Lista CVE - 2023 / Dicembre
Visualizzazione 2201 - 2300 di 2674 CVE per Dicembre 2023 (Pagina 23 di 27)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-7091 | 2023-12-24 | Dreamer CMS uploadFile unrestricted upload |
| CVE-2023-7101 | 2023-12-24 | Arbitrary Code Execution (ACE) Vulnerability |
| CVE-2023-7102 | 2023-12-24 | Remote Code Execution (RCE) Vulnerability |
| CVE-2023-7092 | 2023-12-24 | Uniway UW-302VP Admin Web Interface wlan_basic_set.cgi cross-site request forgery |
| CVE-2023-7093 | 2023-12-24 | KylinSoft kylin-system-updater com.kylin.systemupgrade Service UpgradeStrategiesDbus.py os command injection |
| CVE-2022-34267 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. Adding... |
| CVE-2022-34268 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. /clientLogin... |
| CVE-2022-34269 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. An... |
| CVE-2022-34270 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. Regular... |
| CVE-2022-39818 | 2023-12-25 | In NOKIA NFM-T R19.9, an OS Command Injection vulnerability occurs... |
| CVE-2022-39820 | 2023-12-25 | In Network Element Manager in NOKIA NFM-T R19.9, an Unprotected... |
| CVE-2022-39822 | 2023-12-25 | In NOKIA NFM-T R19.9, a SQL Injection vulnerability occurs in... |
| CVE-2022-41760 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. Relative Path... |
| CVE-2022-41761 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. An Absolute... |
| CVE-2022-41762 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. Multiple Reflected... |
| CVE-2022-43675 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. Reflected XSS... |
| CVE-2023-27151 | 2023-12-25 | openCRX 5.2.0 was discovered to contain an HTML injection vulnerability... |
| CVE-2023-28872 | 2023-12-25 | Support Assistant in NCP Secure Enterprise Client before 13.10 allows... |
| CVE-2023-30451 | 2023-12-25 | In TYPO3 11.5.24, the filelist component allows attackers (who have... |
| CVE-2023-31224 | 2023-12-25 | There is broken access control during authentication in Jamf Pro... |
| CVE-2023-31289 | 2023-12-25 | Pexip Infinity before 31.2 has Improper Input Validation for signalling,... |
| CVE-2023-31297 | 2023-12-25 | An issue was discovered in SESAMI planfocus CPTO (Cash Point... |
| CVE-2023-31455 | 2023-12-25 | Pexip Infinity before 31.2 has Improper Input Validation for RTCP,... |
| CVE-2023-34198 | 2023-12-25 | In Stormshield Network Security (SNS) 1.0.0 through 3.7.36 before 3.7.37,... |
| CVE-2023-36485 | 2023-12-25 | The workflow-engine of ILIAS before 7.23 and 8 before 8.3... |
| CVE-2023-36486 | 2023-12-25 | The workflow-engine of ILIAS before 7.23 and 8 before 8.3... |
| CVE-2023-37185 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer... |
| CVE-2023-37186 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer... |
| CVE-2023-37187 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer... |
| CVE-2023-37188 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer... |
| CVE-2023-37225 | 2023-12-25 | Pexip Infinity before 32 allows Webapp1 XSS via preconfigured links. |
| CVE-2023-38321 | 2023-12-25 | OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and... |
| CVE-2023-38826 | 2023-12-25 | A Cross Site Scripting (XSS) vulnerability exists in Follet Learning... |
| CVE-2023-41165 | 2023-12-25 | An issue was discovered in Stormshield Network Security (SNS) 3.7.0... |
| CVE-2023-47247 | 2023-12-25 | In SysAid On-Premise before 23.3.34, there is an edge case... |
| CVE-2023-48650 | 2023-12-25 | Concrete CMS before 8.5.14 and 9 before 9.2.3 is vulnerable... |
| CVE-2023-48651 | 2023-12-25 | Concrete CMS 9 before 9.2.3 is vulnerable to Cross Site... |
| CVE-2023-48652 | 2023-12-25 | Concrete CMS 9 before 9.2.3 is vulnerable to Cross Site... |
| CVE-2023-48653 | 2023-12-25 | Concrete CMS before 8.5.14 and 9 before 9.2.3 allows Cross... |
| CVE-2023-48654 | 2023-12-25 | One Identity Password Manager before 5.13.1 allows Kiosk Escape. This... |
| CVE-2023-49226 | 2023-12-25 | An issue was discovered in Peplink Balance Two before 8.4.0.... |
| CVE-2023-49328 | 2023-12-25 | On a Wolters Kluwer B.POINT 23.70.00 server running Linux on... |
| CVE-2023-49337 | 2023-12-25 | Concrete CMS before 9.2.3 allows Stored XSS on the Admin... |
| CVE-2023-49944 | 2023-12-25 | The Challenge Response feature of BeyondTrust Privilege Management for Windows... |
| CVE-2023-50658 | 2023-12-25 | The jose2go component before 1.6.0 for Go allows attackers to... |
| CVE-2023-51772 | 2023-12-25 | One Identity Password Manager before 5.13.1 allows Kiosk Escape. This... |
| CVE-2023-51773 | 2023-12-25 | BACnet Stack before 1.3.2 has a decode function APDU buffer... |
| CVE-2023-51774 | 2023-12-25 | The json-jwt (aka JSON::JWT) gem 1.16.3 for Ruby sometimes allows... |
