CVE-2023-31853
Cudy LT400 1.13.4 is vulnerable Cross Site Scripting (XSS) in /cgi-bin/luci/admin/network/bandwidth via the icon parameter.
Source: CVE-2023-31853
[월:] 2023년 07월
CVE-2023-34005
CVE-2023-34005
Cross-Site Request Forgery (CSRF) vulnerability in Etoile Web Design Front End Users plugin <=Â 3.2.24 versions.
Source: CVE-2023-34005
CVE-2023-31851
CVE-2023-31851
Cudy LT400 1.13.4 is has a cross-site scripting (XSS) vulnerability in /cgi-bin/luci/admin/network/wireless/status via the iface parameter.
Source: CVE-2023-31851
CVE-2022-47172
CVE-2022-47172
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLentor plugin <=Â 2.6.2 versions.
Source: CVE-2022-47172
CVE-2023-36511
CVE-2023-36511
Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Order Barcodes plugin <=Â 1.6.4 versions.
Source: CVE-2023-36511
CVE-2023-2958
CVE-2023-2958
Authorization Bypass Through User-Controlled Key vulnerability in Origin Software ATS Pro allows Authentication Abuse, Authentication Bypass.This issue affects ATS Pro: before 20230714.
Source: CVE-2023-2958
CVE-2023-36514
CVE-2023-36514
Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce Shipping Multiple Addresses plugin <=Â 3.8.5 versions.
Source: CVE-2023-36514
CVE-2023-36513
CVE-2023-36513
Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce AutomateWoo plugin <=Â 5.7.5 versions.
Source: CVE-2023-36513
CVE-2023-3376
CVE-2023-3376
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Digital Strategy Zekiweb allows SQL Injection.This issue affects Zekiweb: before 2.
Source: CVE-2023-3376
CVE-2023-3496
CVE-2023-3496
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none.
Source: CVE-2023-3496