CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2022-43652 – Bentley View SKP File Parsing Use-After-Free Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-43652
Bentley View SKP File Parsing Use-After-Free Information Disclosure Vulnerability. • https://www.zerodayinitiative.com/advisories/ZDI-23-347 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24473
https://notcve.org/view.php?id=CVE-2023-24473
An information disclosure vulnerability exists in the TGAInput::read_tga2_header functionality of OpenImageIO Project OpenImageIO v2.4.7.1. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1707 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-22845
https://notcve.org/view.php?id=CVE-2023-22845
A specially crafted targa file can lead to information disclosure. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1708 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-1014 – Information disclosure in Vira-Investing
https://notcve.org/view.php?id=CVE-2023-1014
Improper Protection for Outbound Error Messages and Alert Signals vulnerability in Virames Vira-Investing allows Account Footprinting.This issue affects Vira-Investing: before 1.0.84.86. • https://www.usom.gov.tr/bildirim/tr-23-0183 • CWE-1320: Improper Protection for Outbound Error Messages and Alert Signals •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-26533 – WordPress Zippy Plugin <= 1.6.1 is vulnerable to Sensitive Data Exposure
https://notcve.org/view.php?id=CVE-2023-26533
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Gesundheit Bewegt GmbH Zippy.This issue affects Zippy: from n/a through 1.6.1. Exposición de información confidencial a una vulnerabilidad de actor no autorizado en Gesundheit Bewegt GmbH Zippy. Este problema afecta a Zippy: desde n/a hasta 1.6.1. The Zippy plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 1.6.1 via the adminInit function. This can allow authenticated attackers with access to the post editor, such as contributors, to create an export that will contain sensitive author information, such as usernames and password hashes. • https://patchstack.com/database/vulnerability/zippy/wordpress-zippy-plugin-1-6-1-sensitive-data-exposure-vulnerability? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •