Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2023-6151 Privilege Escalation in eskom (CVE-2023-6151)
vulnerability in eskom (CVE-2023-6151). Confidential information can be exposed externally.
CVE-2023-6118 Path Traversal in path-traversal (CVE-2023-6118)
path traversal in path-traversal (CVE-2023-6118). Confidential information can be exposed externally.
CVE-2023-3631 SQL Injection in sqli (CVE-2023-3631)
SQL injection in sqli (CVE-2023-3631). Successful exploitation can lead to full system takeover.
CVE-2023-4406 Cross-Site Scripting (XSS) in kc-group-e-commerce-software-project (CVE-2023-4406)
cross-site scripting in kc-group-e-commerce-software-project (CVE-2023-4406). Risk of unauthorized operations or information disclosure.
CVE-2023-3377 SQL Injection in sqli (CVE-2023-3377)
SQL injection in sqli (CVE-2023-3377). Successful exploitation can lead to full system takeover.
CVE-2023-48105 Out-of-Bounds Write in c (CVE-2023-48105)
out-of-bounds write in c (CVE-2023-48105). Risk of unauthorized operations or information disclosure.
CVE-2023-48706 Use-After-Free in vim (CVE-2023-48706)
vulnerability in vim (CVE-2023-48706). Risk of unauthorized operations or information disclosure.
CVE-2023-2889 SQL Injection in sqli (CVE-2023-2889)
SQL injection in sqli (CVE-2023-2889). Successful exploitation can lead to full system takeover.
CVE-2023-5047 SQL Injection in sqli (CVE-2023-5047)
SQL injection in sqli (CVE-2023-5047). Successful exploitation can lead to full system takeover.
CVE-2023-6011 Cross-Site Scripting (XSS) in dece (CVE-2023-6011)
cross-site scripting in dece (CVE-2023-6011). Risk of unauthorized operations or information disclosure.
CVE-2023-48192 Code Injection in totolink (CVE-2023-48192)
code injection in totolink (CVE-2023-48192). Successful exploitation can lead to full system takeover.
CVE-2023-4911 KEV [KEV] Vulnerability in Gnu c (CVE-2023-4911)
vulnerability in Gnu c (CVE-2023-4911). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2023-48655 Vulnerability in misp-project (CVE-2023-48655)
vulnerability in misp-project (CVE-2023-48655). Successful exploitation can lead to full system takeover.
CVE-2023-48234 Vulnerability in vim (CVE-2023-48234)
vulnerability in vim (CVE-2023-48234). Risk of unauthorized operations or information disclosure.
CVE-2023-48235 Vulnerability in vim (CVE-2023-48235)
vulnerability in vim (CVE-2023-48235). Risk of unauthorized operations or information disclosure.
CVE-2023-48236 Vulnerability in vim (CVE-2023-48236)
vulnerability in vim (CVE-2023-48236). Risk of unauthorized operations or information disclosure.
CVE-2023-48237 Vulnerability in vim (CVE-2023-48237)
vulnerability in vim (CVE-2023-48237). Risk of unauthorized operations or information disclosure.
CVE-2023-48233 Vulnerability in vim (CVE-2023-48233)
vulnerability in vim (CVE-2023-48233). Risk of unauthorized operations or information disclosure. Exploitable via ``ac6378773``.
CVE-2023-48231 Use-After-Free in vim (CVE-2023-48231)
vulnerability in vim (CVE-2023-48231). Risk of unauthorized operations or information disclosure.
CVE-2023-48232 Vulnerability in vim (CVE-2023-48232)
vulnerability in vim (CVE-2023-48232). Risk of unauthorized operations or information disclosure. Exploitable via ``cb0b99f0``.
CVE-2023-48056 Vulnerability in pypinksign (CVE-2023-48056)
vulnerability in pypinksign (CVE-2023-48056). Confidential information can be exposed externally.
CVE-2023-6121 Out-of-Bounds Read in redhat (CVE-2023-6121)
vulnerability in redhat (CVE-2023-6121). Risk of unauthorized operations or information disclosure.
CVE-2023-1671 KEV [KEV] Command Injection in Sophos web-appliance (CVE-2023-1671)
command injection in Sophos web-appliance (CVE-2023-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36036 KEV [KEV] Vulnerability in Microsoft windows (CVE-2023-36036)
vulnerability in Microsoft windows (CVE-2023-36036). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36033 KEV [KEV] Vulnerability in Microsoft windows (CVE-2023-36033)
vulnerability in Microsoft windows (CVE-2023-36033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36846 KEV [KEV] Vulnerability in Juniper junos-os (CVE-2023-36846)
vulnerability in Juniper junos-os (CVE-2023-36846). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36847 KEV [KEV] Vulnerability in Juniper junos-os (CVE-2023-36847)
vulnerability in Juniper junos-os (CVE-2023-36847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36851 KEV [KEV] Vulnerability in Juniper junos-os (CVE-2023-36851)
vulnerability in Juniper junos-os (CVE-2023-36851). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36844 KEV [KEV] Vulnerability in Juniper junos-os (CVE-2023-36844)
vulnerability in Juniper junos-os (CVE-2023-36844). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-36845 KEV [KEV] Vulnerability in Juniper junos-os (CVE-2023-36845)
vulnerability in Juniper junos-os (CVE-2023-36845). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-47246 KEV [KEV] Path Traversal in sysaid (CVE-2023-47246)
path traversal in sysaid (CVE-2023-47246). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-46850 Use-After-Free in openvpn (CVE-2023-46850)
vulnerability in openvpn (CVE-2023-46850). Successful exploitation can lead to full system takeover.
CVE-2023-47359 Out-of-Bounds Write in videolan (CVE-2023-47359)
out-of-bounds write in videolan (CVE-2023-47359). Successful exploitation can lead to full system takeover.
CVE-2023-47360 Vulnerability in videolan (CVE-2023-47360)
vulnerability in videolan (CVE-2023-47360). Risk of unauthorized operations or information disclosure.
CVE-2023-41425 Cross-Site Scripting (XSS) in wondercms (CVE-2023-41425)
cross-site scripting in wondercms (CVE-2023-41425). Risk of unauthorized operations or information disclosure.
CVE-2023-22518 KEV [KEV] Authorization Flaw in Atlassian confluence-data-center-and-server (CVE-2023-22518)
vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-5678 Vulnerability in dos (CVE-2023-5678)
vulnerability in dos (CVE-2023-5678). Risk of unauthorized operations or information disclosure.
CVE-2023-47233 Use-After-Free in c (CVE-2023-47233)
vulnerability in c (CVE-2023-47233). Risk of unauthorized operations or information disclosure.
CVE-2023-46958 Code Injection in lmxcms (CVE-2023-46958)
code injection in lmxcms (CVE-2023-46958). Successful exploitation can lead to full system takeover.
CVE-2023-43336 Vulnerability in sangoma (CVE-2023-43336)
vulnerability in sangoma (CVE-2023-43336). Successful exploitation can lead to full system takeover.
CVE-2023-46604 KEV [KEV] Unsafe Deserialization in Apache activemq (CVE-2023-46604)
vulnerability in Apache activemq (CVE-2023-46604). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-42425 Vulnerability in turing (CVE-2023-42425)
vulnerability in turing (CVE-2023-42425). Successful exploitation can lead to full system takeover.
CVE-2023-36263 SQL Injection in sqli (CVE-2023-36263)
SQL injection in sqli (CVE-2023-36263). Successful exploitation can lead to full system takeover.
CVE-2023-46748 KEV [KEV] SQL Injection in F5 big-ip-configuration-utility (CVE-2023-46748)
SQL injection in F5 big-ip-configuration-utility (CVE-2023-46748). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-46747 KEV [KEV] Vulnerability in F5 big-ip-configuration-utility (CVE-2023-46747)
vulnerability in F5 big-ip-configuration-utility (CVE-2023-46747). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-46246 Vulnerability in c (CVE-2023-46246)
vulnerability in c (CVE-2023-46246). Risk of unauthorized operations or information disclosure. Exploitable via ``ga_grow_inner``.
CVE-2023-5807 SQL Injection in sqli (CVE-2023-5807)
SQL injection in sqli (CVE-2023-5807). Successful exploitation can lead to full system takeover.
CVE-2023-5631 KEV [KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2023-5631)
cross-site scripting in Roundcube webmail (CVE-2023-5631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-5380 Use-After-Free in xorg (CVE-2023-5380)
vulnerability in xorg (CVE-2023-5380). Risk of unauthorized operations or information disclosure.
CVE-2023-5574 Use-After-Free in dos (CVE-2023-5574)
vulnerability in dos (CVE-2023-5574). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →