Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In March 2024
CVE-2023-47147
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow an attacker to overwrite a log message under specific conditions. IBM X-Force ID: 270598.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-03-15
CVE-2023-47699
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 270974.
CVSS Score
6.1
EPSS Score
0.002
Published
2024-03-15
CVE-2024-28403
TOTOLINK X2000R before V1.0.0-B20231213.1013 is vulnerable to Cross Site Scripting (XSS) via the VPN Page.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-03-15
CVE-2021-38938
IBM Host Access Transformation Services (HATS) 9.6 through 9.6.1.4 and 9.7 through 9.7.0.3 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 210989.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-03-15
CVE-2023-46181
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 269686.
CVSS Score
4.0
EPSS Score
0.0
Published
2024-03-15
CVE-2024-28319
gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain an out of boundary read vulnerability via gf_dash_setup_period media_tools/dash_client.c:6374
CVSS Score
6.2
EPSS Score
0.0
Published
2024-03-15
CVE-2023-50886
Cross-Site Request Forgery (CSRF), Incorrect Authorization vulnerability in wpWax Legal Pages.This issue affects Legal Pages: from n/a through 1.3.7.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-03-15
CVE-2023-50898
Missing Authorization vulnerability in sirv.Com Sirv.This issue affects Sirv: from n/a through 7.1.2.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-03-15
CVE-2023-51369
Cross-Site Request Forgery (CSRF) vulnerability in SysBasics Customize My Account for WooCommerce.This issue affects Customize My Account for WooCommerce: from n/a through 1.8.3.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-03-15
CVE-2023-51522
Cross-Site Request Forgery (CSRF) vulnerability in Cozmoslabs Paid Member Subscriptions.This issue affects Paid Member Subscriptions: from n/a through 2.10.4.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-03-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved