Lista CVE - 2023 / Dicembre
Visualizzazione 601 - 700 di 2674 CVE per Dicembre 2023 (Pagina 7 di 27)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-5761 | 2023-12-07 | The Burst Statistics – Privacy-Friendly Analytics for WordPress plugin for... |
| CVE-2023-5714 | 2023-12-07 | The System Dashboard plugin for WordPress is vulnerable to unauthorized... |
| CVE-2023-5712 | 2023-12-07 | The System Dashboard plugin for WordPress is vulnerable to unauthorized... |
| CVE-2023-5713 | 2023-12-07 | The System Dashboard plugin for WordPress is vulnerable to unauthorized... |
| CVE-2023-5710 | 2023-12-07 | The System Dashboard plugin for WordPress is vulnerable to unauthorized... |
| CVE-2023-28017 | 2023-12-07 | HCL Connections is vulnerable to cross-site scripting |
| CVE-2023-6568 | 2023-12-07 | Reflected XSS via Content-Type Header in mlflow/mlflow |
| CVE-2023-49225 | 2023-12-07 | A cross-site-scripting vulnerability exists in Ruckus Access Point products (ZoneDirector,... |
| CVE-2023-50164 | 2023-12-07 | Apache Struts: File upload component had a directory traversal vulnerability |
| CVE-2023-49746 | 2023-12-07 | WordPress SpeedyCache Plugin <= 1.1.2 is vulnerable to Server Side Request Forgery (SSRF) |
| CVE-2023-46641 | 2023-12-07 | WordPress 12 Step Meeting List Plugin <= 3.14.24 is vulnerable to Server Side Request Forgery (SSRF) |
| CVE-2023-41804 | 2023-12-07 | WordPress Starter Templates Plugin <= 3.2.4 is vulnerable to Server Side Request Forgery (SSRF) |
| CVE-2022-45362 | 2023-12-07 | WordPress Paytm Payment Gateway Plugin <= 2.7.0 is vulnerable to Server Side Request Forgery (SSRF) |
| CVE-2023-35909 | 2023-12-07 | WordPress Ninja Forms Plugin <= 3.6.25 is vulnerable to Denial of Service Attack |
| CVE-2023-35039 | 2023-12-07 | WordPress Password Reset with Code for WordPress REST API Plugin <= 0.0.15 is vulnerable to Broken Authentication |
| CVE-2023-48325 | 2023-12-07 | WordPress Landing Page Builder Plugin <= 1.5.1.5 is vulnerable to Open Redirection |
| CVE-2023-47779 | 2023-12-07 | WordPress Integration for Contact Form 7 and Constant Contact Plugin <= 1.1.4 is vulnerable to Open Redirection |
| CVE-2023-47548 | 2023-12-07 | WordPress Integrate Google Drive Plugin <= 1.3.2 is vulnerable to Open Redirection |
| CVE-2023-45762 | 2023-12-07 | WordPress Responsive Column Widgets Plugin <= 1.2.7 is vulnerable to Open Redirection |
| CVE-2023-39172 | 2023-12-07 | SENEC: Storage Box V1,V2 and V3 transmitting sensitive data unencrypted |
| CVE-2023-39167 | 2023-12-07 | SENEC: Storage Box V1,V2 and V3 affected by improper access control vulnerability |
| CVE-2023-39169 | 2023-12-07 | SENEC: Storage Box V1,V2 and V3 using default credentials |
| CVE-2023-39171 | 2023-12-07 | SENEC Storage Box V1,V2 and V3 accidentially expose a management interface |
| CVE-2023-6588 | 2023-12-07 | Offline mode is always enabled, even if permission disallows it,... |
| CVE-2023-6333 | 2023-12-07 | Cross-site Scripting in ControlByWeb Relays |
| CVE-2023-6574 | 2023-12-07 | Byzoro Smart S20 HTTP POST Request updateos.php unrestricted upload |
| CVE-2023-4486 | 2023-12-07 | Uncontrolled Resource Consumption in Metasys and Facility Explorer |
| CVE-2023-6575 | 2023-12-07 | Byzoro S210 HTTP POST Request repair.php sql injection |
| CVE-2023-6576 | 2023-12-07 | Byzoro S210 HTTP POST Request uploadfile.php unrestricted upload |
| CVE-2023-6577 | 2023-12-07 | Byzoro PatrolFlow 2530Pro mailsendview.php path traversal |
