🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-7114‼️

Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths, which allows an attacker to perform CSRF attacks against the server.

79 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51410‼️

Unrestricted Upload of File with Dangerous Type vulnerability in WPVibes WP Mail Log.This issue affects WP Mail Log from na through 1.1.2.

133 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51411‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Shabti Kaplan Frontend Admin by DynamiApps.This issue affects Frontend Admin by DynamiApps from na through 3.18.3.

218 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51412‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Piotnet Piotnet Forms.This issue affects Piotnet Forms from na through 1.0.25.

209 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51417‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Joris van Montfort JVM Gutenberg Rich Text Icons.This issue affects JVM Gutenberg Rich Text Icons from na through 1.2.3.

207 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51419‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Bertha.Ai BERTHA AI. Your AI copilot for WordPress and Chrome.This issue affects BERTHA AI. Your AI copilot for WordPress and Chrome from na through 1.11.10.7.

184 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51421‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Soft8Soft LLC Verge3D Publishing and ECommerce.This issue affects Verge3D Publishing and ECommerce from na through 4.5.2.

83 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51468‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Jacques Malgrange Rencontre  Dating Site.This issue affects Rencontre  Dating Site from na through 3.10.1.

88 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51473‼️

Unrestricted Upload of File with Dangerous Type vulnerability in Pixelemu TerraClassifieds  Simple Classifieds Plugin.This issue affects TerraClassifieds  Simple Classifieds Plugin from na through 2.0.3.

91 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51475‼️

Unrestricted Upload of File with Dangerous Type vulnerability in IOSS WP MLM SOFTWARE PLUGIN.This issue affects WP MLM SOFTWARE PLUGIN from na through 4.0.

93 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51675‼️

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in AAM Advanced Access Manager  Restricted Content, Users  Roles, Enhanced Security and More.This issue affects Advanced Access Manager  Restricted Content, Users  Roles, Enhanced Security and More from na through 6.9.18.

92 views00:41

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-47804‼️

Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this purpose.  Links can be activated by clicks, or by automatic document events.  The execution of such links must be subject to user approval.  In the affected versions of OpenOffice, approval for certain links is not requested when activated, such links could therefore result in arbitrary script execution.  This is a corner case of CVE202247502.

89 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-4541‼️

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ween Software Admin Panel allows SQL Injection.This issue affects Admin Panel through 20231229.   NOTE The vendor was contacted early about this disclosure but did not respond in any way.

87 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-4674‼️

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yaztek Software Technologies and Computer Systems ECommerce Software allows SQL Injection.This issue affects ECommerce Software through 20231229.   NOTE The vendor was contacted early about this disclosure but did not respond in any way.

89 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-4675‼️

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in GM Information Technologies MDO allows SQL Injection.This issue affects MDO through 20231229.   NOTE The vendor was contacted early about this disclosure but did not respond in any way.

108 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-50570‼️

An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 leads to an infinite loop.

📖 Read more

Via "National Vulnerability Database"

121 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-50571‼️

easyrulesmvel v4.1.0 was discovered to contain a remote code execution RCE vulnerability via the component MVELRule.

📖 Read more

Via "National Vulnerability Database"

112 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-50572‼️

An issue in the component GroovyEngine.execute of jlinegroovy v3.24.1 allows attackers to cause an OOM OutofMemory error.

168 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51517‼️

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in CodePeople Calculated Fields Form.This issue affects Calculated Fields Form from na through 1.2.28.

180 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51527‼️

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Senol Sahin AI Power Complete AI Pack  Powered by GPT4.This issue affects AI Power Complete AI Pack  Powered by GPT4 from na through 1.8.2.

132 views00:42

🛡 Cybersecurity & Privacy 🛡 - News

‼️CVE-2023-51687‼️

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in impleCode Product Catalog Simple.This issue affects Product Catalog Simple from na through 1.7.6.

151 views00:42

About

Blog

Apps

Platform