CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (359603 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-33191	1 Nirmata	1 Kyverno	2025-01-10	4.6 Medium
Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity `validate.podSecurity` subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4.
CVE-2023-33955	1 Minio	1 Console	2025-01-10	4.3 Medium
Minio Console is the UI for MinIO Object Storage. Unicode RIGHT-TO-LEFT OVERRIDE characters can be used to mask the original filename. This issue has been patched in version 0.28.0.
CVE-2023-25024	1 Icegram	1 Icegram Collect	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Icegram Icegram Collect plugin <= 1.3.8 versions.
CVE-2023-25031	1 Kibokolabs	1 Arigato Autoresponder And Newsletter	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1 versions.
CVE-2023-25020	1 Kibokolabs	1 Arigato Autoresponder And Newsletter	2025-01-10	7.1 High
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1.1 versions.
CVE-2023-25041	1 Cththemes	1 Monolit	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Cththemes Monolit theme <= 2.0.6 versions.
CVE-2023-28993	1 Albo Pretorio On Line Project	1 Albo Pretorio On Line	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Ignazio Scimone Albo Pretorio On Line plugin <= 4.6.1 versions.
CVE-2023-23885	1 Fullworksplugins	1 Quick Contact Form	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Contact Form plugin <= 8.0.3.1 versions.
CVE-2023-23994	1 Auto Hide Admin Bar Project	1 Auto Hide Admin Bar	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Marcel Bootsman Auto Hide Admin Bar plugin <= 1.6.1 versions.
CVE-2023-25464	1 Streamweasels	1 Twitch Player	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in StreamWeasels Twitch Player plugin <= 2.1.0 versions.
CVE-2023-25711	1 Wpglobus	1 Wpglobus Translate Options	2025-01-10	5.8 Medium
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPGlobus WPGlobus Translate Options plugin <= 2.1.0 versions.
CVE-2023-25702	1 Fullworksplugins	1 Quick Paypal Payments	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVE-2023-25713	1 Fullworksplugins	1 Quick Paypal Payments	2025-01-10	7.1 High
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVE-2023-24568	1 Dell	1 Networker	2025-01-10	5 Medium
Dell NetWorker, contains an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port which could disallow replacing CA signed certificates.
CVE-2025-0212	1 Campcodes	1 Student Grading System	2025-01-10	6.3 Medium
A vulnerability was found in Campcodes Student Grading System 1.0. It has been classified as critical. This affects an unknown part of the file /view_students.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVE-2023-29094	1 Piwebsolution	1 Product Page Shipping Calculator For Woocommerce	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product page shipping calculator for WooCommerce plugin <= 1.3.20 versions.
CVE-2023-23799	1 Easy Panorama Project	1 Easy Panorama	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Leonardo Giacone Easy Panorama plugin <= 1.1.4 versions.
CVE-2023-27620	1 Robogallery	1 Robo Gallery	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-site Scripting (XSS) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.12 versions.
CVE-2023-28792	1 I13websolution	1 Continuous Image Carosel With Lightbox	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Continuous Image Carousel With Lightbox plugin <= 1.0.15 versions.
CVE-2023-29172	1 Wp-property-hive	1 Propertyhive	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in PropertyHive plugin <= 1.5.46 versions.

« first previous Page 11948 of 17981. next last »