Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
Medium	29 Jun 2023	29 Jun 2023	CPAI-2023-0452	CVE-2023-34941	Asus RT-N10LX Router Cross-Site Scripting (CVE-2023-34941)
Critical	29 Jun 2023	29 Jun 2023	CPAI-2023-0444	CVE-2023-2986	WordPress WooCommerce Plugin Authentication Bypass (CVE-2023-2986)
High	29 Jun 2023	29 Jun 2023	CPAI-2023-0332		Allok WMV to AVI MPEG DVD WMV Converter Buffer Overflow
Critical	29 Jun 2023	29 Jun 2023	CPAI-2019-2704	CVE-2019-19307	Cesanta Mongoose Integer Overflow (CVE-2019-19307)
Critical	28 Jun 2023	28 Jun 2023	CPAI-2021-1791	CVE-2021-45232	Apache APISIX Dashboard Authentication Bypass (CVE-2021-45232)
Medium	28 Jun 2023	28 Jun 2023	CPAI-2023-0462	CVE-2023-2947	OpenEMR Cross-Site Scripting (CVE-2023-2947)
Critical	28 Jun 2023	28 Jun 2023	CPAI-2022-1661	CVE-2022-39396	Parse Platform for parse-server Remote Code Execution (CVE-2022-39396)
High	28 Jun 2023	28 Jun 2023	CPAI-2023-0429	CVE-2023-2575	Advantech EKI Series Devices Buffer Overflow (CVE-2023-2575)
Medium	28 Jun 2023	28 Jun 2023	CPAI-2020-3858	CVE-2020-35391	Tenda F3 Information Disclosure (CVE-2020-35391)
High	28 May 2023	28 Jun 2023	CPAI-2023-0324	CVE-2023-30777	WordPress Engine Advanced Custom Fields Plugins Reflected Cross-Site Scripting (CVE-2023-30777)
Medium	8 Feb 2023	28 Jun 2023	CPAI-2020-3658	CVE-2020-13937	Apache Kylin Authentication Bypass (CVE-2020-13937)
Medium	27 Jun 2023	27 Jun 2023	CPAI-2022-1673	CVE-2022-2753	WordPress Ketchup Restaurant Reservations Plugin Cross-Site Scripting (CVE-2022-2753)
High	27 Jun 2023	27 Jun 2023	CPAI-2023-0450	CVE-2023-2554	Bumsys Project Directory Traversal (CVE-2023-2554)
High	27 Jun 2023	27 Jun 2023	CPAI-2020-3862	CVE-2020-35765	Zoho Corp ManageEngine Applications SQL Injection (CVE-2020-35765)
High	27 Jun 2023	27 Jun 2023	CPAI-2022-1671	CVE-2022-3323	Advantech iView SQL Injection (CVE-2022-3323)
Medium	27 Jun 2023	27 Jun 2023	CPAI-2021-1789	CVE-2021-31806	Squid Denial of Service (CVE-2021-31806)
Critical	27 Jun 2023	27 Jun 2023	CPAI-2021-1786	CVE-2021-42127	Ivanti Avalanche Insecure Deserialization (CVE-2021-42127)
High	29 Mar 2023	27 Jun 2023	CPAI-2021-1456	CVE-2021-30497	Ivanti Avalanche Directory Traversal (CVE-2021-30497)
Medium	26 Jun 2023	26 Jun 2023	CPAI-2022-1668	CVE-2022-34258	Adobe Commerce Cross-Site Scripting (CVE-2022-34258)
High	26 Jun 2023	26 Jun 2023	CPAI-2021-1788	CVE-2021-38156	Nagios XI Manage My Dashboards Page Stored Cross-Site Scripting (CVE-2021-38156)
Critical	26 Jun 2023	26 Jun 2023	CPAI-2022-1667	CVE-2022-38129	Keysight Sensor Management Server Directory Traversal (CVE-2022-38129)
High	26 Jun 2023	26 Jun 2023	CPAI-2022-1665	CVE-2022-34253	Adobe Commerce Remote Code Execution (CVE-2022-34253)
Critical	26 Jun 2023	26 Jun 2023	CPAI-2023-0445	CVE-2023-27823	Optoma 1080PSTX Authentication Bypass (CVE-2023-27823)
High	26 Jun 2023	26 Jun 2023	CPAI-2023-0443	CVE-2023-35042	GeoServer Remote Code Execution (CVE-2023-35042)
High	26 Jun 2023	26 Jun 2023	CPAI-2013-3805	CVE-2013-3539	Sony IP Cameras Cross-Site Request Forgery (CVE-2013-3539)
Medium	4 May 2023	26 Jun 2023	CPAI-2023-0268		AZORult Phishing Email Campaign
Critical	26 Jun 2023	26 Jun 2023	CPAI-2022-0553	CVE-2022-30136	Microsoft Windows Network File System Remote Code Execution (CVE-2022-30136)
High	25 Jun 2023	25 Jun 2023	CPAI-2023-0455	CVE-2023-27857	Rockwell Automation ThinManager Buffer Overflow (CVE-2023-27857)
High	25 Jun 2023	25 Jun 2023	CPAI-2017-1667	CVE-2017-7310	Flexense Multiple Products Stack Buffer Overflow (CVE-2017-7310)
Critical	28 May 2023	25 Jun 2023	CPAI-2023-0339	CVE-2023-26802	DCN DCBI-Netlog-LAB Authentication Bypass (CVE-2023-26802)
Medium	8 May 2023	25 Jun 2023	CPAI-2023-0301	CVE-2023-29489	cPanel Reflected Cross Site Scripting (CVE-2023-29489)
Medium	25 Jun 2023	25 Jun 2023	CPAI-2020-3784	CVE-2020-35774	Twitter-server Cross-Site Scripting (CVE-2020-35774)
Critical	25 Jun 2023	25 Jun 2023	CPAI-2021-1677	CVE-2021-25114	WordPress Stranger Studios Paid Memberships Pro Plugin SQL Injection (CVE-2021-25114)
High	25 Jun 2023	25 Jun 2023	CPAI-2021-1642	CVE-2021-42727	Adobe RoboHelp Server Buffer Overflow (CVE-2021-42727)
Critical	22 Jun 2023	22 Jun 2023	CPAI-2023-0431	CVE-2023-25157	OSGeo GeoServer SQL Injection (CVE-2023-25157)
High	22 Jun 2023	22 Jun 2023	CPAI-2016-1223	CVE-2016-4054	Squid Buffer Overflow (CVE-2016-4054)
High	21 Jun 2023	21 Jun 2023	CPAI-2023-0432	CVE-2023-1347	WordPress Customizer Export/Import Plugin Insecure Deserialization (CVE-2023-1347)
High	21 Jun 2023	21 Jun 2023	CPAI-2022-1654	CVE-2022-48194	TP-Link TL-WR902AC Arbitrary File Upload (CVE-2022-48194)
Critical	21 Jun 2023	21 Jun 2023	CPAI-2023-0421	CVE-2023-2564	Scanservjs Project Command Injection (CVE-2023-2564)
Critical	21 Jun 2023	21 Jun 2023	CPAI-2022-1630	CVE-2022-24260	VoIPmonitor SQL Injection (CVE-2022-24260)
High	28 Mar 2023	21 Jun 2023	CPAI-2022-1387	CVE-2022-4223	PostgreSQL pgAdmin Command Injection (CVE-2022-4223)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1659	CVE-2022-36961	SolarWinds Orion Platform SQL Injection (CVE-2022-36961)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2014-2502	CVE-2014-8389	AirLive IP Cameras Command Injection (CVE-2014-8389)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2013-3807	CVE-2013-2568	Zavio IP Cameras Command Injection (CVE-2013-2568)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2013-3806	CVE-2013-2573	TP-Link IP Cameras Command Injection (CVE-2013-2573)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2017-1670	CVE-2017-14942	Intelbras WRN 150 Information Disclosure (CVE-2017-14942)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1650	CVE-2022-38772	ZohoCorp ManageEngine Remote Code Execution (CVE-2022-38772)
Medium	20 Jun 2023	20 Jun 2023	CPAI-2020-3855	CVE-2020-8821	Webmin Remote Code Execution (CVE-2020-8821)
Medium	20 Jun 2023	20 Jun 2023	CPAI-2023-0409	CVE-2023-34229	JetBrains TeamCity Cross-Site Scripting (CVE-2023-34229)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1624	CVE-2022-44635	Apache Fineract Directory Traversal (CVE-2022-44635)