Security
Headlines
HeadlinesLatestCVEs

Source

CVE

CVE-2023-6570

Server-Side Request Forgery (SSRF) in kubeflow/kubeflow

CVE
#ssrf
CVE-2023-6571

Cross-site Scripting (XSS) - Reflected in kubeflow/kubeflow

CVE-2023-50371: WordPress Advanced Page Visit Counter plugin <= 8.0.6 - Cross Site Scripting (XSS) vulnerability - Patchstack

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Page Visit Counter Advanced Page Visit Counter – Most Wanted Analytics Plugin for WordPress advanced-page-visit-counter allows Cross-Site Scripting (XSS).This issue affects Advanced Page Visit Counter – Most Wanted Analytics Plugin for WordPress: from n/a through 8.0.6.

CVE-2023-46750

URL Redirection to Untrusted Site ('Open Redirect') vulnerability when "form" authentication is used in Apache Shiro. Mitigation: Update to Apache Shiro 1.13.0+ or 2.0.0-alpha-4+.

CVE-2023-49707: S5 Register - Joomla! Extension Directory

SQLi vulnerability in S5 Register module for Joomla.

CVE-2023-49708: Starshop - Joomla! Extension Directory

SQLi vulnerability in Starshop component for Joomla.

CVE-2023-46348: [CVE-2023-46348] Improper neutralization of SQL parameter in SunnyToo - Urls module for PrestaShop

SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods.

CVE-2023-48925: [CVE-2023-48925] Improper neutralization of SQL parameter in Buy Addons - Product Video, Youtube, Vimeo Tab module for PrestaShop

SQL injection vulnerability in Buy Addons bavideotab before version 1.0.6, allows attackers to escalate privileges and obtain sensitive information via the component BaVideoTabSaveVideoModuleFrontController::run().

CVE-2023-40630: JCDashboards, by JoomCode - Joomla Extension Directory

Unauthenticated LFI/SSRF in JCDashboards component for Joomla.

CVE-2023-40658: Clicky Analytics Dashboard for Joomla

A reflected XSS vulnerability was discovered in the Clicky Analytics Dashboard module for Joomla.