CVE.report

CVE.report is the most up-to-date database of common vulnerabilities and exposures. Information is pulled in from several sources and processed in to a mobile friendly, easy to use page. Use the site to quickly check for vulnerabilities in products such as operating systems, applications, hardware, networks, databases, browsers, e-mail clients and more.

CVEs provide a unique and common naming scheme for publicly known cyber security vulnerabilities in order to quickly identify and share these vulnerabilities. You can use the search below to look for vulnerabilities based on product, vendor, or common tags


The form you will see after following this link allows you to fill out the various variables in the CVSS scoring system and receive the corresponding score. The description of each of the variables is also included for additional information.

[rss]
Recent CVEs
CVE Description Date
CVE-2023-25782 Auth. (admin+) vulnerability in Second2none Service Area Postcode Checker plugin <= 2.0.8 versions. Mon, 20 Mar 2023 06:08:06
CVE-2023-1507 A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as problematic. Affected by this vulner... Mon, 20 Mar 2023 06:07:38
CVE-2023-1506 A vulnerability, which was classified as critical, was found in SourceCodester E-Commerce System 1.0. Affected is an unknown ... Mon, 20 Mar 2023 06:07:14
CVE-2023-1505 A vulnerability, which was classified as critical, has been found in SourceCodester E-Commerce System 1.0. This issue affects... Mon, 20 Mar 2023 05:06:45
CVE-2023-1504 A vulnerability classified as critical was found in SourceCodester Alphaware Simple E-Commerce System 1.0. This vulnerability... Mon, 20 Mar 2023 05:06:16
CVE-2023-1503 A vulnerability classified as critical has been found in SourceCodester Alphaware Simple E-Commerce System 1.0. This affects ... Mon, 20 Mar 2023 05:05:54
CVE-2023-1502 A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System 1.0. It has been rated as critical. Affected b... Mon, 20 Mar 2023 05:05:23
CVE-2023-1250 Improper Input Validation vulnerability in OTRS AG OTRS (ACL modules), OTRS AG ((OTRS)) Community Edition (ACL modules) allow... Mon, 20 Mar 2023 05:04:56
CVE-2023-1248 Improper Input Validation vulnerability in OTRS AG OTRS (Ticket Actions modules), OTRS AG ((OTRS)) Community Edition (Ticket ... Mon, 20 Mar 2023 05:04:26
CVE-2022-4933 A vulnerability, which was classified as critical, has been found in ATM Consulting dolibarr_module_quicksupplierprice up to ... Mon, 20 Mar 2023 01:07:00
CVE-2015-10096 A vulnerability, which was classified as critical, was found in Zarthus IRC Twitter Announcer Bot up to 1.1.0. This affects t... Mon, 20 Mar 2023 01:06:42
CVE-2023-1501 A vulnerability, which was classified as critical, was found in RockOA 2.3.2. This affects the function runAction of the file... Sun, 19 Mar 2023 16:08:08
CVE-2023-1500 A vulnerability, which was classified as problematic, has been found in code-projects Simple Art Gallery 1.0. Affected by thi... Sun, 19 Mar 2023 16:07:46
CVE-2023-1499 A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is a... Sun, 19 Mar 2023 16:07:30
CVE-2023-1498 A vulnerability classified as critical has been found in code-projects Responsive Hotel Site 1.0. Affected is an unknown func... Sun, 19 Mar 2023 16:07:09
CVE-2023-1497 A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script 1.0. It has been rated as critical. This iss... Sun, 19 Mar 2023 15:07:50
CVE-2023-1496 Cross-site Scripting (XSS) - Reflected in GitHub repository imgproxy/imgproxy prior to 3.14.0. Sun, 19 Mar 2023 12:42:44
CVE-2023-28617 org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands... Sat, 18 Mar 2023 23:04:53
CVE-2022-48425 In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replay... Sat, 18 Mar 2023 23:04:36
CVE-2022-48424 In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may o... Sat, 18 Mar 2023 23:04:12
CVE-2022-48423 In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may oc... Sat, 18 Mar 2023 23:03:45
CVE-2023-26905 An issue was discovered in Alphaware - Simple E-Commerce System v1.0. There is a SQL injection that can directly issue instru... Sat, 18 Mar 2023 21:04:25
CVE-2023-26806 Tenda W20E v15.11.0.6(US_W20EV4.0br_v15.11.0.6(1068_1546_841 is vulnerable to Buffer Overflow via function formSetSysTime, Sat, 18 Mar 2023 21:04:01
CVE-2023-26805 Tenda W20E v15.11.0.6 (US_W20EV4.0br_v15.11.0.6(1068_1546_841)_CN_TDC) is vulnerable to Buffer Overflow via function formIPMa... Sat, 18 Mar 2023 21:03:43
CVE-2022-48422 ONLYOFFICE Docs through 7.3 on certain Linux distributions allows local users to gain privileges via a Trojan horse libgcc_s.... Sat, 18 Mar 2023 21:03:26
CVE-2023-1495 A vulnerability classified as critical was found in Rebuild up to 3.2.3. Affected by this vulnerability is the function query... Sat, 18 Mar 2023 20:09:17
CVE-2023-1494 A vulnerability classified as critical has been found in IBOS 4.5.5. Affected is an unknown function of the file ApiControlle... Sat, 18 Mar 2023 19:07:50
CVE-2023-1493 A vulnerability was found in Max Secure Anti Virus Plus 19.0.2.1. It has been rated as problematic. This issue affects some u... Sat, 18 Mar 2023 19:07:35
CVE-2023-1492 A vulnerability was found in Max Secure Anti Virus Plus 19.0.2.1. It has been declared as problematic. This vulnerability aff... Sat, 18 Mar 2023 19:07:12
CVE-2021-46877 jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x before 2.13.1 allows attackers to cause a denial of service (... Sat, 18 Mar 2023 18:08:22
CVE-2023-1491 A vulnerability was found in Max Secure Anti Virus Plus 19.0.2.1. It has been classified as critical. This affects an unknown... Sat, 18 Mar 2023 18:08:00
CVE-2023-1490 A vulnerability was found in Max Secure Anti Virus Plus 19.0.2.1 and classified as critical. Affected by this issue is some u... Sat, 18 Mar 2023 18:07:31
CVE-2023-1489 A vulnerability has been found in Lespeed WiseCleaner Wise System Monitor 1.5.3.54 and classified as critical. Affected by th... Sat, 18 Mar 2023 18:07:19
CVE-2023-28609 api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication. Sat, 18 Mar 2023 17:05:13
CVE-2023-1488 A vulnerability, which was classified as problematic, was found in Lespeed WiseCleaner Wise System Monitor 1.5.3.54. Affected... Sat, 18 Mar 2023 17:04:53
CVE-2023-1487 A vulnerability, which was classified as problematic, has been found in Lespeed WiseCleaner Wise System Monitor 1.5.3.54. Thi... Sat, 18 Mar 2023 17:04:27
CVE-2023-1486 A vulnerability classified as problematic was found in Lespeed WiseCleaner Wise Force Deleter 1.5.3.54. This vulnerability af... Sat, 18 Mar 2023 17:03:57
CVE-2023-1485 A vulnerability classified as problematic has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affe... Sat, 18 Mar 2023 17:03:38
CVE-2023-28607 js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip. Sat, 18 Mar 2023 14:05:25
CVE-2023-28606 js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips. Sat, 18 Mar 2023 14:04:57
CVE-2023-1484 A vulnerability was found in xzjie cms up to 1.0.3 and classified as critical. This issue affects some unknown processing of ... Sat, 18 Mar 2023 06:04:05
CVE-2023-1483 A vulnerability has been found in XiaoBingBy TeaCMS up to 2.0.2 and classified as critical. This vulnerability affects unknow... Sat, 18 Mar 2023 06:03:42
CVE-2023-1482 A vulnerability, which was classified as problematic, was found in HkCms 2.2.4.230206. This affects an unknown part of the fi... Sat, 18 Mar 2023 06:03:28
CVE-2023-1481 A vulnerability, which was classified as problematic, has been found in SourceCodester Monitoring of Students Cyber Accounts ... Sat, 18 Mar 2023 05:04:21
CVE-2023-1480 A vulnerability classified as critical was found in SourceCodester Monitoring of Students Cyber Accounts System 1.0. Affected... Sat, 18 Mar 2023 05:03:59
CVE-2023-1479 A vulnerability classified as critical has been found in SourceCodester Simple Music Player 1.0. Affected is an unknown funct... Sat, 18 Mar 2023 05:03:42
CVE-2023-26113 Versions of the package collection.js before 6.8.1 are vulnerable to Prototype Pollution via the extend function in Collectio... Sat, 18 Mar 2023 01:05:50