| CVE-2023-51775 | 2023-12-25 | The jose4j component before 0.9.4 for Java allows attackers to... |
| CVE-2023-51779 | 2023-12-25 | bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has... |
| CVE-2023-51780 | 2023-12-25 | An issue was discovered in the Linux kernel before 6.6.8.... |
| CVE-2023-51781 | 2023-12-25 | An issue was discovered in the Linux kernel before 6.6.8.... |
| CVE-2023-51782 | 2023-12-25 | An issue was discovered in the Linux kernel before 6.6.8.... |
| CVE-2023-40236 | 2023-12-25 | In Pexip VMR self-service portal before 3, the same SSH... |
| CVE-2023-47091 | 2023-12-25 | An issue was discovered in Stormshield Network Security (SNS) SNS... |
| CVE-2023-49954 | 2023-12-25 | The CRM Integration in 3CX before 18.0.9.23 and 20 before... |
| CVE-2023-51771 | 2023-12-25 | In MicroHttpServer (aka Micro HTTP Server) through a8ab029, _ParseHeader in... |
| CVE-2023-7094 | 2023-12-25 | Netentsec NS-ASG Application Security Gateway nsasg6.0.tgz information disclosure |
| CVE-2023-7095 | 2023-12-25 | Totolink A7100RU HTTP POST Request main buffer overflow |
| CVE-2023-7096 | 2023-12-25 | code-projects Faculty Management System crud.php sql injection |
| CVE-2023-7097 | 2023-12-25 | code-projects Water Billing System addbill.php sql injection |
| CVE-2023-7098 | 2023-12-25 | icret EasyImages hide.php path traversal |
| CVE-2023-43064 | 2023-12-25 | IBM i code execution |
| CVE-2021-38927 | 2023-12-25 | IBM Aspera Console cross-site scripting |
| CVE-2023-49880 | 2023-12-25 | IBM Financial Transaction Manager for SWIFT Services data manipulation |
| CVE-2023-7099 | 2023-12-25 | PHPGurukul Nipah Virus Testing Management System bwdates-report-result.php sql injection |
| CVE-2023-7100 | 2023-12-25 | PHPGurukul Restaurant Table Booking System bwdates-report-details.php sql injection |
| CVE-2023-7104 | 2023-12-25 | SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow |
| CVE-2023-7105 | 2023-12-25 | code-projects E-Commerce Website index_search.php sql injection |
| CVE-2023-7106 | 2023-12-25 | code-projects E-Commerce Website sql injection |
| CVE-2023-7107 | 2023-12-25 | code-projects E-Commerce Website user_signup.php sql injection |
| CVE-2023-27150 | 2023-12-26 | openCRX 5.2.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2023-28616 | 2023-12-26 | An issue was discovered in Stormshield Network Security (SNS) before... |
| CVE-2023-48003 | 2023-12-26 | An open redirect through HTML injection in user messages in... |
| CVE-2023-49438 | 2023-12-26 | An open redirect vulnerability in the python package Flask-Security-Too <=5.3.2... |
| CVE-2023-49949 | 2023-12-26 | Passwork before 6.2.0 allows remote authenticated users to bypass 2FA... |
| CVE-2023-51090 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow... |
| CVE-2023-51091 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow... |
| CVE-2023-51092 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow... |
| CVE-2023-51093 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow... |
| CVE-2023-51094 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution... |
| CVE-2023-51095 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow... |
| CVE-2023-51097 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow... |
| CVE-2023-51098 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection... |
| CVE-2023-51099 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection... |
| CVE-2023-51100 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection... |
| CVE-2023-51102 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow... |
| CVE-2023-51103 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex... |
| CVE-2023-51105 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex... |
| CVE-2023-51106 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in mupdf... |
| CVE-2023-51107 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex... |
| CVE-2023-52086 | 2023-12-26 | resumable.php (aka PHP backend for resumable.js) 0.1.4 before 3c6dbf5 allows... |
| CVE-2023-52096 | 2023-12-26 | SteVe Community ocpp-jaxb before 0.0.8 generates invalid timestamps such as... |
| CVE-2023-51101 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow... |
| CVE-2023-51104 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex... |
| CVE-2023-7108 | 2023-12-26 | code-projects E-Commerce Website user_signup.php cross site scripting |
| CVE-2023-7109 | 2023-12-26 | code-projects Library Management System login.php sql injection |
| CVE-2023-7110 | 2023-12-26 | code-projects Library Management System login.php sql injection |
| CVE-2023-7111 | 2023-12-26 | code-projects Library Management System index.php sql injection |
| CVE-2023-51654 | 2023-12-26 | Improper link resolution before file access ('Link Following') issue exists... |