Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2023
CVE-2023-2358
Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4, including 8.3.x.x, saves passwords of the Hadoop Copy Files step in plaintext. 
CVSS Score
4.3
EPSS Score
0.001
Published
2023-09-27
CVE-2023-28055
Dell NetWorker, Version 19.7 has an improper authorization vulnerability in the NetWorker client. An unauthenticated attacker within the same network could potentially exploit this by manipulating a command leading to gain of complete access to the server file further resulting in information leaks, denial of service, and arbitrary code execution. Dell recommends customers to upgrade at the earliest opportunity.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-09-27
CVE-2023-28490
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Estatik Estatik Mortgage Calculator plugin <= 2.0.7 versions.
CVSS Score
7.1
EPSS Score
0.002
Published
2023-09-27
CVE-2023-28790
Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Brett Shumaker Simple Staff List plugin <= 2.2.3 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-27
CVE-2023-29497
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. An app may be able to access calendar data saved to a temporary directory.
CVSS Score
3.3
EPSS Score
0.001
Published
2023-09-27
CVE-2023-27616
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in David F. Carr RSVPMaker plugin <= 10.6.6 versions.
CVSS Score
7.1
EPSS Score
0.002
Published
2023-09-27
CVE-2023-27617
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in David F. Carr RSVPMaker plugin <= 10.6.6 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-27
CVE-2023-27622
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Abel Ruiz GuruWalk Affiliates plugin <= 1.0.0 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-27
CVE-2023-27628
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Webvitaly Sitekit plugin <= 1.3 versions.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-09-27
CVE-2023-25483
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Ankit Agarwal, Priyanshu Mittal Easy Coming Soon plugin <= 2.3 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-09-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved