Search Results (364428 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-39796 1 Wbce 1 Wbce Cms 2024-11-21 9.8 Critical
SQL injection vulnerability in the miniform module in WBCE CMS v.1.6.0 allows remote unauthenticated attacker to execute arbitrary code via the DB_RECORD_TABLE parameter.
CVE-2023-39777 1 Vbulletin 1 Vbulletin 2024-11-21 5.4 Medium
A cross-site scripting (XSS) vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter.
CVE-2023-39776 1 Phpjabbers 1 Ticket Support Script 2024-11-21 9.8 Critical
A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2023-39751 1 Tp-link 3 Tl-wr941nd, Tl-wr941nd V6, Tl-wr941nd V6 Firmware 2024-11-21 9.8 Critical
TP-Link TL-WR941ND V6 were discovered to contain a buffer overflow via the pSize parameter at /userRpm/PingIframeRpm.
CVE-2023-39750 2 D-link, Dlink 3 Dap-2660, Dap-2660, Dap-2660 Firmware 2024-11-21 9.8 Critical
D-Link DAP-2660 v1.13 was discovered to contain a buffer overflow via the f_ipv6_enable parameter at /bsc_ipv6. This vulnerability is exploited via a crafted POST request.
CVE-2023-39749 2 D-link, Dlink 3 Dap-2660, Dap-2660, Dap-2660 Firmware 2024-11-21 9.8 Critical
D-Link DAP-2660 v1.13 was discovered to contain a buffer overflow via the component /adv_resource. This vulnerability is exploited via a crafted GET request.
CVE-2023-39748 2 Tp-link, Tp Link 3 Tl-wr1041n V2, Tl-wr1041n V2 Firmware, Tl-wr1041n 2024-11-21 7.5 High
An issue in the component /userRpm/NetworkCfgRpm of TP-Link TL-WR1041N V2 allows attackers to cause a Denial of Service (DoS) via a crafted GET request.
CVE-2023-39747 1 Tp-link 9 Tl-wr841n V8, Tl-wr841n V8 Firmware, Tl-wr940n and 6 more 2024-11-21 9.8 Critical
TP-Link WR841N V8, TP-Link TL-WR940N V2, and TL-WR941ND V5 were discovered to contain a buffer overflow via the radiusSecret parameter at /userRpm/WlanSecurityRpm.
CVE-2023-39745 1 Tp-link 9 Tl-wr841n, Tl-wr841n V8, Tl-wr841n V8 Firmware and 6 more 2024-11-21 7.5 High
TP-Link TL-WR940N V2, TP-Link TL-WR941ND V5 and TP-Link TL-WR841N V8 were discovered to contain a buffer overflow via the component /userRpm/AccessCtrlAccessRulesRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.
CVE-2023-39743 1 Pete4abw 1 Lzma Software Development Kit 2024-11-21 5.3 Medium
lrzip-next LZMA v23.01 was discovered to contain an access violation via the component /bz3_decode_block src/libbz3.c.
CVE-2023-39742 1 Giflib Project 1 Giflib 2024-11-21 5.5 Medium
giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.
CVE-2023-39741 1 Long Range Zip Project 1 Long Range Zip 2024-11-21 5.5 Medium
lrzip v0.651 was discovered to contain a heap overflow via the libzpaq::PostProcessor::write(int) function at /libzpaq/libzpaq.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.
CVE-2023-39740 1 Linecorp 1 Onigiriya-musubee 2024-11-21 8.2 High
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39739 1 Linecorp 1 Regina Sweets\&bakery 2024-11-21 8.2 High
The leakage of the client secret in REGINA SWEETS&BAKERY Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39737 1 Linecorp 1 Matsuya 2024-11-21 8.2 High
The leakage of the client secret in Matsuya Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39736 1 Linecorp 1 Fukunaga Memberscard 2024-11-21 8.2 High
The leakage of the client secret in Fukunaga_memberscard Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39735 1 Linecorp 1 Uomasa Saiji New 2024-11-21 8.2 High
The leakage of the client secret in Uomasa_Saiji_news Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39734 1 Linecorp 1 Trackdiner10\/10 Mc 2024-11-21 8.2 High
The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10_mc Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39733 1 Linecorp 1 Tonton-tei 2024-11-21 8.2 High
The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39732 1 Linecorp 1 Tokueimaru Waiting 2024-11-21 8.2 High
The leakage of the client secret in Tokueimaru_waiting Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.