Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	10 Jan 2023	10 Jan 2023	CPAI-2023-0007	Microsoft CVE-2023-21552	CVE-2023-21552	Microsoft Windows GDI Elevation of Privilege (CVE-2023-21552)
High	10 Jan 2023	10 Jan 2023	CPAI-2023-0023	Adobe APSB22-03	CVE-2023-21585	Adobe Acrobat and Reader Out-of-bounds Read (APSB22-03: CVE-2023-21585)
High	9 Jan 2023	9 Jan 2023	CPAI-2021-1548		CVE-2021-26411	Internet Explorer Memory Corruption (CVE-2021-26411)
Critical	9 Jan 2023	9 Jan 2023	CPAI-2017-1602		CVE-2017-11543	tcpdump Buffer Overflow (CVE-2017-11543)
High	9 Jan 2023	9 Jan 2023	CPAI-2023-0030			WordPress Quizlord Plugin Cross-Site Scripting
High	9 Jan 2023	9 Jan 2023	CPAI-2023-0029			Empire Python Launcher Backdoor
High	9 Jan 2023	9 Jan 2023	CPAI-2023-0028			D-Link DSL Information Disclosure
High	8 Jan 2023	8 Jan 2023	CPAI-2017-1591		CVE-2017-10974	Yaws Directory Traversal (CVE-2017-10974)
Critical	8 Jan 2023	8 Jan 2023	CPAI-2018-2263		CVE-2018-20469	Tyto Sahi Pro SQL Injection (CVE-2018-20469)
High	8 Jan 2023	8 Jan 2023	CPAI-2017-1600		CVE-2017-9414	Subsonic Cross-Site Scripting (CVE-2017-9414)
Critical	8 Jan 2023	8 Jan 2023	CPAI-2019-2746		CVE-2019-13635	WordPress WP Fastest Cache Plugin Directory Traversal (CVE-2019-13635)
Critical	8 Jan 2023	8 Jan 2023	CPAI-2021-1540		CVE-2021-25003	WordPress WPCargo Track and Trace Plugin Arbitrary File Write (CVE-2021-25003)
Critical	8 Jan 2023	8 Jan 2023	CPAI-2021-1537		CVE-2021-30176	ZEROF Expert SQL Injection (CVE-2021-30176)
Critical	5 Jan 2023	5 Jan 2023	CPAI-2019-2743		CVE-2019-7442	CyberArk Enterprise Password Vault XML External Entity Injection (CVE-2019-7442)
High	5 Jan 2023	5 Jan 2023	CPAI-2019-2739		CVE-2019-14205	Wordpress Nevma Adaptive Images Plugin Local File Inclusion (CVE-2019-14205)
Critical	5 Jan 2023	5 Jan 2023	CPAI-2019-2738		CVE-2019-9874 CVE-2019-9875	Sitecore CMS Insecure Deserialization (CVE-2019-9874; CVE-2019-9875)
Critical	5 Jan 2023	5 Jan 2023	CPAI-2020-3647		CVE-2020-13166	MyLittleTools MyLittleAdmin Remote Code Execution (CVE-2020-13166)
Critical	5 Jan 2023	5 Jan 2023	CPAI-2019-2716		CVE-2019-1003030	Jenkins Pipeline Groovy Plugin Sandbox Escape (CVE-2019-1003030)
Critical	4 Jan 2023	4 Jan 2023	CPAI-2022-1109		CVE-2022-45359	YITH WooCommerce Gift Cards Premium Plugin Authentication Bypass (CVE-2022-45359)
High	4 Jan 2023	4 Jan 2023	CPAI-2017-1576		CVE-2017-6090	PhpCollab Arbitrary File Upload (CVE-2017-6090)
High	3 Jan 2023	3 Jan 2023	CPAI-2019-2728		CVE-2019-18371	Xiaomi Mi Millet Path Traversal (CVE-2019-18371)
High	3 Jan 2023	3 Jan 2023	CPAI-2023-0010			ASUS RT-N10 Repeater Mode Cross-Site Request Forgery
Critical	3 Jan 2023	3 Jan 2023	CPAI-2017-1539		CVE-2017-2894	Cesanta Mongoose MQTT Remote Code Execution (CVE-2017-2894)
High	3 Jan 2023	3 Jan 2023	CPAI-2020-3648		CVE-2020-24577	D-Link DSL-2888A Information Disclosure (CVE-2020-24577)
Critical	3 Jan 2023	3 Jan 2023	CPAI-2022-0517		CVE-2022-36446	Webmin Remote Code Execution (CVE-2022-36446)
Critical	3 Jan 2023	3 Jan 2023	CPAI-2021-1529		CVE-2021-21307	Lucee Server Remote Code Execution (CVE-2021-21307)
