| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-3032 | Mobatime web application - Arbitrary file upload (RCE) | Mobatime | Mobatime web application | High | 8.1 | 2023-06-02 12:28:40 | Deep Dive |
| CVE-2023-2201 | Web Directory Free <= 1.6.8 - Authenticated (Contributor+) SQL Injection via post_id | mihail-chepovskiy | Web Directory Free | High | 8.8 | 2023-06-02 03:36:06 | Deep Dive |
| CVE-2023-28701 | ELITE Web Fax - SQL Injection | ELITE | Web Fax | Critical | 9.8 | 2023-06-02 00:00:00 | Deep Dive |
| CVE-2023-29098 | WordPress CopySafe Web Protection Plugin <= 3.13 is vulnerable to Cross Site Scripting (XSS) | ArtistScope | CopySafe Web Protection | High | 7.1 | 2023-05-26 14:28:22 | Deep Dive |
| CVE-2023-30615 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in iris-web | dfir-iris | iris-web | Medium | 6.3 | 2023-05-25 17:39:07 | Deep Dive |
| CVE-2022-47600 | WordPress Mass Email To users Plugin <= 1.1.4 is vulnerable to Cross Site Scripting (XSS) | I Thirteen Web Solution | Mass Email To users | High | 7.1 | 2023-05-10 10:41:30 | Deep Dive |
| CVE-2023-23701 | WordPress Easy Sign Up Plugin <= 3.4.1 is vulnerable to Cross Site Scripting (XSS) | Andrew @ Geeenville Web Design | Easy Sign Up | Medium | 6.5 | 2023-05-10 07:58:39 | Deep Dive |
| CVE-2023-24392 | WordPress Full Width Banner Slider Wp Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS) | I Thirteen Web Solution | Full Width Banner Slider Wp | High | 7.1 | 2023-05-10 07:01:36 | Deep Dive |
| CVE-2022-41640 | WordPress Wholesale Suite Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS) | Rymera Web Co | Wholesale Suite | Medium | 6.5 | 2023-05-09 09:35:37 | Deep Dive |
| CVE-2023-22813 | Device API endpoint missing access controls on Western Digital Mobile and Web Apps | Western Digital | My Cloud OS 5 Mobile App | Low | 3.3 | 2023-05-08 22:56:49 | Deep Dive |
| CVE-2023-1979 | Auth bypass in Web Stories for WordPress plugin | Web Stories for WordPress | Medium | 4.9 | 2023-05-08 16:28:54 | Deep Dive | |
| CVE-2022-46799 | WordPress Easy Testimonial Slider and Form Plugin <= 1.0.15 is vulnerable to Cross Site Scripting (XSS) | I Thirteen Web Solution | Easy Testimonial Slider and Form | High | 7.1 | 2023-05-08 11:44:30 | Deep Dive |
| CVE-2023-1967 | CVE-2023-1967 | Keysight | N8844A Data Analytics Web Service | 超危 | - | 2023-04-27 21:37:05 | Deep Dive |
| CVE-2023-30627 | jellyfin-web has a stored cross-site scripting vulnerability in devices.js | jellyfin | jellyfin-web | Critical | 9.0 | 2023-04-24 20:07:28 | Deep Dive |
| CVE-2022-2525 | Improper Restriction of Excessive Authentication Attempts in janeczku/calibre-web | janeczku | janeczku/calibre-web | 超危 | - | 2023-04-15 00:00:00 | Deep Dive |
| CVE-2023-2106 | Weak Password Requirements in janeczku/calibre-web | janeczku | janeczku/calibre-web | 超危 | - | 2023-04-15 00:00:00 | Deep Dive |
| CVE-2023-29108 | IP filter vulnerability in ABAP Platform and SAP Web Dispatcher | SAP | ABAP Platform and SAP Web Dispatcher | Medium | 5.0 | 2023-04-11 02:56:59 | Deep Dive |
| CVE-2023-23572 | Epson printer 跨站脚本漏洞 | SEIKO EPSON CORPORATION | SEIKO EPSON printers/network interface Web Config | 中危 | - | 2023-04-11 00:00:00 | Deep Dive |
| CVE-2023-27520 | Epson printer 跨站请求伪造漏洞 | SEIKO EPSON CORPORATION | SEIKO EPSON printers/network interface Web Config | 中危 | - | 2023-04-11 00:00:00 | Deep Dive |
| CVE-2023-28792 | WordPress Continuous Image Carousel With Lightbox Plugin <= 1.0.15 is vulnerable to Cross Site Scripting (XSS) | I Thirteen Web Solution | Continuous Image Carousel With Lightbox | High | 7.1 | 2023-04-07 14:00:46 | Deep Dive |