via "National Vulnerability Database".
EisBaer Scada - CWE-749: Exposed Dangerous Method or Function๐ Read
via "National Vulnerability Database".
โผ CVE-2023-5085 โผ
๐ Read
via "National Vulnerability Database".
The Advanced Menu Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'advMenu' shortcode in versions up to, and including, 0.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46151 โผ
๐ Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in AWESOME TOGI Product Category Tree plugin <=ร 2.5 versions.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-5746 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability regarding use of externally-controlled format string is found in the cgi component. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.0.5-0185 may be affected: BC500 and TC500.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-42841 โผ
๐ Read
via "National Vulnerability Database".
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1. An app may be able to execute arbitrary code with kernel privileges.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46657 โผ
๐ Read
via "National Vulnerability Database".
Jenkins Gogs Plugin 1.0.15 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing attackers to use statistical methods to obtain a valid webhook token.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46574 โผ
๐ Read
via "National Vulnerability Database".
An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-37283 โผ
๐ Read
via "National Vulnerability Database".
Under a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter๐ Read
via "National Vulnerability Database".
โผ CVE-2023-41997 โผ
๐ Read
via "National Vulnerability Database".
This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-46557 โผ
๐ Read
via "National Vulnerability Database".
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMultiAPVLAN.๐ Read
via "National Vulnerability Database".