CVE List - 2023 / October
Showing 1501 - 1600 of 2690 CVEs for October 2023 (Page 16 of 27)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-45628 | 2023-10-18 | WordPress QR Twitter Widget Plugin <= 0.2.3 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45630 | 2023-10-18 | WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45632 | 2023-10-18 | WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-30781 | 2023-10-18 | WordPress Tweeple Plugin <= 0.9.5 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-5631 | 2023-10-18 | Stored XSS vulnerability in Roundcube |
| CVE-2023-5642 | 2023-10-18 | Advantech R-SeeNet Unauthenticated Read/Write |
| CVE-2023-20261 | 2023-10-18 | A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to... |
| CVE-2023-30911 | 2023-10-18 | HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service. |
| CVE-2023-26300 | 2023-10-18 | A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. HP is releasing firmware updates to mitigate the... |
| CVE-2023-35656 | 2023-10-18 | In multiple functions of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution... |
| CVE-2023-35663 | 2023-10-18 | In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges... |
| CVE-2023-4601 | 2023-10-18 | Stack-based Buffer Overflow in NI System Configuration Software |
| CVE-2023-45145 | 2023-10-18 | Redis Unix-domain socket may have be exposed with the wrong permissions for a short time window. |
| CVE-2023-45813 | 2023-10-18 | Inefficient Regular Expression Complexity in TorBot |
| CVE-2023-43803 | 2023-10-18 | Path traversal in Arduino Create Agent |
| CVE-2023-43802 | 2023-10-18 | Path traversal in Arduino Create Agent |
| CVE-2023-43801 | 2023-10-18 | Path traversal in Arduino Create Agent |
| CVE-2023-43800 | 2023-10-18 | Insufficient Verification of Data Authenticity in Arduino Create Agent |
| CVE-2023-45814 | 2023-10-18 | Tokens cached in the AuthenticationService are susceptible to reuse in Bunkum |
| CVE-2023-45812 | 2023-10-18 | Improper Check or Handling of Exceptional Conditions in apollo-router |
| CVE-2023-45146 | 2023-10-18 | Remote code execution in XXL-RPC |
| CVE-2023-37502 | 2023-10-18 | An unrestricted file upload vulnerability affects HCL Compass |
| CVE-2023-34441 | 2023-10-18 | Baker Hughes Bently Nevada 3500 System Cleartext Transmission of Sensitive Information |
| CVE-2023-34437 | 2023-10-18 | Baker Hughes Bently Nevada 3500 System Incorrect Permission Assignment for Critical Resource |
| CVE-2023-36857 | 2023-10-18 | Baker Hughes Bently Nevada 3500 System Authentication Bypass by Capture-replay |
| CVE-2022-37830 | 2023-10-19 | Interway a.s WebJET CMS 8.6.896 is vulnerable to Cross Site Scripting (XSS). |
| CVE-2022-42150 | 2023-10-19 | TinyLab linux-lab v1.1-rc1 and cloud-labv0.8-rc2, v1.1-rc1 are vulnerable to insecure permissions. The default configuration could cause Container Escape. |
| CVE-2022-47583 | 2023-10-19 | Terminal character injection in Mintty before 3.6.3 allows code execution via unescaped output to the terminal. |
| CVE-2023-27791 | 2023-10-19 | An issue found in IXP Data Easy Install 6.6.148840 allows a remote attacker to escalate privileges via insecure PRNG. |
| CVE-2023-27792 | 2023-10-19 | An issue found in IXP Data Easy Install v.6.6.14884.0 allows an attacker to escalate privileges via lack of permissions applied to sub directories. |
| CVE-2023-27793 | 2023-10-19 | An issue discovered in IXP Data Easy Install v.6.6.14884.0 allows local attackers to gain escalated privileges via weak encoding of sensitive information. |
| CVE-2023-27795 | 2023-10-19 | An issue found in IXP Data Easy Install v.6.6.14884.0 allows a local attacker to gain privileges via a static XOR key. |
| CVE-2023-30131 | 2023-10-19 | An issue discovered in IXP EasyInstall 6.6.14884.0 allows attackers to run arbitrary commands, gain escalated privilege, and cause other unspecified impacts via unauthenticated API calls. |
| CVE-2023-30132 | 2023-10-19 | An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers to gain escalated privileges via static Cryptographic Key. |
| CVE-2023-30633 | 2023-10-19 | An issue was discovered in TrEEConfigDriver in Insyde InsydeH2O with kernel 5.0 through 5.5. It can report false TPM PCR values, and thus mask malware activity. Devices use Platform Configuration... |
| CVE-2023-31046 | 2023-10-19 | A Path Traversal vulnerability exists in PaperCut NG before 22.1.1 and PaperCut MF before 22.1.1. Under specific conditions, this could potentially allow an authenticated attacker to achieve read-only access to... |
| CVE-2023-39731 | 2023-10-19 | The leakage of the client secret in Kaibutsunosato v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. |
