CVE List - 2023 / February
Showing 1701 - 1800 of 2164 CVEs for February 2023 (Page 18 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-41566 | 2023-02-22 | TIBCO EBX Add-ons Cross Site Scripting (XSS) Vulnerability |
| CVE-2023-23063 | 2023-02-22 | Cellinx NVT v1.0.6.002b was discovered to contain a local file... |
| CVE-2021-33367 | 2023-02-22 | Buffer Overflow vulnerability in Freeimage v3.18.0 allows attacker to cause... |
| CVE-2022-2883 | 2023-02-22 | In affected versions of Octopus Deploy it is possible to... |
| CVE-2022-29273 | 2023-02-22 | pfSense CE through 2.6.0 and pfSense Plus before 22.05 allow... |
| CVE-2022-39983 | 2023-02-22 | File upload vulnerability in Instantdeveloper RD3 22.0.8500, allows attackers to... |
| CVE-2022-41567 | 2023-02-22 | TIBCO BusinessConnect Stored XSS Vulnerability |
| CVE-2022-45599 | 2023-02-22 | Aztech WMB250AC Mesh Routers Firmware Version 016 2020 is vulnerable... |
| CVE-2022-45600 | 2023-02-22 | Aztech WMB250AC Mesh Routers Firmware Version 016 2020 devices improperly... |
| CVE-2022-48149 | 2023-02-22 | Online Student Admission System in PHP Free Source Code 1.0... |
| CVE-2023-0947 | 2023-02-22 | Path Traversal in flatpressblog/flatpress |
| CVE-2023-0949 | 2023-02-22 | Cross-site Scripting (XSS) - Reflected in modoboa/modoboa |
| CVE-2023-22972 | 2023-02-22 | A Reflected Cross-site scripting (XSS) vulnerability in interface/forms/eye_mag/php/eye_mag_functions.php in OpenEMR... |
| CVE-2023-22973 | 2023-02-22 | A Local File Inclusion (LFI) vulnerability in interface/forms/LBF/new.php in OpenEMR... |
| CVE-2023-22974 | 2023-02-22 | A Path Traversal in setup.php in OpenEMR < 7.0.0 allows... |
| CVE-2023-23039 | 2023-02-22 | An issue was discovered in the Linux kernel through 6.2.0-rc2.... |
| CVE-2023-23040 | 2023-02-22 | TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated... |
| CVE-2023-24093 | 2023-02-22 | An access control issue in H3C A210-G A210-GV100R005 allows attackers... |
| CVE-2023-24107 | 2023-02-22 | hour_of_code_python_2015 commit 520929797b9ca43bb818b2e8f963fb2025459fa3 was discovered to contain a code execution... |
| CVE-2023-24108 | 2023-02-22 | MvcTools 6d48cd6830fc1df1d8c9d61caa1805fd6a1b7737 was discovered to contain a code execution backdoor... |
| CVE-2023-24114 | 2023-02-22 | typecho 1.1/17.10.30 was discovered to contain a remote code execution... |
| CVE-2023-26214 | 2023-02-22 | TIBCO BusinessConnect Reflected XSS Vulnerability |
| CVE-2023-26314 | 2023-02-22 | The mono package before 6.8.0.105+dfsg-3.3 for Debian allows arbitrary code... |
| CVE-2021-4325 | 2023-02-22 | NHN TOAST UI Chart Legend cross site scripting |
| CVE-2023-0953 | 2023-02-22 | Insufficient input sanitization in the documentation feature of Devolutions Server... |
| CVE-2023-0951 | 2023-02-22 | Improper access controls on some API endpoints in Devolutions Server... |
| CVE-2023-0952 | 2023-02-22 | Improper access controls on entries in Devolutions Server 2022.3.12 and... |
| CVE-2022-41217 | 2023-02-22 | Cloudflow - Unauthenticated file upload vulnerability |
| CVE-2022-41216 | 2023-02-22 | Cloudflow - Local File Inclusion Vulnerability |
| CVE-2021-4326 | 2023-02-22 | Imperative Local Command Injection allows Activity Masking |
| CVE-2022-43870 | 2023-02-22 | IBM Spectrum Virtualize information disclosure |
| CVE-2022-43873 | 2023-02-22 | IBM Spectrum Virtualize privilege escalation |
| CVE-2022-43578 | 2023-02-22 | IBM Sterling B2B Integrator Standard Edition cross-site scripting |
| CVE-2023-0960 | 2023-02-22 | SeaCMS Picture Management config.ftp.php deserialization |
| CVE-2023-0961 | 2023-02-22 | SourceCodester Music Gallery Site GET Request view_music_details.php sql injection |
| CVE-2023-0962 | 2023-02-22 | SourceCodester Music Gallery Site GET Request Master.php sql injection |
| CVE-2023-0963 | 2023-02-22 | SourceCodester Music Gallery Site POST Request Users.php access control |
| CVE-2023-25813 | 2023-02-22 | SQL Injection via replacements in sequelize |
| CVE-2023-25579 | 2023-02-22 | Directory traversal in Nextcloud server |
| CVE-2023-0964 | 2023-02-22 | SourceCodester Sales Tracker Management System view_product.php sql injection |
| CVE-2023-0846 | 2023-02-22 | Unauthenticated, stored XSS in display of alarm reduction-key |
| CVE-2023-25154 | 2023-02-22 | Cross site scripting (XSS) of ActivityPub URI in misskey |
| CVE-2023-24812 | 2023-02-22 | SQL injection of notes/search-by-tag |
| CVE-2023-24811 | 2023-02-22 | Cross site scripting (XSS) vulnerability using url preview in Misskey |
| CVE-2023-24810 | 2023-02-22 | Cross site scripting (XSS) vulnerability using authentication callback in Misskey |
| CVE-2023-0966 | 2023-02-22 | SourceCodester Online Eyewear Shop cross site scripting |
| CVE-2023-0927 | 2023-02-22 | Use after free in Web Payments API in Google Chrome... |
| CVE-2023-0928 | 2023-02-22 | Use after free in SwiftShader in Google Chrome prior to... |
| CVE-2023-0929 | 2023-02-22 | Use after free in Vulkan in Google Chrome prior to... |
| CVE-2023-0930 | 2023-02-22 | Heap buffer overflow in Video in Google Chrome prior to... |
| CVE-2023-0931 | 2023-02-22 | Use after free in Video in Google Chrome prior to... |
| CVE-2023-0932 | 2023-02-22 | Use after free in WebRTC in Google Chrome on Windows... |
| CVE-2023-0933 | 2023-02-22 | Integer overflow in PDF in Google Chrome prior to 110.0.5481.177... |
| CVE-2023-0941 | 2023-02-22 | Use after free in Prompts in Google Chrome prior to... |
| CVE-2023-0104 | 2023-02-22 | The listed versions for Weintek EasyBuilder Pro are vulnerable to... |
| CVE-2022-37936 | 2023-02-22 | Unauthenticated Java deserialization vulnerability in Serviceguard Manager |
| CVE-2022-37937 | 2023-02-22 | Pre-auth memory corruption in HPE Serviceguard |
| CVE-2022-37938 | 2023-02-22 | Unauthenticated server side request forgery in HPE Serviceguard Manager |
| CVE-2023-26302 | 2023-02-22 | markdown-it-py CLI crash on invalid UTF-8 characters |
| CVE-2023-26303 | 2023-02-22 | markdown-it-py crash on null assertions |
| CVE-2023-20011 | 2023-02-23 | Cisco Application Policy Infrastructure Controller and Cisco Cloud Network Controller Cross-Site Request Forgery Vulnerability |
| CVE-2023-20012 | 2023-02-23 | Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability |
| CVE-2023-20015 | 2023-02-23 | Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability |
| CVE-2023-20016 | 2023-02-23 | Cisco FXOS Software and UCS Manager Software Configuration Backup Static Key Vulnerability |
| CVE-2023-20050 | 2023-02-23 | Cisco NX-OS Software CLI Command Injection Vulnerability |
| CVE-2023-20089 | 2023-02-23 | Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability |
| CVE-2023-23915 | 2023-02-23 | A cleartext transmission of sensitive information vulnerability exists in curl... |
| CVE-2022-3219 | 2023-02-23 | GnuPG can be made to spin on a relatively small... |
| CVE-2022-36231 | 2023-02-23 | pdf_info 0.5.3 is vulnerable to Command Execution because the Ruby... |
| CVE-2022-4492 | 2023-02-23 | The undertow client is not checking the server identity presented... |
| CVE-2022-46784 | 2023-02-23 | SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows open... |
| CVE-2022-46785 | 2023-02-23 | SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows XSS... |
| CVE-2022-46786 | 2023-02-23 | SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows XSS... |
| CVE-2022-48341 | 2023-02-23 | ThingsBoard 3.4.1 could allow a remote authenticated attacker to achieve... |
| CVE-2023-0044 | 2023-02-23 | If the Quarkus Form Authentication session cookie Path attribute is... |
| CVE-2023-0597 | 2023-02-23 | A flaw possibility of memory leak in the Linux kernel... |
| CVE-2023-23294 | 2023-02-23 | Korenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0... |
| CVE-2023-23295 | 2023-02-23 | Korenix Jetwave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0... |
| CVE-2023-23296 | 2023-02-23 | Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0... |
| CVE-2023-23914 | 2023-02-23 | A cleartext transmission of sensitive information vulnerability exists in curl... |
| CVE-2023-23916 | 2023-02-23 | An allocation of resources without limits or throttling vulnerability exists... |
| CVE-2023-23917 | 2023-02-23 | A prototype pollution vulnerability exists in Rocket.Chat server <5.2.0 that... |
| CVE-2023-23918 | 2023-02-23 | A privilege escalation vulnerability exists in Node.js <19.6.1, <18.14.1, <16.19.1... |
| CVE-2023-23919 | 2023-02-23 | A cryptographic vulnerability exists in Node.js <19.2.0, <18.14.1, <16.19.1, <14.21.3... |
| CVE-2023-23920 | 2023-02-23 | An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1,... |
| CVE-2023-24104 | 2023-02-23 | Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to... |
| CVE-2023-24205 | 2023-02-23 | Clash for Windows v0.20.12 was discovered to contain a remote... |
| CVE-2023-24212 | 2023-02-23 | Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow... |
| CVE-2023-24317 | 2023-02-23 | Judging Management System 1.0 was discovered to contain an arbitrary... |
| CVE-2023-26325 | 2023-02-23 | The 'rx_export_review' action in the ReviewX WordPress Plugin, is affected... |
| CVE-2023-26326 | 2023-02-23 | The BuddyForms WordPress plugin, in versions prior to 2.7.8, was... |
| CVE-2023-26462 | 2023-02-23 | ThingsBoard 3.4.1 could allow a remote attacker to gain elevated... |
| CVE-2023-26468 | 2023-02-23 | Cerebrate 1.12 does not properly consider organisation_id during creation of... |
| CVE-2023-0939 | 2023-02-23 | Multiple SQL Injection on NTN Information Technologies' Online Services software |
| CVE-2023-25621 | 2023-02-23 | Apache Sling does not allow to handle i18n content in a secure way |
| CVE-2023-0980 | 2023-02-23 | SourceCodester Yoga Class Registration System Status Update update_status.php sql injection |
| CVE-2023-0981 | 2023-02-23 | SourceCodester Yoga Class Registration System Delete User sql injection |
| CVE-2023-0982 | 2023-02-23 | SourceCodester Yoga Class Registration System Add Class Entry sql injection |
| CVE-2022-2504 | 2023-02-23 | SQLi in SDD-Baro |
| CVE-2023-0869 | 2023-02-23 | Cross-site scripting in outage/list.htm |