| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-0009 | GlobalProtect App: Local Privilege Escalation (PE) Vulnerability | Palo Alto Networks | GlobalProtect App | High | 7.8 | 2023-06-14 16:31:59 | Deep Dive |
| CVE-2023-35149 | Jenkins Plugin Digital.ai App Management Publisher 安全漏洞 | Jenkins Project | Jenkins Digital.ai App Management Publisher Plugin | 中危 | - | 2023-06-14 12:53:11 | Deep Dive |
| CVE-2023-35148 | Jenkins Plugin Digital.ai App Management Publisher 跨站请求伪造漏洞 | Jenkins Project | Jenkins Digital.ai App Management Publisher Plugin | 中危 | - | 2023-06-14 12:53:10 | Deep Dive |
| CVE-2023-29501 | Runsystem Jiyu Kukan 信任管理问题漏洞 | RUNSYSTEM CO.,LTD. | Jiyu Kukan Toku-Toku coupon App for iOS, and Jiyu Kukan Toku-Toku coupon App for Android | 中危 | - | 2023-06-13 00:00:00 | Deep Dive |
| CVE-2023-34239 | Unfiltered paths in gradio | gradio-app | gradio | High | 7.3 | 2023-06-07 23:20:07 | Deep Dive |
| CVE-2023-32713 | Local Privilege Escalation via the ‘streamfwd’ program in Splunk App for Stream | Splunk | Splunk App for Stream | High | 7.8 | 2023-06-01 16:34:30 | Deep Dive |
| CVE-2023-32714 | Path Traversal in Splunk App for Lookup File Editing | Splunk | Splunk App for Lookup File Editing | High | 8.1 | 2023-06-01 16:34:30 | Deep Dive |
| CVE-2023-32715 | Self Cross-Site Scripting (XSS) on Splunk App for Lookup File Editing | Splunk | Splunk App for Lookup File Editing | Medium | 4.7 | 2023-06-01 16:34:28 | Deep Dive |
| CVE-2023-33315 | WordPress Smart App Banner Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) | Stephen Darlington, Wandle Software Limited | Smart App Banner | Medium | 5.4 | 2023-05-28 17:11:00 | Deep Dive |
| CVE-2023-32322 | Arbitrary file read in Ombi | Ombi-app | Ombi | Medium | 4.9 | 2023-05-18 16:34:53 | Deep Dive |
| CVE-2023-28932 | WordPress WPMobile.App Plugin <= 11.20 is vulnerable to Cross Site Scripting (XSS) | WPMobile.App | WPMobile.App — Android and iOS Mobile Application | Medium | 5.9 | 2023-05-10 07:07:24 | Deep Dive |
| CVE-2023-22813 | Device API endpoint missing access controls on Western Digital Mobile and Web Apps | Western Digital | My Cloud OS 5 Mobile App | Low | 3.3 | 2023-05-08 22:56:49 | Deep Dive |
| CVE-2022-22313 | IBM QRadar Data Synchronization App information disclosure | IBM | QRadar Data Synchronization App | Medium | 4.4 | 2023-05-06 01:38:25 | Deep Dive |
| CVE-2023-26010 | WordPress WPMobile.App Plugin <= 11.18 is vulnerable to Cross Site Scripting (XSS) | WPMobile.App | WPMobile.App | Medium | 5.9 | 2023-05-04 13:20:59 | Deep Dive |
| CVE-2022-48481 | JetBrains Toolbox 安全漏洞 | JetBrains | Toolbox App | Medium | 5.2 | 2023-04-28 09:22:38 | Deep Dive |
| CVE-2023-0006 | GlobalProtect App: Local File Deletion Vulnerability | Palo Alto Networks | GlobalProtect app | Medium | 6.3 | 2023-04-12 16:41:40 | Deep Dive |
| CVE-2023-1903 | Missing Authorization check in SAP HCM Fiori App My Forms (Fiori 2.0) | SAP | HCM Fiori App My Forms (Fiori 2.0) | Medium | 4.3 | 2023-04-11 02:31:13 | Deep Dive |
| CVE-2023-1858 | SourceCodester Earnings and Expense Tracker App index.php information disclosure | SourceCodester | Earnings and Expense Tracker App | Medium | 4.3 | 2023-04-05 08:00:09 | Deep Dive |
| CVE-2023-1785 | SourceCodester Earnings and Expense Tracker App manage_user.php sql injection | SourceCodester | Earnings and Expense Tracker App | Medium | 6.3 | 2023-03-31 20:00:07 | Deep Dive |
| CVE-2023-1690 | SourceCodester Earnings and Expense Tracker App cross site scripting | SourceCodester | Earnings and Expense Tracker App | Low | 3.5 | 2023-03-29 10:31:04 | Deep Dive |