Lista CVE - 2024 / Gennaio
Visualizzazione 301 - 400 di 2591 CVE per Gennaio 2024 (Pagina 4 di 26)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-52122 | 2024-01-05 | WordPress Simple Job Board Plugin <= 2.10.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-52121 | 2024-01-05 | WordPress NitroPack Plugin <= 1.10.2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-52120 | 2024-01-05 | WordPress NEX-Forms – Ultimate Form Builder Plugin <= 8.5.2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-52119 | 2024-01-05 | WordPress Icegram Plugin <= 3.1.18 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-51539 | 2024-01-05 | WordPress Apollo13 Framework Extensions Plugin <= 1.9.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-51538 | 2024-01-05 | WordPress Awesome Support Plugin <= 6.1.5 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-51668 | 2024-01-05 | WordPress Inline Image Upload for BBPress Plugin <= 1.1.18 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-51673 | 2024-01-05 | WordPress Stylish Price List Plugin <= 7.0.17 is vulnerable to Broken Access Control |
| CVE-2023-51535 | 2024-01-05 | WordPress Spam protection, AntiSpam, FireWall by CleanTalk Plugin <= 6.20 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-51678 | 2024-01-05 | WordPress Doofinder for WooCommerce Plugin <= 2.0.33 is vulnerable to Broken Access Control |
| CVE-2022-46839 | 2024-01-05 | WordPress JS Help Desk – Best Help Desk & Support Plugin Plugin <= 2.7.1 is vulnerable to Arbitrary File Upload |
| CVE-2023-52151 | 2024-01-05 | WordPress Uncanny Automator Plugin <= 5.1.0.2 is vulnerable to Sensitive Data Exposure |
| CVE-2023-52148 | 2024-01-05 | WordPress Affiliates Manager Plugin <= 2.9.30 is vulnerable to Sensitive Data Exposure |
| CVE-2023-52146 | 2024-01-05 | WordPress 404 Solution Plugin <= 2.33.0 is vulnerable to Sensitive Data Exposure |
| CVE-2023-52143 | 2024-01-05 | WordPress WP Stripe Checkout Plugin <= 1.2.2.37 is vulnerable to Sensitive Data Exposure |
| CVE-2023-52126 | 2024-01-05 | WordPress Send Users Email Plugin <= 1.4.3 is vulnerable to Sensitive Data Exposure |
| CVE-2023-52125 | 2024-01-05 | WordPress iFrame Plugin <= 4.8 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-52124 | 2024-01-05 | WordPress WP Tabs Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2024-0246 | 2024-01-05 | IceWarp Utility Download cross site scripting |
| CVE-2023-34321 | 2024-01-05 | arm32: The cache may not be properly cleaned/invalidated |
| CVE-2023-34322 | 2024-01-05 | top-level shadow reference dropped too early for 64-bit PV guests |
| CVE-2023-47560 | 2024-01-05 | QuMagie |
| CVE-2023-47559 | 2024-01-05 | QuMagie |
| CVE-2023-47219 | 2024-01-05 | QuMagie |
| CVE-2023-45039 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-45040 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-45041 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-45042 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-45043 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-45044 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-41289 | 2024-01-05 | QcalAgent |
| CVE-2023-41288 | 2024-01-05 | Video Station |
| CVE-2023-41287 | 2024-01-05 | Video Station |
| CVE-2023-39296 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-39294 | 2024-01-05 | QTS, QuTS hero |
| CVE-2023-34323 | 2024-01-05 | xenstored: A transaction conflict can crash C Xenstored |
| CVE-2023-34324 | 2024-01-05 | Possible deadlock in Linux kernel event handling |
| CVE-2023-34326 | 2024-01-05 | x86/AMD: missing IOMMU TLB flushing |
| CVE-2023-34325 | 2024-01-05 | Multiple vulnerabilities in libfsimage disk handling |
| CVE-2023-34327 | 2024-01-05 | x86/AMD: Debug Mask handling |
| CVE-2023-34328 | 2024-01-05 | x86/AMD: Debug Mask handling |
| CVE-2023-46835 | 2024-01-05 | x86/AMD: mismatch in IOMMU quarantine page table levels |
| CVE-2023-46836 | 2024-01-05 | x86: BTC/SRSO fixes not fully effective |
| CVE-2023-46837 | 2024-01-05 | arm32: The cache may not be properly cleaned/invalidated (take two) |
| CVE-2024-0247 | 2024-01-05 | CodeAstro Online Food Ordering System Admin Panel sql injection |
| CVE-2024-21641 | 2024-01-05 | Flarum's Logout Route allows open redirects |
| CVE-2024-21642 | 2024-01-05 | D-Tale server-side request forgery through Web uploads |
| CVE-2023-39853 | 2024-01-06 | SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers... |
| CVE-2023-46953 | 2024-01-06 | SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to... |
| CVE-2023-50121 | 2024-01-06 | Autel EVO NANO drone flight control firmware version 1.6.5 is... |
| CVE-2023-50609 | 2024-01-06 | Cross Site Scripting (XSS) vulnerability in AVA teaching video application... |
| CVE-2023-50612 | 2024-01-06 | Insecure Permissions vulnerability in fit2cloud Cloud Explorer Lite version 1.4.1,... |
| CVE-2023-6801 | 2024-01-06 | The RSS Aggregator by Feedzy – Feed to Post, Autoblogging,... |
| CVE-2023-6798 | 2024-01-06 | The RSS Aggregator by Feedzy – Feed to Post, Autoblogging,... |
| CVE-2023-51441 | 2024-01-06 | Apache Axis 1.x (EOL) may allow SSRF when untrusted input is passed to the service admin HTTP API |
| CVE-2024-0260 | 2024-01-07 | SourceCodester Engineers Online Portal Password Change change_password_teacher.php session expiration |
| CVE-2024-0261 | 2024-01-07 | Sentex FTPDMIN RNFR Command denial of service |
| CVE-2024-0262 | 2024-01-07 | Online Job Portal Create News Page News.php cross site scripting |
| CVE-2024-0263 | 2024-01-07 | ACME Ultra Mini HTTPd HTTP GET Request denial of service |
| CVE-2024-0264 | 2024-01-07 | SourceCodester Clinic Queuing System LoginRegistration.php authorization |
| CVE-2024-0265 | 2024-01-07 | SourceCodester Clinic Queuing System GET Parameter index.php file inclusion |
| CVE-2024-0266 | 2024-01-07 | Project Worlds Online Lawyer Management System User Registration cross site scripting |
| CVE-2024-0267 | 2024-01-07 | Kashipara Hospital Management System Parameter login.php sql injection |
| CVE-2023-7208 | 2024-01-07 | Totolink X2000R_V2 boa formTmultiAP buffer overflow |
| CVE-2024-0268 | 2024-01-07 | Kashipara Hospital Management System registration.php sql injection |
| CVE-2024-0270 | 2024-01-07 | Kashipara Food Management System item_list_submit.php sql injection |
| CVE-2024-0271 | 2024-01-07 | Kashipara Food Management System addmaterial_edit.php sql injection |
| CVE-2023-7209 | 2024-01-07 | Uniway Router Device Reset device_reset.cgi denial of service |
| CVE-2023-7210 | 2024-01-07 | OneNav API improper authentication |
| CVE-2023-7211 | 2024-01-07 | Uniway Router Administrative Web Interface reliance on ip address for authentication |
| CVE-2024-0272 | 2024-01-07 | Kashipara Food Management System addmaterialsubmit.php sql injection |
| CVE-2024-0273 | 2024-01-07 | Kashipara Food Management System addwaste_entry.php sql injection |
| CVE-2024-0274 | 2024-01-07 | Kashipara Food Management System billAjax.php sql injection |
| CVE-2024-0275 | 2024-01-07 | Kashipara Food Management System item_edit_submit.php sql injection |
| CVE-2024-0276 | 2024-01-07 | Kashipara Food Management System rawstock_used_damaged_smt.php sql injection |
| CVE-2024-0277 | 2024-01-07 | Kashipara Food Management System party_submit.php sql injection |
| CVE-2024-0278 | 2024-01-07 | Kashipara Food Management System partylist_edit_submit.php sql injection |
| CVE-2024-0279 | 2024-01-07 | Kashipara Food Management System item_list_edit.php sql injection |
| CVE-2024-0280 | 2024-01-07 | Kashipara Food Management System item_type_submit.php sql injection |
| CVE-2024-0281 | 2024-01-07 | Kashipara Food Management System loginCheck.php sql injection |
| CVE-2024-0282 | 2024-01-07 | Kashipara Food Management System addmaterialsubmit.php cross site scripting |
| CVE-2024-0283 | 2024-01-07 | Kashipara Food Management System party_details.php cross site scripting |
| CVE-2023-7212 | 2024-01-07 | DeDeCMS Backend file_class.php unrestricted upload |
| CVE-2024-0284 | 2024-01-07 | Kashipara Food Management System party_submit.php cross site scripting |
| CVE-2024-0286 | 2024-01-07 | PHPGurukul Hospital Management System Contact Form index.php#contact_us cross site scripting |
| CVE-2023-47145 | 2024-01-07 | IBM Db2 for Windows privilege escalation |
| CVE-2023-7213 | 2024-01-07 | Totolink N350RT HTTP POST Request main stack-based overflow |
| CVE-2023-7214 | 2024-01-07 | Totolink N350RT HTTP POST Request main stack-based overflow |
| CVE-2024-0287 | 2024-01-07 | Kashipara Food Management System itemBillPdf.php sql injection |
| CVE-2024-0288 | 2024-01-07 | Kashipara Food Management System rawstock_used_damaged_submit.php sql injection |
| CVE-2023-27739 | 2024-01-08 | easyXDM 2.5 allows XSS via the xdm_e parameter. |
| CVE-2023-49961 | 2024-01-08 | WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access... |
| CVE-2023-51246 | 2024-01-08 | A Cross Site Scripting (XSS) vulnerability in GetSimple CMS 3.3.16... |
| CVE-2023-52074 | 2024-01-08 | FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery... |
| CVE-2024-22216 | 2024-01-08 | In default installations of Microchip maxView Storage Manager (for Adaptec... |
| CVE-2023-47890 | 2024-01-08 | pyLoad 0.5.0 is vulnerable to Unrestricted File Upload. |
| CVE-2023-50162 | 2024-01-08 | SQL injection vulnerability in EmpireCMS v7.5, allows remote attackers to... |
| CVE-2023-50982 | 2024-01-08 | Stud.IP 5.x through 5.3.3 allows XSS with resultant upload of... |
| CVE-2023-52072 | 2024-01-08 | FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery... |
| CVE-2023-52073 | 2024-01-08 | FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery... |