| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-6684 | Ibtana – WordPress Website Builder <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | vowelweb | Ibtana – WordPress Website Builder | Medium | 6.4 | 2024-01-11 08:32:28 | Deep Dive |
| CVE-2023-6505 | Prime Mover < 1.9.3 - Directory Listing to Sensitive Data Exposure | Unknown | Migrate WordPress Website & Backups | - | - | 2024-01-08 19:00:39 | Deep Dive |
| CVE-2023-50867 | Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi) | Kashipara Group | Travel Website | Critical | 9.8 | 2024-01-04 14:33:53 | Deep Dive |
| CVE-2023-50866 | Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi) | Kashipara Group | Travel Website | Critical | 9.8 | 2024-01-04 14:32:54 | Deep Dive |
| CVE-2023-50865 | Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi) | Kashipara Group | Travel Website | Critical | 9.8 | 2024-01-04 14:32:13 | Deep Dive |
| CVE-2023-50864 | Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi) | Kashipara Group | Travel Website | Critical | 9.8 | 2024-01-04 14:31:25 | Deep Dive |
| CVE-2023-50863 | Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi) | Kashipara Group | Travel Website | Critical | 9.8 | 2024-01-04 14:30:23 | Deep Dive |
| CVE-2023-50862 | Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi) | Kashipara Group | Travel Website | Critical | 9.8 | 2024-01-04 14:29:40 | Deep Dive |
| CVE-2023-6738 | PageLayer <= 1.7.8 - Authenticated(Contributor+) Stored Cross-Site Scripting via meta fields | softaculous | Page Builder: Pagelayer – Drag and Drop website builder | Medium | 5.4 | 2024-01-04 03:30:13 | Deep Dive |
| CVE-2023-6436 | SQLi in Ekol Bilisim Website Template | Ekol Informatics | Website Template | Critical | 9.8 | 2024-01-02 12:15:12 | Deep Dive |
| CVE-2023-50893 | WordPress UpSolution Core Plugin <= 8.17.4 is vulnerable to Cross Site Scripting (XSS) | UpSolution | Impreza – WordPress Website and WooCommerce Builder | High | 7.1 | 2023-12-29 11:12:36 | Deep Dive |
| CVE-2023-7108 | code-projects E-Commerce Website user_signup.php cross site scripting | code-projects | E-Commerce Website | Medium | 4.3 | 2023-12-26 00:00:07 | Deep Dive |
| CVE-2023-7107 | code-projects E-Commerce Website user_signup.php sql injection | code-projects | E-Commerce Website | High | 7.3 | 2023-12-25 23:31:04 | Deep Dive |
| CVE-2023-7106 | code-projects E-Commerce Website sql injection | code-projects | E-Commerce Website | Medium | 6.3 | 2023-12-25 23:00:06 | Deep Dive |
| CVE-2023-7105 | code-projects E-Commerce Website index_search.php sql injection | code-projects | E-Commerce Website | Medium | 4.7 | 2023-12-25 22:31:04 | Deep Dive |
| CVE-2023-33209 | WordPress SEO Change Monitor Plugin <= 1.2 is vulnerable to SQL Injection | CrawlSpider | SEO Change Monitor – Track Website Changes | High | 8.5 | 2023-12-20 15:49:51 | Deep Dive |
| CVE-2023-6896 | SourceCodester Simple Image Stack Website cross site scripting | SourceCodester | Simple Image Stack Website | Low | 3.5 | 2023-12-17 10:00:05 | Deep Dive |
| CVE-2023-5715 | Website Optimization – Plerdy <= 1.3.2 - Authenticated (Admin+) Stored Cross-Site Scripting | plerdy | Website Optimization – Plerdy | Medium | 4.4 | 2023-11-22 15:33:36 | Deep Dive |
| CVE-2023-27633 | WordPress Customify Plugin <= 2.10.4 is vulnerable to Cross Site Request Forgery (CSRF) | Pixelgrade | Customify – Intuitive Website Styling | Medium | 4.3 | 2023-11-22 13:12:05 | Deep Dive |
| CVE-2023-47544 | WordPress Atarim Plugin <= 3.12 is vulnerable to Cross Site Scripting (XSS) | Atarim | Visual Website Collaboration, Feedback & Project Management – Atarim | High | 7.1 | 2023-11-14 21:01:23 | Deep Dive |