| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-22165 | Denial of Service in Splunk Enterprise Security of the Investigations manager through Investigation creation | Splunk | Splunk Enterprise Security (ES) | Medium | 6.5 | 2024-01-09 17:01:05 | Deep Dive |
| CVE-2023-51490 | WordPress Defender Security Plugin <= 4.1.0 is vulnerable to Sensitive Data Exposure | WPMU DEV | Defender Security – Malware Scanner, Login Security & Firewall | Medium | 5.3 | 2024-01-08 20:17:35 | Deep Dive |
| CVE-2023-51675 | WordPress Advanced Access Manager Plugin <= 6.9.18 is vulnerable to Open Redirection | AAM | Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More | Medium | 4.7 | 2023-12-29 13:57:17 | Deep Dive |
| CVE-2023-50881 | WordPress Advanced Access Manager Plugin <= 6.9.15 is vulnerable to Cross Site Scripting (XSS) | AAM | Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More | Medium | 6.5 | 2023-12-29 11:26:12 | Deep Dive |
| CVE-2023-28786 | WordPress Solid Security Plugin <= 8.1.4 is vulnerable to Open Redirection | SolidWP | Solid Security – Password, Two Factor Authentication, and Brute Force Protection | Low | 3.7 | 2023-12-29 09:46:32 | Deep Dive |
| CVE-2023-7161 | Netentsec NS-ASG Application Security Gateway Login sql injection | Netentsec | NS-ASG Application Security Gateway | High | 7.3 | 2023-12-29 08:00:06 | Deep Dive |
| CVE-2023-7094 | Netentsec NS-ASG Application Security Gateway nsasg6.0.tgz information disclosure | Netentsec | NS-ASG Application Security Gateway | Medium | 5.3 | 2023-12-25 00:00:07 | Deep Dive |
| CVE-2023-49792 | Bruteforce protection can be bypassed with misconfigured proxy | nextcloud | security-advisories | Medium | 5.3 | 2023-12-22 16:31:18 | Deep Dive |
| CVE-2023-49791 | Workflows do not require password confirmation on API level | nextcloud | security-advisories | Medium | 5.4 | 2023-12-22 16:26:28 | Deep Dive |
| CVE-2023-49790 | App PIN code can be bypassed in Nextcloud Files iOS | nextcloud | security-advisories | Medium | 4.3 | 2023-12-22 16:19:28 | Deep Dive |
| CVE-2023-48308 | Calendar app returns full stacktrace when an error happens while editing appointment | nextcloud | security-advisories | Low | 3.5 | 2023-12-21 23:12:46 | Deep Dive |
| CVE-2023-5594 | Improper following of a certificate's chain of trust in ESET security products | ESET, spol. s r.o. | ESET NOD32 Antivirus | High | 7.5 | 2023-12-21 11:30:41 | Deep Dive |
| CVE-2023-47707 | IBM Security Guardium Key Lifecycle Manager cross-site scripting | IBM | Security Guardium Key Lifecycle Manager | Medium | 5.4 | 2023-12-20 01:48:09 | Deep Dive |
| CVE-2023-47703 | IBM Security Guardium Key Lifecycle Manager information disclosure | IBM | Security Guardium Key Lifecycle Manager | Medium | 5.3 | 2023-12-20 01:45:24 | Deep Dive |
| CVE-2023-47702 | IBM Security Guardium Key Lifecycle Manager directory traversal | IBM | Security Guardium Key Lifecycle Manager | Medium | 4.3 | 2023-12-20 01:11:34 | Deep Dive |
| CVE-2023-47706 | IBM Security Guardium Key Lifecycle Manager file upload | IBM | Security Guardium Key Lifecycle Manager | Medium | 6.6 | 2023-12-20 00:59:32 | Deep Dive |
| CVE-2023-47705 | IBM Security Guardium Key Lifecycle Manager improper input validation | IBM | Security Guardium Key Lifecycle Manager | Medium | 4.3 | 2023-12-20 00:56:27 | Deep Dive |
| CVE-2023-47704 | IBM Security Guardium Key Lifecycle Manager information disclosure | IBM | Security Guardium Key Lifecycle Manager | Medium | 4.0 | 2023-12-20 00:50:43 | Deep Dive |
| CVE-2023-35867 | 部分Bosch产品 安全漏洞 | Bosch | BVMS | Medium | 5.9 | 2023-12-18 12:59:49 | Deep Dive |
| CVE-2023-6903 | Netentsec NS-ASG Application Security Gateway sql injection | Netentsec | NS-ASG Application Security Gateway | High | 7.3 | 2023-12-17 23:00:05 | Deep Dive |