Security
Headlines
HeadlinesLatestCVEs

Source

CVE

CVE-2023-36401

Microsoft Remote Registry Service Remote Code Execution Vulnerability

CVE
Open in Source
#vulnerability#microsoft#rce
CVE-2023-36030

Microsoft Dynamics 365 Sales Spoofing Vulnerability

CVE-2023-36031

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

CVE-2023-36425

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

CVE-2023-36428

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

CVE-2023-36397

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

CVE-2023-47660: WordPress Product Visibility by Country for WooCommerce plugin <= 1.4.9 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP Wham Product Visibility by Country for WooCommerce plugin <= 1.4.9 versions.

CVE-2023-47659: WordPress Lava Directory Manager plugin <= 1.1.34 - Contributor+ stored Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Lavacode Lava Directory Manager plugin <= 1.1.34 versions.

CVE-2023-48094: CesiumJS v1.111 DOM based XSS

A cross-site scripting (XSS) vulnerability in CesiumJS v1.111 allows attackers to execute arbitrary code in the context of the victim's browser via sending a crafted payload to /container_files/public_html/doc/index.html.

CVE-2023-6131

Code Injection in GitHub repository salesagility/suitecrm prior to 7.14.2, 7.12.14, 8.4.2.