Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-0512PUBLISHED: 2023-01-30Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.
CVE-2022-23334PUBLISHED: 2023-01-30The Robot application in Ip-label Newtest before v8.5R0 was discovered to use weak signature checks on executed binaries, allowing attackers to have write access and escalate privileges via replacing NEWTESTREMOTEMANAGER.EXE.
CVE-2022-26872PUBLISHED: 2023-01-30AMI Megarac Password reset interception via API
CVE-2022-46087PUBLISHED: 2023-01-30CloudSchool v3.0.1 is vulnerable to Cross Site Scripting (XSS). A normal user can steal session cookies of the admin users through notification received by the admin user.
CVE-2023-0581PUBLISHED: 2023-01-30
The PrivateContent plugin for WordPress is vulnerable to protection mechanism bypass due to the use of client side validation in versions up to, and including, 8.4.3. This is due to the plugin checking if an IP had been blocklist via client-side scripts rather than server-side. This makes it possibl...
User Rank: Apprentice
2/18/2019 | 3:24:54 AM