CVE-2023-43873 - Exploiting an XSS in e017 CMS v2.3.2 via the Name Field
On September 2023, security researchers identified a medium-severity Cross-Site Scripting (XSS) vulnerability tracked as CVE-2023-43873 in the open-source e017 CMS, affecting version 2.3.2.
CVE-2023-43872 - File Upload Vulnerability in CMS Made Simple 2.2.18 Allows Hidden XSS in PDF Files
CMS Made Simple (CMSMS) is a pretty popular web content management system, used for building websites quickly and easily. But sometimes, simple tools come with
CVE-2023-43871 - Exploiting a File Upload XSS Vulnerability in WBCE CMS v1.6.1
A vulnerability identified as CVE-2023-43871 has been found in WBCE CMS version 1.6.1. This flaw lets a local attacker upload PDF files that
CVE-2023-44276 - XSS in OPNsense Prior to 23.7.5 via `index.php` Sequence Parameter – What You Need To Know
If you are running OPNsense firewall before version 23.7.5, this post is for you. In late 2023, a serious vulnerability—CVE-2023-44276—was found
CVE-2023-44275 - XSS Vulnerability in OPNsense Dashboard (index.php column_count parameter)
A recent vulnerability, CVE-2023-44275, has been discovered in OPNsense firewall software, which could allow an attacker to execute malicious JavaScript code through a Cross-Site Scripting
Episode
00:00:00
00:00:00