CVE-2023-28512

MEDIUM Year: 2023
CVSS v3 Score
5.9
Medium
Weakness Type
CWE-472
View all →

Vulnerability Description

IBM Watson CP4D Data Stores 4.6.0, 4.6.1, and 4.6.2 could allow an attacker with specific knowledge about the system to manipulate data due to improper input validation. IBM X-Force ID: 250396.

Related Vulnerabilities

CVE-2024-50703

MEDIUM
CVSS:5.4(Medium)

TeamPass before 3.1.3.1 does not properly prevent a user from acting with the privileges of a different user_id.

CWE-4722024

CVE-2023-38520

MEDIUM
CVSS:6.5(Medium)

External Control of Assumed-Immutable Web Parameter vulnerability in PINPOINT.WORLD Pinpoint Booking System allows Functionality Misuse.This issue affects Pinpoint Booking System: from n/a through 2.9...

CWE-4722023

CVE-2025-29788

MEDIUM
CVSS:6.5(Medium)

The Syliud PayPal Plugin is the Sylius Core Team’s plugin for the PayPal Commerce Platform. A vulnerability in versions prior to 1.6.1, 1.7.1, and 2.0.1 allows users to manipulate the final payment am...

CWE-4722025

CVE-2025-30152

MEDIUM
CVSS:6.5(Medium)

The Syliud PayPal Plugin is the Sylius Core Team’s plugin for the PayPal Commerce Platform. Prior to 1.6.2, 1.7.2, and 2.0.2, a discovered vulnerability allows users to modify their shopping cart afte...

CWE-4722025

CVE-2019-13927

MEDIUM
CVSS:5.3(Medium)

A vulnerability has been identified in Desigo PX automation controllers PXC00-E.D, PXC50-E.D, PXC100-E.D, PXC200-E.D with Desigo PX Web modules PXA40-W0, PXA40-W1, PXA40-W2 (All firmware versions < V6...

CWE-4722019

CVE-2020-1765

MEDIUM
CVSS:5.3(Medium)

An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue af...

CWE-4722020