CVE List - 2023 / June
Showing 901 - 1000 of 2395 CVEs for June 2023 (Page 10 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-32674 | 2023-06-12 | Certain versions of HP PC Hardware Diagnostics Windows are potentially... |
| CVE-2022-28550 | 2023-06-13 | Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(),... |
| CVE-2022-47376 | 2023-06-13 | The Alaris Infusion Central software, versions 1.1 to 1.3.2, may... |
| CVE-2023-24469 | 2023-06-13 | Potential Cross-Site Scripting in ArcSight Logger versions prior to 7.3.0 |
| CVE-2023-24470 | 2023-06-13 | Potential XML External Entity Injection in ArcSight Logger versions prior... |
| CVE-2023-24546 | 2023-06-13 | On affected versions of the CloudVision Portal improper access controls... |
| CVE-2023-27836 | 2023-06-13 | TP-Link TL-WPA8630P (US)_ V2_ Version 171011 was discovered to contain... |
| CVE-2023-27837 | 2023-06-13 | TP-Link TL-WPA8630P (US)_ V2_ Version 171011 was discovered to contain... |
| CVE-2023-29160 | 2023-06-13 | Stack-based buffer overflow vulnerability exists in FRENIC RHC Loader v1.1.0.3.... |
| CVE-2023-29167 | 2023-06-13 | Out-of-bound reads vulnerability exists in FRENIC RHC Loader v1.1.0.3. If... |
| CVE-2023-29498 | 2023-06-13 | Improper restriction of XML external entity reference (XXE) vulnerability exists... |
| CVE-2023-29501 | 2023-06-13 | Jiyu Kukan Toku-Toku coupon App for iOS versions 3.5.0 and... |
| CVE-2023-29562 | 2023-06-13 | TP-Link TL-WPA7510 (EU)_V2_190125 was discovered to contain a stack overflow... |
| CVE-2023-30179 | 2023-06-13 | CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection (SSTI).... |
| CVE-2023-30762 | 2023-06-13 | Improper authentication vulnerability exists in KB-AHR series and KB-IRIP series.... |
| CVE-2023-30764 | 2023-06-13 | OS command injection vulnerability exists in KB-AHR series and KB-IRIP... |
| CVE-2023-30766 | 2023-06-13 | Hidden functionality issue exists in KB-AHR series and KB-IRIP series.... |
| CVE-2023-31195 | 2023-06-13 | ASUS Router RT-AX3000 Firmware versions prior to 3.0.0.4.388.23403 uses sensitive... |
| CVE-2023-31196 | 2023-06-13 | Missing authentication for critical function in Wi-Fi AP UNIT allows... |
| CVE-2023-31198 | 2023-06-13 | OS command injection vulnerability exists in Wi-Fi AP UNIT allows.... |
| CVE-2023-31437 | 2023-06-13 | An issue was discovered in systemd 253. An attacker can... |
| CVE-2023-31438 | 2023-06-13 | An issue was discovered in systemd 253. An attacker can... |
| CVE-2023-31439 | 2023-06-13 | An issue was discovered in systemd 253. An attacker can... |
| CVE-2023-31541 | 2023-06-13 | A unrestricted file upload vulnerability was discovered in the ‘Browse... |
| CVE-2023-3218 | 2023-06-13 | Race Condition within a Thread in it-novum/openitcockpit |
| CVE-2023-3224 | 2023-06-13 | Code Injection in nuxt/nuxt |
| CVE-2023-32546 | 2023-06-13 | Code injection vulnerability exists in Chatwork Desktop Application (Mac) 2.6.43... |
| CVE-2023-32548 | 2023-06-13 | OS command injection vulnerability exists in WPS Office version 10.8.0.6186.... |
| CVE-2023-33568 | 2023-06-13 | An issue in Dolibarr 16 before 16.0.5 allows unauthenticated attackers... |
| CVE-2023-33620 | 2023-06-13 | GL.iNET GL-AR750S-Ext firmware v3.215 uses an insecure protocol in its... |
| CVE-2023-33621 | 2023-06-13 | GL.iNET GL-AR750S-Ext firmware v3.215 inserts the admin authentication token into... |
