Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2023
CVE-2023-23371
A cleartext transmission of sensitive information vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local authenticated administrators to read sensitive data via unspecified vectors. We have already fixed the vulnerability in the following version: QVPN Windows 2.2.0.0823 and later
CVSS Score
5.2
EPSS Score
0.0
Published
2023-10-06
CVE-2023-44233
Cross-Site Request Forgery (CSRF) vulnerability in FooPlugins Best WordPress Gallery Plugin – FooGallery plugin <= 2.2.44 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-06
CVE-2023-44243
Cross-Site Request Forgery (CSRF) vulnerability in Dylan Blokhuis Instant CSS plugin <= 1.2.1 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-10-06
CVE-2023-39928
A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A user would need to to visit a malicious webpage to trigger this vulnerability.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-10-06
CVE-2023-41654
Cross-Site Request Forgery (CSRF) vulnerability in Andreas Heigl authLdap plugin <= 2.5.8 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-06
CVE-2023-41659
Cross-Site Request Forgery (CSRF) vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin <= 2.3.10 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-06
CVE-2023-41732
Cross-Site Request Forgery (CSRF) vulnerability in CodePeople CP Blocks plugin <= 1.0.20 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-06
CVE-2023-41801
Cross-Site Request Forgery (CSRF) vulnerability in AWP Classifieds Team Ad Directory & Listings by AWP Classifieds plugin <= 4.3 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-06
CVE-2023-41950
Cross-Site Request Forgery (CSRF) vulnerability in Laposta - Roel Bousardt Laposta Signup Basic plugin <= 1.4.1 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-06
CVE-2023-44146
Cross-Site Request Forgery (CSRF) vulnerability in Checkfront Inc. Checkfront Online Booking System plugin <= 3.6 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-10-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved