1971
|
7.5 |
HIGH
Network
huawei
|
harmonyos emui
|
Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may affect confidentiality.
|
NVD-CWE-noinfo
|
CVE-2023-41308
|
2024-09-25 10:36 |
2023-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1972
|
9.8 |
CRITICAL
Network
oretnom23
|
service_provider_management_system
|
An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint.
|
NVD-CWE-noinfo
|
CVE-2023-43457
|
2024-09-25 10:36 |
2023-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1973
|
6.1 |
MEDIUM
Network
|
froala
|
froala_editor
|
Cross-site scripting (XSS) vulnerability in Froala Froala Editor v.4.1.1 allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
|
CWE-79
Cross-site Scripting
|
CVE-2023-42426
|
2024-09-25 10:36 |
2023-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1974
|
5.4 |
MEDIUM
Network
|
resort_reservation_system_project
|
resort_reservation_system
|
Cross Site Scripting (XSS) vulnerability in Resort Reservation System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the room, name, and description par…
|
CWE-79
Cross-site Scripting
|
CVE-2023-43458
|
2024-09-25 10:36 |
2023-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1975
|
9.8 |
CRITICAL
Network
totolink
|
a3700r_firmware n600r_firmware
|
TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access Control.
|
NVD-CWE-Other
|
CVE-2023-43141
|
2024-09-25 10:36 |
2023-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1976
|
9.8 |
CRITICAL
Network
maxiguvenlik
|
general_device_manager
|
General Device Manager 2.5.2.2 is vulnerable to Buffer Overflow.
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-43131
|
2024-09-25 10:36 |
2023-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1977
|
7.5 |
HIGH
Network
huawei
|
emui harmonyos
|
Redirection permission verification vulnerability in the home screen module. Successful exploitation of this vulnerability may cause features to perform abnormally.
|
NVD-CWE-noinfo
|
CVE-2023-41302
|
2024-09-25 10:36 |
2023-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1978
|
7.5 |
HIGH
Network
huawei
|
emui harmonyos
|
Vulnerability of unauthorized API access in the PMS module. Successful exploitation of this vulnerability may cause features to perform abnormally.
|
NVD-CWE-noinfo
|
CVE-2023-41301
|
2024-09-25 10:36 |
2023-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1979
|
7.5 |
HIGH
Network
huawei
|
harmonyos emui
|
Data security classification vulnerability in the DDMP module. Successful exploitation of this vulnerability may affect confidentiality.
|
NVD-CWE-noinfo
|
CVE-2023-41293
|
2024-09-25 10:36 |
2023-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1980
|
9.8 |
CRITICAL
Network
huawei
|
harmonyos
|
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability may affect some Super Device services.
|
NVD-CWE-noinfo
|
CVE-2023-41294
|
2024-09-25 10:36 |
2023-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|