CVE List - 2023 / June
Showing 1101 - 1200 of 2395 CVEs for June 2023 (Page 12 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-3227 | 2023-06-14 | Insufficient Granularity of Access Control in fossbilling/fossbilling |
| CVE-2023-3228 | 2023-06-14 | Business Logic Errors in fossbilling/fossbilling |
| CVE-2023-3229 | 2023-06-14 | Business Logic Errors in fossbilling/fossbilling |
| CVE-2023-3230 | 2023-06-14 | Missing Authorization in fossbilling/fossbilling |
| CVE-2023-33515 | 2023-06-14 | SoftExpert Excellence Suite 2.1.9 is vulnerable to Cross Site Scripting... |
| CVE-2023-34367 | 2023-06-14 | Windows 7 is vulnerable to a full blind TCP/IP hijacking... |
| CVE-2023-34540 | 2023-06-14 | Langchain before v0.0.225 was discovered to contain a remote code... |
| CVE-2023-34565 | 2023-06-14 | Netbox 3.5.1 is vulnerable to Cross Site Scripting (XSS) in... |
| CVE-2023-34609 | 2023-06-14 | An issue was discovered flexjson thru 3.3 allows attackers to... |
| CVE-2023-34610 | 2023-06-14 | An issue was discovered json-io thru 4.14.0 allows attackers to... |
| CVE-2023-34611 | 2023-06-14 | An issue was discovered mjson thru 1.4.1 allows attackers to... |
| CVE-2023-34612 | 2023-06-14 | An issue was discovered ph-json thru 9.5.5 allows attackers to... |
| CVE-2023-34613 | 2023-06-14 | An issue was discovered sojo thru 1.1.1 allows attackers to... |
| CVE-2023-34614 | 2023-06-14 | An issue was discovered jmarsden/jsonij thru 0.5.2 allows attackers to... |
| CVE-2023-34615 | 2023-06-14 | An issue was discovered JSONUtil thru 5.0 allows attackers to... |
| CVE-2023-34616 | 2023-06-14 | An issue was discovered pbjson thru 0.4.0 allows attackers to... |
| CVE-2023-34617 | 2023-06-14 | An issue was discovered genson thru 1.6 allows attackers to... |
| CVE-2023-34620 | 2023-06-14 | An issue was discovered hjson thru 3.0.0 allows attackers to... |
| CVE-2023-34623 | 2023-06-14 | An issue was discovered jtidy thru r938 allows attackers to... |
| CVE-2023-34624 | 2023-06-14 | An issue was discovered htmlcleaner thru = 2.28 allows attackers... |
| CVE-2023-34747 | 2023-06-14 | File upload vulnerability in ujcms 6.0.2 via /api/backend/core/web-file-upload/upload. |
| CVE-2023-34750 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34751 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34752 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34753 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34754 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34755 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34756 | 2023-06-14 | bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-34823 | 2023-06-14 | fdkaac before 1.0.5 was discovered to contain a stack overflow... |
| CVE-2023-34824 | 2023-06-14 | fdkaac before 1.0.5 was discovered to contain a heap buffer... |
| CVE-2023-34865 | 2023-06-14 | Directory traversal vulnerability in ujcms 6.0.2 allows attackers to move... |
| CVE-2023-34867 | 2023-06-14 | Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion... |
| CVE-2023-34868 | 2023-06-14 | Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion... |
| CVE-2023-34878 | 2023-06-14 | An issue was discovered in Ujcms v6.0.2 allows attackers to... |
| CVE-2023-35110 | 2023-06-14 | An issue was discovered jjson thru 0.1.7 allows attackers to... |
| CVE-2023-35116 | 2023-06-14 | jackson-databind through 2.15.2 allows attackers to cause a denial of... |
| CVE-2023-3203 | 2023-06-14 | The MStore API plugin for WordPress is vulnerable to Cross-Site... |
| CVE-2023-3200 | 2023-06-14 | The MStore API plugin for WordPress is vulnerable to Cross-Site... |
| CVE-2023-3198 | 2023-06-14 | The MStore API plugin for WordPress is vulnerable to Cross-Site... |
| CVE-2023-3201 | 2023-06-14 | The MStore API plugin for WordPress is vulnerable to Cross-Site... |
| CVE-2023-24937 | 2023-06-14 | Windows CryptoAPI Denial of Service Vulnerability |
| CVE-2023-3189 | 2023-06-14 | SourceCodester Online School Fees System POST Parameter branch.php cross site scripting |
| CVE-2023-3231 | 2023-06-14 | UJCMS ZIP Package information disclosure |
| CVE-2023-3232 | 2023-06-14 | Zhong Bang CRMEB Image Upload app_auth deserialization |
| CVE-2023-3233 | 2023-06-14 | Zhong Bang CRMEB PublicController.php get_image_base64 server-side request forgery |
| CVE-2023-3234 | 2023-06-14 | Zhong Bang CRMEB PublicController.php put_image deserialization |
| CVE-2023-3235 | 2023-06-14 | mccms Comic.php pic_api server-side request forgery |
| CVE-2023-3236 | 2023-06-14 | mccms Comic.php pic_save server-side request forgery |
| CVE-2023-0837 | 2023-06-14 | An improper authorization check of local device settings in TeamViewer... |
| CVE-2023-1049 | 2023-06-14 | A CWE-94: Improper Control of Generation of Code ('Code Injection')... |
| CVE-2023-34000 | 2023-06-14 | WordPress WooCommerce Stripe Payment Gateway Plugin <= 7.4.0 is vulnerable to Insecure Direct Object References (IDOR) |
