| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-3788 | ActiveITzone Active Super Shop CMS Manage Details Page cross site scripting | ActiveITzone | Active Super Shop CMS | Low | 3.5 | 2023-07-20 15:31:04 | Deep Dive |
| CVE-2023-3785 | PaulPrinting CMS cross site scripting | PaulPrinting | CMS | Low | 3.5 | 2023-07-20 10:34:09 | Deep Dive |
| CVE-2023-37267 | Umbraco allows possible Admin-level access to backoffice without Auth under rare conditions | umbraco | Umbraco-CMS | High | 7.5 | 2023-07-13 13:43:59 | Deep Dive |
| CVE-2023-36828 | Statamic's Antlers sanitizer cannot effectively sanitize malicious SVG | statamic | cms | Medium | 5.5 | 2023-07-05 21:30:06 | Deep Dive |
| CVE-2023-3506 | Active It Zone Active eCommerce CMS Create Ticket Page support_ticket cross site scripting | Active It Zone | Active eCommerce CMS | Low | 3.5 | 2023-07-04 16:00:04 | Deep Dive |
| CVE-2023-3325 | CMS Commander <= 2.287 - Authorization Bypass through Use of Insufficiently Unique Cryptographic Signature | thoefter | CMS Commander – Manage Multiple Sites | High | 8.1 | 2023-06-20 04:27:35 | Deep Dive |
| CVE-2023-33181 | Sensitive Information Disclosure abusing Stack Trace in Xibo CMS | xibosignage | xibo-cms | Medium | 4.3 | 2023-05-30 20:57:38 | Deep Dive |
| CVE-2023-33180 | Sensitive Information Disclosure abusing SQL Injection in Xibo CMS display map | xibosignage | xibo-cms | Medium | 6.5 | 2023-05-30 20:18:41 | Deep Dive |
| CVE-2023-33179 | Sensitive Information Disclosure abusing SQL Injection in Xibo CMS nameFilter | xibosignage | xibo-cms | Medium | 6.5 | 2023-05-30 20:07:14 | Deep Dive |
| CVE-2023-33178 | Sensitive Information Disclosure abusing SQL Injection in Xibo CMS dataset filter | xibosignage | xibo-cms | Medium | 6.5 | 2023-05-30 19:55:49 | Deep Dive |
| CVE-2023-33177 | Xibo CMS vulnerable to Remote Code Execution through Zip Slip | xibosignage | xibo-cms | High | 8.8 | 2023-05-30 19:12:02 | Deep Dive |
| CVE-2023-23754 | [20230501] - Core - Open Redirect and XSS within the mfa select | Joomla! Project | Joomla! CMS | 中危 | - | 2023-05-30 16:12:44 | Deep Dive |
| CVE-2023-23755 | [20230502] - Core - Bruteforce prevention within the mfa screen | Joomla! Project | Joomla! CMS | 高危 | - | 2023-05-30 16:12:32 | Deep Dive |
| CVE-2023-33195 | Craft CMS XSS in RSS widget feed | craftcms | cms | Medium | 5.0 | 2023-05-27 03:51:36 | Deep Dive |
| CVE-2023-33194 | CraftCMS stored XSS in Quick Post widget error message | craftcms | cms | Low | 3.7 | 2023-05-26 20:30:23 | Deep Dive |
| CVE-2023-33196 | Craft CMS stored XSS in review volume | craftcms | cms | Medium | 5.5 | 2023-05-26 20:22:24 | Deep Dive |
| CVE-2023-33197 | Craft CMS stored XSS in indexedVolumes | craftcms | cms | Medium | 5.5 | 2023-05-26 19:17:23 | Deep Dive |
| CVE-2023-2817 | Pixel&tonic Craft CMS 跨站脚本漏洞 | - | Craft CMS | 中危 | - | 2023-05-26 00:00:00 | Deep Dive |
| CVE-2023-2862 | SiteServer CMS search cross site scripting | SiteServer | CMS | Low | 3.5 | 2023-05-24 09:31:04 | Deep Dive |
| CVE-2023-32679 | Remote Code Execution via unrestricted file extension in Craft CMS | craftcms | cms | High | 7.2 | 2023-05-19 19:40:15 | Deep Dive |