Lista CVE - 2023 / Giugno
Visualizzazione 2301 - 2395 di 2395 CVE per Giugno 2023 (Pagina 24 di 24)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-3457 | 2023-06-29 | SourceCodester Shopping Website index.php sql injection |
| CVE-2023-3458 | 2023-06-29 | SourceCodester Shopping Website forgot-password.php sql injection |
| CVE-2015-1313 | 2023-06-29 | JetBrains TeamCity 8 and 9 before 9.0.2 allows bypass of... |
| CVE-2023-31222 | 2023-06-29 | Medtronic Paceart MSMQ Deserialization of Untrusted Data |
| CVE-2023-33190 | 2023-06-29 | Improperly configured permissions in Sealos |
| CVE-2023-30955 | 2023-06-29 | Foundry workspace-server Developer Mode Authorization Bypass |
| CVE-2023-30946 | 2023-06-29 | Issues notification metadata lacks authorization |
| CVE-2023-35938 | 2023-06-29 | User access not updated with privilege change in Tuleap |
| CVE-2023-36471 | 2023-06-29 | HTML sanitizer allows form elements in restricted in org.xwiki.commons:xwiki-commons-xml |
| CVE-2023-36607 | 2023-06-29 | CVE-2023-36607 |
| CVE-2023-3464 | 2023-06-29 | SimplePHPscripts Classified Ads Script URL Parameter preview.php cross site scripting |
| CVE-2023-36470 | 2023-06-29 | Code injection in icon themes of XWiki Platform |
| CVE-2023-36469 | 2023-06-29 | Code injection through NotificationRSSService in XWiki Platform |
| CVE-2023-36468 | 2023-06-29 | Upgrading doesn't prevent exploiting vulnerable XWiki documents |
| CVE-2023-3465 | 2023-06-29 | SimplePHPscripts Classified Ads Script HTTP POST Request user.php cross site scripting |
| CVE-2020-18432 | 2023-06-30 | File Upload vulnerability in SEMCMS PHP 3.7 allows remote attackers... |
| CVE-2023-1206 | 2023-06-30 | A hash collision flaw was found in the IPv6 connection... |
| CVE-2023-27469 | 2023-06-30 | Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and... |
| CVE-2023-2908 | 2023-06-30 | Libtiff: null pointer dereference in tif_dir.c |
| CVE-2023-29145 | 2023-06-30 | The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure... |
| CVE-2023-29147 | 2023-06-30 | In Malwarebytes EDR 1.0.11 for Linux, it is possible to... |
| CVE-2023-29241 | 2023-06-30 | Improper Information in Cybersecurity Guidebook in Bosch Building Integration System... |
| CVE-2023-31543 | 2023-06-30 | A dependency confusion in pipreqs v0.3.0 to v0.4.11 allows attackers... |
| CVE-2023-33276 | 2023-06-30 | The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and... |
| CVE-2023-33298 | 2023-06-30 | com.perimeter81.osx.HelperTool in Perimeter81 10.0.0.19 on macOS allows Local Privilege Escalation... |
| CVE-2023-33336 | 2023-06-30 | Reflected cross site scripting (XSS) vulnerability was discovered in Sophos... |
| CVE-2023-34840 | 2023-06-30 | angular-ui-notification v0.1.0, v0.2.0, and v0.3.6 was discovered to contain a... |
| CVE-2023-36143 | 2023-06-30 | Maxprint Maxlink 1200G v3.4.11E has an OS command injection vulnerability... |
| CVE-2023-36144 | 2023-06-30 | An authentication bypass in Intelbras Switch SG 2404 MR in... |
| CVE-2023-36146 | 2023-06-30 | A Stored Cross-Site Scripting (XSS) vulnerability was found in Multilaser... |
| CVE-2023-36347 | 2023-06-30 | A broken authentication mechanism in the endpoint excel.php of POS... |
| CVE-2023-37298 | 2023-06-30 | Joplin before 2.11.5 allows XSS via a USE element in... |
| CVE-2023-37299 | 2023-06-30 | Joplin before 2.11.5 allows XSS via an AREA element of... |
| CVE-2023-37300 | 2023-06-30 | An issue was discovered in the CheckUserLog API in the... |
| CVE-2023-37301 | 2023-06-30 | An issue was discovered in SubmitEntityAction in Wikibase in MediaWiki... |
| CVE-2023-37302 | 2023-06-30 | An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki... |
| CVE-2023-37303 | 2023-06-30 | An issue was discovered in the CheckUser extension for MediaWiki... |
| CVE-2023-37304 | 2023-06-30 | An issue was discovered in the DoubleWiki extension for MediaWiki... |
| CVE-2023-37305 | 2023-06-30 | An issue was discovered in the ProofreadPage (aka Proofread Page)... |
| CVE-2023-37306 | 2023-06-30 | MISP 2.4.172 mishandles different certificate file extensions in server sync.... |
| CVE-2023-37307 | 2023-06-30 | In MISP before 2.4.172, title_for_layout is not properly sanitized in... |
| CVE-2023-37360 | 2023-06-30 | pacparser_find_proxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly... |
| CVE-2023-37365 | 2023-06-30 | Hnswlib 0.7.0 has a double free in init_index when the... |
| CVE-2023-3338 | 2023-06-30 | Crash due to a null pointer dereference in the dn_nsp_send function |
| CVE-2023-3469 | 2023-06-30 | Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq |
| CVE-2023-3063 | 2023-06-30 | The SP Project & Document Manager plugin for WordPress is... |
| CVE-2023-2834 | 2023-06-30 | The BookIt plugin for WordPress is vulnerable to authentication bypass... |
| CVE-2023-3249 | 2023-06-30 | The Web3 – Crypto wallet Login & NFT token gating... |
| CVE-2023-36539 | 2023-06-30 | Exposure of information intended to be encrypted by some Zoom... |
| CVE-2023-32607 | 2023-06-30 | Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise... |
| CVE-2023-32608 | 2023-06-30 | Directory traversal vulnerability in Pleasanter (Community Edition and Enterprise Edition)... |
| CVE-2023-32612 | 2023-06-30 | Client-side enforcement of server-side security issue exists in WL-WN531AX2 firmware... |
| CVE-2023-32613 | 2023-06-30 | Exposure of resource to wrong sphere issue exists in WL-WN531AX2... |
| CVE-2023-32620 | 2023-06-30 | Improper authentication vulnerability in WL-WN531AX2 firmware versions prior to 2023526... |
| CVE-2023-32621 | 2023-06-30 | WL-WN531AX2 firmware versions prior to 2023526 allows an attacker with... |
| CVE-2023-32622 | 2023-06-30 | Improper neutralization of special elements in WL-WN531AX2 firmware versions prior... |
| CVE-2023-2846 | 2023-06-30 | Authentication Bypass Vulnerability in MELSEC-F Series main module |
| CVE-2023-26135 | 2023-06-30 | All versions of the package flatnest are vulnerable to Prototype... |
| CVE-2023-28387 | 2023-06-30 | "NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks"... |
| CVE-2023-3473 | 2023-06-30 | Campcodes Retro Cellphone Online Store edit_product.php sql injection |
| CVE-2023-3474 | 2023-06-30 | SimplePHPscripts Simple Blog URL Parameter preview.php cross site scripting |
| CVE-2023-3475 | 2023-06-30 | SimplePHPscripts Event Script URL Parameter preview.php cross site scripting |
| CVE-2023-3476 | 2023-06-30 | SimplePHPscripts GuestBook Script URL Parameter preview.php cross site scripting |
| CVE-2023-3477 | 2023-06-30 | RocketSoft Rocket LMS Contact Form store cross site scripting |
| CVE-2023-3479 | 2023-06-30 | Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp |
| CVE-2023-3478 | 2023-06-30 | IBOS OA Add User edit&op=member actionEdit sql injection |
| CVE-2023-26299 | 2023-06-30 | A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified... |
| CVE-2023-35175 | 2023-06-30 | Certain HP LaserJet Pro print products are potentially vulnerable to... |
| CVE-2023-35176 | 2023-06-30 | Certain HP LaserJet Pro print products are potentially vulnerable to... |
| CVE-2023-35177 | 2023-06-30 | Certain HP LaserJet Pro print products are potentially vulnerable to... |
| CVE-2023-35178 | 2023-06-30 | Certain HP LaserJet Pro print products are potentially vulnerable to... |
| CVE-2023-3485 | 2023-06-30 | Insecure Default Authorization in Temporal Server |
| CVE-2023-36807 | 2023-06-30 | Infinite Loop when reading malformed objects in pypdf |
| CVE-2023-36810 | 2023-06-30 | Quadratic runtime with malformed PDF missing xref marker in pypdf |
| CVE-2023-36477 | 2023-06-30 | Persistent Cross-site Scripting (XSS) through CKEditor Configuration pages in XWiki Platform |
| CVE-2023-35947 | 2023-06-30 | Path traversal vulnerabilities in handling of Tar archives in Gradle |
| CVE-2023-35946 | 2023-06-30 | Dependency cache path traversal in Gradle |
| CVE-2023-22816 | 2023-06-30 | Limited Post-Authentication Remote Command Injection in My Cloud Products |
| CVE-2023-22815 | 2023-06-30 | Post-authentication remote command injection vulnerability on Western Digital My Cloud OS 5 devices |
| CVE-2023-3490 | 2023-06-30 | SQL Injection in fossbilling/fossbilling |
| CVE-2023-3491 | 2023-06-30 | Unrestricted Upload of File with Dangerous Type in fossbilling/fossbilling |
| CVE-2023-3493 | 2023-06-30 | Improper Neutralization of Formula Elements in a CSV File in fossbilling/fossbilling |
| CVE-2023-36812 | 2023-06-30 | Remote Code Execution in OpenTSDB |
| CVE-2023-22814 | 2023-06-30 | Authentication Bypass issue in My Cloud OS 5 devices |
| CVE-2021-34506 | 2023-06-30 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability |
| CVE-2021-42307 | 2023-06-30 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
| CVE-2021-31982 | 2023-06-30 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability |
| CVE-2021-34475 | 2023-06-30 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
| CVE-2023-28364 | 2023-06-30 | An Open Redirect vulnerability exists prior to version 1.52.117, where... |
| CVE-2023-31997 | 2023-06-30 | UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi... |
| CVE-2023-30589 | 2023-06-30 | The llhttp parser in the http module in Node v20.2.0... |
| CVE-2023-30586 | 2023-06-30 | A privilege escalation vulnerability exists in Node.js 20 that allowed... |
| CVE-2023-28365 | 2023-06-30 | A backup file vulnerability found in UniFi applications (Version 7.3.83... |
| CVE-2023-28324 | 2023-06-30 | A improper input validation vulnerability exists in Ivanti Endpoint Manager... |
| CVE-2023-28323 | 2023-06-30 | A deserialization of untrusted data exists in EPM 2022 Su3... |