CVE Database

4425+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2024-0501
2.4 LOW

A vulnerability has been found in SourceCodester House Rental Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of …

Jan 13, 2024
CVE-2024-0500
2.4 LOW

A vulnerability, which was classified as problematic, was found in SourceCodester House Rental Management System 1.0. Affected is an unknown function of the component Manage …

Jan 13, 2024
CVE-2024-0499
2.4 LOW

A vulnerability, which was classified as problematic, has been found in SourceCodester House Rental Management System 1.0. This issue affects some unknown processing of the …

Jan 13, 2024
CVE-2024-0476
2.4 LOW

A vulnerability, which was classified as problematic, was found in Blood Bank & Donor Management 1.0. This affects an unknown part of the file request-received-bydonar.php. …

Jan 13, 2024
CVE-2024-0230
2.4 LOW

A session management issue was addressed with improved checks. This issue is fixed in Magic Keyboard Firmware Update 2.0.6. An attacker with physical access to …

Jan 12, 2024
CVE-2024-0472
3.5 LOW

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file …

Jan 12, 2024
CVE-2023-49099
3.1 LOW

Discourse is a platform for community discussion. Under very specific circumstances, secure upload URLs associated with posts can be accessed by guest users even when …

Jan 12, 2024
CVE-2023-49098
3.5 LOW

Discourse-reactions is a plugin that allows user to add their reactions to the post. Data about a user's reaction notifications could be exposed. This vulnerability …

Jan 12, 2024
CVE-2024-0467
3.5 LOW

A vulnerability, which was classified as problematic, was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file edit_position_query.php. …

Jan 12, 2024
CVE-2024-0465
3.5 LOW

A vulnerability classified as problematic was found in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file download.php. The manipulation …

Jan 12, 2024
CVE-2023-2030
3.5 LOW

An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 …

Jan 12, 2024
CVE-2022-4960
3.5 LOW

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component …

Jan 12, 2024
CVE-2022-4959
3.5 LOW

A vulnerability classified as problematic was found in qkmc-rk redbbs 1.0. Affected by this vulnerability is an unknown functionality of the component Nickname Handler. The …

Jan 11, 2024
CVE-2024-0424
3.5 LOW

A vulnerability classified as problematic has been found in CodeAstro Simple Banking System 1.0. This affects an unknown part of the file createuser.php of the …

Jan 11, 2024
CVE-2024-0423
3.5 LOW

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality …

Jan 11, 2024
CVE-2024-0422
3.5 LOW

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown …

Jan 11, 2024
CVE-2023-20573
3.2 LOW

A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially resulting in guests not receiving expected debug information.

Jan 11, 2024
CVE-2022-4958
3.5 LOW

A vulnerability classified as problematic has been found in qkmc-rk redbbs 1.0. Affected is an unknown function of the component Post Handler. The manipulation of …

Jan 11, 2024
CVE-2023-7048
3.1 LOW

The My Sticky Bar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.6. This is due to …

Jan 11, 2024
CVE-2024-22194
2.2 LOW

cdo-local-uuid project provides a specialized UUID-generating function that can, on user request, cause a program to generate deterministic UUIDs. An information leakage vulnerability is present …

Jan 11, 2024
CVE-2023-42830
3.3 LOW

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS …

Jan 10, 2024
CVE-2023-40529
2.4 LOW

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17 and iPadOS 17. A person with physical access …

Jan 10, 2024
CVE-2023-40439
3.3 LOW

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura …

Jan 10, 2024
CVE-2023-40394
3.3 LOW

The issue was addressed with improved validation of environment variables. This issue is fixed in iOS 16.6 and iPadOS 16.6. An app may be able …

Jan 10, 2024
CVE-2023-40383
3.3 LOW

A path handling issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. An app may be able to access user-sensitive …

Jan 10, 2024
CVE-2023-38612
3.3 LOW

The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, iOS 17 and iPadOS 17, …

Jan 10, 2024
CVE-2023-28197
3.3 LOW

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.3, macOS Big Sur 11.7.5, macOS Monterey 12.6.4. An …

Jan 10, 2024
CVE-2022-42839
3.3 LOW

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. An app …

Jan 10, 2024
CVE-2023-49619
3.1 LOW

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Answer. This issue affects Apache Answer: through 1.2.0. Under normal circumstances, a …

Jan 10, 2024
CVE-2024-0351
3.1 LOW

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. This affects an unknown part. The manipulation leads to session fixiation. …

Jan 9, 2024
CVE-2024-0350
3.1 LOW

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The …

Jan 9, 2024
CVE-2024-0349
3.7 LOW

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The …

Jan 9, 2024
CVE-2024-0347
3.7 LOW

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as problematic. This issue affects some unknown processing of the file signup_teacher.php. The …

Jan 9, 2024
CVE-2024-0346
3.5 LOW

A vulnerability has been found in CodeAstro Vehicle Booking System 1.0 and classified as problematic. This vulnerability affects unknown code of the file usr/user-give-feedback.php of …

Jan 9, 2024
CVE-2024-0341
3.5 LOW

A vulnerability was found in Inis up to 2.0.1. It has been rated as problematic. This issue affects some unknown processing of the file /app/api/controller/default/File.php …

Jan 9, 2024
CVE-2023-51744
3.3 LOW

A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization V13.3 (All versions < V13.3.0.13), Teamcenter Visualization V14.1 (All versions < V14.1.0.12), …

Jan 9, 2024
CVE-2024-21734
3.7 LOW

SAP Marketing (Contacts App) - version 160, allows an attacker with low privileges to trick a user to open malicious page which could lead to …

Jan 9, 2024
CVE-2022-40696
3.7 LOW

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WP Engine Advanced Custom Fields (ACF).This issue affects Advanced Custom Fields (ACF): from 3.1.1 through …

Jan 8, 2024
CVE-2023-7215
3.5 LOW

A vulnerability, which was classified as problematic, has been found in Chanzhaoyu chatgpt-web 2.11.1. This issue affects some unknown processing. The manipulation of the argument …

Jan 8, 2024
CVE-2024-0284
3.5 LOW

A vulnerability was found in Kashipara Food Management System up to 1.0. It has been rated as problematic. This issue affects some unknown processing of …

Jan 7, 2024
CVE-2024-0283
3.5 LOW

A vulnerability was found in Kashipara Food Management System up to 1.0. It has been declared as problematic. This vulnerability affects unknown code of the …

Jan 7, 2024
CVE-2024-0282
3.5 LOW

A vulnerability was found in Kashipara Food Management System up to 1.0. It has been classified as problematic. This affects an unknown part of the …

Jan 7, 2024
CVE-2024-0262
2.4 LOW

A vulnerability was found in Online Job Portal 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /Admin/News.php …

Jan 7, 2024
CVE-2023-47219
3.5 LOW

A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. …

Jan 5, 2024
CVE-2023-46837
3.3 LOW

Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure …

Jan 5, 2024
CVE-2023-45044
3.8 LOW

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow …

Jan 5, 2024
CVE-2023-45043
3.8 LOW

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow …

Jan 5, 2024
CVE-2023-45042
3.8 LOW

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow …

Jan 5, 2024
CVE-2023-45041
3.8 LOW

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow …

Jan 5, 2024
CVE-2023-45040
3.8 LOW

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow …

Jan 5, 2024

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.