Critical	3 Jan 2023	3 Jan 2023	CPAI-2022-0282		CVE-2022-1386	WordPress Plugin Fusion Builder Server Side Request Forgery (CVE-2022-1386)
High	3 Jan 2023	3 Jan 2023	CPAI-2021-1527		CVE-2021-34583	CODESYS Buffer Overflow (CVE-2021-34583)
Critical	3 Jan 2023	3 Jan 2023	CPAI-2022-0210		CVE-2022-24954	Foxit PDF Reader Buffer Overflow (CVE-2022-24954)
Critical	3 Jan 2023	3 Jan 2023	CPAI-2018-2250		CVE-2018-5973	Eihitech Professional Local Directory Script SQL Injection (CVE-2018-5973)
High	3 Jan 2023	3 Jan 2023	CPAI-2018-2247		CVE-2018-14707	Drobo 5N2 Directory Traversal (CVE-2018-14707)
Critical	3 Jan 2023	3 Jan 2023	CPAI-2019-2731		CVE-2019-13375	D-Link Central WiFi Manager SQL Injection (CVE-2019-13375)
High	3 Jan 2023	3 Jan 2023	CPAI-2018-2238		CVE-2018-1000130	Jolokia Webarchive Agent Remote Code Execution (CVE-2018-1000130)
High	3 Jan 2023	3 Jan 2023	CPAI-2018-2236		CVE-2018-14699 CVE-2018-14701 CVE-2018-14706	Drobo 5N2 Command Injection (CVE-2018-14699; CVE-2018-14701; CVE-2018-14706)
High	3 Jan 2023	3 Jan 2023	CPAI-2018-2271		CVE-2018-7582	WebLog Expert Denial Of Service (CVE-2018-7582)
High	3 Jan 2023	3 Jan 2023	CPAI-2020-3644		CVE-2020-8658	WordPress BestWebSoft Htaccess Plugin Cross Site Request Forgery (CVE-2020-8658)
Medium	3 Jan 2023	3 Jan 2023	CPAI-2018-2270		CVE-2018-6361	Easy Hosting Control Panel Cross-site Scripting (CVE-2018-6361)
High	2 Jan 2023	2 Jan 2023	CPAI-2021-1526		CVE-2021-34586	CODESYS Null Pointer Dereference (CVE-2021-34586)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2018-2240		CVE-2018-14728	Tecrail Responsive Filemanager Server-Side Request Forgery (CVE-2018-14728)
High	2 Jan 2023	2 Jan 2023	CPAI-2019-2729		CVE-2019-10267	Ahsay Cloud Backup Suite Arbitrary File Upload (CVE-2019-10267)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2018-2228		CVE-2018-13324	Buffalo TS5600D1206 Authentication Bypass (CVE-2018-13324)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2021-1531		CVE-2021-31856	Layer5 Meshery SQL Injection (CVE-2021-31856)
High	2 Jan 2023	2 Jan 2023	CPAI-2018-2258		CVE-2018-12980	WAGO Arbitrary File Upload (CVE-2018-12980)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2017-1586		CVE-2017-9828	VIVOTEK Network Camera Command Injection (CVE-2017-9828)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2021-1530		CVE-2021-42668 CVE-2021-42670	Sourcecodester Engineers Online Portal SQL Injection (CVE-2021-42668; CVE-2021-42670)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2019-2737		CVE-2019-15954	Total.js CMS Directory Traversal (CVE-2019-15954)
Critical	2 Jan 2023	2 Jan 2023	CPAI-2018-2251		CVE-2018-18761	SaltOS SQL Injection (CVE-2018-18761)
Critical	1 Jan 2023	1 Jan 2023	CPAI-2021-1533		CVE-2021-44790	Apache HTTP Server Buffer Overflow (CVE-2021-44790)
High	1 Jan 2023	1 Jan 2023	CPAI-2020-3645		CVE-2020-26561	Belkin Linksys WRT160NL Buffer Overflow (CVE-2020-26561)
Critical	1 Jan 2023	1 Jan 2023	CPAI-2020-3641		CVE-2020-35613	Joomla! SQL Injection (CVE-2020-35613)