CVE List - 2023 / May
Showing 1701 - 1800 of 2420 CVEs for May 2023 (Page 18 of 25)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-28386 | 2023-05-22 | Snap One OvrC Pro devices versions 7.2 and prior do... |
| CVE-2023-31245 | 2023-05-22 | Devices using Snap One OvrC cloud are sent to a... |
| CVE-2023-31240 | 2023-05-22 | Snap One OvrC Pro versions prior to 7.2 have their... |
| CVE-2023-25183 | 2023-05-22 | In Snap One OvrC Pro versions prior to 7.2, when... |
| CVE-2023-2505 | 2023-05-22 | The affected products have a CSRF vulnerability that could allow... |
| CVE-2023-2504 | 2023-05-22 | Files present on firmware images could allow an attacker to... |
| CVE-2022-4945 | 2023-05-22 | CVE-2022-4945 |
| CVE-2022-47311 | 2023-05-22 | CVE-2022-47311 |
| CVE-2022-47320 | 2023-05-22 | CVE-2022-47320 |
| CVE-2022-46738 | 2023-05-22 | CVE-2022-46738 |
| CVE-2022-46658 | 2023-05-22 | CVE-2022-46658 |
| CVE-2020-20012 | 2023-05-23 | WebPlus Pro v1.4.7.8.4-01 is vulnerable to Incorrect Access Control. |
| CVE-2023-22654 | 2023-05-23 | Client-side enforcement of server-side security issue exists in T&D Corporation... |
| CVE-2023-23298 | 2023-05-23 | The `Toybox.Graphics.BufferedBitmap.initialize` API method in CIQ API version 2.3.0 through... |
| CVE-2023-23299 | 2023-05-23 | The permission system implemented and enforced by the GarminOS TVM... |
| CVE-2023-23300 | 2023-05-23 | The `Toybox.Cryptography.Cipher.initialize` API method in CIQ API version 3.0.0 through... |
| CVE-2023-23301 | 2023-05-23 | The `news` MonkeyC operation code in CIQ API version 1.0.0... |
| CVE-2023-23302 | 2023-05-23 | The `Toybox.GenericChannel.setDeviceConfig` API method in CIQ API version 1.2.0 through... |
| CVE-2023-23303 | 2023-05-23 | The `Toybox.Ant.GenericChannel.enableEncryption` API method in CIQ API version 3.2.0 through... |
| CVE-2023-25953 | 2023-05-23 | Code injection vulnerability in Drive Explorer for macOS versions 3.5.4... |
| CVE-2023-27304 | 2023-05-23 | Operation restriction bypass vulnerability in Message and Bulletin of Cybozu... |
| CVE-2023-27384 | 2023-05-23 | Operation restriction bypass vulnerability in MultiReport of Cybozu Garoon 5.15.0... |
| CVE-2023-27387 | 2023-05-23 | Cross-site request forgery (CSRF) in T&D Corporation and ESPEC MIC... |
| CVE-2023-27512 | 2023-05-23 | Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions... |
| CVE-2023-27514 | 2023-05-23 | OS command injection vulnerability in the download page of SolarView... |
| CVE-2023-27922 | 2023-05-23 | Cross-site scripting vulnerability in Newsletter versions prior to 7.6.9 allows... |
| CVE-2023-27923 | 2023-05-23 | Cross-site scripting vulnerability in Tag edit function of VK Blocks... |
| CVE-2023-27925 | 2023-05-23 | Cross-site scripting vulnerability in Post function of VK Blocks 1.53.0.1... |
| CVE-2023-27926 | 2023-05-23 | Cross-site scripting vulnerability in Profile setting function of VK All... |
| CVE-2023-28367 | 2023-05-23 | Cross-site scripting vulnerability in CTA post function of VK All... |
| CVE-2023-28390 | 2023-05-23 | Privilege escalation vulnerability in SR-7100VN firmware Ver.1.38(N) and earlier and... |
| CVE-2023-28392 | 2023-05-23 | Wi-Fi AP UNIT AC-PD-WAPU v1.05_B04 and earlier, AC-PD-WAPUM v1.05_B04 and... |
| CVE-2023-28394 | 2023-05-23 | Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated... |
| CVE-2023-28408 | 2023-05-23 | Directory traversal vulnerability in MW WP Form versions v4.4.2 and... |
| CVE-2023-2845 | 2023-05-23 | Improper Access Control in cloudexplorer-dev/cloudexplorer-lite |
