High
|
29 Jan 2023 |
24 Apr 2024 |
CPAI-2021-1567
|
|
CVE-2021-44142
|
Samba ADEID_FINDERI Handling Out-Of-Bounds Read (CVE-2021-44142)
|
Critical
|
23 Jan 2023 |
18 Apr 2024 |
CPAI-2022-1114
|
|
CVE-2022-31126 CVE-2022-3113 CVE-2022-31137 CVE-2022-31161
|
Roxy-WI Command Injection (CVE-2022-31126; CVE-2022-3113; CVE-2022-31137; CVE-2022-31161)
|
Critical
|
6 Sep 2023 |
16 Apr 2024 |
CPAI-2023-0664
|
|
CVE-2018-14041 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2020-11110 CVE-2020-35946 CVE-2022-0963 CVE-2022-42141 CVE-2022-44957 CVE-2023-27008 CVE-2023-33408 CVE-2023-36287 CVE-2023-4636
|
Cross-Site Scripting Over HTTP (CVE-2018-14041; CVE-2018-14042; CVE-2018-20676; CVE-2018-20677; CVE-2019-8331; CVE-2020-11110; CVE-2020-35946; CVE-2022-0963; CVE-2022-42141; CVE-2022-44957; CVE-2023-27008; CVE-2023-33408; CVE-2023-36287; CVE-2023-4636)
|
Critical
|
17 Mar 2023 |
8 Apr 2024 |
CPAI-2023-0144
|
Microsoft CVE-2023-23397
|
CVE-2023-23397 CVE-2023-29324
|
Microsoft Outlook Privilege Escalation (CVE-2023-23397; CVE-2023-29324)
|
High
|
18 May 2023 |
4 Apr 2024 |
CPAI-2022-1532
|
|
CVE-2022-3800 CVE-2022-3801
|
IBAX Go-Ibax SQL Injection (CVE-2022-3800; CVE-2022-3801)
|
Critical
|
14 Dec 2023 |
2 Apr 2024 |
CPAI-2023-0802
|
|
|
File Type Mismatch
|
Critical
|
26 Nov 2023 |
1 Apr 2024 |
CPAI-2023-0972
|
|
CVE-2018-13818 CVE-2019-8341 CVE-2021-21479 CVE-2022-34625 CVE-2024-27516 CVE-2024-27623
|
Python Server Side Template Injection (CVE-2018-13818; CVE-2019-8341; CVE-2021-21479; CVE-2022-34625; CVE-2024-27516; CVE-2024-27623)
|
Critical
|
21 Mar 2023 |
1 Apr 2024 |
CPAI-2023-0146
|
|
|
Vulnerability Scanning Techniques
|
High
|
11 Dec 2023 |
27 Mar 2024 |
CPAI-2023-1367
|
|
CVE-2023-24955
|
Microsoft SharePoint Remote Code Execution (CVE-2023-24955)
|
High
|
7 Nov 2023 |
27 Mar 2024 |
CPAI-2023-1060
|
|
CVE-2023-20889
|
VMware vRealize Network Insight Information Disclosure (CVE-2023-20889)
|
Critical
|
11 Dec 2023 |
19 Mar 2024 |
CPAI-2023-1355
|
|
CVE-2023-5399
|
Schneider Electric Spacelogic C-bus Toolkit Directory Traversal (CVE-2023-5399)
|
Critical
|
15 Jun 2023 |
19 Mar 2024 |
CPAI-2023-0404
|
|
CVE-2023-25233 CVE-2023-25234
|
Tenda AC500 Buffer Overflow (CVE-2023-25233; CVE-2023-25234)
|
Critical
|
29 Aug 2023 |
18 Mar 2024 |
CPAI-2023-0686
|
|
CVE-2022-28491 CVE-2022-28495 CVE-2022-40847 CVE-2023-1457 CVE-2023-1458 CVE-2023-24154 CVE-2023-24159 CVE-2023-31569 CVE-2023-31856 CVE-2023-33486 CVE-2023-36457 CVE-2023-38862 CVE-2023-38863 CVE-2023-38864
|
Generic HTTP Command Injection (CVE-2022-28491; CVE-2022-28495; CVE-2022-40847; CVE-2023-1457; CVE-2023-1458; CVE-2023-24154; CVE-2023-24159; CVE-2023-31569; CVE-2023-31856; CVE-2023-33486; CVE-2023-36457; CVE-2023-38862; CVE-2023-38863; CVE-2023-38864)
|
High
|
12 Nov 2023 |
17 Mar 2024 |
CPAI-2020-4068
|
|
CVE-2020-14144
|
Gitea Remote Code Execution (CVE-2020-14144)
|
Critical
|
15 Nov 2023 |
17 Mar 2024 |
CPAI-2023-0976
|
|
CVE-2018-14716 CVE-2021-26119
|
PHP Server Side Template Injection (CVE-2018-14716; CVE-2021-26119)
|
Critical
|
13 Jun 2023 |
