CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36523 – WordPress Email download link Plugin <= 3.7 is vulnerable to Sensitive Data Exposure
https://notcve.org/view.php?id=CVE-2023-36523
This can allow unauthenticated attackers to extract sensitive data from the database. • https://patchstack.com/database/vulnerability/email-download-link/wordpress-email-download-link-plugin-3-7-sensitive-data-exposure? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36399 – WordPress Booked Plugin < 2.4.4 is vulnerable to Sensitive Data Exposure
https://notcve.org/view.php?id=CVE-2022-36399
This can allow unauthenticated attackers to extract sensitive appointment-related data from the database. • https://patchstack.com/database/vulnerability/booked/wordpress-booked-plugin-2-4-unauth-appointment-data-exposure-vulnerability? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2023-25518
https://notcve.org/view.php?id=CVE-2023-25518
A successful exploit of this vulnerability may lead to code execution, denial of service, information disclosure, and loss of integrity. • https://https://nvidia.custhelp.com/app/answers/detail/a_id/5466 • CWE-923: Improper Restriction of Communication Channel to Intended Endpoints •
CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2023-25515
https://notcve.org/view.php?id=CVE-2023-25515
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where unexpected untrusted data is parsed, which may lead to code execution, denial of service, escalation of privileges, data tampering, or information disclosure. • https://https://nvidia.custhelp.com/app/answers/detail/a_id/5468 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-3132 – MainWP Child <= 4.4.1.1 - Information Disclosure via Back-Up Files
https://notcve.org/view.php?id=CVE-2023-3132
This makes it possible for unauthenticated attackers to extract sensitive data including the entire installations database if a backup occurs and the deletion of the back-up files fail. • https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2923512%40mainwp-child&new=2923512%40mainwp-child&sfp_email=&sfph_mail= https://www.wordfence.com/threat-intel/vulnerabilities/id/a1fadba1-674f-4f3d-997f-d29d3a887414?source=cve • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •