Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2023
CVE-2023-45065
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Mad Fish Digital Bulk NoIndex & NoFollow Toolkit plugin <= 1.42 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-10-18
CVE-2023-32087
Pega Platform versions 8.1 to Infinity 23.1.0 are affected by an XSS issue with task creation
CVSS Score
4.6
EPSS Score
0.001
Published
2023-10-18
CVE-2023-32088
Pega Platform versions 8.1 to Infinity 23.1.0 are affected by an XSS issue with ad-hoc case creation
CVSS Score
4.6
EPSS Score
0.001
Published
2023-10-18
CVE-2023-32089
Pega Platform versions 8.1 to 8.8.2 are affected by an XSS issue with Pin description
CVSS Score
4.6
EPSS Score
0.001
Published
2023-10-18
CVE-2023-45727
Known exploited
Proself Enterprise/Standard Edition Ver5.62 and earlier, Proself Gateway Edition Ver1.65 and earlier, and Proself Mail Sanitize Edition Ver1.08 and earlier allow a remote unauthenticated attacker to conduct XML External Entity (XXE) attacks. By processing a specially crafted request containing malformed XML data, arbitrary files on the server containing account information may be read by the attacker.
CVSS Score
7.5
EPSS Score
0.206
Published
2023-10-18
CVE-2023-5632
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server without sending data causes the EPOLLOUT event to be added, which results excessive CPU consumption. This could be used by a malicious actor to perform denial of service type attack. This issue is fixed in 2.0.6
CVSS Score
7.5
EPSS Score
0.001
Published
2023-10-18
CVE-2023-45056
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in 100plugins Open User Map plugin <= 1.3.26 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-10-18
CVE-2023-45057
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Hitsteps Web Analytics plugin <= 5.86 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-10-18
CVE-2023-45059
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Gumroad plugin <= 3.1.0 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-10-18
CVE-2023-45062
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Thomas Scholl canvasio3D Light plugin <= 2.4.6 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-10-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved