Security
Headlines
HeadlinesLatestCVEs

Source

CVE

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

CVE
Open in Source
#vulnerability#windows
CVE-2023-36396

Windows Compressed Folder Remote Code Execution Vulnerability

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2023-36427

Windows Hyper-V Elevation of Privilege Vulnerability

CVE-2023-36033

Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2023-36041

Microsoft Excel Remote Code Execution Vulnerability

CVE-2023-6130

Path Traversal: '\..\filename' in GitHub repository salesagility/suitecrm prior to 7.14.2, 7.12.14, 8.4.2.

CVE-2023-48094: CesiumJS v1.111 DOM based XSS

A cross-site scripting (XSS) vulnerability in CesiumJS v1.111 allows attackers to execute arbitrary code in the context of the victim's browser via sending a crafted payload to /container_files/public_html/doc/index.html.

CVE-2023-47660: WordPress Product Visibility by Country for WooCommerce plugin <= 1.4.9 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP Wham Product Visibility by Country for WooCommerce plugin <= 1.4.9 versions.

CVE-2023-47659: WordPress Lava Directory Manager plugin <= 1.1.34 - Contributor+ stored Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Lavacode Lava Directory Manager plugin <= 1.1.34 versions.