| CVE-2023-33695 | 2023-06-13 | Hutool v5.8.17 and below was discovered to contain an information... |
| CVE-2023-33817 | 2023-06-13 | hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability. |
| CVE-2023-34537 | 2023-06-13 | A Reflected XSS was discovered in HotelDruid version 3.0.5, an... |
| CVE-2023-34944 | 2023-06-13 | An arbitrary file upload vulnerability in the /fileUpload.lib.php component of... |
| CVE-2023-34965 | 2023-06-13 | SSPanel-Uim 2023.3 does not restrict access to the /link/ interface... |
| CVE-2023-2351 | 2023-06-13 | The WP Directory Kit plugin for WordPress is vulnerable to... |
| CVE-2023-2277 | 2023-06-13 | The WP Directory Kit plugin for WordPress is vulnerable to... |
| CVE-2023-2278 | 2023-06-13 | The WP Directory Kit plugin for WordPress is vulnerable to... |
| CVE-2023-2563 | 2023-06-13 | The WordPress Contact Forms by Cimatti plugin for WordPress is... |
| CVE-2023-2827 | 2023-06-13 | Missing Authentication in SAP Plant Connectivity and Production Connector for SAP Digital |
| CVE-2023-32114 | 2023-06-13 | Denial of Service in SAP NetWeaver |
| CVE-2023-32115 | 2023-06-13 | SQL Injection in Master Data Synchronization (MDS COMPARE TOOL) |
| CVE-2023-33984 | 2023-06-13 | Cross-Site Scripting (XSS) vulnerability in NetWeaver (Design Time Repository) |
| CVE-2023-33985 | 2023-06-13 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal |
| CVE-2023-33986 | 2023-06-13 | Cross-Site Scripting (XSS) vulnerability in SAP CRM ABAP (Grantor Management) |
| CVE-2023-33991 | 2023-06-13 | Stored Cross-Site Scripting (Stored XSS) vulnerability in SAP UI5 Variant Management |
| CVE-2023-2876 | 2023-06-13 | Session cookie exposure for client side script |
| CVE-2023-2673 | 2023-06-13 | PHOENIX CONTACT: FL/TC MGUARD prone to Improper Input Validation |
| CVE-2023-0142 | 2023-06-13 | Uncontrolled search path element vulnerability in Backup Management functionality in... |
| CVE-2023-2729 | 2023-06-13 | Use of insufficiently random values vulnerability in User Management Functionality... |
| CVE-2023-25910 | 2023-06-13 | A vulnerability has been identified in SIMATIC PCS 7 (All... |
| CVE-2023-27465 | 2023-06-13 | A vulnerability has been identified in SIMOTION C240 (All versions... |
| CVE-2023-28829 | 2023-06-13 | A vulnerability has been identified in SIMATIC NET PC Software... |
| CVE-2023-29129 | 2023-06-13 | A vulnerability has been identified in Mendix SAML (Mendix 7... |
| CVE-2023-30757 | 2023-06-13 | A vulnerability has been identified in Totally Integrated Automation Portal... |
| CVE-2023-30897 | 2023-06-13 | A vulnerability has been identified in SIMATIC WinCC (All versions... |
| CVE-2023-30901 | 2023-06-13 | A vulnerability has been identified in POWER METER SICAM Q100... |
| CVE-2023-31238 | 2023-06-13 | A vulnerability has been identified in POWER METER SICAM Q100... |
| CVE-2023-33121 | 2023-06-13 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-33122 | 2023-06-13 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-33123 | 2023-06-13 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-33124 | 2023-06-13 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-33919 | 2023-06-13 | A vulnerability has been identified in CP-8031 MASTER MODULE (All... |
| CVE-2023-33920 | 2023-06-13 | A vulnerability has been identified in CP-8031 MASTER MODULE (All... |
| CVE-2023-33921 | 2023-06-13 | A vulnerability has been identified in CP-8031 MASTER MODULE (All... |
| CVE-2022-33877 | 2023-06-13 | An incorrect default permission [CWE-276] vulnerability in FortiClient (Windows) versions... |
| CVE-2022-39946 | 2023-06-13 | An access control vulnerability [CWE-284] in FortiNAC version 9.4.2 and... |
| CVE-2022-41327 | 2023-06-13 | A cleartext transmission of sensitive information vulnerability [CWE-319] in Fortinet... |
| CVE-2022-42474 | 2023-06-13 | A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version... |
| CVE-2022-42478 | 2023-06-13 | An Improper Restriction of Excessive Authentication Attempts [CWE-307] in FortiSIEM... |
| CVE-2022-43949 | 2023-06-13 | A use of a broken or risky cryptographic algorithm [CWE-327]... |
| CVE-2022-43953 | 2023-06-13 | A use of externally-controlled format string in Fortinet FortiOS version... |
| CVE-2023-22633 | 2023-06-13 | An improper permissions, privileges, and access controls vulnerability [CWE-264] in... |
| CVE-2023-22639 | 2023-06-13 | A out-of-bounds write in Fortinet FortiOS version 7.2.0 through 7.2.3,... |
| CVE-2023-25609 | 2023-06-13 | A server-side request forgery (SSRF) vulnerability [CWE-918] in FortiManager and... |
| CVE-2023-26207 | 2023-06-13 | An insertion of sensitive information into log file vulnerability in... |
| CVE-2023-26204 | 2023-06-13 | A plaintext storage of a password vulnerability [CWE-256] in FortiSIEM... |
| CVE-2023-26210 | 2023-06-13 | Multiple improper neutralization of special elements used in an os... |
| CVE-2023-27997 | 2023-06-13 | A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4... |
| CVE-2023-28000 | 2023-06-13 | An improper neutralization of special elements used in an OS... |
| CVE-2023-29175 | 2023-06-13 | An improper certificate validation vulnerability [CWE-295] in FortiOS 6.2 all... |
| CVE-2023-29178 | 2023-06-13 | A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy... |
| CVE-2023-33305 | 2023-06-13 | A loop with unreachable exit condition ('infinite loop') in Fortinet... |
| CVE-2023-2807 | 2023-06-13 | Authentication bypass in password reset process |
| CVE-2023-3047 | 2023-06-13 | SQLi in TMT's Lockcell |
| CVE-2023-3048 | 2023-06-13 | IDOR in TMT's Lockcell |
| CVE-2023-3049 | 2023-06-13 | File Upload in TMT's Lockcell |
| CVE-2023-3050 | 2023-06-13 | Authentication Bypass in TMT's Lockcell |
| CVE-2023-35064 | 2023-06-13 | SQLi in Satos Mobile |
| CVE-2023-23831 | 2023-06-13 | WordPress Rating Widget Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2022-42880 | 2023-06-13 | WordPress Auto Upload Images Plugin <= 3.3 is vulnerable to Cross Site Request Forgery (CSRF) |
| CVE-2023-25964 | 2023-06-13 | WordPress We’re Open! Plugin <= 1.46 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-26538 | 2023-06-13 | WordPress Chat Bee Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-26528 | 2023-06-13 | WordPress Shipyaari Shipping Management Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-28620 | 2023-06-13 | WordPress Cyberus Key Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-27624 | 2023-06-13 | WordPress Redirect After Login Plugin <= 0.1.9 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-25978 | 2023-06-13 | WordPress Protected Posts Logout Button Plugin <= 1.4.5 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2022-31635 | 2023-06-13 | Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in... |
| CVE-2022-31636 | 2023-06-13 | Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in... |