CVE-2023-24278 Squidex before 7.4.0 was discovered to contain a squid.svg cross-site scripting (XSS) vulnerability. Sat, 18 Mar 2023 00:03:23
CVE-2023-28116 Contiki-NG is an open-source, cross-platform operating system for internet of things (IoT) devices. In versions 4.8 and prior... Fri, 17 Mar 2023 18:02:50
CVE-2023-28115 Snappy is a PHP library allowing thumbnail, snapshot or PDF generation from a url or a html page. Prior to version 1.4.2, Sna... Fri, 17 Mar 2023 18:02:33
CVE-2023-27595 Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In version 1.13.0, when Cilium is ... Fri, 17 Mar 2023 18:02:11
CVE-2023-27253 A command injection vulnerability in the function restore_rrddata() of Netgate pfSense v2.7.0 allows authenticated attackers ... Fri, 17 Mar 2023 18:01:54
CVE-2023-24678 A vulnerability in Centralite Pearl Thermostat 0x04075010 allows attackers to cause a Denial of Service (DoS) via a crafted Z... Fri, 17 Mar 2023 17:05:21
CVE-2023-27594 Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8,... Fri, 17 Mar 2023 16:05:26
CVE-2023-27593 Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8,... Fri, 17 Mar 2023 16:05:03
CVE-2023-27592 Miniflux is a feed reader. Since v2.0.25, Miniflux will automatically proxy images served over HTTP to prevent mixed content ... Fri, 17 Mar 2023 16:04:49
CVE-2023-27591 Miniflux is a feed reader. Prior to version 2.0.43, an unauthenticated user can retrieve Prometheus metrics from a publicly r... Fri, 17 Mar 2023 16:04:27
CVE-2023-28112 Discourse is an open-source discussion platform. Prior to version 3.1.0.beta3 of the `beta` and `tests-passed` branches, some... Fri, 17 Mar 2023 15:04:16
CVE-2023-28111 Discourse is an open-source discussion platform. Prior to version 3.1.0.beta3 of the `beta` and `tests-passed` branches, atta... Fri, 17 Mar 2023 13:02:17
CVE-2023-28107 Discourse is an open-source discussion platform. Prior to version 3.0.2 of the `stable` branch and version 3.1.0.beta3 of the... Fri, 17 Mar 2023 13:02:04
CVE-2023-25172 Discourse is an open-source discussion platform. Prior to version 3.0.1 of the `stable` branch and version 3.1.0.beta2 of the... Fri, 17 Mar 2023 13:01:50
CVE-2023-0027 Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message ... Fri, 17 Mar 2023 13:01:37
CVE-2022-46867 Cross-Site Request Forgery (CSRF) vulnerability in Chasil Universal Star Rating plugin <= 2.1.0 version. Fri, 17 Mar 2023 12:07:42
CVE-2022-46854 Cross-Site Request Forgery (CSRF) vulnerability in Obox Themes Launchpad – Coming Soon & Maintenance Mode plugin <= 1.0.13 ... Fri, 17 Mar 2023 12:07:19
CVE-2023-26040 Discourse is an open-source discussion platform. Between versions 3.1.0.beta2 and 3.1.0.beta3 of the `tests-passed` branch, e... Fri, 17 Mar 2023 11:05:45
CVE-2023-23622 Discourse is an open-source discussion platform. Prior to version 3.0.1 of the `stable` branch and version 3.1.0.beta2 of the... Fri, 17 Mar 2023 11:05:27
CVE-2023-1475 A vulnerability, which was classified as critical, has been found in SourceCodester Canteen Management System 1.0. This issue... Fri, 17 Mar 2023 11:05:06
CVE-2023-1474 A vulnerability classified as critical was found in SourceCodester Automatic Question Paper Generator System 1.0. This vulner... Fri, 17 Mar 2023 11:04:37
CVE-2023-1472 The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, an... Fri, 17 Mar 2023 11:04:24
CVE-2023-1471 The WP Popup Banners plugin for WordPress is vulnerable to SQL Injection via the 'banner_id' parameter in versions up to, and... Fri, 17 Mar 2023 10:06:09
CVE-2023-1470 The eCommerce Product Catalog plugin for WordPress is vulnerable to Stored Cross-Site Scripting via some of its settings para... Fri, 17 Mar 2023 10:05:47
CVE-2022-45817 Cross-Site Scripting (XSS) vulnerability in Erin Garscadden GC Testimonials plugin <= 1.3.2 versions. Fri, 17 Mar 2023 10:05:32
CVE-2022-45814 Stored Cross-Site Scripting (XSS) vulnerability in Fabian von Allmen WP Calendar plugin <= 1.5.3 versions. Fri, 17 Mar 2023 10:05:17
