Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2023
CVE-2023-2340
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
6.1
EPSS Score
0.0
Published
2023-04-27
CVE-2023-30444
IBM Watson Machine Learning on Cloud Pak for Data 4.0 and 4.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 253350.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-04-27
CVE-2023-2331
Unquoted service Path or Element vulnerability in 42Gears Surelock Windows SureLock Service (NixService.Exe) on Windows application will allows to insert arbitrary code into the service. This issue affects Surelock Windows : from 2.3.12 through 2.40.0.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-04-27
CVE-2023-2336
Path Traversal in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-04-27
CVE-2023-2338
SQL Injection in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
7.2
EPSS Score
0.098
Published
2023-04-27
CVE-2023-2339
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
6.1
EPSS Score
0.0
Published
2023-04-27
CVE-2023-1778
This vulnerability exists in GajShield Data Security Firewall firmware versions prior to v4.28 (except v4.21) due to insecure default credentials which allows remote attacker to login as superuser by using default username/password via web-based management interface and/or exposed SSH port thereby enabling remote attackers to execute arbitrary commands with administrative/superuser privileges on the targeted systems. The vulnerability has been addressed by forcing the user to change their default password to a new non-default password.
CVSS Score
10.0
EPSS Score
0.003
Published
2023-04-27
CVE-2023-2327
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-04-27
CVE-2023-2328
Cross-site Scripting (XSS) - Generic in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
5.2
EPSS Score
0.0
Published
2023-04-27
CVE-2023-2323
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
6.8
EPSS Score
0.0
Published
2023-04-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved