| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-51487 | WordPress ARI Stream Quiz – WordPress Quizzes Builder plugin <= 1.2.32 - Cross Site Request Forgery (CSRF) vulnerability | ARI Soft | ARI Stream Quiz | Medium | 5.4 | 2024-03-16 01:03:31 | Deep Dive |
| CVE-2023-51423 | WordPress WebinarIgnition Plugin <= 3.05.0 is vulnerable to SQL Injection | Saleswonder Team | Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition | Critical | 9.3 | 2023-12-31 17:52:40 | Deep Dive |
| CVE-2023-52182 | WordPress ARI Stream Quiz Plugin <= 1.3.0 is vulnerable to PHP Object Injection | ARI Soft | ARI Stream Quiz – WordPress Quizzes Builder | Critical | 9.9 | 2023-12-31 09:57:17 | Deep Dive |
| CVE-2023-51422 | WordPress WebinarIgnition Plugin <= 3.05.0 is vulnerable to PHP Object Injection | Saleswonder Team | Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition | Critical | 9.9 | 2023-12-29 12:59:32 | Deep Dive |
| CVE-2022-43450 | WordPress Stream Plugin <= 3.9.2 is vulnerable to Insecure Direct Object References (IDOR) | XWP | Stream | Medium | 4.3 | 2023-12-19 21:24:06 | Deep Dive |
| CVE-2023-42801 | Stack buffer overflow due to `strcpy` into fixed size buffer in `extractVersionQuadFromString` | moonlight-stream | moonlight-common-c | High | 7.6 | 2023-12-14 17:02:05 | Deep Dive |
| CVE-2023-42800 | Buffer overflow due to use of `strcpy` in `performRtspHandshake` | moonlight-stream | moonlight-common-c | High | 8.8 | 2023-12-14 16:57:45 | Deep Dive |
| CVE-2023-42799 | Buffer overflow due to use of `strcpy` in `parseUrlAddrFromRtspUrlString` | moonlight-stream | moonlight-common-c | High | 8.8 | 2023-12-14 16:47:01 | Deep Dive |
| CVE-2023-47835 | WordPress ARI Stream Quiz Plugin <= 1.2.32 is vulnerable to Cross Site Scripting (XSS) | ARI Soft | ARI Stream Quiz – WordPress Quizzes Builder | Medium | 6.5 | 2023-11-22 23:20:12 | Deep Dive |
| CVE-2023-45799 | MLSoft TCO!stream Remote Code Execution Vulnerability | MLSoft | TCO!stream | High | 7.2 | 2023-10-30 06:17:21 | Deep Dive |
| CVE-2023-3896 | A divide by zero issue existed in vim of OpenCloudOS Stream | OpenCloudOS | OpenCloudOS Stream | High | 7.8 | 2023-08-07 12:13:37 | Deep Dive |
| CVE-2023-28774 | WordPress Review Stream Plugin <= 1.6.5 is vulnerable to Cross Site Scripting (XSS) | Grade Us, Inc. | Review Stream | Medium | 5.9 | 2023-06-22 12:25:24 | Deep Dive |
| CVE-2023-32713 | Local Privilege Escalation via the ‘streamfwd’ program in Splunk App for Stream | Splunk | Splunk App for Stream | High | 7.8 | 2023-06-01 16:34:30 | Deep Dive |
| CVE-2022-43490 | WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF) | XWP | Stream | Medium | 5.4 | 2023-05-25 10:17:18 | Deep Dive |
| CVE-2022-4384 | Stream < 3.9.2 - Subscriber+ Alert Creation | Unknown | Stream | 中危 | - | 2023-02-06 19:59:17 | Deep Dive |
| CVE-2022-41966 | XStream Denial of Service via stack overflow | x-stream | xstream | High | 8.2 | 2022-12-27 23:07:54 | Deep Dive |
| CVE-2021-43859 | Denial of Service by injecting highly recursive collections or maps in XStream | x-stream | xstream | High | 7.5 | 2022-02-01 12:08:57 | Deep Dive |
| CVE-2021-24772 | Stream < 3.8.2 - Admin+ SQL Injection | Unknown | Stream | 高危 | - | 2021-11-17 10:15:35 | Deep Dive |
| CVE-2021-39150 | A Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling | x-stream | xstream | High | 8.5 | 2021-08-23 18:20:15 | Deep Dive |
| CVE-2021-39152 | A Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling | x-stream | xstream | High | 8.5 | 2021-08-23 18:20:10 | Deep Dive |