A Cross-Site Scripting (XSS) vulnerability on the My Cloud, My Cloud Home, SanDisk ibi, and WD Cloud web apps was found which could allow an attacker to redirect the user to a crafted domain and reset their credentials, or to execute arbitrary client-side code in the user’s browser session to...
6.2AI Score
0.0004EPSS
Cross-Site Request Forgery (CSRF) vulnerability in WPMobilePack.Com WordPress Mobile Pack – Mobile Plugin for Progressive Web Apps & Hybrid Mobile Apps plugin <= 3.4.1...
6.5CVSS
6.9AI Score
0.0005EPSS
A device API endpoint was missing access controls on Western Digital My Cloud OS 5 iOS and Anroid Mobile Apps, My Cloud Home iOS and Android Mobile Apps, SanDisk ibi iOS and Android Mobile Apps, My Cloud OS 5 Web App, My Cloud Home Web App and the SanDisk ibi Web App. Due to a permissive CORS...
4.3CVSS
4.4AI Score
0.001EPSS
6.5CVSS
6.8AI Score
0.001EPSS
7.8CVSS
7.7AI Score
0.005EPSS
5.5CVSS
5AI Score
0.001EPSS
8.8CVSS
8.1AI Score
0.013EPSS
5.5CVSS
5AI Score
0.001EPSS
7.8CVSS
7.7AI Score
0.002EPSS
7.8CVSS
7.5AI Score
0.002EPSS
The MoboTap Dolphin Web Browser - Fast Private Internet Search app 9.23.0 through 9.23.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted...
5.9CVSS
5.1AI Score
0.001EPSS
A vulnerability was found in uTorrent Web. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component HTTP RPC Server. The manipulation leads to privilege escalation. The attack can be launched remotely. The exploit has been disclosed to the...
8.8CVSS
8.7AI Score
0.003EPSS
A vulnerability was found in uTorrent. It has been rated as critical. Affected by this issue is some unknown functionality of the component JSON RPC Server. The manipulation leads to privilege escalation. The attack may be launched remotely. The exploit has been disclosed to the public and may be.....
8.8CVSS
8.6AI Score
0.002EPSS
7.8CVSS
7.7AI Score
0.005EPSS
5.5CVSS
6.3AI Score
0.002EPSS
Microsoft Office Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30171,...
5.5CVSS
6.1AI Score
0.002EPSS
5.5CVSS
6.3AI Score
0.002EPSS
7.8CVSS
8.1AI Score
0.006EPSS
7.8CVSS
7.7AI Score
0.01EPSS
5.5CVSS
5.3AI Score
0.001EPSS
8.8CVSS
9.2AI Score
0.056EPSS
7.8CVSS
7.7AI Score
0.093EPSS
7.8CVSS
7.5AI Score
0.031EPSS
7.8CVSS
7.7AI Score
0.016EPSS
5.5CVSS
5.5AI Score
0.0004EPSS
7.8CVSS
7.4AI Score
0.035EPSS
7.8CVSS
7.4AI Score
0.015EPSS
7.8CVSS
7.7AI Score
0.106EPSS
7.8CVSS
7.6AI Score
0.014EPSS
7.8CVSS
7.7AI Score
0.017EPSS
5.5CVSS
6AI Score
0.004EPSS
7.8CVSS
7.7AI Score
0.011EPSS
7.8CVSS
7.7AI Score
0.011EPSS
7.8CVSS
7.7AI Score
0.101EPSS
5.5CVSS
6AI Score
0.0004EPSS
5.5CVSS
5.8AI Score
0.017EPSS
7.8CVSS
7.7AI Score
0.154EPSS
7.8CVSS
7.7AI Score
0.016EPSS
7.8CVSS
7.7AI Score
0.015EPSS
7.8CVSS
7.7AI Score
0.056EPSS
7.8CVSS
7.7AI Score
0.056EPSS
7.8CVSS
7.7AI Score
0.056EPSS
7.8CVSS
7.7AI Score
0.013EPSS
7.8CVSS
7.7AI Score
0.016EPSS
7.8CVSS
7.7AI Score
0.016EPSS
7.8CVSS
7.7AI Score
0.013EPSS
7.8CVSS
7.7AI Score
0.011EPSS
7.8CVSS
7.7AI Score
0.011EPSS
7.8CVSS
7.7AI Score
0.009EPSS