CVE-2022-43461 Stored Cross-Site Scripting (XSS) vulnerability in John West Slideshow SE plugin <= 2.5.5 versions. Fri, 17 Mar 2023 10:04:51
CVE-2023-1469 The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pec_coupon[code]’ para... Fri, 17 Mar 2023 09:04:40
CVE-2023-1172 The Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the full name value in versions up to, and i... Fri, 17 Mar 2023 09:04:22
CVE-2023-1468 A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected ... Fri, 17 Mar 2023 08:02:07
CVE-2023-1467 A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affe... Fri, 17 Mar 2023 08:01:51
CVE-2023-1466 A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. T... Fri, 17 Mar 2023 08:01:36
CVE-2023-1464 A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an u... Fri, 17 Mar 2023 08:01:17
CVE-2023-1463 Improper Authorization in GitHub repository nilsteampassnet/teampass prior to 3.0.0.23. Fri, 17 Mar 2023 07:48:36
CVE-2023-1461 A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been declared as critical. This vulnerabili... Fri, 17 Mar 2023 05:06:01
CVE-2023-1152 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Utarit Information Tech... Fri, 17 Mar 2023 05:05:49
CVE-2023-1460 A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0. It has been classified as critical. This affect... Fri, 17 Mar 2023 04:03:56
CVE-2023-1459 A vulnerability was found in SourceCodester Canteen Management System 1.0 and classified as critical. Affected by this issue ... Fri, 17 Mar 2023 04:03:42
CVE-2023-1455 A vulnerability classified as critical was found in SourceCodester Online Pizza Ordering System 1.0. This vulnerability affec... Fri, 17 Mar 2023 03:09:30
CVE-2023-1454 A vulnerability classified as critical has been found in jeecg-boot 3.5.0. This affects an unknown part of the file jmreport/... Fri, 17 Mar 2023 03:09:12
CVE-2023-1453 A vulnerability was found in Watchdog Anti-Virus 1.4.214.0. It has been rated as critical. Affected by this issue is some unk... Fri, 17 Mar 2023 03:08:44
CVE-2023-1452 A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnera... Fri, 17 Mar 2023 03:08:28
CVE-2023-1451 A vulnerability was found in MP4v2 2.1.2. It has been classified as problematic. Affected is the function mp4v2::impl::MP4Tra... Fri, 17 Mar 2023 03:08:15
CVE-2023-1450 A vulnerability was found in MP4v2 2.1.2 and classified as problematic. This issue affects the function DumpTrack of the file... Fri, 17 Mar 2023 03:07:46
CVE-2023-1449 A vulnerability has been found in GPAC 2.3-DEV-rev35-gbbca86917-master and classified as problematic. This vulnerability affe... Fri, 17 Mar 2023 03:07:32
CVE-2023-1448 A vulnerability, which was classified as problematic, was found in GPAC 2.3-DEV-rev35-gbbca86917-master. This affects the fun... Fri, 17 Mar 2023 03:07:10
CVE-2023-1447 A vulnerability, which was classified as problematic, has been found in SourceCodester Medicine Tracker System 1.0. Affected ... Fri, 17 Mar 2023 03:06:48
CVE-2023-1446 A vulnerability classified as problematic was found in Watchdog Anti-Virus 1.4.214.0. Affected by this vulnerability is an un... Fri, 17 Mar 2023 03:06:28
CVE-2023-1445 A vulnerability classified as problematic has been found in Filseclab Twister Antivirus 8. Affected is an unknown function in... Fri, 17 Mar 2023 03:06:12
CVE-2023-1444 A vulnerability was found in Filseclab Twister Antivirus 8. It has been rated as critical. This issue affects some unknown pr... Fri, 17 Mar 2023 03:05:54
CVE-2023-1443 A vulnerability was found in Filseclab Twister Antivirus 8. It has been declared as problematic. This vulnerability affects u... Fri, 17 Mar 2023 03:05:41
CVE-2023-1442 A vulnerability was found in Meizhou Qingyunke QYKCMS 4.3.0. It has been classified as problematic. This affects an unknown p... Fri, 17 Mar 2023 03:05:12
CVE-2023-1441 A vulnerability has been found in SourceCodester Automatic Question Paper Generator System 1.0 and classified as critical. Af... Fri, 17 Mar 2023 03:04:59
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report