| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-4868 | IBM TRIRIGA information disclosure | IBM | TRIRIGA Application Platform | Medium | 4.3 | 2023-07-31 01:37:48 | Deep Dive |
| CVE-2023-38510 | Tolgee Lacks Permission Check for API Key for some endpoints | tolgee | tolgee-platform | High | 8.1 | 2023-07-27 18:57:28 | Deep Dive |
| CVE-2023-38509 | XWiki Platform's obfuscated email addresses should not be sorted | xwiki | xwiki-platform | Medium | 4.3 | 2023-07-27 18:53:31 | Deep Dive |
| CVE-2023-3622 | Access Control Bypass Vulnerability in the SolarWinds Platform | SolarWinds | SolarWinds Platform | Medium | 4.3 | 2023-07-26 14:45:18 | Deep Dive |
| CVE-2023-33229 | SolarWinds Platform Incorrect Input Neutralization Vulnerability | SolarWinds | SolarWinds Platform | Low | 3.5 | 2023-07-26 14:22:54 | Deep Dive |
| CVE-2023-23843 | SolarWinds Platform Incorrect Comparison Vulnerability | SolarWinds | SolarWinds Platform | High | 7.2 | 2023-07-26 13:58:06 | Deep Dive |
| CVE-2023-33224 | SolarWinds Platform Incorrect Behavior Order Vulnerability | SolarWinds | SolarWinds Platform | High | 7.2 | 2023-07-26 13:53:31 | Deep Dive |
| CVE-2023-33225 | SolarWinds Platform Deserialization of Untrusted Data Vulnerability | SolarWinds | SolarWinds Platform | High | 7.2 | 2023-07-26 13:46:19 | Deep Dive |
| CVE-2023-23844 | SolarWinds Platform Incomplete List of Disallowed Inputs Vulnerability | SolarWinds | SolarWinds Platform | High | 7.2 | 2023-07-26 13:32:43 | Deep Dive |
| CVE-2023-3637 | Openstack-neutron: unrestricted creation of security groups (fix for cve-2022-3277) | Red Hat | Red Hat OpenStack Platform 16.2 | Medium | 4.3 | 2023-07-25 12:47:32 | Deep Dive |
| CVE-2023-3828 | Bug Finder Listplace Directory Listing Platform Photo coverPhotoUpdate cross site scripting | Bug Finder | Listplace Directory Listing Platform | Low | 3.5 | 2023-07-22 10:31:03 | Deep Dive |
| CVE-2023-3827 | Bug Finder Listplace Directory Listing Platform HTTP POST Request create cross site scripting | Bug Finder | Listplace Directory Listing Platform | Low | 3.5 | 2023-07-22 09:00:05 | Deep Dive |
| CVE-2023-3795 | Bug Finder ChainCity Real Estate Investment Platform GET Parameter property sql injection | Bug Finder | ChainCity Real Estate Investment Platform | Medium | 5.5 | 2023-07-20 20:31:04 | Deep Dive |
| CVE-2023-3794 | Bug Finder ChainCity Real Estate Investment Platform New Ticket create cross site scripting | Bug Finder | ChainCity Real Estate Investment Platform | Low | 3.5 | 2023-07-20 20:00:06 | Deep Dive |
| CVE-2023-2760 | TAPHOME SQL Injection in Core Platform | TAPHOME | Core Platform | High | 7.6 | 2023-07-17 06:14:33 | Deep Dive |
| CVE-2023-2759 | TAPHOME Improper Authentication in Core Platform | TAPHOME | Core Platform | High | 8.8 | 2023-07-17 06:14:16 | Deep Dive |
| CVE-2023-37462 | Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') in org.xwiki.platform:xwiki-platform-skin-ui | xwiki | xwiki-platform | Critical | 9.9 | 2023-07-14 20:39:06 | Deep Dive |
| CVE-2023-36825 | Orchid Deserialization of Untrusted Data vulnerability leads to Remote Code Execution | orchidsoftware | platform | Critical | 9.6 | 2023-07-11 17:49:24 | Deep Dive |
| CVE-2023-3354 | Improper i/o watch removal in tls handshake can lead to remote unauthenticated denial of service | - | qemu | High | 7.5 | 2023-07-11 16:16:56 | Deep Dive |
| CVE-2023-36917 | Password Change rate limit bypass in SAP BusinessObjects Business Intelligence Platform | SAP_SE | SAP BusinessObjects Business Intelligence Platform | Medium | 5.9 | 2023-07-11 02:48:11 | Deep Dive |