CVE List - 2023 / January
Showing 1001 - 1100 of 2351 CVEs for January 2023 (Page 11 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-24913 | 2023-01-12 | Versions of the package com.fasterxml.util:java-merge-sort before 1.1.0 are vulnerable to... |
| CVE-2022-2155 | 2023-01-12 | A vulnerability exists in the Lumada APM’s User Asset Group feature due to a flaw in access control mechanism implementation on the “Limited Engineer” role. |
| CVE-2023-0243 | 2023-01-12 | TuziCMS Article Module ArticleController.class.php index sql injection |
| CVE-2023-0244 | 2023-01-12 | TuziCMS KefuController.class.php delall sql injection |
| CVE-2023-0245 | 2023-01-12 | SourceCodester Online Flight Booking Management System add_contestant.php sql injection |
| CVE-2023-0246 | 2023-01-12 | earclink ESPCMS Content cross site scripting |
| CVE-2012-10005 | 2023-01-12 | manikandan170890 php-form-builder-class Textarea Textarea.php cross site scripting |
| CVE-2013-10011 | 2023-01-12 | aeharding classroom-engagement-system sql injection |
| CVE-2022-43591 | 2023-01-12 | A buffer overflow vulnerability exists in the QML QtScript Reflect... |
| CVE-2022-40983 | 2023-01-12 | An integer overflow vulnerability exists in the QML QtScript Reflect... |
| CVE-2023-0254 | 2023-01-12 | The Simple Membership WP user Import plugin for WordPress is... |
| CVE-2023-22488 | 2023-01-12 | Missing authorization in Flarum |
| CVE-2022-42268 | 2023-01-12 | Omniverse Kit contains a vulnerability in the reference applications Create,... |
| CVE-2023-0256 | 2023-01-12 | SourceCodester Online Food Ordering System Login Page sql injection |
| CVE-2023-0257 | 2023-01-12 | SourceCodester Online Food Ordering System Menu Form unrestricted upload |
| CVE-2023-0258 | 2023-01-12 | SourceCodester Online Food Ordering System Category List cross site scripting |
| CVE-2022-42272 | 2023-01-12 | NVIDIA BMC contains a vulnerability in IPMI handler, where an... |
| CVE-2022-42273 | 2023-01-12 | NVIDIA BMC contains a vulnerability in libwebsocket, where an authorized... |
| CVE-2023-22597 | 2023-01-12 | InHand Networks InRouter 302, prior to version IR302 V3.5.56, and... |
| CVE-2023-22598 | 2023-01-12 | InHand Networks InRouter 302, prior to version IR302 V3.5.56, and... |
| CVE-2023-22599 | 2023-01-12 | InHand Networks InRouter 302, prior to version IR302 V3.5.56, and... |
| CVE-2023-22600 | 2023-01-12 | InHand Networks InRouter 302, prior to version IR302 V3.5.56, and... |
| CVE-2023-22601 | 2023-01-12 | InHand Networks InRouter 302, prior to version IR302 V3.5.56, and... |
| CVE-2022-41778 | 2023-01-12 | Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize... |
| CVE-2022-4616 | 2023-01-12 | The webserver in Delta DX-3021 versions prior to 1.24 is... |
| CVE-2022-48257 | 2023-01-13 | In Eternal Terminal 6.2.1, etserver and etclient have predictable logfile... |
| CVE-2021-36204 | 2023-01-13 | Insufficiently Protected Credentials in Metasys |
| CVE-2021-46872 | 2023-01-13 | An issue was discovered in Nim before 1.6.2. The RST... |
| CVE-2022-3693 | 2023-01-13 | Path traversal in FileOrbis File Management System |
| CVE-2022-42136 | 2023-01-13 | Authenticated mail users, under specific circumstances, could add files with... |
| CVE-2022-45299 | 2023-01-13 | An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2... |
| CVE-2022-46093 | 2023-01-13 | Hospital Management System v1.0 is vulnerable to SQL Injection. Attackers... |
| CVE-2022-46471 | 2023-01-13 | Online Health Care System v1.0 was discovered to contain a... |
| CVE-2022-46478 | 2023-01-13 | The RPC interface in datax-web v1.0.0 and v2.0.0 to v2.1.2... |
| CVE-2022-46502 | 2023-01-13 | Online Student Enrollment System v1.0 was discovered to contain a... |
| CVE-2022-46946 | 2023-01-13 | Helmet Store Showroom Site v1.0 was discovered to contain a... |
| CVE-2022-46947 | 2023-01-13 | Helmet Store Showroom Site v1.0 was discovered to contain a... |
| CVE-2022-46949 | 2023-01-13 | Helmet Store Showroom Site v1.0 was discovered to contain a... |
| CVE-2022-46950 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-46951 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-46952 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-46953 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-46954 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-46955 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-46956 | 2023-01-13 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2022-48090 | 2023-01-13 | Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to SQL Injection via... |
| CVE-2022-48091 | 2023-01-13 | Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to Cross Site Scripting... |
| CVE-2022-48256 | 2023-01-13 | Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack... |
| CVE-2022-48258 | 2023-01-13 | In Eternal Terminal 6.2.1, etserver and etclient have world-readable logfiles. |
| CVE-2023-0288 | 2023-01-13 | Heap-based Buffer Overflow in vim/vim |
| CVE-2023-0289 | 2023-01-13 | Cross-site Scripting (XSS) - Stored in craigk5n/webcalendar |
| CVE-2023-21587 | 2023-01-13 | Adobe InDesign Font Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-21588 | 2023-01-13 | Adobe InDesign Improper Input Validation Remote Code Execution Vulnerability |
| CVE-2023-21589 | 2023-01-13 | Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2023-21590 | 2023-01-13 | Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2023-21591 | 2023-01-13 | Adobe InDesign Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2023-21592 | 2023-01-13 | Adobe InDesign Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2023-21594 | 2023-01-13 | Adobe InCopy Font Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-21595 | 2023-01-13 | Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2023-21596 | 2023-01-13 | Adobe InCopy Improper Input Validation Remote Code Execution Vulnerability |
| CVE-2023-21597 | 2023-01-13 | Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2023-21598 | 2023-01-13 | Adobe InCopy Font Parsing Use-After-Free Information Disclosure Vulnerability |
| CVE-2023-21599 | 2023-01-13 | Adobe InCopy Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2023-23559 | 2023-01-13 | In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5,... |
| CVE-2023-23566 | 2023-01-13 | A 2-Step Verification problem in Axigen 10.3.3.52 allows an attacker... |
| CVE-2022-42274 | 2023-01-13 | NVIDIA BMC contains a vulnerability in IPMI handler, where an... |
| CVE-2022-42275 | 2023-01-13 | NVIDIA BMC IPMI handler allows an unauthenticated host to write... |
| CVE-2022-3159 | 2023-01-13 | The APDFL.dll contains a stack-based buffer overflow vulnerability that could... |
| CVE-2022-3160 | 2023-01-13 | The APDFL.dll contains an out-of-bounds write past the fixed-length heap-based... |
| CVE-2022-3161 | 2023-01-13 | The APDFL.dll contains a memory corruption vulnerability while parsing specially... |
| CVE-2022-42276 | 2023-01-13 | NVIDIA DGX A100 contains a vulnerability in SBIOS in the... |
| CVE-2022-42277 | 2023-01-13 | NVIDIA DGX Station contains a vulnerability in SBIOS in the... |
| CVE-2022-42278 | 2023-01-13 | NVIDIA BMC contains a vulnerability in SPX REST API, where... |
| CVE-2022-42279 | 2023-01-13 | NVIDIA BMC contains a vulnerability in SPX REST API, where... |
| CVE-2022-42280 | 2023-01-13 | NVIDIA BMC contains a vulnerability in SPX REST auth handler,... |
| CVE-2022-42281 | 2023-01-13 | NVIDIA DGX A100 contains a vulnerability in SBIOS in the... |
| CVE-2022-42282 | 2023-01-13 | NVIDIA BMC contains a vulnerability in SPX REST API, where... |
| CVE-2022-42283 | 2023-01-13 | NVIDIA BMC contains a vulnerability in IPMI handler, where an... |
| CVE-2022-42284 | 2023-01-13 | NVIDIA BMC stores user passwords in an obfuscated form in... |
| CVE-2022-42285 | 2023-01-13 | DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization... |
| CVE-2022-42286 | 2023-01-13 | DGX A100 SBIOS contains a vulnerability in Bds, which may... |
| CVE-2022-42287 | 2023-01-13 | NVIDIA BMC contains a vulnerability in IPMI handler, where an... |
| CVE-2022-42288 | 2023-01-13 | NVIDIA BMC contains a vulnerability in IPMI handler, where an... |
| CVE-2022-42289 | 2023-01-13 | NVIDIA BMC contains a vulnerability in SPX REST API, where... |
| CVE-2022-42290 | 2023-01-13 | NVIDIA BMC contains a vulnerability in SPX REST API, where... |
| CVE-2022-21191 | 2023-01-13 | Versions of the package global-modules-path before 3.0.0 are vulnerable to... |
| CVE-2023-0281 | 2023-01-13 | SourceCodester Online Flight Booking Management System judge_panel.php sql injection |
| CVE-2023-0283 | 2023-01-13 | SourceCodester Online Flight Booking Management System POST Parameter review_search.php sql injection |
| CVE-2023-0287 | 2023-01-13 | ityouknow favorites-web Comment cross site scripting |
| CVE-2023-22493 | 2023-01-13 | RSSHub is vulnerable to SSRF (Server-Side Request Forgery) |
| CVE-2023-0221 | 2023-01-13 | Product security bypass vulnerability in ACC prior to version 8.3.4... |
| CVE-2021-4312 | 2023-01-13 | Th3-822 Rapidleech zip.php zip_go cross site scripting |
| CVE-2009-10001 | 2023-01-13 | jianlinwei cool-php-captcha example-form.php cross site scripting |
| CVE-2009-10002 | 2023-01-13 | dpup fittr-flickr EXIF Preview easy-exif.js cross site scripting |
| CVE-2023-22489 | 2023-01-13 | Flarum is missing authorization in discussion replies |
| CVE-2023-22491 | 2023-01-13 | gatsby-transformer-remark vulnerable to unsanitized JavaScript code injection |
| CVE-2015-10040 | 2023-01-13 | gitlearn Escape Sequence config.sh getOutOf injection |
| CVE-2015-10041 | 2023-01-13 | Dovgalyuk AIBattle procedures.php sendComments sql injection |
| CVE-2023-0293 | 2023-01-13 | The Mediamatic – Media Library Folders plugin for WordPress is... |
| CVE-2023-0294 | 2023-01-13 | The Mediamatic – Media Library Folders plugin for WordPress is... |