CVE List - 2023 / November
Showing 2301 - 2400 of 2443 CVEs for November 2023 (Page 24 of 25)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-48289 | 2023-11-30 | WordPress Import Spreadsheets from Microsoft Excel Plugin <= 10.1.3 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-47854 | 2023-11-30 | WordPress Parallax Image Plugin <= 1.7.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-47851 | 2023-11-30 | WordPress Bootstrap Shortcodes Ultimate Plugin <= 4.3.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-49733 | 2023-11-30 | Apache Cocoon's StreamGenerator is vulnerable to XXE injection |
| CVE-2023-47850 | 2023-11-30 | WordPress Community by PeepSo Plugin <= 6.2.2.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-47777 | 2023-11-30 | WordPress WooCommerce and WooCommerce Blocks plugins - Auth. Cross-Site Scripting (XSS) vulnerability |
| CVE-2023-47505 | 2023-11-30 | WordPress Elementor Website Builder Plugin <= 3.16.4 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45050 | 2023-11-30 | WordPress Jetpack Plugin <= 12.8-a.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-41136 | 2023-11-30 | WordPress Simple Long Form Plugin <= 2.2.2 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-41128 | 2023-11-30 | WordPress WP Roadmap Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-41127 | 2023-11-30 | WordPress Evergreen Content Poster Plugin <= 1.3.6.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-40680 | 2023-11-30 | WordPress Yoast SEO Plugin <= 21.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-40674 | 2023-11-30 | WordPress Simple URLs Plugin <= 118 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-38474 | 2023-11-30 | WordPress Campaign Monitor for WordPress Plugin <= 2.8.12 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32291 | 2023-11-30 | WordPress MonsterInsights Pro Plugin <= 8.14.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-48744 | 2023-11-30 | WordPress Availability Calendar Plugin <= 1.2.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-6071 | 2023-11-30 | An Improper Neutralization of Special Elements used in a command... |
| CVE-2023-6137 | 2023-11-30 | WordPress Frontier Post Plugin <= 6.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48334 | 2023-11-30 | WordPress League Table Plugin <= 1.13 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48331 | 2023-11-30 | WordPress MyBookTable Bookstore Plugin <= 3.3.4 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48330 | 2023-11-30 | WordPress Bulk Comment Remove Plugin <= 2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48323 | 2023-11-30 | WordPress Awesome Support Plugin <= 6.1.4 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48284 | 2023-11-30 | WordPress Decorator – WooCommerce Email Customizer Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48283 | 2023-11-30 | WordPress Simple Testimonials Showcase Plugin <= 1.1.5 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48282 | 2023-11-30 | WordPress Taxonomy filter Plugin <= 2.2.9 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48281 | 2023-11-30 | WordPress Broken Link Checker for YouTube Plugin <= 1.3 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-6410 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6411 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6412 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6413 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6414 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6415 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6416 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6417 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-48279 | 2023-11-30 | WordPress Seraphinite Post .DOCX Source Plugin <= 2.16.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-6418 | 2023-11-30 | SQL injection in Voovi Social Networking Script |
| CVE-2023-6419 | 2023-11-30 | Cross-site Scripting vulnerability in Voovi Social Networking Script |
| CVE-2023-6420 | 2023-11-30 | Cross-site Scripting vulnerability in Voovi Social Networking Script |
| CVE-2023-5965 | 2023-11-30 | Unrestricted Upload of File with Dangerous Type in EspoCRM |
| CVE-2023-5966 | 2023-11-30 | Unrestricted Upload of File with Dangerous Type in EspoCRM |
| CVE-2023-47827 | 2023-11-30 | WordPress Events Addon for Elementor Plugin <= 2.1.3 is vulnerable to Broken Access Control |
| CVE-2023-4770 | 2023-11-30 | Uncontrolled Search Path Element Vulnerability in 4D and 4D Windows Server |
| CVE-2023-47645 | 2023-11-30 | WordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-6026 | 2023-11-30 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in PHPMemcachedAdmin |
| CVE-2023-6027 | 2023-11-30 | Cross-site Scripting vulnerability in PHPMemcachedAdmin |
