CVE-2023-46153

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-46153

Unauth. Stored Cross-Site Scripting (XSS) vulnerability in UserFeedback Team User Feedback plugin <=Â 1.0.9 versions.

Source: CVE-2023-46153

CVE-2023-46093

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-46093

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in LionScripts.Com Webmaster Tools plugin <=Â 2.0 versions.

Source: CVE-2023-46093

CVE-2023-46192

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-46192

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Internet Marketing Ninjas Internal Link Building plugin <=Â 1.2.3 versions.

Source: CVE-2023-46192

CVE-2023-46199

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-46199

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Triberr plugin <=Â 4.1.1 versions.

Source: CVE-2023-46199

CVE-2023-46194

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-46194

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Eric Teubert Archivist â€“ Custom Archive Templates plugin <=Â 1.7.5 versions.

Source: CVE-2023-46194

CVE-2023-44219

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature.

Source: CVE-2023-44219

CVE-2023-46091

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-46091

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Bala Krishna, Sergey Yakovlev Category SEO Meta Tags plugin <=Â 2.5 versions.

Source: CVE-2023-46091

CVE-2023-44220

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-44220

SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system.

Source: CVE-2023-44220

CVE-2023-34059

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-34059

open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper.Â A malicious actor with non-root privileges may be able to hijack the
/dev/uinput file descriptor allowing them to simulate user inputs.

Source: CVE-2023-34059

CVE-2023-34057

Posted on 2023년 10월 27일2023년 10월 27일 by admin

CVE-2023-34057

VMware Tools contains a local privilege escalation vulnerability.Â A malicious actor with local user access to a guest virtual machine may elevate privileges within the virtual machine.

Source: CVE-2023-34057