| CVE-2023-29919 | 2023-05-23 | SolarView Compact <= 6.0 is vulnerable to Insecure Permissions. Any... |
| CVE-2023-30382 | 2023-05-23 | A buffer overflow in the component hl.exe of Valve Half-Life... |
| CVE-2023-31517 | 2023-05-23 | A memory leak in the component CConsole::Chain of Teeworlds v0.7.5... |
| CVE-2023-31708 | 2023-05-23 | A Cross-Site Request Forgery (CSRF) in EyouCMS v1.6.2 allows attackers... |
| CVE-2023-31726 | 2023-05-23 | AList 3.15.1 is vulnerable to Incorrect Access Control, which can... |
| CVE-2023-31740 | 2023-05-23 | There is a command injection vulnerability in the Linksys E2000... |
| CVE-2023-31741 | 2023-05-23 | There is a command injection vulnerability in the Linksys E2000... |
| CVE-2023-31747 | 2023-05-23 | Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an... |
| CVE-2023-31752 | 2023-05-23 | SourceCodester Employee and Visitor Gate Pass Logging System v1.0 is... |
| CVE-2023-31759 | 2023-05-23 | Weak Security in the 433MHz keyfob of Kerui W18 Alarm... |
| CVE-2023-31761 | 2023-05-23 | Weak security in the transmitter of Blitzwolf BW-IS22 Smart Home... |
| CVE-2023-31762 | 2023-05-23 | Weak security in the transmitter of Digoo DG-HAMB Smart Home... |
| CVE-2023-31763 | 2023-05-23 | Weak security in the transmitter of AGShome Smart Alarm v1.0... |
| CVE-2023-31814 | 2023-05-23 | D-Link DIR-300 firmware <=REVA1.06 and <=REVB2.06 is vulnerable to File... |
| CVE-2023-31826 | 2023-05-23 | Skyscreamer Open Source Nevado JMS v1.3.2 does not perform security... |
| CVE-2023-31860 | 2023-05-23 | Wuzhi CMS v3.1.2 has a storage type XSS vulnerability in... |
| CVE-2023-31994 | 2023-05-23 | Certain Hanwha products are vulnerable to Denial of Service (DoS).... |
| CVE-2023-31995 | 2023-05-23 | Hanwha IP Camera ANE-L7012R 1.41.01 is vulnerable to Cross Site... |
| CVE-2023-31996 | 2023-05-23 | Hanwha IP Camera ANE-L7012R 1.41.01 is vulnerable to Command Injection... |
| CVE-2023-23304 | 2023-05-23 | The GarminOS TVM component in CIQ API version 2.1.0 through... |
| CVE-2023-23305 | 2023-05-23 | The GarminOS TVM component in CIQ API version 1.0.0 through... |
| CVE-2023-23306 | 2023-05-23 | The `Toybox.Ant.BurstPayload.add` API method in CIQ API version 2.2.0 through... |
| CVE-2023-23545 | 2023-05-23 | Missing authentication for critical function exists in T&D Corporation and... |
| CVE-2023-25440 | 2023-05-23 | Stored Cross Site Scripting (XSS) vulnerability in the add contact... |
| CVE-2023-25946 | 2023-05-23 | Authentication bypass vulnerability in Qrio Lock (Q-SL2) firmware version 2.0.9... |
| CVE-2023-26595 | 2023-05-23 | Denial-of-service (DoS) vulnerability in Message of Cybozu Garoon 4.10.0 to... |
| CVE-2023-27068 | 2023-05-23 | Deserialization of Untrusted Data in Sitecore Experience Platform through 10.2... |
| CVE-2023-27388 | 2023-05-23 | Improper authentication vulnerability in T&D Corporation and ESPEC MIC CORP.... |
| CVE-2023-27397 | 2023-05-23 | Unrestricted upload of file with dangerous type exists in MicroEngine... |
| CVE-2023-27507 | 2023-05-23 | MicroEngine Mailform version 1.1.0 to 1.1.8 contains a path traversal... |
| CVE-2023-27518 | 2023-05-23 | Buffer overflow vulnerability in the multiple setting pages of SolarView... |
| CVE-2023-27521 | 2023-05-23 | OS command injection vulnerability in the mail setting page of... |
| CVE-2023-27920 | 2023-05-23 | Improper access control vulnerability in the system date/time setting page... |
| CVE-2023-27921 | 2023-05-23 | JINS MEME CORE Firmware version 2.2.0 and earlier uses a... |
| CVE-2023-28409 | 2023-05-23 | Unrestricted upload of file with dangerous type exists in MW... |
| CVE-2023-28413 | 2023-05-23 | Directory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and... |
| CVE-2023-2844 | 2023-05-23 | Authorization Bypass Through User-Controlled Key in cloudexplorer-dev/cloudexplorer-lite |
| CVE-2023-31518 | 2023-05-23 | A heap use-after-free in the component CDataFileReader::GetItem of teeworlds v0.7.5... |
| CVE-2023-31664 | 2023-05-23 | A reflected cross-site scripting (XSS) vulnerability in /authenticationendpoint/login.do of WSO2... |
| CVE-2023-31669 | 2023-05-23 | WebAssembly wat2wasm v1.0.32 allows attackers to cause a libc++abi.dylib crash... |
| CVE-2023-31670 | 2023-05-23 | An issue in wasm2c 1.0.32, wasm2wat 1.0.32, wasm-decompile 1.0.32, and... |
| CVE-2023-33338 | 2023-05-23 | Old Age Home Management 1.0 is vulnerable to SQL Injection... |
| CVE-2023-33359 | 2023-05-23 | Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF)... |
| CVE-2023-33361 | 2023-05-23 | Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php. |
| CVE-2023-33362 | 2023-05-23 | Piwigo 13.6.0 is vulnerable to SQL Injection via in the... |
| CVE-2023-33599 | 2023-05-23 | EasyImages2.0 ≤ 2.8.1 is vulnerable to Cross Site Scripting (XSS)... |
| CVE-2023-33617 | 2023-05-23 | An OS Command Injection vulnerability in Parks Fiberlink 210 firmware... |
| CVE-2023-30469 | 2023-05-23 | Reflrected Cross Site Scripting Vulnerability in Hitachi Ops Center Analyzer |
| CVE-2023-23693 | 2023-05-23 | Dell VxRail, versions prior to 7.0.450, contains an OS command... |
| CVE-2023-23694 | 2023-05-23 | Dell VxRail versions earlier than 7.0.450, contain(s) an OS command... |
| CVE-2023-25472 | 2023-05-23 | WordPress Podlove Podcast Publisher Plugin <= 3.8.3 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-25481 | 2023-05-23 | WordPress Podlove Subscribe button Plugin <= 1.3.7 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-25707 | 2023-05-23 | WordPress VikBooking Hotel Booking Engine & PMS Plugin <= 1.5.12 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-23706 | 2023-05-23 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Plugin <= 7.5.14 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-23724 | 2023-05-23 | WordPress WordPress Email Marketing Plugin – WP Email Capture Plugin <= 3.9.3 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-23705 | 2023-05-23 | WordPress Books Gallery Plugin <= 4.4.8 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-46851 | 2023-05-23 | WordPress Starter Templates Plugin <= 3.1.20 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-46853 | 2023-05-23 | WordPress The Post Grid Plugin <= 5.0.4 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-23713 | 2023-05-23 | WordPress Theme Tweaker Plugin <= 5.20 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-30440 | 2023-05-23 | IBM PowerVM Hypervisor denial of service |
| CVE-2023-25056 | 2023-05-23 | WordPress Feed Them Social Plugin <= 3.0.2 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-26014 | 2023-05-23 | WordPress Minify HTML Plugin <= 2.1.7 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-26011 | 2023-05-23 | WordPress Read More Excerpt Link Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2022-46813 | 2023-05-23 | WordPress Advanced Database Cleaner Plugin <= 3.1.1 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-25474 | 2023-05-23 | WordPress About Me 3000 widget Plugin <= 2.2.6 is vulnerable to Cross Site Request Forgery (CSRF) |