| CVE-2023-36685 | 2023-11-30 | WordPress CartFlows Pro Plugin <= 1.11.12 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-36682 | 2023-11-30 | WordPress Schema Pro Plugin <= 2.7.7 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-6422 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6423 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6424 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6425 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6426 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6427 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6428 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6429 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-34030 | 2023-11-30 | WordPress Complianz and Complianz Premium plugins - Cross Site Request Forgery (CSRF) |
| CVE-2023-6430 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6431 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6432 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6433 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6434 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-6435 | 2023-11-30 | Cross-site Scripting vulnerability in BigProf products |
| CVE-2023-33333 | 2023-11-30 | WordPress Complianz and Complianz Premium plugins - Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) |
| CVE-2023-48742 | 2023-11-30 | WordPress License Manager for WooCommerce Plugin <= 2.2.10 is vulnerable to SQL Injection |
| CVE-2023-37867 | 2023-11-30 | WordPress Yet Another Stars Rating Plugin <= 3.3.8 is vulnerable to Race Condition |
| CVE-2023-6136 | 2023-11-30 | WordPress Debug Log Manager Plugin <= 2.3.0 is vulnerable to Sensitive Data Exposure |
| CVE-2023-48333 | 2023-11-30 | WordPress Booster for WooCommerce Plugin <= 7.1.1 is vulnerable to Sensitive Data Exposure |
| CVE-2023-6401 | 2023-11-30 | NotePad++ dbghelp.exe uncontrolled search path |
| CVE-2023-46820 | 2023-11-30 | WordPress Image Regenerate & Select Crop Plugin <= 7.3.0 is vulnerable to Sensitive Data Exposure |
| CVE-2023-45834 | 2023-11-30 | WordPress Libsyn Publisher Hub Plugin <= 1.4.4 is vulnerable to Sensitive Data Exposure |
| CVE-2023-45066 | 2023-11-30 | WordPress WP Ultimate Exporter Plugin <= 2.4.1 is vulnerable to Sensitive Data Exposure |
| CVE-2023-44150 | 2023-11-30 | WordPress ProfilePress Plugin <= 4.13.2 is vulnerable to Sensitive Data Exposure |
| CVE-2023-41735 | 2023-11-30 | WordPress Email posts to subscribers Plugin <= 6.2 is vulnerable to Sensitive Data Exposure |
| CVE-2023-40662 | 2023-11-30 | WordPress Cookies and Content Security Policy Plugin <= 2.15 is vulnerable to Sensitive Data Exposure |
| CVE-2023-6402 | 2023-11-30 | PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php sql injection |
| CVE-2023-40600 | 2023-11-30 | WordPress EWWW Image Optimizer Plugin <= 7.2.0 is vulnerable to Sensitive Data Exposure |
| CVE-2023-40211 | 2023-11-30 | WordPress Post Grid Plugin <= 2.2.50 is vulnerable to Sensitive Data Exposure |
| CVE-2023-37972 | 2023-11-30 | WordPress WooCommerce Product Stock Alert Plugin <= 2.0.1 is vulnerable to Sensitive Data Exposure |
| CVE-2023-37890 | 2023-11-30 | WordPress KB Support Plugin <= 1.5.88 is vulnerable to Broken Access Control |
| CVE-2023-6360 | 2023-11-30 | The 'My Calendar' WordPress Plugin, version < 3.4.22 is affected... |
| CVE-2023-37868 | 2023-11-30 | WordPress Premium Addons PRO Plugin <= 2.9.0 is vulnerable to Sensitive Data Exposure |
| CVE-2023-36523 | 2023-11-30 | WordPress Email download link Plugin <= 3.7 is vulnerable to Sensitive Data Exposure |
| CVE-2023-36507 | 2023-11-30 | WordPress BookingPress Plugin <= 1.0.64 is vulnerable to Sensitive Data Exposure |
| CVE-2023-26533 | 2023-11-30 | WordPress Zippy Plugin <= 1.6.1 is vulnerable to Sensitive Data Exposure |
| CVE-2023-25057 | 2023-11-30 | WordPress Libsyn Publisher Hub Plugin <= 1.3.2 is vulnerable to Sensitive Data Exposure |
| CVE-2023-39921 | 2023-11-30 | WordPress Molongui Plugin <= 4.6.19 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-46086 | 2023-11-30 | WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-45609 | 2023-11-30 | WordPress Powr Pack Plugin <= 2.1.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-44143 | 2023-11-30 | WordPress Bamboo Columns Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-5803 | 2023-11-30 | WordPress Business Directory Plugin Plugin <= 6.3.10 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48754 | 2023-11-30 | WordPress Delete Post Revisions In WordPress Plugin <= 4.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48328 | 2023-11-30 | WordPress NextGEN Gallery Plugin <= 3.37 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48278 | 2023-11-30 | WordPress WP Forms Puzzle Captcha Plugin <= 4.1 is vulnerable to Cross Site Request Forgery (CSRF) leading to XSS |
| CVE-2023-47875 | 2023-11-30 | WordPress Perfmatters Plugin <= 2.1.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-48749 | 2023-11-30 | WordPress Salient Core Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-48752 | 2023-11-30 | WordPress Happyforms Plugin <= 1.25.9 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-48748 | 2023-11-30 | WordPress Salient Core Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-48746 | 2023-11-30 | WordPress Community by PeepSo Plugin <= 6.2.6.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-48321 | 2023-11-30 | WordPress Accelerated Mobile Pages Plugin <= 1.0.88.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-48320 | 2023-11-30 | WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS) |