17 Mar 2024 |
CPAI-2023-0419
|
Microsoft CVE-2023-29357
|
CVE-2023-29357
|
Microsoft SharePoint Server Authentication Bypass (CVE-2023-29357)
|
High
|
17 Dec 2023 |
7 Mar 2024 |
CPAI-2023-1398
|
|
CVE-2023-32781 CVE-2023-32782
|
Paessler PRTG Remote Code Execution (CVE-2023-32781; CVE-2023-32782)
|
Critical
|
5 Feb 2023 |
4 Mar 2024 |
CPAI-2022-1155
|
|
CVE-2022-21587
|
Oracle E-Business Suite Arbitrary File Upload (CVE-2022-21587)
|
Critical
|
28 Aug 2023 |
3 Mar 2024 |
CPAI-2023-0673
|
|
CVE-2023-34124 CVE-2023-34127 CVE-2023-34132
|
SonicWall Multiple Products Command Injection (CVE-2023-34124; CVE-2023-34127; CVE-2023-34132)
|
High
|
13 Jun 2023 |
3 Mar 2024 |
CPAI-2023-0396
|
Microsoft CVE-2023-29360
|
CVE-2023-29360
|
Microsoft TPM Device Driver Information Disclosure (CVE-2023-29360)
|
Critical
|
30 Aug 2023 |
21 Feb 2024 |
CPAI-2023-0738
|
|
CVE-2023-36844 CVE-2023-36845 CVE-2023-36846 CVE-2023-36847
|
Juniper Junos Remote Code Execution (CVE-2023-36844; CVE-2023-36845; CVE-2023-36846; CVE-2023-36847)
|
High
|
3 Jan 2023 |
21 Feb 2024 |
CPAI-2018-2238
|
|
CVE-2018-1000130
|
Jolokia Webarchive Agent Remote Code Execution (CVE-2018-1000130)
|
Critical
|
26 Jun 2023 |
20 Feb 2024 |
CPAI-2023-0456
|
|
CVE-2023-2732
|
WordPress InspireUI MStore API Plugin Authentication Bypass (CVE-2023-2732)
|
Critical
|
1 Nov 2023 |
19 Feb 2024 |
CPAI-2023-0973
|
|
CVE-2023-46747
|
F5 BIG-IP Configuration Utility Authentication Bypass (CVE-2023-46747)
|
Medium
|
26 Mar 2023 |
19 Feb 2024 |
CPAI-2023-0142
|
|
CVE-2023-23752
|
Joomla! Authentication Bypass (CVE-2023-23752)
|
High
|
26 Jul 2023 |
15 Feb 2024 |
CPAI-2023-0352
|
|
CVE-2023-1578
|
Pimcore SQL Injection (CVE-2023-1578)
|
Critical
|
14 May 2023 |
15 Feb 2024 |
CPAI-2023-0313
|
|
CVE-2023-26359 CVE-2023-26360
|
Adobe ColdFusion Insecure Deserialization (CVE-2023-26360; CVE-2023-26359)
|
Critical
|
15 Nov 2023 |
14 Feb 2024 |
CPAI-2023-0941
|
|
CVE-2024-21413
|
Microsoft Outlook Malicious Moniker Link Remote Code Execution (CVE-2024-21413)
|
Critical
|
16 Jan 2023 |
13 Feb 2024 |
CPAI-2023-0035
|
|
CVE-2020-11930 CVE-2021-26475 CVE-2021-26702 CVE-2021-26723 CVE-2021-39496 CVE-2022-46888 CVE-2023-23491 CVE-2023-24488 CVE-2023-26046 CVE-2023-28664 CVE-2023-28665 CVE-2023-28666 CVE-2023-4117
|
Cross-Site Scripting Obfuscation Techniques (CVE-2020-11930; CVE-2021-26475; CVE-2021-26702; CVE-2021-26723; CVE-2021-39496; CVE-2022-46888; CVE-2023-23491; CVE-2023-24488; CVE-2023-26046; CVE-2023-28664; CVE-2023-28665; CVE-2023-28666; CVE-2023-4117)
|
High
|
12 Feb 2023 |
8 Feb 2024 |
CPAI-2023-0069
|
|
CVE-2023-0669
|
GoAnywhere MFT Insecure Deserialization (CVE-2023-0669)
|
Critical
|
6 Feb 2023 |
8 Feb 2024 |
CPAI-2023-0052
|
|
CVE-2023-0297
|
Pyload Project Command Injection (CVE-2023-0297)
|
High
|
8 Jan 2023 |
8 Feb 2024 |
CPAI-2017-1591
|
|
CVE-2017-10974
|
Yaws Directory Traversal (CVE-2017-10974)
|
Critical
|
17 Dec 2023 |
1 Feb 2024 |
CPAI-2023-1389
|
|
CVE-2023-34048
|
VMware vCenter Server Out of Bounds Write (CVE-2023-34048)
|
Critical
|
22 Oct 2023 |
30 Jan 2024 |
CPAI-2020-4056
|
|
CVE-2020-26948
|
Emby Server-Side Request Forgery (CVE-2020-26948)
|
Critical
|
29 Jan 2023 |
30 Jan 2024 |
CPAI-2022-1142
|
|
CVE-2021-39352 CVE-2022-3416 CVE-2022-3912 CVE-2022-3982 CVE-2022-3989 CVE-2022-4047 CVE-2022-4061 CVE-2023-2068 CVE-2023-4596 CVE-2023-5601
|
WordPress Multiple Plugins Arbitrary File Upload (CVE-2021-39352; CVE-2022-3416; CVE-2022-3912; CVE-2022-3982; CVE-2022-3989; CVE-2022-4047; CVE-2022-4061; CVE-2023-2068; CVE-2023-4596; CVE-2023-5601)
|
Critical
|
18 Oct 2023 |
29 Jan 2024 |
CPAI-2023-0927
|
|
CVE-2023-20198
|
Cisco IOS XE Web UI Authentication Bypass (CVE-2023-20198)
|
High
|
11 Jan 2023 |
29 Jan 2024 |
CPAI-2018-2184
|
|
CVE-2018-11759
|
Apache Tomcat Information Disclosure (CVE-2018-11759)
|
Critical
|
4 Dec 2023 |
28 Jan 2024 |
CPAI-2018-2634
|
|
CVE-2018-7584
|
PHP HTTP Fopen Wrapper Stack Buffer Overflow (CVE-2018-7584)
|
Critical
|
13 Feb 2023 |
25 Jan 2024 |
CPAI-2022-1179
|
|
CVE-2022-31814 CVE-2022-40624
|
pfSense pfBlockerNG Command Injection (CVE-2022-31814; CVE-2022-40624)
|
High
|
2 Jul 2023 |
24 Jan 2024 |
CPAI-2022-1652
|
|
CVE-2022-30522
|
Apache HTTP Server Denial of Service (CVE-2022-30522)
|
Critical
|
13 Dec 2023 |
22 Jan 2024 |
CPAI-2023-1350
|
|
CVE-2023-27524
|
Apache Superset Remote Code Execution (CVE-2023-27524)
|
Critical
|
29 Jun 2023 |
22 Jan 2024 |
CPAI-2021-1792
|
|
CVE-2021-30128
|
Apache OFBiz Insecure Deserialization (CVE-2021-30128)
|
High
|
18 Apr 2023 |
22 Jan 2024 |
CPAI-2023-0168
|
|
CVE-2023-28432
|
MinIO Information Disclosure (CVE-2023-28432)
|
High
|
10 Sep 2023 |
18 Jan 2024 |
CPAI-2023-0751
|
|
CVE-2023-37462
|
XWiki Remote Code Execution (CVE-2023-37462)
|
Critical
|
16 Aug 2023 |
16 Jan 2024 |
CPAI-2023-0537
|
|
|
Common Arbitrary Files Upload Techniques
|
Critical
|
5 Nov 2023 |
15 Jan 2024 |
CPAI-2023-1080
|
|
CVE-2023-46604
|
Apache ActiveMQ Remote Code Execution (CVE-2023-46604)
|
High
|
31 Aug 2023 |
14 Jan 2024 |
CPAI-2023-0614
|
|
CVE-2023-32031 CVE-2023-36744 CVE-2023-36745 CVE-2023-36756 CVE-2023-36757 CVE-2023-36777 CVE-2023-36778 CVE-2023-38181
|
Microsoft Exchange Server Remote Code Execution (CVE-2023-32031; CVE-2023-36744; CVE-2023-36745; CVE-2023-36756; CVE-2023-36757; CVE-2023-36777; CVE-2023-36778; CVE-2023-38181)
|
High
|
15 Jun 2023 |
14 Jan 2024 |
CPAI-2023-0405
|
|
CVE-2022-31268
|
Java Server Files Information Disclosure (CVE-2022-31268)
|
Critical
|
17 Oct 2023 |
4 Jan 2024 |
CPAI-2023-0799
|
|
CVE-2004-0705 CVE-2005-2869 CVE-2006-4747 CVE-2010-4841 CVE-2016-6285 CVE-2020-20285 CVE-2020-25786 CVE-2020-26574 CVE-2020-35592 CVE-2020-9016 CVE-2021-37216 CVE-2022-35416 CVE-2023-1861 CVE-2023-41642
|
Cross-Site Scripting Over HTTP Headers (CVE-2004-0705; CVE-2005-2869; CVE-2006-4747; CVE-2010-4841; CVE-2016-6285; CVE-2020-20285; CVE-2020-25786; CVE-2020-26574; CVE-2020-35592; CVE-2020-9016; CVE-2021-37216; CVE-2022-35416; CVE-2023-1861; CVE-2023-41642)
|
Critical
|
19 Mar 2023 |
4 Jan 2024 |
CPAI-2022-1364
|
|
CVE-2022-39952
|
Fortinet FortiNAC Arbitrary File Write (CVE-2022-39952)
|