Lista CVE - 2023 / Maggio
Visualizzazione 1801 - 1900 di 2420 CVE per Maggio 2023 (Pagina 19 di 25)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-1209 | 2023-05-23 | Cross-Site Scripting (XSS) vulnerabilities exist in ServiceNow records allowing an... |
| CVE-2023-1837 | 2023-05-23 | Missing Authentication for critical function vulnerability in HYPR Server allows... |
| CVE-2023-2702 | 2023-05-23 | IDOR in Finex Media's Competition Management System |
| CVE-2023-2703 | 2023-05-23 | Information Disclosure in Finex Media's Competition Management System |
| CVE-2023-1508 | 2023-05-23 | SQLi in AdamPOS's Mobilmen Terminal Software |
| CVE-2023-28015 | 2023-05-23 | HCL Domino AppDev Pack is susceptible to a User Account Enumeration vulnerability |
| CVE-2023-32697 | 2023-05-23 | Sqlite-jdbc vulnerable to remote code execution when JDBC url is attacker controlled |
| CVE-2023-2498 | 2023-05-23 | The Go Pricing - WordPress Responsive Pricing Tables plugin for... |
| CVE-2023-2496 | 2023-05-23 | The Go Pricing - WordPress Responsive Pricing Tables plugin for... |
| CVE-2023-2494 | 2023-05-23 | The Go Pricing - WordPress Responsive Pricing Tables plugin for... |
| CVE-2021-25748 | 2023-05-24 | Ingress-nginx `path` sanitization can be bypassed with newline character |
| CVE-2021-25749 | 2023-05-24 | runAsNonRoot logic bypass for Windows containers |
| CVE-2022-30025 | 2023-05-24 | SQL injection in "/Framewrk/Home.jsp" file (POST method) in tCredence Analytics... |
| CVE-2022-41221 | 2023-05-24 | The client in OpenText Archive Center Administration through 21.2 allows... |
| CVE-2022-42225 | 2023-05-24 | Jumpserver 2.10.0 <= version <= 2.26.0 contains multiple stored XSS... |
| CVE-2023-1174 | 2023-05-24 | [minikube] Network Port exposure in minikube running on macOS using Docker driver |
| CVE-2023-1944 | 2023-05-24 | [minikube] ssh server with default password |
| CVE-2023-25598 | 2023-05-24 | A vulnerability in the conferencing component of Mitel MiVoice Connect... |
| CVE-2023-25599 | 2023-05-24 | A vulnerability in the conferencing component of Mitel MiVoice Connect... |
| CVE-2023-33248 | 2023-05-24 | Amazon Alexa software version 8960323972 on Echo Dot 2nd generation... |
| CVE-2023-33785 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Rack... |
| CVE-2023-33786 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Circuit... |
| CVE-2023-33787 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Tenant... |
| CVE-2023-33788 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Providers... |
| CVE-2023-33789 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Contact... |
| CVE-2023-33790 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Locations... |
| CVE-2023-33791 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Provider... |
| CVE-2023-33792 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Site... |
| CVE-2023-33793 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Power... |
| CVE-2023-33794 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Tenants... |
| CVE-2023-33795 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Contact... |
| CVE-2023-33796 | 2023-05-24 | A vulnerability in Netbox v3.5.1 allows unauthenticated attackers to execute... |
| CVE-2023-33797 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Sites... |
| CVE-2023-33798 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Rack... |
| CVE-2023-33799 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Contacts... |
| CVE-2023-33800 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in the Create Regions... |
| CVE-2023-33829 | 2023-05-24 | A stored cross-site scripting (XSS) vulnerability in Cloudogu GmbH SCM... |
| CVE-2023-33980 | 2023-05-24 | Bramble Synchronisation Protocol (BSP) in Briar before 1.4.22 allows attackers... |
| CVE-2023-33981 | 2023-05-24 | Briar before 1.4.22 allows attackers to spoof other users' messages... |
| CVE-2023-33982 | 2023-05-24 | Bramble Handshake Protocol (BHP) in Briar before 1.5.3 is not... |
| CVE-2023-33983 | 2023-05-24 | The Introduction Client in Briar through 1.5.3 does not implement... |
| CVE-2023-2859 | 2023-05-24 | Code Injection in nilsteampassnet/teampass |
| CVE-2023-29721 | 2023-05-24 | SofaWiki <= 3.8.9 has a file upload vulnerability that leads... |
| CVE-2023-31457 | 2023-05-24 | A vulnerability in the Headquarters server component of Mitel MiVoice... |
| CVE-2023-31458 | 2023-05-24 | A vulnerability in the Edge Gateway component of Mitel MiVoice... |
| CVE-2023-31459 | 2023-05-24 | A vulnerability in the Connect Mobility Router component of Mitel... |
| CVE-2023-31460 | 2023-05-24 | A vulnerability in the Connect Mobility Router component of MiVoice... |
| CVE-2023-31595 | 2023-05-24 | IC Realtime ICIP-P2012T 2.420 is vulnerable to Incorrect Access Control... |
| CVE-2023-31748 | 2023-05-24 | Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges... |
| CVE-2023-33009 | 2023-05-24 | A buffer overflow vulnerability in the notification function in Zyxel... |
| CVE-2023-33010 | 2023-05-24 | A buffer overflow vulnerability in the ID processing function in... |
| CVE-2023-1424 | 2023-05-24 | Denial-of-Service and Remote Code Execution Vulnerability in MELSEC Series CPU module |
| CVE-2022-0357 | 2023-05-24 | Improper Quoting Path Issue in Bitdefender Total Security |
| CVE-2023-2862 | 2023-05-24 | SiteServer CMS search cross site scripting |
| CVE-2023-2863 | 2023-05-24 | Simple Design Daily Journal SQLite Database cleartext storage in a file or on disk |
| CVE-2023-2864 | 2023-05-24 | SourceCodester Online Jewelry Store POST Parameter customer.php cross site scripting |
| CVE-2023-2865 | 2023-05-24 | SourceCodester Theme Park Ticketing System GET Parameter print_ticket.php sql injection |
| CVE-2023-2750 | 2023-05-24 | SQLi in Cityboss Software's E-municipality |
| CVE-2023-2065 | 2023-05-24 | IDOR in Armoli Technology's Cargo Tracking System |
| CVE-2023-33937 | 2023-05-24 | Stored cross-site scripting (XSS) vulnerability in Form widget configuration in... |
| CVE-2023-2064 | 2023-05-24 | SQLi in Minova Technology's eTrace |
| CVE-2023-33938 | 2023-05-24 | Cross-site scripting (XSS) vulnerability in the App Builder module's custom... |
| CVE-2023-2045 | 2023-05-24 | SQLi in Ipekyolu Software's Auto Damage Tracking Software |
| CVE-2023-33939 | 2023-05-24 | Cross-site scripting (XSS) vulnerability in the Modified Facet widget in... |
| CVE-2023-33940 | 2023-05-24 | Cross-site scripting (XSS) vulnerability in IFrame type Remote Apps in... |
| CVE-2023-33941 | 2023-05-24 | Multiple cross-site scripting (XSS) vulnerabilities in the Plugin for OAuth... |
| CVE-2023-33246 | 2023-05-24 | Apache RocketMQ: Possible remote code execution vulnerability when using the update configuration function |
| CVE-2023-33942 | 2023-05-24 | Cross-site scripting (XSS) vulnerability in the Web Content Display widget's... |
| CVE-2023-33943 | 2023-05-24 | Cross-site scripting (XSS) vulnerability in the Account module in Liferay... |
| CVE-2023-33944 | 2023-05-24 | Cross-site scripting (XSS) vulnerability in Layout module in Liferay Portal... |
| CVE-2023-33945 | 2023-05-24 | SQL injection vulnerability in the upgrade process for SQL Server... |
| CVE-2023-33946 | 2023-05-24 | The Object module in Liferay Portal 7.4.3.4 through 7.4.3.48, and... |
| CVE-2023-33947 | 2023-05-24 | The Object module in Liferay Portal 7.4.3.4 through 7.4.3.60, and... |
| CVE-2023-33948 | 2023-05-24 | The Dynamic Data Mapping module in Liferay Portal 7.4.3.67, and... |
| CVE-2022-46816 | 2023-05-24 | WordPress Booking Ultra Pro Plugin <= 1.1.4 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-45364 | 2023-05-24 | WordPress Drag and Drop Multiple File Upload – Contact Form 7 Plugin <= 1.3.6.5 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-47152 | 2023-05-24 | WordPress clickfunnels Plugin <= 3.1.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-47180 | 2023-05-24 | WordPress Kopa Framework Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-46794 | 2023-05-24 | WordPress WooCommerce Weight Based Shipping Plugin <= 5.4.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-33949 | 2023-05-24 | In Liferay Portal 7.3.0 and earlier, and Liferay DXP 7.2... |
| CVE-2022-47446 | 2023-05-24 | WordPress Store Locator Plugin <= 3.98.7 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-47447 | 2023-05-24 | WordPress WP-Advanced-Search Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-33950 | 2023-05-24 | Pattern Redirects in Liferay Portal 7.4.3.48 through 7.4.3.76, and Liferay... |
| CVE-2022-47448 | 2023-05-24 | WordPress xili-tidy-tags Plugin <= 1.12.03 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-25028 | 2023-05-24 | WordPress CC Custom Taxonomy Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-2870 | 2023-05-24 | EnTech Monitor Asset Manager IoControlCode 0x80002014 denial of service |
| CVE-2023-2871 | 2023-05-24 | FabulaTech USB for Remote Desktop IoControlCode 0x220408 null pointer dereference |
| CVE-2023-2872 | 2023-05-24 | FlexiHub IoControlCode fusbhub.sys 0x220088 null pointer dereference |
| CVE-2023-2873 | 2023-05-24 | Twister Antivirus IoControlCode filppd.sys 0x80800043 memory corruption |
| CVE-2023-2868 | 2023-05-24 | Remote Code injection in Barracuda Email Security Gateway |
| CVE-2023-2874 | 2023-05-24 | Twister Antivirus IoControlCode filppd.sys 0x804f2140 denial of service |
| CVE-2023-2875 | 2023-05-24 | eScan Antivirus IoControlCode PROCOBSRVESX.SYS 0x22E008u null pointer dereference |
| CVE-2023-1158 | 2023-05-24 | Hitachi Vantara Pentaho Business Analytics Server - Incorrect Authorization |
| CVE-2022-4815 | 2023-05-24 | Hitachi Vantara Pentaho Business Analytics Server - Deserialization of Untrusted Data |
| CVE-2023-2500 | 2023-05-24 | The Go Pricing - WordPress Responsive Pricing Tables plugin for... |
| CVE-2023-2255 | 2023-05-25 | Remote documents loaded without prompt via IFrame |
| CVE-2023-25439 | 2023-05-25 | Stored Cross Site Scripting (XSS) vulnerability in Square Pig FusionInvoice... |
| CVE-2023-27529 | 2023-05-25 | Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains... |
| CVE-2023-2804 | 2023-05-25 | A heap-based buffer overflow issue was discovered in libjpeg-turbo in... |
| CVE-2023-28370 | 2023-05-25 | Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows... |