Description
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
Base Score: 9.8 CRITICAL
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21803
Description
Windows Graphics Component Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21804
Description
Windows MSHTML Platform Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21805
Description
Power BI Report Server Spoofing Vulnerability
Base Score: 8.2 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21806
Description
Microsoft Defender for Endpoint Security Feature Bypass Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21809
Description
Windows Media Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21802
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21797
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21798
Description
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21799
Description
Windows Installer Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21800
CVE-2022-2536 Description The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting changes by unauthenticated users in versions up to, and including, 1.0.8.1. This is due to insufficient validation of settings on the ‘tp_translation’ AJAX action which makes it possible for unauthenticated attackers to bypass any restrictions and influence the data shown on […]
CVE-2022-4043 Description The WP Custom Admin Interface WordPress plugin before 7.29 unserialize user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present. Base Score: 7.2 HIGH https://wpscan.com/vulnerability/ffff8c83-0a59-450a-9b40-c7f3af7205fc __________________________________ CVE-2022-3679 Description The Starter Templates by Kadence WP WordPress plugin before 1.2.17 […]
CVE-2021-3120 Description An arbitrary file upload vulnerability in the YITH WooCommerce Gift Cards Premium plugin before 3.3.1 for WordPress allows remote attackers to achieve remote code execution on the operating system in the security context of the web server. In order to exploit this vulnerability, an attacker must be able to place a valid Gift […]
Leave a Reply