Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-35064 |
|
SQL Injection in sqli (CVE-2023-35064)
SQL injection in sqli (CVE-2023-35064). Successful exploitation can lead to full system takeover.
|
| CVE-2023-3047 |
|
SQL Injection in sqli (CVE-2023-3047)
SQL injection in sqli (CVE-2023-3047). Successful exploitation can lead to full system takeover.
|
| CVE-2023-3049 |
|
Unrestricted File Upload in tmtmakine (CVE-2023-3049)
vulnerability in tmtmakine (CVE-2023-3049). Successful exploitation can lead to full system takeover.
|
| CVE-2023-27997 KEV |
|
[KEV] Vulnerability in Fortinet fortios-and-fortiproxy-ssl-vpn (CVE-2023-27997)
vulnerability in Fortinet fortios-and-fortiproxy-ssl-vpn (CVE-2023-27997). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33782 |
|
Command Injection in dlink (CVE-2023-33782)
command injection in dlink (CVE-2023-33782). Successful exploitation can lead to full system takeover.
|
| CVE-2023-3079 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2023-3079)
vulnerability in Google chromium-v8 (CVE-2023-3079). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-27126 |
|
Vulnerability in tp-link (CVE-2023-27126)
vulnerability in tp-link (CVE-2023-27126). Confidential information can be exposed externally.
|
| CVE-2023-31569 |
|
Command Injection in totolink (CVE-2023-31569)
command injection in totolink (CVE-2023-31569). Successful exploitation can lead to full system takeover.
|
| CVE-2023-33532 |
|
Command Injection in netgear (CVE-2023-33532)
command injection in netgear (CVE-2023-33532). Successful exploitation can lead to full system takeover.
|
| CVE-2023-33530 |
|
Command Injection in tenda (CVE-2023-33530)
command injection in tenda (CVE-2023-33530). Successful exploitation can lead to full system takeover.
|
| CVE-2023-33381 |
|
OS Command Injection in mitrastar (CVE-2023-33381)
OS command injection in mitrastar (CVE-2023-33381). Successful exploitation can lead to full system takeover.
|
| CVE-2023-33009 KEV |
|
[KEV] Vulnerability in Zyxel multiple-firewalls (CVE-2023-33009)
vulnerability in Zyxel multiple-firewalls (CVE-2023-33009). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33010 KEV |
|
[KEV] Vulnerability in Zyxel multiple-firewalls (CVE-2023-33010)
vulnerability in Zyxel multiple-firewalls (CVE-2023-33010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-3000 |
|
SQL Injection in sqli (CVE-2023-3000)
SQL injection in sqli (CVE-2023-3000). Successful exploitation can lead to full system takeover.
|
| CVE-2023-34362 KEV |
|
[KEV] SQL Injection in Progress moveit-transfer (CVE-2023-34362)
SQL injection in Progress moveit-transfer (CVE-2023-34362). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28771 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-firewalls (CVE-2023-28771)
OS command injection in Zyxel multiple-firewalls (CVE-2023-28771). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33234 |
|
Vulnerability in apache (CVE-2023-33234)
vulnerability in apache (CVE-2023-33234). Successful exploitation can lead to full system takeover.
|
| CVE-2023-33779 |
|
Authorization Flaw in privilege-escalation (CVE-2023-33779)
vulnerability in privilege-escalation (CVE-2023-33779). Successful exploitation can lead to full system takeover.
|
| CVE-2023-2868 KEV |
|
[KEV] Vulnerability in Barracuda networks barracuda-networks (CVE-2023-2868)
vulnerability in Barracuda networks barracuda-networks (CVE-2023-2868). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-2851 |
|
SQL Injection in sqli (CVE-2023-2851)
SQL injection in sqli (CVE-2023-2851). Successful exploitation can lead to full system takeover.
|
| CVE-2023-2887 |
|
Vulnerability in cbot (CVE-2023-2887)
vulnerability in cbot (CVE-2023-2887). Successful exploitation can lead to full system takeover.
|
| CVE-2023-2884 |
|
Vulnerability in cbot (CVE-2023-2884)
vulnerability in cbot (CVE-2023-2884). Successful exploitation can lead to full system takeover.
|
| CVE-2023-31594 |
|
Vulnerability in icrealtime (CVE-2023-31594)
vulnerability in icrealtime (CVE-2023-31594). Confidential information can be exposed externally.
|
| CVE-2023-31748 |
|
Vulnerability in wondershare (CVE-2023-31748)
vulnerability in wondershare (CVE-2023-31748). Successful exploitation can lead to full system takeover.
|
| CVE-2023-2045 |
|
SQL Injection in sqli (CVE-2023-2045)
SQL injection in sqli (CVE-2023-2045). Successful exploitation can lead to full system takeover.
|
| CVE-2023-2064 |
|
SQL Injection in sqli (CVE-2023-2064)
SQL injection in sqli (CVE-2023-2064). Successful exploitation can lead to full system takeover.
|
| CVE-2023-2750 |
|
SQL Injection in sqli (CVE-2023-2750)
SQL injection in sqli (CVE-2023-2750). Successful exploitation can lead to full system takeover.
|
| CVE-2023-1508 |
|
SQL Injection in sqli (CVE-2023-1508)
SQL injection in sqli (CVE-2023-1508). Successful exploitation can lead to full system takeover.
|
| CVE-2023-31517 |
|
Vulnerability in dos (CVE-2023-31517)
vulnerability in dos (CVE-2023-31517). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-2703 |
|
Vulnerability in finexmedia (CVE-2023-2703)
vulnerability in finexmedia (CVE-2023-2703). Confidential information can be exposed externally.
|
| CVE-2023-31740 |
|
Command Injection in linksys (CVE-2023-31740)
command injection in linksys (CVE-2023-31740). Successful exploitation can lead to full system takeover.
|
| CVE-2023-31741 |
|
Command Injection in linksys (CVE-2023-31741)
command injection in linksys (CVE-2023-31741). Successful exploitation can lead to full system takeover.
|
| CVE-2023-31742 |
|
Command Injection in linksys (CVE-2023-31742)
command injection in linksys (CVE-2023-31742). Successful exploitation can lead to full system takeover.
|
| CVE-2023-28204 KEV |
|
[KEV] Out-of-Bounds Read in Apple multiple-products (CVE-2023-28204)
vulnerability in Apple multiple-products (CVE-2023-28204). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-32373 KEV |
|
[KEV] Use-After-Free in Apple multiple-products (CVE-2023-32373)
vulnerability in Apple multiple-products (CVE-2023-32373). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-2712 |
|
Unrestricted File Upload in rental-module-project (CVE-2023-2712)
vulnerability in rental-module-project (CVE-2023-2712). Successful exploitation can lead to full system takeover.
|
| CVE-2023-26818 |
|
Authorization Flaw in telegram (CVE-2023-26818)
vulnerability in telegram (CVE-2023-26818). Confidential information can be exposed externally.
|
| CVE-2016-6415 KEV |
|
[KEV] Information Disclosure in Cisco ios (CVE-2016-6415)
vulnerability in Cisco ios (CVE-2016-6415). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21492 KEV |
|
[KEV] Vulnerability in Samsung mobile-devices (CVE-2023-21492)
vulnerability in Samsung mobile-devices (CVE-2023-21492). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-31729 |
|
TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection via /cgi-bin/cstecgi.cgi.
TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection via /cgi-bin/cstecgi.cgi.
|
| CVE-2023-23448 |
|
Vulnerability in sick (CVE-2023-23448)
vulnerability in sick (CVE-2023-23448). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-23449 |
|
Vulnerability in sick (CVE-2023-23449)
vulnerability in sick (CVE-2023-23449). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-23447 |
|
Vulnerability in sick (CVE-2023-23447)
vulnerability in sick (CVE-2023-23447). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-31409 |
|
Vulnerability in sick (CVE-2023-31409)
vulnerability in sick (CVE-2023-31409). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-23445 |
|
Vulnerability in sick (CVE-2023-23445)
vulnerability in sick (CVE-2023-23445). Confidential information can be exposed externally.
|
| CVE-2023-23446 |
|
Vulnerability in sick (CVE-2023-23446)
vulnerability in sick (CVE-2023-23446). Confidential information can be exposed externally.
|
| CVE-2023-23450 |
|
Authentication Bypass in sick (CVE-2023-23450)
authentication bypass in sick (CVE-2023-23450). Confidential information can be exposed externally.
|
| CVE-2022-47879 |
|
Code Injection in jedox (CVE-2022-47879)
code injection in jedox (CVE-2022-47879). Successful exploitation can lead to full system takeover.
|
| CVE-2023-27823 |
|
Authentication Bypass in optoma (CVE-2023-27823)
authentication bypass in optoma (CVE-2023-27823). Successful exploitation can lead to full system takeover.
|
| CVE-2022-47880 |
|
Vulnerability in jedox (CVE-2022-47880)
vulnerability in jedox (CVE-2022-47880). Confidential information can be exposed externally.
|