CVE List - 2023 / October
Showing 1501 - 1600 of 2690 CVEs for October 2023 (Page 16 of 27)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-45602 | 2023-10-18 | WordPress Ebook Store Plugin <= 5.785 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45628 | 2023-10-18 | WordPress QR Twitter Widget Plugin <= 0.2.3 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45630 | 2023-10-18 | WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45632 | 2023-10-18 | WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-30781 | 2023-10-18 | WordPress Tweeple Plugin <= 0.9.5 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-5631 | 2023-10-18 | Stored XSS vulnerability in Roundcube |
| CVE-2023-5642 | 2023-10-18 | Advantech R-SeeNet Unauthenticated Read/Write |
| CVE-2023-20261 | 2023-10-18 | A vulnerability in the web UI of Cisco Catalyst SD-WAN... |
| CVE-2023-30911 | 2023-10-18 | HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest... |
| CVE-2023-26300 | 2023-10-18 | A potential security vulnerability has been identified in the system... |
| CVE-2023-35656 | 2023-10-18 | In multiple functions of protocolembmsadapter.cpp, there is a possible out... |
| CVE-2023-35663 | 2023-10-18 | In Init of protocolnetadapter.cpp, there is a possible out of... |
| CVE-2023-4601 | 2023-10-18 | Stack-based Buffer Overflow in NI System Configuration Software |
| CVE-2023-45145 | 2023-10-18 | Redis Unix-domain socket may have be exposed with the wrong permissions for a short time window. |
| CVE-2023-45813 | 2023-10-18 | Inefficient Regular Expression Complexity in TorBot |
| CVE-2023-43803 | 2023-10-18 | Path traversal in Arduino Create Agent |
| CVE-2023-43802 | 2023-10-18 | Path traversal in Arduino Create Agent |
| CVE-2023-43801 | 2023-10-18 | Path traversal in Arduino Create Agent |
| CVE-2023-43800 | 2023-10-18 | Insufficient Verification of Data Authenticity in Arduino Create Agent |
| CVE-2023-45814 | 2023-10-18 | Tokens cached in the AuthenticationService are susceptible to reuse in Bunkum |
| CVE-2023-45812 | 2023-10-18 | Improper Check or Handling of Exceptional Conditions in apollo-router |
| CVE-2023-45146 | 2023-10-18 | Remote code execution in XXL-RPC |
| CVE-2023-37502 | 2023-10-18 | An unrestricted file upload vulnerability affects HCL Compass |
| CVE-2023-34441 | 2023-10-18 | Baker Hughes Bently Nevada 3500 System Cleartext Transmission of Sensitive Information |
| CVE-2023-34437 | 2023-10-18 | Baker Hughes Bently Nevada 3500 System Incorrect Permission Assignment for Critical Resource |
| CVE-2023-36857 | 2023-10-18 | Baker Hughes Bently Nevada 3500 System Authentication Bypass by Capture-replay |
| CVE-2022-37830 | 2023-10-19 | Interway a.s WebJET CMS 8.6.896 is vulnerable to Cross Site... |
| CVE-2022-42150 | 2023-10-19 | TinyLab linux-lab v1.1-rc1 and cloud-labv0.8-rc2, v1.1-rc1 are vulnerable to insecure... |
| CVE-2022-47583 | 2023-10-19 | Terminal character injection in Mintty before 3.6.3 allows code execution... |
| CVE-2023-27791 | 2023-10-19 | An issue found in IXP Data Easy Install 6.6.148840 allows... |
| CVE-2023-27792 | 2023-10-19 | An issue found in IXP Data Easy Install v.6.6.14884.0 allows... |
| CVE-2023-27793 | 2023-10-19 | An issue discovered in IXP Data Easy Install v.6.6.14884.0 allows... |
| CVE-2023-27795 | 2023-10-19 | An issue found in IXP Data Easy Install v.6.6.14884.0 allows... |
| CVE-2023-30131 | 2023-10-19 | An issue discovered in IXP EasyInstall 6.6.14884.0 allows attackers to... |
| CVE-2023-30132 | 2023-10-19 | An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers... |
| CVE-2023-30633 | 2023-10-19 | An issue was discovered in TrEEConfigDriver in Insyde InsydeH2O with... |
| CVE-2023-31046 | 2023-10-19 | A Path Traversal vulnerability exists in PaperCut NG before 22.1.1... |
| CVE-2023-39731 | 2023-10-19 | The leakage of the client secret in Kaibutsunosato v13.6.1 allows... |
| CVE-2023-43251 | 2023-10-19 | XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via... |
| CVE-2023-43252 | 2023-10-19 | XNSoft Nconvert 7.136 is vulnerable to Buffer Overflow via a... |
| CVE-2023-43340 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in evolution v.3.2.3 allows a local... |
| CVE-2023-43341 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in evolution evo v.3.2.3 allows a... |
| CVE-2023-43342 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows... |
| CVE-2023-43344 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows... |
| CVE-2023-43345 | 2023-10-19 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows... |
| CVE-2023-43359 | 2023-10-19 | Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local... |
| CVE-2023-43875 | 2023-10-19 | Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS... |
| CVE-2023-43986 | 2023-10-19 | DM Concept configurator before v4.9.4 was discovered to contain a... |
| CVE-2023-44690 | 2023-10-19 | Inadequate encryption strength in mycli 1.27.0 allows attackers to view... |
| CVE-2023-45277 | 2023-10-19 | Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of... |