| CVE-2023-43251 | 2023-10-19 | XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code... |
| CVE-2023-43252 | 2023-10-19 | XNSoft Nconvert 7.136 is vulnerable to Buffer Overflow via a crafted image file. |
| CVE-2023-43340 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in evolution v.3.2.3 allows a local attacker to execute arbitrary code via a crafted payload injected into the cmsadmin, cmsadminemail, cmspassword and cmspasswordconfim parameters |
| CVE-2023-43341 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in evolution evo v.3.2.3 allows a local attacker to execute arbitrary code via a crafted payload injected uid parameter. |
| CVE-2023-43342 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Languages Menu component. |
| CVE-2023-43344 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the SEO - Meta description parameter in the... |
| CVE-2023-43345 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Content - Name parameter in the Pages... |
| CVE-2023-43359 | 2023-10-19 | Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Page Specific Metadata and Smarty data parameters in the... |
| CVE-2023-43875 | 2023-10-19 | Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS v.4.2.1 allows a local attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost, dbname, dbuser,... |
| CVE-2023-43986 | 2023-10-19 | DM Concept configurator before v4.9.4 was discovered to contain a SQL injection vulnerability via the component ConfiguratorAttachment::getAttachmentByToken. |
| CVE-2023-44690 | 2023-10-19 | Inadequate encryption strength in mycli 1.27.0 allows attackers to view sensitive information via /mycli/config.py |
| CVE-2023-45277 | 2023-10-19 | Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). The vulnerability is in the storage functionality of the API and allows one to escape the base directory of... |
| CVE-2023-45278 | 2023-10-19 | Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request. |
| CVE-2023-45279 | 2023-10-19 | Yamcs 5.8.6 allows XSS (issue 1 of 2). It comes with a Bucket as its primary storage mechanism. Buckets allow for the upload of any file. There's a way to... |
| CVE-2023-45280 | 2023-10-19 | Yamcs 5.8.6 allows XSS (issue 2 of 2). It comes with a Bucket as its primary storage mechanism. Buckets allow for the upload of any file. There's a way to... |
| CVE-2023-45281 | 2023-10-19 | An issue in Yamcs 5.8.6 allows attackers to obtain the session cookie via upload of crafted HTML file. |
| CVE-2023-45376 | 2023-10-19 | In the module "Carousels Pack - Instagram, Products, Brands, Supplier" (hicarouselspack) for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct().` |
| CVE-2023-45379 | 2023-10-19 | In the module "Rotator Img" (posrotatorimg) in versions at least up to 1.1 from PosThemes for PrestaShop, a guest can perform SQL injection. |
| CVE-2023-45381 | 2023-10-19 | In the module "Creative Popup" (creativepopup) up to version 1.6.9 from WebshopWorks for PrestaShop, a guest can perform SQL injection via `cp_download_popup().` |
| CVE-2023-45384 | 2023-10-19 | KnowBand supercheckout > 5.0.7 and < 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" (supercheckout), a... |
| CVE-2023-45883 | 2023-10-19 | A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63 for Windows. When a standard user triggers a repair of the software, a pop-up window opens with... |
| CVE-2023-45992 | 2023-10-19 | A vulnerability in the web-based interface of the RUCKUS Cloudpath product on version 5.12 build 5538 or before to could allow a remote, unauthenticated attacker to execute persistent XSS and... |
| CVE-2023-46033 | 2023-10-19 | D-Link (Non-US) DSL-2750U N300 ADSL2+ and (Non-US) DSL-2730U N150 ADSL2+ are vulnerable to Incorrect Access Control. The UART/Serial interface on the PCB, provides log output and a root terminal without... |
| CVE-2023-46042 | 2023-10-19 | An issue in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via a crafted payload to the phpinfo(). |
| CVE-2023-46228 | 2023-10-19 | zchunk before 1.3.2 has multiple integer overflows via malformed zchunk files to lib/comp/comp.c, lib/comp/zstd/zstd.c, lib/dl/multipart.c, or lib/header.c. |
| CVE-2023-46229 | 2023-10-19 | LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because crawling can proceed from an external server to an internal server. |
| CVE-2023-37504 | 2023-10-19 | An insufficient session expiration vulnerability affects HCL Compass |
| CVE-2023-5336 | 2023-10-19 | The iPanorama 360 – WordPress Virtual Tour Builder plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 1.8.0 due to insufficient... |
| CVE-2023-4645 | 2023-10-19 | The Ad Inserter for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.30 via the ai_ajax function. This can allow unauthenticated attackers to extract sensitive... |
| CVE-2023-5639 | 2023-10-19 | The Team Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tmfshortcode' shortcode in all versions up to, and including, 2.1 due to insufficient input sanitization... |
| CVE-2023-5638 | 2023-10-19 | The Booster for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'wcj_image' shortcode in versions up to, and including, 7.1.2 due to insufficient input sanitization and output... |
| CVE-2023-37503 | 2023-10-19 | A weak password requirements vulnerability affects HCL Compass |
| CVE-2023-5241 | 2023-10-19 | The AI ChatBot for WordPress is vulnerable to Directory Traversal in versions up to, and including, 4.8.9 as well as 4.9.2 via the qcld_openai_upload_pagetraining_file function. This allows subscriber-level attackers to... |
| CVE-2023-5204 | 2023-10-19 | The ChatBot plugin for WordPress is vulnerable to SQL Injection via the $strid parameter in versions up to, and including, 4.8.9 due to insufficient escaping on the user supplied parameter... |
| CVE-2023-5212 | 2023-10-19 | The AI ChatBot plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 4.8.9 as well as version 4.9.2. This makes it possible for authenticated... |
| CVE-2023-5254 | 2023-10-19 | The ChatBot plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 4.8.9 via the qcld_wb_chatbot_check_user function. This can allow unauthenticated attackers to extract sensitive... |
| CVE-2023-34050 | 2023-10-19 | Spring AMQP Deserialization Vulnerability |
| CVE-2023-25753 | 2023-10-19 | Server-Side Request Forgery in Apache ShenYu |
| CVE-2022-24404 | 2023-10-19 | Ciphertext Malleability in TETRA |
| CVE-2022-24402 | 2023-10-19 | Intentionally weakened effective strength in TETRA TEA1 |
| CVE-2022-24401 | 2023-10-19 | Keystream recovery for arbitrary frames in TETRA |
| CVE-2022-24400 | 2023-10-19 | DCK pinning attack in TETRA |
| CVE-2022-26943 | 2023-10-19 | Weak PRNG entropy source used for authentication challenge generation in Motorola MTM5000 |
| CVE-2022-27813 | 2023-10-19 | Unconfigured memory protection modules in Motorola MTM5000 |
| CVE-2022-25333 | 2023-10-19 | Flawed SK_LOAD module authenticity check in Texas Instruments OMAP L138 |
| CVE-2022-26942 | 2023-10-19 | Multiple missing pointer validation checks in trusted execution module in Motorola MTM5000 |
| CVE-2022-26941 | 2023-10-19 | Format string vulnerability in AT+CTGL command in Motorola MTM5000 |
| CVE-2022-25334 | 2023-10-19 | Stack overflow on SK_LOAD signature length field in Texas Instruments OMAP L138 |
| CVE-2022-25332 | 2023-10-19 | SK_LOAD timing side channel during AES module decryption in Texas Instruments OMAP L138 |
| CVE-2023-46227 | 2023-10-19 | Apache inlong has an Arbitrary File Read Vulnerability |
| CVE-2023-35186 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35184 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35182 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35180 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35183 | 2023-10-19 | SolarWinds Access Rights Manager Incorrect Default Permissions Local Privilege Escalation Vulnerability |
| CVE-2023-35185 | 2023-10-19 | SolarWinds Access Rights Manager OpenFile Directory Traversal Remote Code Execution Vulnerability |
| CVE-2023-35187 | 2023-10-19 | SolarWinds Access Rights Manager Directory Traversal Remote Code Execution Vulnerability |
| CVE-2023-35181 | 2023-10-19 | SolarWinds Access Rights Manager Incorrect Default Permissions Local Privilege Escalation Vulnerability |
| CVE-2023-5654 | 2023-10-19 | The React Developer Tools extension registers a message listener with window.addEventListener('message', <listener>) in a content script that is accessible to any webpage that is active in the browser. Within the... |
| CVE-2023-35126 | 2023-10-19 | An out-of-bounds write vulnerability exists within the parsers for both the "DocumentViewStyles" and "DocumentEditStyles" streams of Ichitaro 2023 1.0.1.59372 when processing types 0x0000-0x0009 of a style record with the type... |
| CVE-2023-38128 | 2023-10-19 | An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and... |
| CVE-2023-38127 | 2023-10-19 | An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow... |
| CVE-2023-34366 | 2023-10-19 | A use-after-free vulnerability exists in the Figure stream parsing functionality of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause memory corruption, resulting in arbitrary code execution. Victim would need... |