Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2023-34658	Description: Telegram v9.6.3 on iOS allows attackers to hide critical information on the User Interface via calling the function SFSafariViewController. CVSS: LOW (0.0) EPSS Score: 0.06% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34656	Description: An issue was discovered with the JSESSION IDs in Xiamen Si Xin Communication Technology Video management system 3.1 thru 4.1 allows attackers to gain escalated privileges. CVSS: LOW (0.0) EPSS Score: 0.1% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34652	Description: PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS) via Add New Course. CVSS: LOW (0.0) EPSS Score: 0.09% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34651	Description: PHPgurukl Hospital Management System v.1.0 is vulnerable to Cross Site Scripting (XSS). CVSS: LOW (0.0) EPSS Score: 0.09% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-34650	Description: PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site Scripting (XSS). CVSS: LOW (0.0) EPSS Score: 0.09% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-33905	Description: In iwnpi server, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-33795	Description: A stored cross-site scripting (XSS) vulnerability in the Create Contact Roles (/tenancy/contact-roles/) function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field. CVSS: LOW (0.0) EPSS Score: 0.06% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-33785	Description: A stored cross-site scripting (XSS) vulnerability in the Create Rack Roles (/dcim/rack-roles/) function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field. CVSS: LOW (0.0) EPSS Score: 0.06% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-33661	Description: Multiple cross-site scripting (XSS) vulnerabilities were discovered in Church CRM v4.5.3 in GroupReports.php via GroupRole, ReportModel, and OnlyCart parameters. CVSS: LOW (0.0) EPSS Score: 0.06% Source: CVE November 28th, 2024 (5 months ago)
CVE-2023-33592	Description: Lost and Found Information System v1.0 was discovered to contain a SQL injection vulnerability via the component /php-lfis/admin/?page=system_info/contact_information. CVSS: LOW (0.0) EPSS Score: 0.24% Source: CVE November 28th, 2024 (5 months ago)