CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

PowerJob <=4.3.2 - Unauthenticated Access

PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface. id: CVE-2023-29923 info: name: PowerJob =4.3.2 - Unauthenticated Access author: For3stCo1d severity: medium description: | PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface. impact: ...

5.3CVSS6AI score0.85436EPSS

Exploits2References5

RedhatCVE•added 2026/01/09 12:39 p.m.•3 views

CVE-2023-29924

PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution...

9.8CVSS7.4AI score0.01856EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:38 p.m.•9 views

CVE-2023-29921

PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create app interface...

5.3CVSS6.8AI score0.00318EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 3:41 a.m.•6 views

CVE-2023-29923

PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface...

5.3CVSS6.7AI score0.85436EPSS

Exploits2References1

RedhatCVE•added 2025/05/23 3:41 a.m.•5 views

CVE-2023-29922

PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface...

5.3CVSS6.8AI score0.90392EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 3:49 p.m.•3 views

CVE-2020-19002

Cross Site Scripting XSS in Mezzanine v4.3.1 allows remote attackers to execute arbitrary code via the 'Description' field of the component 'admin/blog/blogpost/add/'. This issue is different than CVE-2018-16632...

6.1CVSS6.6AI score0.00427EPSS

Exploits2

NVD•added 2024/07/13 6:15 a.m.•8 views

CVE-2024-5032

The SULly WordPress plugin before 4.3.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

4.7CVSS0.0019EPSS

Exploits1References1

OSV•added 2023/04/21 9:30 p.m.•10 views

GHSA-C6MX-3FJ9-9J7Q PowerJob vulnerable to incorrect access control

PowerJob v4.3.6 is vulnerable to Incorrect Access Control that allows for remote code execution...

9.8CVSS9.8AI score0.01856EPSS

Exploits0References4

Github Security Blog•added 2023/04/21 9:30 p.m.•22 views

PowerJob vulnerable to incorrect access control

PowerJob v4.3.6 is vulnerable to Incorrect Access Control that allows for remote code execution...

9.8CVSS9.8AI score0.01856EPSS

Exploits0References4Affected Software1

Prion•added 2023/04/21 8:15 p.m.•11 views

Remote code execution

PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution...

7.5CVSS9.8AI score0.01856EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/04/21 12:0 a.m.•2 views

CVE-2023-29924

PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution...

9.8AI score0.01856EPSS

Exploits0References2

Cvelist•added 2023/04/21 12:0 a.m.•10 views

CVE-2023-29924

PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution...

10AI score0.01856EPSS

Exploits0References2

CVE•added 2023/04/21 12:0 a.m.•58 views

CVE-2023-29924

PowerJob V4.3.1 is vulnerable to an Incorrect Access Control flaw that enables remote code execution over the network. The CVSSv3.1 vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H yields a base score of 9.8 (CRITICAL). No user interaction or privileges are required, and the impact spans confidentialit...

9.8CVSS9.8AI score0.01856EPSS

Exploits0References2Affected Software1

OSV•added 2023/04/19 7:15 p.m.•17 views

CVE-2023-29922

PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface...

5.3CVSS5.6AI score

Exploits0References1

NVD•added 2023/04/19 7:15 p.m.•11 views

CVE-2023-29922

PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface...

5.3CVSS5.2AI score0.90392EPSS

Exploits2References1