| CVE-2023-45278 | 2023-10-19 | Directory Traversal vulnerability in the storage functionality of the API... |
| CVE-2023-45279 | 2023-10-19 | Yamcs 5.8.6 allows XSS (issue 1 of 2). It comes... |
| CVE-2023-45280 | 2023-10-19 | Yamcs 5.8.6 allows XSS (issue 2 of 2). It comes... |
| CVE-2023-45281 | 2023-10-19 | An issue in Yamcs 5.8.6 allows attackers to obtain the... |
| CVE-2023-45376 | 2023-10-19 | In the module "Carousels Pack - Instagram, Products, Brands, Supplier"... |
| CVE-2023-45379 | 2023-10-19 | In the module "Rotator Img" (posrotatorimg) in versions at least... |
| CVE-2023-45381 | 2023-10-19 | In the module "Creative Popup" (creativepopup) up to version 1.6.9... |
| CVE-2023-45384 | 2023-10-19 | KnowBand supercheckout > 5.0.7 and < 6.0.7 is vulnerable to... |
| CVE-2023-45883 | 2023-10-19 | A privilege escalation vulnerability exists within the Qumu Multicast Extension... |
| CVE-2023-45992 | 2023-10-19 | A vulnerability in the web-based interface of the RUCKUS Cloudpath... |
| CVE-2023-46033 | 2023-10-19 | D-Link (Non-US) DSL-2750U N300 ADSL2+ and (Non-US) DSL-2730U N150 ADSL2+... |
| CVE-2023-46042 | 2023-10-19 | An issue in GetSimpleCMS v.3.4.0a allows a remote attacker to... |
| CVE-2023-46228 | 2023-10-19 | zchunk before 1.3.2 has multiple integer overflows via malformed zchunk... |
| CVE-2023-46229 | 2023-10-19 | LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because crawling can... |
| CVE-2023-37504 | 2023-10-19 | An insufficient session expiration vulnerability affects HCL Compass |
| CVE-2023-5336 | 2023-10-19 | The iPanorama 360 – WordPress Virtual Tour Builder plugin for... |
| CVE-2023-4645 | 2023-10-19 | The Ad Inserter for WordPress is vulnerable to Sensitive Information... |
| CVE-2023-5639 | 2023-10-19 | The Team Showcase plugin for WordPress is vulnerable to Stored... |
| CVE-2023-5638 | 2023-10-19 | The Booster for WooCommerce plugin for WordPress is vulnerable to... |
| CVE-2023-37503 | 2023-10-19 | A weak password requirements vulnerability affects HCL Compass |
| CVE-2023-5241 | 2023-10-19 | The AI ChatBot for WordPress is vulnerable to Directory Traversal... |
| CVE-2023-5204 | 2023-10-19 | The ChatBot plugin for WordPress is vulnerable to SQL Injection... |
| CVE-2023-5212 | 2023-10-19 | The AI ChatBot plugin for WordPress is vulnerable to Arbitrary... |
| CVE-2023-5254 | 2023-10-19 | The ChatBot plugin for WordPress is vulnerable to Sensitive Information... |
| CVE-2023-34050 | 2023-10-19 | Spring AMQP Deserialization Vulnerability |
| CVE-2023-25753 | 2023-10-19 | Server-Side Request Forgery in Apache ShenYu |
| CVE-2022-24404 | 2023-10-19 | Ciphertext Malleability in TETRA |
| CVE-2022-24402 | 2023-10-19 | Intentionally weakened effective strength in TETRA TEA1 |
| CVE-2022-24401 | 2023-10-19 | Keystream recovery for arbitrary frames in TETRA |
| CVE-2022-24400 | 2023-10-19 | DCK pinning attack in TETRA |
| CVE-2022-26943 | 2023-10-19 | Weak PRNG entropy source used for authentication challenge generation in Motorola MTM5000 |
| CVE-2022-27813 | 2023-10-19 | Unconfigured memory protection modules in Motorola MTM5000 |
| CVE-2022-25333 | 2023-10-19 | Flawed SK_LOAD module authenticity check in Texas Instruments OMAP L138 |
| CVE-2022-26942 | 2023-10-19 | Multiple missing pointer validation checks in trusted execution module in Motorola MTM5000 |
| CVE-2022-26941 | 2023-10-19 | Format string vulnerability in AT+CTGL command in Motorola MTM5000 |
| CVE-2022-25334 | 2023-10-19 | Stack overflow on SK_LOAD signature length field in Texas Instruments OMAP L138 |
| CVE-2022-25332 | 2023-10-19 | SK_LOAD timing side channel during AES module decryption in Texas Instruments OMAP L138 |
| CVE-2023-46227 | 2023-10-19 | Apache inlong has an Arbitrary File Read Vulnerability |
| CVE-2023-35186 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35184 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35182 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35180 | 2023-10-19 | SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| CVE-2023-35183 | 2023-10-19 | SolarWinds Access Rights Manager Incorrect Default Permissions Local Privilege Escalation Vulnerability |
| CVE-2023-35185 | 2023-10-19 | SolarWinds Access Rights Manager OpenFile Directory Traversal Remote Code Execution Vulnerability |
| CVE-2023-35187 | 2023-10-19 | SolarWinds Access Rights Manager Directory Traversal Remote Code Execution Vulnerability |
| CVE-2023-35181 | 2023-10-19 | SolarWinds Access Rights Manager Incorrect Default Permissions Local Privilege Escalation Vulnerability |
| CVE-2023-5654 | 2023-10-19 | The React Developer Tools extension registers a message listener with... |
| CVE-2023-35126 | 2023-10-19 | An out-of-bounds write vulnerability exists within the parsers for both... |
| CVE-2023-38128 | 2023-10-19 | An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser... |
| CVE-2023-38127 | 2023-10-19 | An integer overflow exists in the "HyperLinkFrame" stream parser of... |