Search Results (362462 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-44044 1 Superstorefinder 1 Super Store Finder 2024-11-21 7.2 High
Super Store Finder v3.6 and below was discovered to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.
CVE-2023-44043 1 Blackcat-cms 1 Blackcat Cms 2024-11-21 6.1 Medium
A reflected cross-site scripting (XSS) vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter.
CVE-2023-44042 1 Blackcat-cms 1 Blackcat Cms 2024-11-21 5.4 Medium
A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter.
CVE-2023-44037 1 Zpesystems 1 Nodegrid Os 2024-11-21 7.5 High
An issue in ZPE Systems, Inc Nodegrid OS v.5.8.10 thru v.5.8.13 and v.5.10.3 thru v.5.10.5 allows a remote attacker to obtain sensitive information via the TACACS+ server component.
CVE-2023-44025 1 Addify 1 Free Gifts 2024-11-21 9.8 Critical
SQL injection vulnerability in addify Addifyfreegifts v.1.0.2 and before allows a remote attacker to execute arbitrary code via a crafted script to the getrulebyid function in the AddifyfreegiftsModel.php component.
CVE-2023-44024 1 Knowband 1 One Page Checkout\, Social Login \& Mailchimp 2024-11-21 9.8 Critical
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp (supercheckout) v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component.
CVE-2023-44023 2 Tenda, Tendacn 3 Ac10u, Ac10u, Ac10u Firmware 2024-11-21 9.8 Critical
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function.
CVE-2023-44022 2 Tenda, Tendacn 3 Ac10u, Ac10u, Ac10u Firmware 2024-11-21 9.8 Critical
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function.
CVE-2023-44021 2 Tenda, Tendacn 3 Ac10u, Ac10u, Ac10u Firmware 2024-11-21 9.8 Critical
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the formSetClientState function.
CVE-2023-44020 2 Tenda, Tendacn 3 Ac10u, Ac10u, Ac10u Firmware 2024-11-21 9.8 Critical
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the security parameter in the formWifiBasicSet function.
CVE-2023-44019 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the mac parameter in the GetParentControlInfo function.
CVE-2023-44018 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the domain parameter in the add_white_node function.
CVE-2023-44017 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the timeZone parameter in the fromSetSysTime function.
CVE-2023-44016 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function.
CVE-2023-44015 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the schedEndTime parameter in the setSchedWifi function.
CVE-2023-44014 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain multiple stack overflows in the formSetMacFilterCfg function via the macFilterType and deviceList parameters.
CVE-2023-44013 2 Tenda, Tendacn 3 Ac10u Firmware, Ac10u, Ac10u Firmware 2024-11-21 8.8 High
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the list parameter in the fromSetIpMacBind function.
CVE-2023-44012 1 Mojoportal 1 Mojoportal 2024-11-21 6.1 Medium
Cross Site Scripting vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the helpkey parameter in the Help.aspx component.
CVE-2023-44011 1 Mojoportal 1 Mojoportal 2024-11-21 9.8 Critical
An issue in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the layout.master skin file at the Skin management component.
CVE-2023-44009 1 Mojoportal 1 Mojoportal 2024-11-21 9.8 Critical
File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the Skin Management function.