‼️CVE-2023-7159‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability was found in gopeak MasterLab up to 3.3.10. It has been declared as critical. Affected by this vulnerability is the function addupdate of the file appctrladminUser.php. The manipulation of the argument avatar leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB249181 was assigned to this vulnerability.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-7160‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Add Engineer Handler. The manipulation of the argument first namelast name with the input alert0 leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB249182 is the identifier assigned to this vulnerability.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-7161‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability classified as critical has been found in Netentsec NSASG Application Security Gateway 6.3.1. This affects an unknown part of the file index.php?paraindex of the component Login. The manipulation of the argument checkVirtualSiteId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB249183.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-22676‼️
📖 Read more
Via "National Vulnerability Database"
Missing Authorization vulnerability in Anders Thorborg.This issue affects Anders Thorborg from na through 1.4.12. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-22677‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in BinaryStash WP Booklet.This issue affects WP Booklet from na through 2.1.8. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-25054‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in David F. Carr RSVPMaker.This issue affects RSVPMaker from na through 10.6.6. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-32095‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in Milan Dini? Rename Media Files.This issue affects Rename Media Files from na through 1.0.1. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-40606‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in Kanban for WordPress Kanban Boards for WordPress.This issue affects Kanban Boards for WordPress from na through 2.5.21. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-45751‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in POSIMYTH Nexter Extension.This issue affects Nexter Extension from na through 2.0.3. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-46623‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in TienCOP WP EXtra.This issue affects WP EXtra from na through 6.2. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-47840‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in Qode Interactive Qode Essential Addons.This issue affects Qode Essential Addons from na through 1.5.2. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-7166‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability classified as problematic has been found in NovelPlus up to 4.2.0. This affects an unknown part of the file userupdateUserInfo of the component HTTP POST Request Handler. The manipulation of the argument nickName leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of the patch is c62da9bb3a9b3603014d0edb436146512631100d. It is recommended to apply a patch to fix this issue. The identifier VDB249201 was assigned to this vulnerability.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2022-44589‼️
📖 Read more
Via "National Vulnerability Database"
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in miniOrange miniOrange's Google Authenticator WordPress Two Factor Authentication 2FA , Two Factor, OTP SMS and Email Passwordless login.This issue affects miniOrange's Google Authenticator WordPress Two Factor Authentication 2FA , Two Factor, OTP SMS and Email Passwordless login from na through 5.6.1. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-28786‼️
📖 Read more
Via "National Vulnerability Database"
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SolidWP Solid Security Password, Two Factor Authentication, and Brute Force Protection.This issue affects Solid Security Password, Two Factor Authentication, and Brute Force Protection from na through 8.1.4. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-31095‼️
📖 Read more
Via "National Vulnerability Database"
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in CRM Perks Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms from na through 1.2.8. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-31229‼️
📖 Read more
Via "National Vulnerability Database"
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in WP Directory Kit.This issue affects WP Directory Kit from na through 1.1.9. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-31237‼️
📖 Read more
Via "National Vulnerability Database"
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager from na through 3.3.9. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-32101‼️
📖 Read more
Via "National Vulnerability Database"
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Pexle Chris Library Viewer.This issue affects Library Viewer from na through 2.0.6. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-32517‼️
📖 Read more
Via "National Vulnerability Database"
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in PluginOps MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form Builder.This issue affects MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form Builder from na through 4.0.9.3. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49830‼️
📖 Read more
Via "National Vulnerability Database"
Improper Control of Generation of Code 'Code Injection' vulnerability in Brainstorm Force Astra Pro.This issue affects Astra Pro from na through 4.3.1. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-4462‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability classified as problematic has been found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60. This affects an unknown part of the component Web Configuration Application. The manipulation leads to insufficiently random values. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB249255.📖 Read more
Via "National Vulnerability Database"