| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-25984 | WordPress Dovetail Plugin <= 1.2.13 is vulnerable to Cross Site Scripting (XSS) | Rigorous & Factory Pattern | Dovetail | Medium | 5.9 | 2023-08-08 12:07:36 | Deep Dive |
| CVE-2023-2161 | Schneider Electric OPC Factory Server 代码问题漏洞 | Schneider Electric | OPC Factory Server (OFS) | Medium | 5.0 | 2023-05-16 04:31:26 | Deep Dive |
| CVE-2023-0277 | WC Fields Factory <= 4.1.5 - ShopManager+ SQLi | Unknown | WC Fields Factory | 高危 | - | 2023-04-17 12:17:41 | Deep Dive |
| CVE-2022-45155 | obs-service-go_modules: arbitrary directory delete | SUSE | openSUSE Factory | Medium | 5.5 | 2023-03-15 00:00:00 | Deep Dive |
| CVE-2023-0148 | Gallery Factory Lite <= 2.0.0 - Contributor+ Stored XSS | Unknown | Gallery Factory Lite | 中危 | - | 2023-02-06 19:59:22 | Deep Dive |
| CVE-2022-38396 | HP Factory Preinstalled Windows 10 Images 安全漏洞 | HP Inc. | HP Factory Preinstalled Windows 10 20H2 Images | 高危 | - | 2023-02-03 16:53:47 | Deep Dive |
| CVE-2022-31253 | openldap2: /usr/lib/openldap/start allows ldap user/group to recursively chown arbitrary directory trees to itself | openSUSE | Factory | High | 7.1 | 2022-11-09 13:50:11 | Deep Dive |
| CVE-2022-31256 | sendmail: mail to root privilege escalation via sm-client.pre script | SUSE | openSUSE Factory | High | 7.7 | 2022-10-26 08:55:09 | Deep Dive |
| CVE-2022-31251 | slurm: %post for slurm-testsuite operates as root in user owned directory | SUSE | openSUSE Factory | Medium | 6.5 | 2022-09-07 08:55:09 | Deep Dive |
| CVE-2022-21946 | suddoers configuration for cscreen not restrictive enough | openSUSE | Factory | Medium | 5.3 | 2022-03-16 10:05:15 | Deep Dive |
| CVE-2022-21945 | cscreen: usage of fixed path /tmp/cscreen.debug | openSUSE | Factory | Medium | 5.1 | 2022-03-16 10:05:13 | Deep Dive |
| CVE-2021-46705 | grub2-once uses fixed file name in /var/tmp | SUSE | SUSE Linux Enterprise Server 15 SP4 | Medium | 5.1 | 2022-03-16 09:50:10 | Deep Dive |
| CVE-2022-21944 | watchman: chown in watchman@.socket unit allows symlink attack | openSUSE | openSUSE Backports SLE-15-SP3 | High | 7.8 | 2022-01-26 09:10:10 | Deep Dive |
| CVE-2021-36781 | parsec: dangerous 777 permissions for /run/parsec | openSUSE | Factory | Medium | 5.9 | 2022-01-14 10:40:09 | Deep Dive |
| CVE-2021-32000 | clone-master-clean-up: dangerous file system operations | SUSE | SUSE Linux Enterprise Server 12 SP3 | Low | 3.2 | 2021-07-28 09:35:12 | Deep Dive |
| CVE-2021-25321 | arpwatch: Local privilege escalation from runtime user to root | SUSE | SUSE Linux Enterprise Server 11-SP4-LTSS | High | 7.8 | 2021-06-30 08:25:13 | Deep Dive |
| CVE-2021-25322 | python-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to root | openSUSE | Leap 15.2 | Medium | 6.8 | 2021-06-10 11:45:12 | Deep Dive |
| CVE-2021-31997 | python-postorius: postorius-permissions.sh used during %post allows local privilege escalation from postorius user to root | openSUSE | Leap 15.2 | Medium | 6.8 | 2021-06-10 11:35:12 | Deep Dive |
| CVE-2021-20725 | Php Factory Calendar01 跨站脚本漏洞 | PHP Factory | [Calendar01] free edition | 中危 | - | 2021-05-24 03:20:31 | Deep Dive |
| CVE-2021-20723 | PHP Factory MailForm01 跨站脚本漏洞 | PHP Factory | [MailForm01] free edition | 中危 | - | 2021-05-24 03:20:30 | Deep Dive |