All Vulnerabilities

CVE-ID	Description	CVSS-Score
		V2	V3
CVE-2023-4901	Inappropriate implementation in Prompts in Google Chrome prior to 117.0.5938.62 allowed a remote attacker to potentially spoof security UI via a crafted HTML page. (Chromium security severity: Medium)	None	4.3
CVE-2023-4900	Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to obfuscate a permission prompt via a crafted HTML page. (Chromium security severity: Medium)	None	4.3
CVE-2023-4899	SQL Injection in GitHub repository mintplex-labs/anything-llm prior to 0.0.1.	None	8.8
CVE-2023-4898	Authentication Bypass by Primary Weakness in GitHub repository mintplex-labs/anything-llm prior to 0.0.1.	None	7.5
CVE-2023-4897	Relative Path Traversal in GitHub repository mintplex-labs/anything-llm prior to 0.0.1.	None	9.8
CVE-2023-4893	The Crayon Syntax Highlighter plugin for WordPress is vulnerable to Server Side Request Forgery via the 'crayon' shortcode in versions up to, and including, 2.8.4. This can allow authenticated attackers with contributor-...	None	5.4
CVE-2023-4892	Teedy v1.11 has a vulnerability in its text editor that allows events to be executed in HTML tags that an attacker could manipulate. Thanks to this, it is possible to execute malicious JavaScript in the webapp.	None	4.6
CVE-2023-4890	The JQuery Accordion Menu Widget for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'dcwp-jquery-accordion' shortcode in versions up to, and including, 3.1.2 due to insufficient input san...	None	5.4
CVE-2023-4887	The Google Maps Plugin by Intergeo for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'intergeo' shortcode in versions up to, and including, 2.3.2 due to insufficient input sanitization a...	None	5.4
CVE-2023-4879	Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git.	None	4.8
CVE-2023-4878	Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1-git.	None	5.4
CVE-2023-4877	Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository hamza417/inure prior to build92.	None	7.5
CVE-2023-4876	Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository hamza417/inure prior to build92.	None	7.5
CVE-2023-4875	Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12	None	5.7
CVE-2023-4874	Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12	None	6.5
CVE-2023-4873	A vulnerability, which was classified as critical, was found in Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230906. Affected is an unknown function of the file /importe...	None	9.8
CVE-2023-4872	A vulnerability, which was classified as critical, has been found in SourceCodester Contact Manager App 1.0. This issue affects some unknown processing of the file add.php. The manipulation of the argument contact/contac...	None	9.8
CVE-2023-4871	A vulnerability classified as critical was found in SourceCodester Contact Manager App 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument contact/contactName leads to sq...	None	9.8
CVE-2023-4870	A vulnerability classified as problematic has been found in SourceCodester Contact Manager App 1.0. This affects an unknown part of the file index.php of the component Contact Information Handler. The manipulation of the...	None	6.1
CVE-2023-4869	A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file update.php. The manipulation leads to cross-site req...	None	8.8

HPI-VDB — Database for IT-Attack Analysis