CVE-2023-1258
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ABB Flow-X firmware on Flow-X embedded hardware (web service modules) allows Footprinting.This issue affects Flow-X: before 4.0.
Source: CVE-2023-1258
[월:] 2023년 03월
CVE-2023-28727
CVE-2023-28727
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers.
Source: CVE-2023-28727
CVE-2023-28726
CVE-2023-28726
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands.
Source: CVE-2023-28726
CVE-2023-28756
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
Source: CVE-2023-28756
CVE-2023-28755
CVE-2023-28755
A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.
Source: CVE-2023-28755
CVE-2023-1761
CVE-2023-1761
Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
Source: CVE-2023-1761
CVE-2023-1762
CVE-2023-1762
Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
Source: CVE-2023-1762
CVE-2023-1760
CVE-2023-1760
Cross-site Scripting (XSS) – Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
Source: CVE-2023-1760
CVE-2023-1759
CVE-2023-1759
Cross-site Scripting (XSS) – Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
Source: CVE-2023-1759
CVE-2023-1755
CVE-2023-1755
Cross-site Scripting (XSS) – Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
Source: CVE-2023-1755