CVE-2023-0602

The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugin's administrative page, which allows reflected XSS ...

Continue Reading

July 31, 2023

CVE-2023-37216

AnaSystem SensMini M4 – Using the configuration tool, an authenticated user can cause Denial of Service for the deviceRead More ...

Continue Reading

July 30, 2023

CVE-2023-37219

Tadiran Telecom Composit - CWE-1236: Improper Neutralization of Formula Elements in a CSV FileRead More ...

Continue Reading

July 30, 2023

CVE-2023-37217

Tadiran Telecom Aeonix - CWE-204: Observable Response DiscrepancyRead More ...

Continue Reading

July 30, 2023

CVE-2023-37218

Tadiran Telecom Aeonix - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')Read More ...

Continue Reading

July 30, 2023

CVE-2023-32225

Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type -  A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method.Read More ...

Continue Reading

July 30, 2023

CVE-2023-32226

Sysaid - CWE-552: Files or Directories Accessible to External Parties -  Authenticated users may exfiltrate files from the server via an unspecified method.Read More ...

Continue Reading

July 30, 2023

CVE-2023-37213

Synel SYnergy Fingerprint Terminals - CWE-78: 'OS Command Injection'Read More ...

Continue Reading

July 30, 2023

1 283 284 285 286 287 3,551

Back to Main
Subscribe for the latest news: