CVE List - 2023 / December
Showing 501 - 600 of 2674 CVEs for December 2023 (Page 6 of 27)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-33411 | 2023-12-07 | A web server in the Intelligent Platform Management Interface (IPMI)... |
| CVE-2023-33412 | 2023-12-07 | The web interface in the Intelligent Platform Management Interface (IPMI)... |
| CVE-2023-33413 | 2023-12-07 | The configuration functionality in the Intelligent Platform Management Interface (IPMI)... |
| CVE-2023-39909 | 2023-12-07 | Ericsson Network Manager before 23.2 mishandles Access Control and thus... |
| CVE-2023-40238 | 2023-12-07 | A LogoFAIL issue was discovered in BmpDecoderDxe in Insyde InsydeH2O... |
| CVE-2023-40300 | 2023-12-07 | NETSCOUT nGeniusPULSE 3.8 has a Hardcoded Cryptographic Key. |
| CVE-2023-40302 | 2023-12-07 | NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability |
| CVE-2023-41106 | 2023-12-07 | An issue was discovered in Zimbra Collaboration (ZCS) before 10.0.3.... |
| CVE-2023-41168 | 2023-12-07 | NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting... |
| CVE-2023-41169 | 2023-12-07 | NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting... |
| CVE-2023-41170 | 2023-12-07 | NetScout nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting... |
| CVE-2023-41171 | 2023-12-07 | NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting... |
| CVE-2023-41172 | 2023-12-07 | NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting... |
| CVE-2023-41905 | 2023-12-07 | NETSCOUT nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting... |
| CVE-2023-41913 | 2023-12-07 | strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated... |
| CVE-2023-43102 | 2023-12-07 | An issue was discovered in Zimbra Collaboration (ZCS) before 10.0.4.... |
| CVE-2023-43103 | 2023-12-07 | An XSS issue was discovered in a web endpoint in... |
| CVE-2023-43298 | 2023-12-07 | An issue in SCOL Members Card mini-app on Line v13.6.1... |
| CVE-2023-43299 | 2023-12-07 | An issue in DA BUTCHERS mini-app on Line v13.6.1 allows... |
| CVE-2023-43300 | 2023-12-07 | An issue in urban_project mini-app on Line v13.6.1 allows attackers... |
| CVE-2023-43301 | 2023-12-07 | An issue in DARTS SHOP MAXIM mini-app on Line v13.6.1... |
| CVE-2023-43302 | 2023-12-07 | An issue in sanTas mini-app on Line v13.6.1 allows attackers... |
| CVE-2023-43303 | 2023-12-07 | An issue in craftbeer bar canvas mini-app on Line v13.6.1... |
| CVE-2023-46693 | 2023-12-07 | Cross Site Scripting (XSS) vulnerability in FormaLMS before 4.0.5 allows... |
| CVE-2023-46857 | 2023-12-07 | Squidex before 7.9.0 allows XSS via an SVG document to... |
| CVE-2023-46871 | 2023-12-07 | GPAC version 2.3-DEV-rev602-ged8424300-master in MP4Box contains a memory leak in... |
| CVE-2023-46916 | 2023-12-07 | Maxima Max Pro Power 1.0 486A devices allow BLE traffic... |
| CVE-2023-46974 | 2023-12-07 | Cross Site Scripting vulnerability in Best Courier Management System v.1.000... |
| CVE-2023-47440 | 2023-12-07 | Gladys Assistant v4.27.0 and prior is vulnerable to Directory Traversal.... |
| CVE-2023-48172 | 2023-12-07 | A Cross Site Scripting (XSS) vulnerability in Shuttle Booking Software... |
| CVE-2023-48205 | 2023-12-07 | Jorani Leave Management System 1.0.2 allows a remote attacker to... |
| CVE-2023-48206 | 2023-12-07 | A Cross Site Scripting (XSS) vulnerability in GaatiTrack Courier Management... |
| CVE-2023-48207 | 2023-12-07 | Availability Booking Calendar 5.0 allows CSV injection via the unique... |
| CVE-2023-48208 | 2023-12-07 | A Cross Site Scripting vulnerability in Availability Booking Calendar 5.0... |
| CVE-2023-48823 | 2023-12-07 | A Blind SQL injection issue in ajax.php in GaatiTrack Courier... |
| CVE-2023-48824 | 2023-12-07 | BoidCMS 2.0.1 is vulnerable to Multiple Stored Cross-Site Scripting (XSS)... |
| CVE-2023-48825 | 2023-12-07 | Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection... |
| CVE-2023-48826 | 2023-12-07 | Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection... |
| CVE-2023-48827 | 2023-12-07 | Time Slots Booking Calendar 4.0 is vulnerable to Multiple HTML... |
| CVE-2023-48828 | 2023-12-07 | Time Slots Booking Calendar 4.0 is vulnerable to Multiple Stored... |
| CVE-2023-48830 | 2023-12-07 | Shuttle Booking Software 2.0 is vulnerable to CSV Injection in... |
| CVE-2023-48831 | 2023-12-07 | A lack of rate limiting in pjActionAJaxSend in Availability Booking... |
| CVE-2023-48833 | 2023-12-07 | A lack of rate limiting in pjActionAJaxSend in Time Slots... |
| CVE-2023-48835 | 2023-12-07 | Car Rental Script v3.0 is vulnerable to CSV Injection via... |
| CVE-2023-48836 | 2023-12-07 | Car Rental Script 3.0 is vulnerable to Multiple Stored Cross-Site... |
| CVE-2023-48837 | 2023-12-07 | Car Rental Script 3.0 is vulnerable to Multiple HTML Injection... |
| CVE-2023-48838 | 2023-12-07 | Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues... |
| CVE-2023-48839 | 2023-12-07 | Appointment Scheduler 3.0 is vulnerable to Multiple Stored Cross-Site Scripting... |
| CVE-2023-48840 | 2023-12-07 | A lack of rate limiting in pjActionAjaxSend in Appointment Scheduler... |
| CVE-2023-48841 | 2023-12-07 | Appointment Scheduler 3.0 is vulnerable to CSV Injection via a... |
| CVE-2023-48860 | 2023-12-07 | TOTOLINK N300RT version 3.2.4-B20180730.0906 has a post-authentication RCE due to... |
| CVE-2023-48861 | 2023-12-07 | DLL hijacking vulnerability in TTplayer version 7.0.2, allows local attackers... |
| CVE-2023-48958 | 2023-12-07 | gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gf_mpd_resolve_url media_tools/mpd.c:4589. |
| CVE-2023-49402 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-49403 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection... |
| CVE-2023-49405 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-49406 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution... |
| CVE-2023-49408 | 2023-12-07 | Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow... |
| CVE-2023-49409 | 2023-12-07 | Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution... |
| CVE-2023-49410 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-49411 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) contains a stack overflow vulnerability via the... |
| CVE-2023-49424 | 2023-12-07 | Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow... |
| CVE-2023-49425 | 2023-12-07 | Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow... |
| CVE-2023-49426 | 2023-12-07 | Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow... |
| CVE-2023-49428 | 2023-12-07 | Tenda AX12 V22.03.01.46 has been discovered to contain a command... |
| CVE-2023-49429 | 2023-12-07 | Tenda AX9 V22.03.01.46 was discovered to contain a SQL command... |
| CVE-2023-49430 | 2023-12-07 | Tenda AX9 V22.03.01.46 has been found to contain a stack... |
| CVE-2023-49431 | 2023-12-07 | Tenda AX9 V22.03.01.46 has been discovered to contain a command... |
| CVE-2023-49432 | 2023-12-07 | Tenda AX9 V22.03.01.46 has been found to contain a stack... |
| CVE-2023-49433 | 2023-12-07 | Tenda AX9 V22.03.01.46 has been found to contain a stack... |
| CVE-2023-49434 | 2023-12-07 | Tenda AX9 V22.03.01.46 has been found to contain a stack... |
| CVE-2023-49435 | 2023-12-07 | Tenda AX9 V22.03.01.46 is vulnerable to command injection. |
| CVE-2023-49436 | 2023-12-07 | Tenda AX9 V22.03.01.46 has been discovered to contain a command... |
| CVE-2023-49460 | 2023-12-07 | libheif v1.17.5 was discovered to contain a segmentation violation via... |
| CVE-2023-49462 | 2023-12-07 | libheif v1.17.5 was discovered to contain a segmentation violation via... |
| CVE-2023-49463 | 2023-12-07 | libheif v1.17.5 was discovered to contain a segmentation violation via... |
| CVE-2023-49464 | 2023-12-07 | libheif v1.17.5 was discovered to contain a segmentation violation via... |
| CVE-2023-49465 | 2023-12-07 | Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in... |
| CVE-2023-49467 | 2023-12-07 | Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in... |
| CVE-2023-49468 | 2023-12-07 | Libde265 v1.0.14 was discovered to contain a global buffer overflow... |
| CVE-2023-49492 | 2023-12-07 | DedeCMS v5.7.111 was discovered to contain a reflective cross-site scripting... |
| CVE-2023-49955 | 2023-12-07 | An issue was discovered in Dalmann OCPP.Core before 1.2.0 for... |
| CVE-2023-49956 | 2023-12-07 | An issue was discovered in Dalmann OCPP.Core before 1.3.0 for... |
| CVE-2023-49957 | 2023-12-07 | An issue was discovered in Dalmann OCPP.Core before 1.3.0 for... |
| CVE-2023-49958 | 2023-12-07 | An issue was discovered in Dalmann OCPP.Core through 1.2.0 for... |
| CVE-2023-49967 | 2023-12-07 | Typecho v1.2.1 was discovered to be vulnerable to an XML... |
| CVE-2023-49999 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection... |
| CVE-2023-50000 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-50001 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-50002 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-40301 | 2023-12-07 | NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability. |
| CVE-2023-43304 | 2023-12-07 | An issue in PARK DANDAN mini-app on Line v13.6.1 allows... |
| CVE-2023-46307 | 2023-12-07 | An issue was discovered in server.js in etcd-browser 87ae63d75260. By... |
| CVE-2023-48834 | 2023-12-07 | A lack of rate limiting in pjActionAjaxSend in Car Rental... |
| CVE-2023-49404 | 2023-12-07 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow... |
| CVE-2023-49437 | 2023-12-07 | Tenda AX12 V22.03.01.46 has been discovered to contain a command... |
| CVE-2023-49493 | 2023-12-07 | DedeCMS v5.7.111 was discovered to contain a reflective cross-site scripting... |
| CVE-2023-6566 | 2023-12-07 | Business Logic Errors in microweber/microweber |
| CVE-2023-46218 | 2023-12-07 | This flaw allows a malicious HTTP server to set "super... |
| CVE-2023-5711 | 2023-12-07 | The System Dashboard plugin for WordPress is vulnerable to unauthorized... |