Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2023
CVE-2023-35064
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Satos Satos Mobile allows SQL Injection through SOAP Parameter Tampering.This issue affects Satos Mobile: before 20230607.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-06-13
CVE-2023-26528
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in jinit9906 Shipyaari Shipping Management plugin <= 1.0 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-06-13
CVE-2023-26538
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kamyabsoft Chat Bee plugin <= 1.1.0 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-06-13
CVE-2023-23831
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Rating-Widget Rating-Widget: Star Review System plugin <= 3.1.9 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-06-13
CVE-2023-25964
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Noah Hearle, Design Extreme We’re Open! plugin <= 1.46 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-06-13
CVE-2022-42880
Cross-Site Request Forgery (CSRF) vulnerability in Ali Irani Auto Upload Images plugin <= 3.3 versions allows Stored Cross-Site Scripting (XSS).
CVSS Score
6.1
EPSS Score
0.001
Published
2023-06-13
CVE-2023-2807
Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS allows an unauthenticated attacker to initiate a password reset process for any user account without proper authentication. This issue affects PandoraFMS v771 and prior versions on all platforms.
CVSS Score
6.4
EPSS Score
0.001
Published
2023-06-13
CVE-2023-3047
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TMT Lockcell allows SQL Injection.This issue affects Lockcell: before 15.
CVSS Score
9.8
EPSS Score
0.071
Published
2023-06-13
CVE-2023-3048
Authorization Bypass Through User-Controlled Key vulnerability in TMT Lockcell allows Authentication Abuse, Authentication Bypass.This issue affects Lockcell: before 15.
CVSS Score
9.8
EPSS Score
0.0
Published
2023-06-13
CVE-2023-3049
Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command Injection.This issue affects Lockcell: before 15.
CVSS Score
9.8
EPSS Score
0.014
Published
2023-06-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved