Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2023-34929	Description: A stack overflow in the AddMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request. CVSS: LOW (0.0) EPSS Score: 0.14% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34928	Description: A stack overflow in the Edit_BasicSSID function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request. CVSS: LOW (0.0) EPSS Score: 0.14% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34843	Description: Traggo Server 0.3.0 is vulnerable to directory traversal via a crafted GET request. CVSS: LOW (0.0) EPSS Score: 1.89% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34840	Description: angular-ui-notification v0.1.0, v0.2.0, and v0.3.6 was discovered to contain a cross-site scripting (XSS) vulnerability. CVSS: LOW (0.0) EPSS Score: 0.12% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34833	Description: An arbitrary file upload vulnerability in the component /api/upload.php of ThinkAdmin v6 allows attackers to execute arbitrary code via a crafted file. CVSS: LOW (0.0) EPSS Score: 0.07% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34831	Description: The "Submission Web Form" of Turnitin LTI tool/plugin version 1.3 is affected by HTML Injection attacks. The security issue affects the submission web form ("id" and "title" HTTP POST parameters) where the students submit their reports for similarity/plagiarism checks. CVSS: LOW (0.0) EPSS Score: 0.06% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34761	Description: An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter. CVSS: LOW (0.0) EPSS Score: 0.06% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34738	Description: Chemex through 3.7.1 is vulnerable to arbitrary file upload. CVSS: LOW (0.0) EPSS Score: 0.3% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34735	Description: Property Cloud Platform Management Center 1.0 is vulnerable to error-based SQL injection. CVSS: LOW (0.0) EPSS Score: 0.21% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34734	Description: Annet AC Centralized Management Platform 1.02.040 is vulnerable to Stored Cross-Site Scripting (XSS) . CVSS: LOW (0.0) EPSS Score: 0.05% Source: CVE November 28th, 2024 (5 months ago)