Security Vulnerabilities - CVEs Published In September 2023
Synel Terminals - CWE-494: Download of Code Without Integrity Check
CVSS Score
7.2
EPSS Score
0.0
Published
2023-09-03
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in SuiteDash :: ONE Dashboard® Client Portal : SuiteDash Direct Login plugin <= 1.7.6 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-03
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in QualityUnit Post Affiliate Pro plugin <= 1.25.0 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-03
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WP OnlineSupport, Essential Plugin Audio Player with Playlist Ultimate plugin <= 1.2.2 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-09-03
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Realwebcare WRC Pricing Tables plugin <= 2.3.7 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-03
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Visualmodo Borderless plugin <= 1.4.8 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-03
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Exifography plugin <= 1.3.1 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-03
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Elastic Email Sender plugin <= 1.2.6 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-03
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-02
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-02