Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2023
CVE-2023-46024
SQL Injection vulnerability in index.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary SQL commands and obtain sensitive information via the 'searchdata' parameter.
CVSS Score
7.5
EPSS Score
0.024
Published
2023-11-14
CVE-2023-46025
SQL Injection vulnerability in teacher-info.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to obtain sensitive information via the 'editid' parameter.
CVSS Score
4.9
EPSS Score
0.001
Published
2023-11-14
CVE-2023-46026
Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-11-14
CVE-2023-46580
Cross-Site Scripting (XSS) vulnerability in Inventory Management V1.0 allows attackers to execute arbitrary code via the pname parameter of the editProduct.php component.
CVSS Score
5.4
EPSS Score
0.002
Published
2023-11-14
CVE-2023-46581
SQL injection vulnerability in Inventory Management v.1.0 allows a local attacker to execute arbitrary code via the name, uname and email parameters in the registration.php component.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-11-14
CVE-2023-46582
SQL injection vulnerability in Inventory Management v.1.0 allows a local attacker to execute arbitrary SQL commands via the id paramter in the deleteProduct.php component.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-11-14
CVE-2023-47520
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Michael Uno (miunosoft) Responsive Column Widgets plugin <= 1.2.7 versions.
CVSS Score
7.1
EPSS Score
0.002
Published
2023-11-14
CVE-2023-47522
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Photo Feed plugin <= 2.2.1 versions.
CVSS Score
7.1
EPSS Score
0.002
Published
2023-11-14
CVE-2023-47524
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability (requires PHP 8.x) in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.9 versions.
CVSS Score
5.8
EPSS Score
0.002
Published
2023-11-14
CVE-2023-36558
ASP.NET Core Security Feature Bypass Vulnerability
CVSS Score
6.2
EPSS Score
0.003
Published
2023-11-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved