CVE-ID |
Description |
CVSS-Score |
|
|
V2 |
V3 |
CVE-2023-5104 |
Improper Input Validation in GitHub repository nocodb/nocodb prior to 0.96.0.
|
None |
6.5 |
CVE-2023-5084 |
Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/hestiacp prior to 1.8.8.
|
None |
6.1 |
CVE-2023-5074 |
Use of a static key to protect a JWT token used in user authentication can allow an for an authentication bypass in D-Link D-View 8 v2.0.1.28
|
None |
9.8 |
CVE-2023-5068 |
Delta Electronics DIAScreen may write past the end of an allocated
buffer while parsing a specially crafted input file. This could allow an
attacker to execute code in the context of the current process.
|
None |
7.8 |
CVE-2023-5063 |
The Widget Responsive for Youtube plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'youtube' shortcode in versions up to, and including, 1.6.1 due to insufficient input sanitization and output escapi...
|
None |
5.4 |
CVE-2023-5062 |
The WordPress Charts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'wp_charts' shortcode in versions up to, and including, 0.7.0 due to insufficient input sanitization and output escaping on user ...
|
None |
5.4 |
CVE-2023-5060 |
Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms prior to 23.9.1.
|
None |
6.1 |
CVE-2023-5054 |
The Super Store Finder plugin for WordPress is vulnerable to unauthenticated arbitrary email creation and relay in versions up to, and including, 6.9.2. This is due to insufficient restrictions on the sendMail.php file t...
|
None |
5.8 |
CVE-2023-5042 |
Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40713.
|
None |
7.5 |
CVE-2023-5036 |
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.15.1.
|
None |
8.8 |
CVE-2023-5034 |
A vulnerability classified as problematic was found in SourceCodester My Food Recipe 1.0. This vulnerability affects unknown code of the file index.php of the component Image Upload Handler. The manipulation leads to unr...
|
None |
9.8 |
CVE-2023-5033 |
A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /admin/category/cate-edit-run.php. The manipulation of the argument id leads to sql injection. I...
|
None |
7.2 |
CVE-2023-5032 |
A vulnerability was found in OpenRapid RapidCMS 1.3.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/article/article-edit-run.php. The manipulation of the argument...
|
None |
7.2 |
CVE-2023-5031 |
A vulnerability was found in OpenRapid RapidCMS 1.3.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/article/article-add.php. The manipulation of the argu...
|
None |
6.5 |
CVE-2023-5030 |
A vulnerability has been found in Tongda OA up to 11.10 and classified as critical. This vulnerability affects unknown code of the file general/hr/recruit/plan/delete.php. The manipulation of the argument PLAN_ID leads t...
|
None |
8.8 |
CVE-2023-5029 |
A vulnerability, which was classified as critical, was found in mccms 2.6. This affects an unknown part of the file /category/order/hits/copyright/46/finish/1/list/1. The manipulation with the input '"1 leads to sql inje...
|
None |
8.8 |
CVE-2023-5028 |
A vulnerability, which was classified as problematic, has been found in China Unicom TEWA-800G 4.16L.04_CT2015_Yueme. Affected by this issue is some unknown functionality. The manipulation leads to information exposure t...
|
None |
4.6 |
CVE-2023-5027 |
A vulnerability classified as critical was found in SourceCodester Simple Membership System 1.0. Affected by this vulnerability is an unknown functionality of the file club_validator.php. The manipulation of the argument...
|
None |
7.5 |
CVE-2023-5026 |
A vulnerability classified as problematic has been found in Tongda OA 11.10. Affected is an unknown function of the file /general/ipanel/menu_code.php?MENU_TYPE=FAV. The manipulation of the argument OA_SUB_WINDOW leads t...
|
None |
6.1 |
CVE-2023-5025 |
A vulnerability was found in KOHA up to 23.05.03. It has been declared as problematic. This vulnerability affects unknown code of the file /cgi-bin/koha/catalogue/search.pl of the component MARC. The manipulation leads t...
|
None |
5.4 |