| CVE-2023-35618 | 2023-12-07 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
| CVE-2023-38174 | 2023-12-07 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
| CVE-2023-36880 | 2023-12-07 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
| CVE-2023-6578 | 2023-12-07 | Software AG WebMethods access control |
| CVE-2023-6579 | 2023-12-07 | osCommerce POST Parameter shopping-cart sql injection |
| CVE-2023-6580 | 2023-12-07 | D-Link DIR-846 QoS POST deserialization |
| CVE-2023-6581 | 2023-12-07 | D-Link DAR-7000 workidajax.php sql injection |
| CVE-2023-5058 | 2023-12-07 | Improper Input Validation in the processing of user-supplied splash screen... |
| CVE-2023-4122 | 2023-12-07 | Student Information System v1.0 - Insecure File Upload |
| CVE-2023-5008 | 2023-12-07 | Student Information System v1.0 - Unauthenticated SQL Injection |
| CVE-2023-43305 | 2023-12-08 | An issue in studio kent mini-app on Line v13.6.1 allows... |
| CVE-2023-43742 | 2023-12-08 | An authentication bypass in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual,... |
| CVE-2023-43744 | 2023-12-08 | An OS command injection vulnerability in Zultys MX-SE, MX-SE II,... |
| CVE-2023-45866 | 2023-12-08 | Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral... |
| CVE-2023-46157 | 2023-12-08 | File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest... |
| CVE-2023-46493 | 2023-12-08 | Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows... |
| CVE-2023-46495 | 2023-12-08 | Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.8... |
| CVE-2023-46496 | 2023-12-08 | Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows... |
| CVE-2023-46497 | 2023-12-08 | Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows... |
| CVE-2023-46498 | 2023-12-08 | An issue in EverShop NPM versions before v.1.0.0-rc.8 allows a... |
| CVE-2023-46499 | 2023-12-08 | Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.5... |
| CVE-2023-48122 | 2023-12-08 | An issue in microweber v.2.0.1 and fixed in v.2.0.4 allows... |
| CVE-2023-48929 | 2023-12-08 | Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is... |
| CVE-2023-49007 | 2023-12-08 | In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a... |
| CVE-2023-49443 | 2023-12-08 | DoraCMS v2.1.8 was discovered to re-use the same code for... |
| CVE-2023-49444 | 2023-12-08 | An arbitrary file upload vulnerability in DoraCMS v2.1.8 allow attackers... |
| CVE-2023-49484 | 2023-12-08 | Dreamer CMS v4.1.3 was discovered to contain a cross-site scripting... |
| CVE-2023-49486 | 2023-12-08 | JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2023-49487 | 2023-12-08 | JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2023-43743 | 2023-12-08 | A SQL injection vulnerability in Zultys MX-SE, MX-SE II, MX-E,... |
| CVE-2023-46494 | 2023-12-08 | Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.5... |
| CVE-2023-48928 | 2023-12-08 | Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is... |
| CVE-2023-49485 | 2023-12-08 | JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2023-6599 | 2023-12-08 | Missing Standardized Error Handling Mechanism in microweber/microweber |
| CVE-2023-26158 | 2023-12-08 | All versions of the package mockjs are vulnerable to Prototype... |
| CVE-2023-32460 | 2023-12-08 | Dell PowerEdge BIOS contains an improper privilege management security vulnerability.... |
| CVE-2023-6607 | 2023-12-08 | Tongda OA 2017 delete.php sql injection |
| CVE-2023-6146 | 2023-12-08 | Stored XSS Vulnerability in QualysGuard VM/PC |
| CVE-2023-6245 | 2023-12-08 | Infinite decoding loop through specially crafted payload |
| CVE-2023-6608 | 2023-12-08 | Tongda OA 2017 delete.php sql injection |
| CVE-2023-6609 | 2023-12-08 | osCommerce all-products cross site scripting |
| CVE-2023-6611 | 2023-12-08 | Tongda OA 2017 delete.php sql injection |
| CVE-2023-6612 | 2023-12-08 | Totolink X5000R cstecgi.cgi setWizardCfg os command injection |
| CVE-2023-6613 | 2023-12-08 | Typecho Logo options-theme.php cross site scripting |
| CVE-2023-48397 | 2023-12-08 | In Init of protocolcalladapter.cpp, there is a possible out of... |
| CVE-2023-48398 | 2023-12-08 | In ProtocolNetAcBarringInfo::ProtocolNetAcBarringInfo() of protocolnetadapter.cpp, there is a possible out of... |
| CVE-2023-48399 | 2023-12-08 | In ProtocolMiscATCommandAdapter::Init() of protocolmiscadapter.cpp, there is a possible out of... |
| CVE-2023-48401 | 2023-12-08 | In GetSizeOfEenlRecords of protocoladapter.cpp, there is a possible out of... |
| CVE-2023-48402 | 2023-12-08 | In ppcfw_enable of ppcfw.c, there is a possible EoP due... |
| CVE-2023-48403 | 2023-12-08 | In sms_DecodeCodedTpMsg of sms_PduCodec.c, there is a possible out of... |
| CVE-2023-48404 | 2023-12-08 | In ProtocolMiscCarrierConfigSimInfoIndAdapter of protocolmiscadapter.cpp, there is a possible out of... |
| CVE-2023-48405 | 2023-12-08 | there is a possible way for the secure world to... |
| CVE-2023-48406 | 2023-12-08 | there is a possible permanent DoS or way for the... |
| CVE-2023-48407 | 2023-12-08 | there is a possible DCK won't be deleted after factory... |
| CVE-2023-48408 | 2023-12-08 | In ProtocolNetSimFileInfoAdapter() of protocolnetadapter.cpp, there is a possible out of... |
| CVE-2023-48409 | 2023-12-08 | In gpu_pixel_handle_buffer_liveness_update_ioctl of private/google-modules/gpu/mali_kbase/mali_kbase_core_linux.c, there is a possible out of... |
| CVE-2023-48410 | 2023-12-08 | In cd_ParseMsg of cd_codec.c, there is a possible out of... |
| CVE-2023-48411 | 2023-12-08 | In SignalStrengthAdapter::FillGsmSignalStrength() of protocolmiscadapter.cpp, there is a possible out of... |
| CVE-2023-48412 | 2023-12-08 | In private_handle_t of mali_gralloc_buffer.h, there is a possible information leak... |
| CVE-2023-48413 | 2023-12-08 | In Init of protocolnetadapter.cpp, there is a possible out of... |
| CVE-2023-48414 | 2023-12-08 | In the Pixel Camera Driver, there is a possible use... |
| CVE-2023-48415 | 2023-12-08 | In Init of protocolembmsadapter.cpp, there is a possible out of... |
| CVE-2023-48416 | 2023-12-08 | In multiple locations, there is a possible null dereference due... |
| CVE-2023-48420 | 2023-12-08 | there is a possible use after free due to a... |
| CVE-2023-48421 | 2023-12-08 | In gpu_pixel_handle_buffer_liveness_update_ioctl of private/google-modules/gpu/mali_kbase/platform/pixel/pixel_gpu_slc.c, there is a possible out of... |
| CVE-2023-48422 | 2023-12-08 | In Init of protocolnetadapter.cpp, there is a possible out of... |
| CVE-2023-48423 | 2023-12-08 | In dhcp4_SetPDNAddress of dhcp4_Main.c, there is a possible out of... |
| CVE-2023-6614 | 2023-12-08 | Typecho Page manage-pages.php backdoor |
| CVE-2023-47565 | 2023-12-08 | Legacy VioStor NVR |
| CVE-2023-32975 | 2023-12-08 | QTS, QuTS hero |