| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-5278 | SourceCodester Engineers Online Portal login.php sql injection | SourceCodester | Engineers Online Portal | Medium | 6.3 | 2023-09-29 17:31:06 | Deep Dive |
| CVE-2023-5277 | SourceCodester Engineers Online Portal student_avatar.php unrestricted upload | SourceCodester | Engineers Online Portal | Medium | 6.3 | 2023-09-29 17:31:05 | Deep Dive |
| CVE-2023-5276 | SourceCodester Engineers Online Portal downloadable_student.php sql injection | SourceCodester | Engineers Online Portal | Medium | 6.3 | 2023-09-29 17:00:07 | Deep Dive |
| CVE-2023-4490 | WP Job Portal < 2.0.6 - Unauthenticated SQLi | Unknown | WP Job Portal | 超危 | - | 2023-09-25 15:56:52 | Deep Dive |
| CVE-2023-34357 | Soar Cloud Ltd. HR Portal - Weak Password Recovery Mechanism for Forgotten Password | Soar Cloud Ltd. | HR Portal | High | 7.8 | 2023-09-07 02:00:16 | Deep Dive |
| CVE-2023-38476 | WordPress Client Portal : SuiteDash Direct Login Plugin <= 1.7.6 is vulnerable to Cross Site Scripting (XSS) | SuiteDash :: ONE Dashboard® | Client Portal : SuiteDash Direct Login | Medium | 5.9 | 2023-09-03 11:43:04 | Deep Dive |
| CVE-2023-28801 | Improper SAML signature verification | Zscaler | ZIA Admin Portal | Critical | 9.6 | 2023-08-31 13:53:11 | Deep Dive |
| CVE-2023-4384 | MaximaTech Portal Executivo Cookie missing encryption | MaximaTech | Portal Executivo | Low | 3.7 | 2023-08-16 20:00:06 | Deep Dive |
| CVE-2022-44629 | WordPress Catalyst Connect Zoho CRM Client Portal Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS) | Catalyst Connect | Catalyst Connect Zoho CRM Client Portal | Medium | 5.9 | 2023-08-10 09:40:09 | Deep Dive |
| CVE-2023-3522 | SQLi in a2 License Portal System | a2 | License Portal System | Critical | 9.8 | 2023-08-08 15:13:36 | Deep Dive |
| CVE-2023-3426 | Liferay Portal和Liferay DXP 安全漏洞 | Liferay | DXP | Medium | 4.3 | 2023-08-02 09:40:28 | Deep Dive |
| CVE-2023-25837 | BUG-000133088 - ArcGIS Enterprise site builder is subject to stored XSS. | Esri | Portal for ArcGIS Sites | High | 8.4 | 2023-07-21 03:42:25 | Deep Dive |
| CVE-2023-25836 | BUG-000135364 XSS in 10.8.1 sites builder iframe source | Esri | Portal for ArcGIS Sites | Medium | 5.4 | 2023-07-21 03:41:09 | Deep Dive |
| CVE-2023-25835 | BUG-000153659 ArcGIS Enterprise Sites has a stored XSS vulnerability | Esri | Portal for ArcGIS Sites | High | 8.4 | 2023-07-20 23:30:50 | Deep Dive |
| CVE-2023-3605 | PHPGurukul Online Shopping Portal Registration Page excessive authentication | PHPGurukul | Online Shopping Portal | Medium | 6.5 | 2023-07-10 20:00:05 | Deep Dive |
| CVE-2023-0588 | Catalyst Connect Zoho CRM Client Portal < 2.1.0 - Reflected XSS | Unknown | Catalyst Connect Zoho CRM Client Portal | 中危 | - | 2023-06-27 13:17:24 | Deep Dive |
| CVE-2023-28534 | WordPress WP Job Portal plugin <= 2.0.5 - Cross Site Scripting (XSS) | wpjobportal | WP Job Portal | Medium | 6.5 | 2023-06-22 08:28:56 | Deep Dive |
| CVE-2023-35030 | Liferay Portal 跨站请求伪造漏洞 | Liferay | Portal | High | 8.8 | 2023-06-15 04:06:37 | Deep Dive |
| CVE-2023-35029 | Liferay Portal 输入验证错误漏洞 | Liferay | Portal | Medium | 6.1 | 2023-06-15 03:59:44 | Deep Dive |
| CVE-2023-3193 | Liferay Portal 跨站脚本漏洞 | Liferay | Portal | Medium | 6.1 | 2023-06-15 03:47:58 | Deep Dive |