| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-32713 | Local Privilege Escalation via the ‘streamfwd’ program in Splunk App for Stream | Splunk | Splunk App for Stream | High | 7.8 | 2023-06-01 16:34:30 | Deep Dive |
| CVE-2023-32714 | Path Traversal in Splunk App for Lookup File Editing | Splunk | Splunk App for Lookup File Editing | High | 8.1 | 2023-06-01 16:34:30 | Deep Dive |
| CVE-2023-32715 | Self Cross-Site Scripting (XSS) on Splunk App for Lookup File Editing | Splunk | Splunk App for Lookup File Editing | Medium | 4.7 | 2023-06-01 16:34:28 | Deep Dive |
| CVE-2023-33315 | WordPress Smart App Banner Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) | Stephen Darlington, Wandle Software Limited | Smart App Banner | Medium | 5.4 | 2023-05-28 17:11:00 | Deep Dive |
| CVE-2023-32322 | Arbitrary file read in Ombi | Ombi-app | Ombi | Medium | 4.9 | 2023-05-18 16:34:53 | Deep Dive |
| CVE-2023-28932 | WordPress WPMobile.App Plugin <= 11.20 is vulnerable to Cross Site Scripting (XSS) | WPMobile.App | WPMobile.App — Android and iOS Mobile Application | Medium | 5.9 | 2023-05-10 07:07:24 | Deep Dive |
| CVE-2023-22813 | Device API endpoint missing access controls on Western Digital Mobile and Web Apps | Western Digital | My Cloud OS 5 Mobile App | Low | 3.3 | 2023-05-08 22:56:49 | Deep Dive |
| CVE-2022-22313 | IBM QRadar Data Synchronization App information disclosure | IBM | QRadar Data Synchronization App | Medium | 4.4 | 2023-05-06 01:38:25 | Deep Dive |
| CVE-2023-26010 | WordPress WPMobile.App Plugin <= 11.18 is vulnerable to Cross Site Scripting (XSS) | WPMobile.App | WPMobile.App | Medium | 5.9 | 2023-05-04 13:20:59 | Deep Dive |
| CVE-2022-48481 | JetBrains Toolbox 安全漏洞 | JetBrains | Toolbox App | Medium | 5.2 | 2023-04-28 09:22:38 | Deep Dive |
| CVE-2023-0006 | GlobalProtect App: Local File Deletion Vulnerability | Palo Alto Networks | GlobalProtect app | Medium | 6.3 | 2023-04-12 16:41:40 | Deep Dive |
| CVE-2023-1903 | Missing Authorization check in SAP HCM Fiori App My Forms (Fiori 2.0) | SAP | HCM Fiori App My Forms (Fiori 2.0) | Medium | 4.3 | 2023-04-11 02:31:13 | Deep Dive |
| CVE-2023-1858 | SourceCodester Earnings and Expense Tracker App index.php information disclosure | SourceCodester | Earnings and Expense Tracker App | Medium | 4.3 | 2023-04-05 08:00:09 | Deep Dive |
| CVE-2023-1785 | SourceCodester Earnings and Expense Tracker App manage_user.php sql injection | SourceCodester | Earnings and Expense Tracker App | Medium | 6.3 | 2023-03-31 20:00:07 | Deep Dive |
| CVE-2023-1690 | SourceCodester Earnings and Expense Tracker App cross site scripting | SourceCodester | Earnings and Expense Tracker App | Low | 3.5 | 2023-03-29 10:31:04 | Deep Dive |
| CVE-2023-1689 | SourceCodester Earnings and Expense Tracker App cross site scripting | SourceCodester | Earnings and Expense Tracker App | Low | 3.5 | 2023-03-29 10:00:06 | Deep Dive |
| CVE-2023-1688 | SourceCodester Earnings and Expense Tracker App cross site scripting | SourceCodester | Earnings and Expense Tracker App | Low | 3.5 | 2023-03-29 09:00:07 | Deep Dive |
| CVE-2022-39043 | Juiker app - Information Leakage | Juiker | Juiker app | Low | 2.4 | 2023-03-27 00:00:00 | Deep Dive |
| CVE-2023-22702 | WordPress WPMobile.App — Android and iOS Mobile Application Plugin <= 11.13 is vulnerable to Cross Site Scripting (XSS) | WPMobile.App | WPMobile.App — Android and iOS Mobile Application | Medium | 6.5 | 2023-03-23 14:42:02 | Deep Dive |
| CVE-2023-1566 | SourceCodester Medical Certificate Generator App action.php sql injection | SourceCodester | Medical Certificate Generator App | Medium | 6.3 | 2023-03-22 13:31:05 | Deep Dive |