Lista CVE - 2023 / Ottobre
Visualizzazione 501 - 600 di 2690 CVE per Ottobre 2023 (Pagina 6 di 27)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-45363 | 2023-10-09 | An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12,... |
| CVE-2023-45364 | 2023-10-09 | An issue was discovered in includes/page/Article.php in MediaWiki 1.36.x through... |
| CVE-2023-45367 | 2023-10-09 | An issue was discovered in the CheckUser extension for MediaWiki... |
| CVE-2023-45369 | 2023-10-09 | An issue was discovered in the PageTriage extension for MediaWiki... |
| CVE-2023-45370 | 2023-10-09 | An issue was discovered in the SportsTeams extension for MediaWiki... |
| CVE-2023-45371 | 2023-10-09 | An issue was discovered in the Wikibase extension for MediaWiki... |
| CVE-2023-45372 | 2023-10-09 | An issue was discovered in the Wikibase extension for MediaWiki... |
| CVE-2023-45373 | 2023-10-09 | An issue was discovered in the ProofreadPage extension for MediaWiki... |
| CVE-2023-45374 | 2023-10-09 | An issue was discovered in the SportsTeams extension for MediaWiki... |
| CVE-2023-44260 | 2023-10-09 | WordPress Woocommerce ESTO Plugin <= 2.23.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44231 | 2023-10-09 | WordPress Contact Form Plugin <= 2.0.10 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44232 | 2023-10-09 | WordPress WP Hide Pages Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-3589 | 2023-10-09 | Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x |
| CVE-2023-44236 | 2023-10-09 | WordPress WP Captcha Plugin <= 2.0.0 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44237 | 2023-10-09 | WordPress WP Site Protector Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44238 | 2023-10-09 | WordPress Remove slug from custom post type Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44246 | 2023-10-09 | WordPress Shockingly Simple Favicon Plugin <= 1.8.2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44240 | 2023-10-09 | WordPress Timthumb Vulnerability Scanner Plugin <= 1.54 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44473 | 2023-10-09 | WordPress Table of Contents Plus Plugin <= 2302 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44993 | 2023-10-09 | WordPress ChatBot Plugin <= 4.7.8 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-45612 | 2023-10-09 | In JetBrains Ktor before 2.3.5 default configuration of ContentNegotiation with... |
| CVE-2023-45613 | 2023-10-09 | In JetBrains Ktor before 2.3.5 server certificates were not verified |
| CVE-2023-5330 | 2023-10-09 | Denial of Service via Opengraph Data Cache |
| CVE-2023-5331 | 2023-10-09 | File Information Leak via IDOR in file_id in Draft Posts |
| CVE-2023-5333 | 2023-10-09 | Denial of Service via multiple identical User IDs in /api/v4/users/ids |
| CVE-2023-45248 | 2023-10-09 | Local privilege escalation due to DLL hijacking vulnerability. The following... |
| CVE-2023-45247 | 2023-10-09 | Sensitive information disclosure and manipulation due to missing authorization. The... |
| CVE-2023-43696 | 2023-10-09 | Improper Access Control in SICK APU allows an unprivileged remote... |
| CVE-2023-43700 | 2023-10-09 | Missing Authorization in RDT400 in SICK APU allows an unprivileged... |
| CVE-2023-43699 | 2023-10-09 | Improper Restriction of Excessive Authentication Attempts in RDT400 in SICK... |
| CVE-2023-43698 | 2023-10-09 | Improper Neutralization of Input During Web Page Generation (’Cross-site Scripting’)... |
| CVE-2023-43697 | 2023-10-09 | Modification of Assumed-Immutable Data (MAID) in RDT400 in SICK APU... |
| CVE-2023-5100 | 2023-10-09 | Cleartext Transmission of Sensitive Information in RDT400 in SICK APU... |
| CVE-2023-5101 | 2023-10-09 | Files or Directories Accessible to External Parties in RDT400 in... |
| CVE-2023-5102 | 2023-10-09 | Insufficient Control Flow Management in RDT400 in SICK APU allows... |
| CVE-2023-5103 | 2023-10-09 | Improper Restriction of Rendered UI Layers or Frames in RDT400... |
| CVE-2022-35950 | 2023-10-09 | OroCommerce Cross-site Scripting vulnerability in add note dialog of Shopping List line item |
| CVE-2023-25822 | 2023-10-09 | ReportPortal DoS vulnerability on creating a Launch with too many recursively nested elements |
| CVE-2023-36820 | 2023-10-09 | micronaut security has invalid IdTokenClaimsValidator logic on aud |
| CVE-2023-43643 | 2023-10-09 | mXSS in AntiSamy |
| CVE-2023-44378 | 2023-10-09 | gnark vulnerable to unsoundness in variable comparison/non-unique binary decomposition |
| CVE-2023-41660 | 2023-10-09 | WordPress WP Migration Plugin DB & Files – WP Synchro Plugin <= 1.9.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-44393 | 2023-10-09 | Piwigo Reflected XSS vulnerability |
| CVE-2023-30910 | 2023-10-09 | HPE MSA Controller prior to version IN210R004 could be remotely... |
| CVE-2023-44400 | 2023-10-09 | Uptime Kuma has Persistentent User Sessions |
| CVE-2023-5365 | 2023-10-09 | HP LIFE Android Mobile – Potential Escalation of Privilege, Information Disclosure |
| CVE-2023-41047 | 2023-10-09 | Improper Neutralization of Special Elements Used in a Template Engine in OctoPrint |
| CVE-2023-42455 | 2023-10-09 | Wazuh vulnerable to user privilege escalation |
| CVE-2023-41667 | 2023-10-09 | WordPress WP-dTree Plugin <= 4.4.5 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-41668 | 2023-10-09 | WordPress Leadster Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-39189 | 2023-10-09 | Kernel: netfilter: nftables out-of-bounds read in nf_osf_match_one() |
| CVE-2023-39192 | 2023-10-09 | Kernel: netfilter: xtables out-of-bounds read in u32_match_it() |
| CVE-2023-39193 | 2023-10-09 | Kernel: netfilter: xtables sctp out-of-bounds read in match_flags() |
| CVE-2023-39194 | 2023-10-09 | Kernel: xfrm: out-of-bounds read in __xfrm_state_filter_match() |
| CVE-2023-41669 | 2023-10-09 | WordPress Live News Plugin <= 1.06 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-3431 | 2023-10-09 | A potential vulnerability in a driver used during manufacturing process... |
| CVE-2023-41670 | 2023-10-09 | WordPress Use Memcached Plugin <= 1.0.5 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-41672 | 2023-10-09 | WordPress Hide admin notices – Admin Notification Center Plugin <= 2.3.2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-5459 | 2023-10-09 | Delta Electronics DVP32ES2 PLC Password Transmission denial of service |
| CVE-2023-5460 | 2023-10-09 | Delta Electronics WPLSoft Modbus Data Packet heap-based overflow |
| CVE-2023-44392 | 2023-10-09 | Arbitrary code execution vulnerability when using shared Kubernetes cluster |
| CVE-2023-5461 | 2023-10-09 | Delta Electronics WPLSoft Modbus cleartext transmission |
| CVE-2022-3728 | 2023-10-09 | A vulnerability was reported in ThinkPad T14s Gen 3 and... |
| CVE-2022-48182 | 2023-10-09 | A vulnerability was reported in ThinkPad T14s Gen 3 and... |
| CVE-2022-48183 | 2023-10-09 | A vulnerability was reported in ThinkPad T14s Gen 3 and... |
| CVE-2023-43641 | 2023-10-09 | libcue vulnerable to out-of-bounds array access |
| CVE-2023-5462 | 2023-10-09 | XINJE XD5E-30R-E Modbus denial of service |
| CVE-2023-5463 | 2023-10-09 | XINJE XDPPro cfgmgr32.dll uncontrolled search path |
| CVE-2020-18336 | 2023-10-10 | Cross Site Scripting (XSS) vulnerability found in Typora v.0.9.65 allows... |
| CVE-2020-27213 | 2023-10-10 | An issue was discovered in Ethernut Nut/OS 5.1. The code... |
| CVE-2020-27630 | 2023-10-10 | In Silicon Labs uC/TCP-IP 3.6.0, TCP ISNs are improperly random. |
| CVE-2020-27631 | 2023-10-10 | In Oryx CycloneTCP 1.9.6, TCP ISNs are improperly random. |
| CVE-2020-27633 | 2023-10-10 | In FNET 4.6.3, TCP ISNs are improperly random. |
| CVE-2020-27634 | 2023-10-10 | In Contiki 4.5, TCP ISNs are improperly random. |
| CVE-2020-27635 | 2023-10-10 | In PicoTCP 1.7.0, TCP ISNs are improperly random. |
| CVE-2020-27636 | 2023-10-10 | In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random. |
| CVE-2023-31096 | 2023-10-10 | An issue was discovered in Broadcom) LSI PCI-SV92EX Soft Modem... |
| CVE-2023-36126 | 2023-10-10 | There is a Cross Site Scripting (XSS) vulnerability in the... |
| CVE-2023-36127 | 2023-10-10 | User enumeration is found in in PHPJabbers Appointment Scheduler 3.0.... |
| CVE-2023-42189 | 2023-10-10 | Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK... |
| CVE-2023-43896 | 2023-10-10 | A buffer overflow in Macrium Reflect 8.1.7544 and below allows... |
| CVE-2023-44763 | 2023-10-10 | Concrete CMS v9.2.1 is affected by an Arbitrary File Upload... |
| CVE-2023-44826 | 2023-10-10 | Cross Site Scripting vulnerability in ZenTaoPMS v.18.6 allows a local... |
| CVE-2023-44827 | 2023-10-10 | An issue in ZenTao Community Edition v.18.6 and before, ZenTao... |
| CVE-2023-44846 | 2023-10-10 | An issue in SeaCMS v.12.8 allows an attacker to execute... |
| CVE-2023-44847 | 2023-10-10 | An issue in SeaCMS v.12.8 allows an attacker to execute... |
| CVE-2023-44848 | 2023-10-10 | An issue in SeaCMS v.12.8 allows an attacker to execute... |
| CVE-2023-44959 | 2023-10-10 | An issue found in D-Link DSL-3782 v.1.03 and before allows... |
| CVE-2023-45208 | 2023-10-10 | A command injection in the parsing_xml_stasurvey function inside libcgifunc.so of... |
| CVE-2023-45312 | 2023-10-10 | In the mtproto_proxy (aka MTProto proxy) component through 0.7.2 for... |
| CVE-2023-44487 | 2023-10-10 | The HTTP/2 protocol allows a denial of service (server resource... |
| CVE-2023-5471 | 2023-10-10 | codeprojects Farmacia index.php sql injection |
| CVE-2023-40310 | 2023-10-10 | Missing XML Validation vulnerability in SAP PowerDesigner Client BPMN2 import |
| CVE-2023-41365 | 2023-10-10 | Information Disclosure vulnerability in SAP Business One (B1i) |
| CVE-2023-42473 | 2023-10-10 | Missing Authorization Check In S/4HANA (Manage Withholding Tax Items) |
| CVE-2023-42474 | 2023-10-10 | Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Web Intelligence |
| CVE-2023-42475 | 2023-10-10 | Information Disclosure Vulnerability in Statutory Reporting |
| CVE-2023-42477 | 2023-10-10 | Server-Side Request Forgery in SAP NetWeaver AS Java (GRMG Heartbeat application) |
| CVE-2023-5468 | 2023-10-10 | The Slick Contact Forms plugin for WordPress is vulnerable to... |
| CVE-2023-5467 | 2023-10-10 | The GEO my WordPress plugin for WordPress is vulnerable to... |