CVE-2023-40071

Improper access control in some IntelR GPA software installers before version 2023.3 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-63417

A Stored Cross-Site Scripting XSS vulnerability in the chat functionality of the SelfBest platform 2023.3 allows authenticated attackers to inject arbitrary web scripts or HTML via the chat message input field. This malicious content is stored and then executed in the context of other users'...

CVE-2025-63418

A DOM-based Cross-Site Scripting XSS vulnerability in the SelfBest platform 2023.3 allows attackers to execute arbitrary JavaScript in the context of a logged-in user's session by injecting payloads via the browser's developer console. The vulnerability arises from the application's client-side...

EUVD-2025-37928

A DOM-based Cross-Site Scripting XSS vulnerability in the SelfBest platform 2023.3 allows attackers to execute arbitrary JavaScript in the context of a logged-in user's session by injecting payloads via the browser's developer console. The vulnerability arises from the application's client-side...

PT-2025-45153

Name of the Vulnerable Software and Affected Versions SelfBest version 2023.3 Description A Stored Cross-Site Scripting XSS issue exists in the chat functionality of the SelfBest platform. Authenticated, low-privileged attackers can execute arbitrary JavaScript in the context of other users’...

CVE-2025-63418

A DOM-based Cross-Site Scripting XSS vulnerability in the SelfBest platform 2023.3 allows attackers to execute arbitrary JavaScript in the context of a logged-in user's session by injecting payloads via the browser's developer console. The vulnerability arises from the application's client-side...

SelfBest 安全漏洞

SelfBest is a development-focused platform from SelfBest, Inc. in the United States. A security vulnerability exists in SelfBest version 2023.3, which stems from insufficient cleanup and escaping of chat message input fields in the chat feature, which could lead to a stored cross-site scripting...

SelfBest 安全漏洞

SelfBest is a development-focused platform from SelfBest, Inc. in the United States. A security vulnerability exists in SelfBest version 2023.3, which stems from the presence of stored cross-site scripting in the Chat feature, which could lead to the execution of arbitrary JavaScript code by a...

PT-2025-45159

Name of the Vulnerable Software and Affected Versions SelfBest platform version 2023.3 Description A DOM-based Cross-Site Scripting XSS issue exists in the SelfBest platform. This allows attackers to execute arbitrary JavaScript within a logged-in user's session. The attack vector involves...

CVE-2025-26494

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server allows Authentication Bypass.This issue affects Tableau Server: from 2023.3 through 2023.3.5...

CVE-2024-25578

MicroDicom DICOM Viewer versions 2023.3 Build 9342 and prior contain a lack of proper validation of user-supplied data, which could result in memory corruption within the application...

PT-2024-17128 · Ivanti · Ivanti Application Control

Name of the Vulnerable Software and Affected Versions: Ivanti Application Control versions prior to 2024.3 HF1 Ivanti Application Control versions prior to 2024.1 HF2 Ivanti Application Control versions prior to 2023.3 HF3 Description: Under specific circumstances, insecure permissions in Ivanti...

Foxit PhantomPDF Multiple Vulnerabilities (June-2 2024)

Foxit PhantomPDF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:phantompdf";...

CVE-2023-40071

Improper access control in some IntelR GPA software installers before version 2023.3 may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel Graphics Performance Analyzers 安全漏洞

Intel Graphics Performance Analyzers Intel GPA is a graphics performance analyzer from Intel Corporation USA. A security vulnerability previously existed in Intel Graphics Performance Analyzers version 2023.3, which stemmed from the presence of an uncontrolled search path issue. It could allow an...

Intel Graphics Performance Analyzers 安全漏洞

Intel Graphics Performance Analyzers Intel GPA is a graphics performance analyzer from Intel Corporation USA. A security vulnerability previously existed in Intel Graphics Performance Analyzers version 2023.3, which stemmed from an improper access control issue. It could allow an authenticated us...

Intel Graphics Performance Analyzers 安全漏洞

Intel Graphics Performance Analyzers Intel GPA is a graphics performance analyzer from Intel Corporation USA. A security vulnerability previously existed in Intel Graphics Performance Analyzers version 2023.3, which stemmed from an improper access control issue. It could allow an authenticated us...

PT-2024-12503 · Intel · Intel(R) Gpa Framework

Name of the Vulnerable Software and Affected Versions: IntelR GPA Framework versions prior to 2023.3 Description: The issue is related to an uncontrolled search path in the IntelR GPA Framework software. This may allow an authenticated user to potentially enable escalation of privilege via local...

PT-2024-19207 · Unknown · Microdicom Dicom Viewer

Name of the Vulnerable Software and Affected Versions: MicroDicom DICOM Viewer versions 2023.3 Build 9342 and prior Description: The issue is a heap-based buffer overflow, which could allow an attacker to execute arbitrary code on affected installations of DICOM Viewer. A user must open a malicio...

CVE-2023-3991

An OS command injection vulnerability exists in the httpd iperfrun.cgi functionality of FreshTomato 2023.3. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability...