Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2024
CVE-2022-45354
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.7.60.
CVSS Score
5.3
EPSS Score
0.876
Published
2024-01-08
CVE-2023-27739
easyXDM 2.5 allows XSS via the xdm_e parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2024-01-08
CVE-2023-49961
WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access Manager 3.x and 4.x have Incorrect Access Control which can lead to sensitive data exposure.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-01-08
CVE-2023-51406
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ninja Team FastDup – Fastest WordPress Migration & Duplicator.This issue affects FastDup – Fastest WordPress Migration & Duplicator: from n/a through 2.1.7.
CVSS Score
5.3
EPSS Score
0.007
Published
2024-01-08
CVE-2023-52216
Cross-Site Request Forgery (CSRF) vulnerability in Yevhen Kotelnytskyi JS & CSS Script Optimizer.This issue affects JS & CSS Script Optimizer: from n/a through 0.3.3.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-01-08
CVE-2023-52271
The wsftprm.sys kernel driver 2.0.0.0 in Topaz Antifraud allows low-privileged attackers to kill any (Protected Process Light) process via an IOCTL (which will be named at a later time).
CVSS Score
6.5
EPSS Score
0.0
Published
2024-01-08
CVE-2023-52203
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Oliver Seidel, Bastian Germann cformsII allows Stored XSS.This issue affects cformsII: from n/a through 15.0.5.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-01-08
CVE-2023-52204
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Javik Randomize.This issue affects Randomize: from n/a through 1.4.3.
CVSS Score
8.5
EPSS Score
0.003
Published
2024-01-08
CVE-2023-52205
Deserialization of Untrusted Data vulnerability in SVNLabs Softwares HTML5 SoundCloud Player with Playlist Free.This issue affects HTML5 SoundCloud Player with Playlist Free: from n/a through 2.8.0.
CVSS Score
9.1
EPSS Score
0.005
Published
2024-01-08
CVE-2023-52206
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer live-composer-page-builder.This issue affects Page Builder: Live Composer: from n/a through 1.5.25.
CVSS Score
7.7
EPSS Score
0.004
Published
2024-01-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved