Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2024
CVE-2024-3782
Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is executed by a privileged user.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-04-15
CVE-2024-3783
The Backup Agents section in WBSAirback 21.02.04 is affected by a Path Traversal vulnerability, allowing a user with low privileges to download files from the system.
CVSS Score
7.7
EPSS Score
0.002
Published
2024-04-15
CVE-2024-3784
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 Accounts (/admin/CloudAccounts). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.
CVSS Score
6.6
EPSS Score
0.005
Published
2024-04-15
CVE-2024-3785
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through Device NAS shared section (/admin/DeviceNAS). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.
CVSS Score
6.6
EPSS Score
0.005
Published
2024-04-15
CVE-2024-3786
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through Device Synchronizations (/admin/DeviceReplication). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.
CVSS Score
6.6
EPSS Score
0.005
Published
2024-04-15
CVE-2024-31421
Missing Authorization vulnerability in Supsystic Popup by Supsystic.This issue affects Popup by Supsystic: from n/a through 1.10.27.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-04-15
CVE-2024-31384
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Spa and Salon.This issue affects Spa and Salon: from n/a through 1.2.7.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-04-15
CVE-2024-31374
Cross-Site Request Forgery (CSRF) vulnerability in AppPresser Team AppPresser.This issue affects AppPresser: from n/a through 4.3.0.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-04-15
CVE-2024-31378
Cross-Site Request Forgery (CSRF) vulnerability in MailMunch MailChimp Forms by MailMunch.This issue affects MailChimp Forms by MailMunch: from n/a through 3.2.1.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-15
CVE-2024-31382
Cross-Site Request Forgery (CSRF) vulnerability in Creative Themes HQ Blocksy.This issue affects Blocksy: from n/a through 2.0.22.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-04-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved