CVE-2023-23464 — CVSS 8.1 (high): Media CP Media Control Panel latest version. A Permissive Flash Cross-domain Policy may allow information disclosure.
CVE-2023-23467 — CVSS 8.1 (high): Media CP Media Control Panel latest version. Reflected XSS possible through unspecified endpoint.