Show filters
383 Total Results
Displaying 151-160 of 383
Sort by:
Attacker Value
Unknown

CVE-2023-32510

Disclosure Date: August 24, 2023 (last updated October 08, 2023)
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Rolf van Gelder Order Your Posts Manually plugin <= 2.2.5 versions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-32509

Disclosure Date: August 23, 2023 (last updated October 08, 2023)
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Rolf van Gelder Order Your Posts Manually plugin <= 2.2.5 versions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-30871

Disclosure Date: August 16, 2023 (last updated February 25, 2025)
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in PT Woo Plugins (by Webdados) Stock Exporter for WooCommerce plugin <= 1.1.0 versions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-23871

Disclosure Date: August 10, 2023 (last updated February 25, 2025)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Webdzier Button plugin <= 1.1.23 versions.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-34005

Disclosure Date: July 17, 2023 (last updated February 25, 2025)
Cross-Site Request Forgery (CSRF) vulnerability in Etoile Web Design Front End Users plugin <= 3.2.24 versions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-30565

Disclosure Date: July 13, 2023 (last updated February 25, 2025)
An insecure connection between Systems Manager and CQI Reporter application could expose infusion data to an attacker.
Attack Vector: Adjacent NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-30564

Disclosure Date: July 13, 2023 (last updated February 25, 2025)
Alaris Systems Manager does not perform input validation during the Device Import Function.
Attack Vector: Adjacent NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-30563

Disclosure Date: July 13, 2023 (last updated February 25, 2025)
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-30562

Disclosure Date: July 13, 2023 (last updated February 25, 2025)
A GRE dataset file within Systems Manager can be tampered with and distributed to PCUs.
Attack Vector: Adjacent NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-30561

Disclosure Date: July 13, 2023 (last updated February 25, 2025)
The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is running.
Attack Vector: PhysicalPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >