Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2023
CVE-2023-6264
Information leak in Content-Security-Policy header in Devolutions Server 2023.3.7.0 allows an unauthenticated attacker to list the configured Devolutions Gateways endpoints.
CVSS Score
5.3
EPSS Score
0.003
Published
2023-11-22
CVE-2023-25682
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.8 and 6.1.0.0 through 6.1.2.1 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 247034.
CVSS Score
6.2
EPSS Score
0.0
Published
2023-11-22
CVE-2023-39925
Cross-Site Request Forgery (CSRF) vulnerability in PeepSo Download Community by PeepSo plugin <= 6.1.6.0 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-11-22
CVE-2023-47775
Cross-Site Request Forgery (CSRF) vulnerability in gVectors Team Comments — wpDiscuz plugin <= 7.6.11 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-11-22
CVE-2023-47781
Cross-Site Request Forgery (CSRF) vulnerability in Thrive Themes Thrive Theme Builder < 3.24.2 versions.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-11-22
CVE-2023-47785
Cross-Site Request Forgery (CSRF) vulnerability in LayerSlider plugin <= 7.7.9 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-11-22
CVE-2022-36777
IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.16.0could allow an authenticated user to obtain sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 233665.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-11-22
CVE-2023-47755
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AazzTech WooCommerce Product Carousel Slider plugin <= 3.3.5 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-11-22
CVE-2023-47758
Cross-Site Request Forgery (CSRF) vulnerability in Mondula GmbH Multi Step Form plugin <= 1.7.11 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-11-22
CVE-2023-47765
Cross-Site Request Forgery (CSRF) vulnerability in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.9 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-11-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved