Lista CVE - 2023 / Ottobre
Visualizzazione 401 - 500 di 2690 CVE per Ottobre 2023 (Pagina 5 di 27)
ID CVE | Data | Titolo |
---|---|---|
CVE-2023-45303 | 2023-10-06 | ThingsBoard before 3.5 allows Server-Side Template Injection if users are... |
CVE-2023-45311 | 2023-10-06 | fsevents before 1.2.11 depends on the https://fsevents-binaries.s3-us-west-2.amazonaws.com URL, which might... |
CVE-2023-45322 | 2023-10-06 | libxml2 through 2.11.5 has a use-after-free that can only occur... |
CVE-2023-26153 | 2023-10-06 | Versions of the package geokit-rails before 2.5.0 are vulnerable to... |
CVE-2023-40556 | 2023-10-06 | WordPress Schedule Posts Calendar Plugin <= 5.2 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2015-10126 | 2023-10-06 | Easy2Map Photos Plugin sql injection |
CVE-2023-4530 | 2023-10-06 | SQLi in Turna Media's Advertising Administration Panel |
CVE-2023-4469 | 2023-10-06 | The Profile Extra Fields by BestWebSoft plugin for WordPress is... |
CVE-2023-45244 | 2023-10-06 | Sensitive information disclosure and manipulation due to missing authorization. The... |
CVE-2023-45245 | 2023-10-06 | Sensitive information disclosure due to missing authorization. The following products... |
CVE-2023-45246 | 2023-10-06 | Sensitive information disclosure and manipulation due to missing authorization. The... |
CVE-2023-36465 | 2023-10-06 | Decidim has broken access control in templates |
CVE-2023-40008 | 2023-10-06 | WordPress Simple Org Chart Plugin <= 2.3.4 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-40671 | 2023-10-06 | WordPress DX-auto-save-images Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-25480 | 2023-10-06 | WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor Plugin <= 1.24.1 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2022-47175 | 2023-10-06 | WordPress Royal Elementor Addons Plugin <= 1.3.75 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-25033 | 2023-10-06 | WordPress Social Share Boost Plugin <= 4.5 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-27448 | 2023-10-06 | WordPress MakeStories (for Google Web Stories) Plugin <= 2.8.0 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-27615 | 2023-10-06 | WordPress WP Super Minify Plugin <= 1.5.1 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-28791 | 2023-10-06 | WordPress Simple Org Chart Plugin <= 2.3.4 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-29235 | 2023-10-06 | WordPress Maintenance Switch Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-35897 | 2023-10-06 | IBM Spectrum Protect code execution |
CVE-2023-43058 | 2023-10-06 | IBM Robotic Process Automation privilege escalation |
CVE-2023-38703 | 2023-10-06 | PJSIP has use-after-free vulnerability in SRTP media transport |
CVE-2023-42445 | 2023-10-06 | Possible local file exfiltration by XML External entity injection |
CVE-2023-43810 | 2023-10-06 | opentelemetry-instrumentation Denial of Service vulnerability due to unbound cardinality metrics |
CVE-2023-41650 | 2023-10-06 | WordPress Remove/hide Author, Date, Category Like Entry-Meta Plugin <= 2.1 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-41654 | 2023-10-06 | WordPress authLdap Plugin <= 2.5.8 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-41659 | 2023-10-06 | WordPress Responsive Gallery Grid Plugin <= 2.3.10 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-41732 | 2023-10-06 | WordPress CP Blocks Plugin <= 1.0.20 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-41801 | 2023-10-06 | WordPress AWP Classifieds Plugin <= 4.3 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-40607 | 2023-10-06 | WordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-41950 | 2023-10-06 | WordPress Laposta Signup Basic Plugin <= 1.4.1 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-44146 | 2023-10-06 | WordPress Checkfront Online Booking System Plugin <= 3.6 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-44243 | 2023-10-06 | WordPress Instant CSS Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-44233 | 2023-10-06 | WordPress FooGallery Plugin <= 2.2.44 is vulnerable to Cross Site Request Forgery (CSRF) |
CVE-2023-39928 | 2023-10-06 | A use-after-free vulnerability exists in the MediaRecorder API of Webkit... |
CVE-2023-23365 | 2023-10-06 | Music Station |
CVE-2023-23366 | 2023-10-06 | Music Station |
CVE-2023-23370 | 2023-10-06 | QVPN Device Client |
CVE-2023-23371 | 2023-10-06 | QVPN Device Client |
CVE-2023-32971 | 2023-10-06 | QTS, QuTS hero, QuTScloud |
CVE-2023-32972 | 2023-10-06 | QTS, QuTS hero, QuTScloud |
CVE-2023-44384 | 2023-10-06 | Discourse-Jira could make SSRF attack by setting Jira URL to an arbitrary location |
CVE-2023-45239 | 2023-10-06 | A lack of input validation exists in tac_plus prior to... |
CVE-2023-5214 | 2023-10-06 | CVE-2023-5214 - Privilege Escalation in Puppet Bolt |
CVE-2023-5366 | 2023-10-06 | Openvswitch don't match packets on nd_target field |
CVE-2023-21244 | 2023-10-06 | In visitUris of Notification.java, there is a possible bypass of... |
CVE-2023-21252 | 2023-10-06 | In validatePassword of WifiConfigurationUtil.java, there is a possible way to... |
CVE-2023-21253 | 2023-10-06 | In multiple locations, there is a possible way to crash... |
CVE-2023-21266 | 2023-10-06 | In multiple functions of ActivityManagerService.java, there is a possible way... |
CVE-2023-21291 | 2023-10-06 | In visitUris of Notification.java, there is a possible way to... |
CVE-2023-5452 | 2023-10-06 | Cross-site Scripting (XSS) - Stored in snipe/snipe-it |
CVE-2023-3725 | 2023-10-06 | Potential buffer overflow vulnerability in the Zephyr CANbus subsystem |
CVE-2022-34355 | 2023-10-06 | IBM Jazz Foundation information disclosure |
CVE-2022-33160 | 2023-10-06 | IBM Security Directory Suite information disclosure |
CVE-2023-5182 | 2023-10-06 | Sensitive data could be exposed in logs of subiquity version... |
CVE-2023-43615 | 2023-10-07 | Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has... |
CVE-2023-45199 | 2023-10-07 | Mbed TLS 3.2.x through 3.4.x before 3.5 has a Buffer... |
CVE-2023-40631 | 2023-10-08 | In Dialer, there is a possible missing permission check. This... |
CVE-2023-40632 | 2023-10-08 | In jpg driver, there is a possible use after free... |
CVE-2023-40633 | 2023-10-08 | In phasecheckserver, there is a possible missing permission check. This... |
CVE-2023-40634 | 2023-10-08 | In phasechecksercer, there is a possible missing permission check. This... |
CVE-2023-40635 | 2023-10-08 | In linkturbo, there is a possible missing permission check. This... |
CVE-2023-40636 | 2023-10-08 | In telecom service, there is a possible way to write... |
CVE-2023-40637 | 2023-10-08 | In telecom service, there is a possible missing permission check.... |
CVE-2023-40638 | 2023-10-08 | In Telecom service, there is a possible missing permission check.... |
CVE-2023-40639 | 2023-10-08 | In SoundRecorder service, there is a possible missing permission check.... |
CVE-2023-40640 | 2023-10-08 | In SoundRecorder service, there is a possible missing permission check.... |
CVE-2023-40641 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40642 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40643 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40644 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40645 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40646 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40647 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40648 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40649 | 2023-10-08 | In Messaging, there is a possible missing permission check. This... |
CVE-2023-40650 | 2023-10-08 | In Telecom service, there is a possible missing permission check.... |
CVE-2023-40651 | 2023-10-08 | In urild service, there is a possible out of bounds... |
CVE-2023-40652 | 2023-10-08 | In jpg driver, there is a possible out of bounds... |
CVE-2023-40653 | 2023-10-08 | In FW-PackageManager, there is a possible missing permission check. This... |
CVE-2023-40654 | 2023-10-08 | In FW-PackageManager, there is a possible missing permission check. This... |
CVE-2022-36228 | 2023-10-09 | Nokelock Smart padlock O1 Version 5.3.0 is vulnerable to Insecure... |
CVE-2023-39854 | 2023-10-09 | The web interface of ATX Ucrypt through 3.5 allows authenticated... |
CVE-2023-43271 | 2023-10-09 | Incorrect access control in 70mai a500s v1.2.119 allows attackers to... |
CVE-2023-43899 | 2023-10-09 | hansun CMS v1.0 was discovered to contain a SQL injection... |
CVE-2023-44467 | 2023-10-09 | langchain_experimental (aka LangChain Experimental) in LangChain before 0.0.306 allows an... |
CVE-2023-44811 | 2023-10-09 | Cross Site Request Forgery (CSRF) vulnerability in MooSocial v.3.1.8 allows... |
CVE-2023-44812 | 2023-10-09 | Cross Site Scripting (XSS) vulnerability in mooSocial v.3.1.8 allows a... |
CVE-2023-44813 | 2023-10-09 | Cross Site Scripting (XSS) vulnerability in mooSocial v.3.1.8 allows a... |
CVE-2023-44821 | 2023-10-09 | Gifsicle through 1.94, if deployed in a way that allows... |
CVE-2023-45349 | 2023-10-09 | Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.34.7,... |
CVE-2023-45350 | 2023-10-09 | Atos Unify OpenScape 4000 Manager V10 R1 before V10 R1.42.1... |
CVE-2023-45351 | 2023-10-09 | Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.1,... |
CVE-2023-45352 | 2023-10-09 | Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0... |
CVE-2023-45353 | 2023-10-09 | Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0... |
CVE-2023-45354 | 2023-10-09 | Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0... |
CVE-2023-45355 | 2023-10-09 | Atos Unify OpenScape 4000 Platform V10 R1 before Hotfix V10... |
CVE-2023-45356 | 2023-10-09 | Atos Unify OpenScape 4000 Platform V10 R1 before Hotfix V10... |