CVE List - 2023 / April
Showing 301 - 400 of 2302 CVEs for April 2023 (Page 4 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-1708 | 2023-04-05 | An issue was identified in GitLab CE/EE affecting all versions... |
| CVE-2023-1710 | 2023-04-05 | A sensitive information disclosure vulnerability in GitLab affecting all versions... |
| CVE-2023-1733 | 2023-04-05 | A denial of service condition exists in the Prometheus server... |
| CVE-2023-1756 | 2023-04-05 | Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq |
| CVE-2023-1757 | 2023-04-05 | Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq |
| CVE-2023-1758 | 2023-04-05 | Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in thorsten/phpmyfaq |
| CVE-2023-1787 | 2023-04-05 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2023-1788 | 2023-04-05 | Insufficient Session Expiration in firefly-iii/firefly-iii |
| CVE-2023-1855 | 2023-04-05 | A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in... |
| CVE-2023-1877 | 2023-04-05 | Command Injection in microweber/microweber |
| CVE-2023-1878 | 2023-04-05 | Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq |
| CVE-2023-1879 | 2023-04-05 | Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq |
| CVE-2023-1880 | 2023-04-05 | Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq |
| CVE-2023-1881 | 2023-04-05 | Cross-site Scripting (XSS) - Stored in microweber/microweber |
| CVE-2023-1882 | 2023-04-05 | Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq |
| CVE-2023-1883 | 2023-04-05 | Improper Access Control in thorsten/phpmyfaq |
| CVE-2023-1884 | 2023-04-05 | Cross-site Scripting (XSS) - Generic in thorsten/phpmyfaq |
| CVE-2023-1885 | 2023-04-05 | Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq |
| CVE-2023-1886 | 2023-04-05 | Authentication Bypass by Capture-replay in thorsten/phpmyfaq |
| CVE-2023-1887 | 2023-04-05 | Business Logic Errors in thorsten/phpmyfaq |
| CVE-2023-1892 | 2023-04-05 | Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq |
| CVE-2023-24720 | 2023-04-05 | An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers... |
| CVE-2023-24747 | 2023-04-05 | Jfinal CMS v5.1 was discovered to contain a cross-site scripting... |
| CVE-2023-26789 | 2023-04-05 | Veritas NetBackUp OpsCenter Version 9.1.0.1 is vulnerable to Reflected Cross-site... |
| CVE-2023-26856 | 2023-04-05 | Dynamic Transaction Queuing System v1.0 was discovered to contain a... |
| CVE-2023-26857 | 2023-04-05 | An arbitrary file upload vulnerability in /admin/ajax.php?action=save_uploads of Dynamic Transaction... |
| CVE-2023-28342 | 2023-04-05 | Zoho ManageEngine ADSelfService Plus before 6218 allows anyone to conduct... |
| CVE-2023-28639 | 2023-04-05 | GLPI vulnerable to reflected Cross-site Scripting in search pages |
| CVE-2023-29374 | 2023-04-05 | In LangChain through 0.0.131, the LLMMathChain chain allows prompt injection... |
| CVE-2023-29389 | 2023-04-05 | Toyota RAV4 2021 vehicles automatically trust messages from other ECUs... |
| CVE-2023-1845 | 2023-04-05 | SourceCodester Online Payroll System employee_row.php sql injection |
| CVE-2023-0382 | 2023-04-05 | Uncontrolled Resource Consumption in M-Files Server |
| CVE-2023-1846 | 2023-04-05 | SourceCodester Online Payroll System deduction_row.php sql injection |
| CVE-2023-1847 | 2023-04-05 | SourceCodester Online Payroll System attendance.php sql injection |
| CVE-2023-1848 | 2023-04-05 | SourceCodester Online Payroll System attendance_row.php sql injection |
| CVE-2023-1849 | 2023-04-05 | SourceCodester Online Payroll System cashadvance_row.php sql injection |
| CVE-2023-1850 | 2023-04-05 | SourceCodester Online Payroll System login.php sql injection |
| CVE-2023-26536 | 2023-04-05 | WordPress Sp*tify Play Button for WordPress Plugin <= 2.05 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-1851 | 2023-04-05 | SourceCodester Online Payroll System employee_add.php cross site scripting |
| CVE-2023-1852 | 2023-04-05 | SourceCodester Online Payroll System deduction_edit.php cross site scripting |
| CVE-2023-1853 | 2023-04-05 | SourceCodester Online Payroll System employee_edit.php cross site scripting |
| CVE-2023-1854 | 2023-04-05 | SourceCodester Online Graduate Tracer System session expiration |
| CVE-2023-1856 | 2023-04-05 | SourceCodester Air Cargo Management System GET Parameter track_shipment.php sql injection |
| CVE-2023-1857 | 2023-04-05 | SourceCodester Online Computer and Laptop Store cross site scripting |
| CVE-2023-28069 | 2023-04-05 | Dell Streaming Data Platform prior to 1.4 contains Open Redirect... |
| CVE-2023-1858 | 2023-04-05 | SourceCodester Earnings and Expense Tracker App index.php information disclosure |
| CVE-2023-1860 | 2023-04-05 | Keysight IXIA Hawkeye licenses cross site scripting |
| CVE-2013-10022 | 2023-04-05 | BestWebSoft Contact Form Plugin contact_form.php cntctfrm_check_form cross site scripting |
| CVE-2023-1865 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to unauthorized loss... |
| CVE-2023-1866 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to Cross-Site Request... |
| CVE-2023-1867 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to Cross-Site Request... |
| CVE-2023-1868 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to unauthorized loss... |
| CVE-2023-1869 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to Stored Cross-Site... |
| CVE-2023-1870 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to Cross-Site Request... |
| CVE-2023-1871 | 2023-04-05 | The YourChannel plugin for WordPress is vulnerable to Cross-Site Request... |
| CVE-2023-28632 | 2023-04-05 | GLPI vulnerable to account takeover by authenticated user |
| CVE-2023-22660 | 2023-04-05 | A heap-based buffer overflow vulnerability exists in the way Ichitaro... |
| CVE-2023-22291 | 2023-04-05 | An invalid free vulnerability exists in the Frame stream parser... |
| CVE-2022-45115 | 2023-04-05 | A buffer overflow vulnerability exists in the Attribute Arena functionality... |
| CVE-2022-43664 | 2023-04-05 | A use-after-free vulnerability exists within the way Ichitaro Word Processor... |
| CVE-2023-1412 | 2023-04-05 | Local Privilege Escalation Vulnerability in WARP's MSI Installer |
| CVE-2023-28633 | 2023-04-05 | GLPI vulnerable to Blind Server-Side Request Forgery (SSRF) in RSS feeds |
| CVE-2023-20118 | 2023-04-05 | A vulnerability in the web-based management interface of Cisco Small... |
| CVE-2023-28634 | 2023-04-05 | GLPI vulnerable to Privilege Escalation from Technician to Super-Admin |
| CVE-2023-28636 | 2023-04-05 | GLPI vulnerable to stored Cross-site Scripting in external links |
| CVE-2022-4935 | 2023-04-05 | The WCFM Marketplace plugin for WordPress is vulnerable to unauthorized... |
| CVE-2022-4936 | 2023-04-05 | The WCFM Marketplace plugin for WordPress is vulnerable to Cross-Site... |
| CVE-2023-28838 | 2023-04-05 | GLPI vulnerable to SQL injection through dynamic reports |
| CVE-2022-4937 | 2023-04-05 | The WCFM Frontend Manager plugin for WordPress is vulnerable to... |
| CVE-2022-4938 | 2023-04-05 | The WCFM Frontend Manager plugin for WordPress is vulnerable to... |
| CVE-2023-28849 | 2023-04-05 | GLPI vulnerable to SQL injection and Stored XSS via inventory agent request |
| CVE-2023-28852 | 2023-04-05 | GLPI vulnerable to stored Cross-site Scripting through dashboard administration |
| CVE-2023-28855 | 2023-04-05 | Fields GLPI plugin vulnerable to unauthorized write access to additional fields |
| CVE-2023-29006 | 2023-04-05 | Order GLPI plugin vulnerable to remote code execution from authenticated user |
| CVE-2022-4939 | 2023-04-05 | THe WCFM Membership plugin for WordPress is vulnerable to privilege... |
| CVE-2022-4940 | 2023-04-05 | The WCFM Membership plugin for WordPress is vulnerable to unauthorized... |
| CVE-2022-4941 | 2023-04-05 | The WCFM Membership plugin for WordPress is vulnerable to Cross-Site... |
| CVE-2023-1522 | 2023-04-05 | SQL Injection in the Hardware Inventory report of Security Center... |
| CVE-2023-1782 | 2023-04-05 | Nomad Unauthenticated Client Agent HTTP Request Privilege Escalation |
| CVE-2023-20677 | 2023-04-06 | In wlan, there is a possible out of bounds read... |
| CVE-2023-29417 | 2023-04-06 | An issue was discovered in libbzip3.a in bzip3 1.2.2. There... |
| CVE-2020-19678 | 2023-04-06 | Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata... |
| CVE-2020-36071 | 2023-04-06 | SQL injection vulnerability found in Tailor Management System v.1 allows... |
| CVE-2020-36072 | 2023-04-06 | SQL injection vulnerability found in Tailor Management System v.1 allows... |
| CVE-2020-36073 | 2023-04-06 | SQL injection vulnerability found in Tailor Management System v.1 allows... |
| CVE-2020-36074 | 2023-04-06 | SQL injection vulnerability found in Tailor Mangement System v.1 allows... |
| CVE-2022-32599 | 2023-04-06 | In rpmb, there is a possible out of bounds write... |
| CVE-2022-46781 | 2023-04-06 | An issue was discovered in the Arm Mali GPU Kernel... |
| CVE-2023-20652 | 2023-04-06 | In keyinstall, there is a possible out of bounds write... |
| CVE-2023-20653 | 2023-04-06 | In keyinstall, there is a possible out of bounds write... |
| CVE-2023-20654 | 2023-04-06 | In keyinstall, there is a possible out of bounds write... |
| CVE-2023-20655 | 2023-04-06 | In mmsdk, there is a possible escalation of privilege due... |
| CVE-2023-20656 | 2023-04-06 | In geniezone, there is a possible out of bounds write... |
| CVE-2023-20657 | 2023-04-06 | In mtee, there is a possible out of bounds write... |
| CVE-2023-20658 | 2023-04-06 | In isp, there is a possible out of bounds write... |
| CVE-2023-20659 | 2023-04-06 | In wlan, there is a possible out of bounds write... |
| CVE-2023-20660 | 2023-04-06 | In wlan, there is a possible out of bounds read... |
| CVE-2023-20661 | 2023-04-06 | In wlan, there is a possible out of bounds write... |
| CVE-2023-20662 | 2023-04-06 | In wlan, there is a possible out of bounds write... |
| CVE-2023-20663 | 2023-04-06 | In wlan, there is a possible out of bounds write... |