| CVE-2023-3237 | 2023-06-14 | OTCMS hard-coded password |
| CVE-2023-3001 | 2023-06-14 | A CWE-502: Deserialization of Untrusted Data vulnerability exists in the... |
| CVE-2022-47184 | 2023-06-14 | Apache Traffic Server: The TRACE method can be use to disclose network information |
| CVE-2023-33933 | 2023-06-14 | Apache Traffic Server: s3_auth plugin problem with hash calculation |
| CVE-2023-30631 | 2023-06-14 | Apache Traffic Server: Configuration option to block the PUSH method in ATS didn't work |
| CVE-2023-34149 | 2023-06-14 | Apache Struts: DoS via OOM owing to not properly checking of list bounds |
| CVE-2023-2569 | 2023-06-14 | A CWE-787: Out-of-Bounds Write vulnerability exists that could cause local... |
| CVE-2023-34396 | 2023-06-14 | Apache Struts: DoS via OOM owing to no sanity limit on normal form fields in multipart forms |
| CVE-2023-2570 | 2023-06-14 | A CWE-129: Improper Validation of Array Index vulnerability exists that... |
| CVE-2023-3238 | 2023-06-14 | OTCMS server-side request forgery |
| CVE-2023-3239 | 2023-06-14 | OTCMS path traversal |
| CVE-2023-3240 | 2023-06-14 | OTCMS usersNews_deal.php path traversal |
| CVE-2023-3241 | 2023-06-14 | OTCMS path traversal |
| CVE-2023-3036 | 2023-06-14 | Out of Bounds Slice index in cfnts leads to remote panic |
| CVE-2023-3040 | 2023-06-14 | Out of Bounds Access Leading to Undefined Behavior |
| CVE-2023-35141 | 2023-06-14 | In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST... |
| CVE-2023-35142 | 2023-06-14 | Jenkins Checkmarx Plugin 2022.4.3 and earlier disables SSL/TLS validation for... |
| CVE-2023-35143 | 2023-06-14 | Jenkins Maven Repository Server Plugin 1.10 and earlier does not... |
| CVE-2023-35144 | 2023-06-14 | Jenkins Maven Repository Server Plugin 1.10 and earlier does not... |
| CVE-2023-35145 | 2023-06-14 | Jenkins Sonargraph Integration Plugin 5.0.1 and earlier does not escape... |
| CVE-2023-35146 | 2023-06-14 | Jenkins Template Workflows Plugin 41.v32d86a_313b_4a and earlier does not escape... |
| CVE-2023-35147 | 2023-06-14 | Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier does not... |
| CVE-2023-35148 | 2023-06-14 | A cross-site request forgery (CSRF) vulnerability in Jenkins Digital.ai App... |
| CVE-2023-35149 | 2023-06-14 | A missing permission check in Jenkins Digital.ai App Management Publisher... |
| CVE-2023-32465 | 2023-06-14 | Dell Power Protect Cyber Recovery, contains an Authentication Bypass vulnerability.... |
| CVE-2023-34101 | 2023-06-14 | Contiki-NG vulnerable to out-of-bounds read when processing ICMP DAO input |
| CVE-2023-28310 | 2023-06-14 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2023-24897 | 2023-06-14 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability |
| CVE-2023-29326 | 2023-06-14 | .NET Framework Remote Code Execution Vulnerability |
| CVE-2023-32024 | 2023-06-14 | Microsoft Power Apps Spoofing Vulnerability |
| CVE-2023-32031 | 2023-06-14 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2023-24895 | 2023-06-14 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability |
| CVE-2023-24936 | 2023-06-14 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability |
| CVE-2023-29331 | 2023-06-14 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability |
| CVE-2023-29337 | 2023-06-14 | NuGet Client Remote Code Execution Vulnerability |
| CVE-2023-32030 | 2023-06-14 | .NET and Visual Studio Denial of Service Vulnerability |
| CVE-2022-31640 | 2023-06-14 | Potential vulnerabilities have been identified in the system BIOS of... |
| CVE-2023-0010 | 2023-06-14 | PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication |
| CVE-2022-31641 | 2023-06-14 | Potential vulnerabilities have been identified in the system BIOS of... |
| CVE-2023-0009 | 2023-06-14 | GlobalProtect App: Local Privilege Escalation (PE) Vulnerability |
| CVE-2022-31642 | 2023-06-14 | Potential vulnerabilities have been identified in the system BIOS of... |
| CVE-2023-34095 | 2023-06-14 | cpdb-libs vulnerable to buffer overflows via scanf |
| CVE-2022-31644 | 2023-06-14 | Potential vulnerabilities have been identified in the system BIOS of... |
| CVE-2022-31645 | 2023-06-14 | Potential vulnerabilities have been identified in the system BIOS of... |
| CVE-2022-31646 | 2023-06-14 | Potential vulnerabilities have been identified in the system BIOS of... |
| CVE-2023-2976 | 2023-06-14 | Use of temporary directory for file creation in `FileBackedOutputStream` in Guava |
| CVE-2023-34449 | 2023-06-14 | ink! vulnerable to incorrect decoding of storage value when using `DelegateCall` |
| CVE-2023-1329 | 2023-06-14 | A potential security vulnerability has been identified for certain HP... |
| CVE-2023-2819 | 2023-06-14 | A stored cross-site scripting vulnerability in the Sources UI in... |