Autore: Angelo Barbosa

A vulnerability classified as problematic was found in CodeIgniter4 Shield up to 1.0.0-beta.7. Affected by this vulnerability is an unknown functionality of the component HMAC SHA256 Handler. The manipulation leads to cleartext storage of sensitive information. This vulnerability is known as CVE-2023-48707. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability classified as problematic has been found in CodeIgniter4 Shield up to 1.0.0-beta.7. Affected is an unknown function of the component Login. The manipulation leads to sensitive information in log files. This vulnerability is traded as CVE-2023-48708. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability was found in capsule-proxy up to 0.4.5. It has been rated as critical. This issue affects the function TokenReview. The manipulation leads to improper authentication. The identification of this vulnerability is CVE-2023-48312. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability was found in warp-tech warpgate up to 0.8.x. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to incorrect authorization. This vulnerability was named CVE-2023-48712. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability was found in WCFM Marketplace Plugin up to 3.6.2 on WordPress. It has been classified as problematic. This affects an unknown part of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-4960. It is possible to initiate the attack remotely. There is no exploit...