CVE-2023-22689
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links plugin <=Â 6.3 versions.
Source: CVE-2023-22689
[월:] 2023년 05월
CVE-2023-24414
CVE-2023-24414
Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <=Â 3.2.11 versions.
Source: CVE-2023-24414
CVE-2022-47134
CVE-2022-47134
Cross-Site Request Forgery (CSRF) vulnerability in Bill Erickson Gallery Metabox plugin <=Â 1.5 versions.
Source: CVE-2022-47134
CVE-2023-32589
CVE-2023-32589
Cross-Site Request Forgery (CSRF) vulnerability in PingOnline Dyslexiefont Free plugin <=Â 1.0.0 versions.
Source: CVE-2023-32589
CVE-2023-23890
CVE-2023-23890
Cross-Site Request Forgery (CSRF) vulnerability in LJ Apps WP Airbnb Review Slider plugin <=Â 3.2 versions.
Source: CVE-2023-23890
CVE-2023-33244
CVE-2023-33244
Obsidian before 1.2.2 allows calls to unintended APIs (for microphone access, camera access, and desktop notification) via an embedded web page.
Source: CVE-2023-33244
CVE-2023-32700
CVE-2023-32700
LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs because luatex-core.lua lets the original io.popen be accessed. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5.
Source: CVE-2023-32700
CVE-2023-1692
CVE-2023-1692
The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality.
Source: CVE-2023-1692
CVE-2023-1696
CVE-2023-1696
The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability.
Source: CVE-2023-1696
CVE-2023-1694
CVE-2023-1694
The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.
Source: CVE-2023-1694