CVE List - 2023 / September
Showing 1901 - 2000 of 2148 CVEs for September 2023 (Page 20 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-40044 | 2023-09-27 | WS_FTP Server Ad Hoc Transfer Module .NET Deserialization Vulnerability |
| CVE-2023-42657 | 2023-09-27 | WS_FTP Server Directory Traversal |
| CVE-2023-40045 | 2023-09-27 | WS_FTP Server Ad Hoc Transfer Module Reflected Cross-Site Scripting Vulnerability |
| CVE-2023-40046 | 2023-09-27 | WS_FTP Server SQL Injection via Administrative Interface |
| CVE-2023-40047 | 2023-09-27 | WS_FTP Server Stored Cross-Site Scripting Vulnerability |
| CVE-2023-40048 | 2023-09-27 | WS_FTP Server Cross-Site Request Forgery (CSRF) Vulnerability |
| CVE-2023-40049 | 2023-09-27 | WS_FTP Server Information Disclosure via Directory Listing |
| CVE-2023-43124 | 2023-09-27 | BIG-IP APM Clients TunnelCrack vulnerability |
| CVE-2023-43125 | 2023-09-27 | BIG-IP APM Clients TunnelCrack vulnerability |
| CVE-2023-4129 | 2023-09-27 | Dell Data Protection Central, version 19.9, contains an Inadequate Encryption... |
| CVE-2023-32458 | 2023-09-27 | Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases,... |
| CVE-2023-20254 | 2023-09-27 | A vulnerability in the session management system of the Cisco... |
| CVE-2023-20253 | 2023-09-27 | A vulnerability in the command line interface (cli) management interface... |
| CVE-2023-20034 | 2023-09-27 | Vulnerability in the Elasticsearch database used in the of Cisco... |
| CVE-2023-20262 | 2023-09-27 | A vulnerability in the SSH service of Cisco Catalyst SD-WAN... |
| CVE-2023-20252 | 2023-09-27 | A vulnerability in the Security Assertion Markup Language (SAML) APIs... |
| CVE-2023-20231 | 2023-09-27 | A vulnerability in the web UI of Cisco IOS XE... |
| CVE-2023-20187 | 2023-09-27 | A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature... |
| CVE-2023-20033 | 2023-09-27 | A vulnerability in Cisco IOS XE Software for Cisco Catalyst... |
| CVE-2023-20223 | 2023-09-27 | A vulnerability in Cisco DNA Center could allow an unauthenticated,... |
| CVE-2023-20226 | 2023-09-27 | A vulnerability in Application Quality of Experience (AppQoE) and Unified... |
| CVE-2023-20227 | 2023-09-27 | A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature... |
| CVE-2023-20186 | 2023-09-27 | A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature... |
| CVE-2023-20268 | 2023-09-27 | Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability |
| CVE-2023-20109 | 2023-09-27 | A vulnerability in the Cisco Group Encrypted Transport VPN (GET... |
| CVE-2023-20202 | 2023-09-27 | A vulnerability in the Wireless Network Control daemon (wncd) of... |
| CVE-2023-20179 | 2023-09-27 | A vulnerability in the web-based management interface of Cisco Catalyst... |
| CVE-2023-20176 | 2023-09-27 | A vulnerability in the networking component of Cisco access point... |
| CVE-2023-20251 | 2023-09-27 | A vulnerability in the memory buffer of Cisco Wireless LAN... |
| CVE-2023-5184 | 2023-09-27 | Potential signed to unsigned conversion errors and buffer overflow vulnerabilities in the Zephyr IPM driver |
| CVE-2023-42822 | 2023-09-27 | Unchecked access to font glyph info in xrdp |
| CVE-2023-4523 | 2023-09-27 | Real Time Automation 460 Series Cross-site Scripting |
| CVE-2023-33972 | 2023-09-27 | Privilege escalation from having CREATE access on a keyspace in Scylladb |
| CVE-2023-43652 | 2023-09-27 | Non-MFA account takeover via using only SSH public key to login in jumpserver |
| CVE-2023-43650 | 2023-09-27 | Non-MFA account takeover via brute-force attack on weak password reset code in jumpserver |
| CVE-2023-43651 | 2023-09-27 | Remote code execution on the host system via MongoDB shell in jumpserver |
| CVE-2023-42818 | 2023-09-27 | SSH public key login without private key challenge if mfa is enabled in jumpserver |
| CVE-2023-43656 | 2023-09-27 | Sandbox escape for instances that have enabled transformation functions in matrix-hookshot |
| CVE-2023-40026 | 2023-09-27 | Path traversal allows leaking out-of-bound Helm charts from Argo CD repo-server |
| CVE-2023-4066 | 2023-09-27 | Operator: passwords defined in secrets shown in statefulset yaml |
| CVE-2023-43660 | 2023-09-27 | SSH key password bypassed in warpgate |
| CVE-2023-30415 | 2023-09-28 | Sourcecodester Packers and Movers Management System v1.0 was discovered to... |
| CVE-2023-38870 | 2023-09-28 | A SQL injection vulnerability exists in gugoan Economizzer commit 3730880... |
| CVE-2023-38871 | 2023-09-28 | The commit 3730880 (April 2023) and v.0.9-beta1 of gugoan Economizzer... |
| CVE-2023-38872 | 2023-09-28 | An Insecure Direct Object Reference (IDOR) vulnerability in gugoan Economizzer... |
| CVE-2023-38873 | 2023-09-28 | The commit 3730880 (April 2023) and v.0.9-beta1 of gugoan Economizzer... |
| CVE-2023-38874 | 2023-09-28 | A remote code execution (RCE) vulnerability via an insecure file... |
| CVE-2023-38877 | 2023-09-28 | A host header injection vulnerability exists in gugoan's Economizzer v.0.9-beta1... |
| CVE-2023-41444 | 2023-09-28 | An issue in Binalyze IREC.sys v.3.11.0 and before allows a... |
| CVE-2023-41446 | 2023-09-28 | Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a... |
| CVE-2023-41447 | 2023-09-28 | Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a... |
| CVE-2023-41450 | 2023-09-28 | An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker... |
| CVE-2023-41911 | 2023-09-28 | Samsung Mobile Processor Exynos 2200 allows a GPU Double Free... |
| CVE-2023-42222 | 2023-09-28 | WebCatalog before 49.0 is vulnerable to Incorrect Access Control. WebCatalog... |
| CVE-2023-43226 | 2023-09-28 | An arbitrary file upload vulnerability in dede/baidunews.php in DedeCMS 5.7.111... |
| CVE-2023-43323 | 2023-09-28 | mooSocial 3.1.8 is vulnerable to external service interaction on post... |
| CVE-2023-43860 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43861 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43862 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43863 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43864 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43865 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43866 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43867 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43868 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43869 | 2023-09-28 | D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via... |
| CVE-2023-43871 | 2023-09-28 | A File upload vulnerability in WBCE v.1.6.1 allows a local... |
| CVE-2023-43872 | 2023-09-28 | A File upload vulnerability in CMSmadesimple v.2.2.18 allows a local... |
| CVE-2023-43873 | 2023-09-28 | A Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2... |
| CVE-2023-43874 | 2023-09-28 | Multiple Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2... |
| CVE-2023-43876 | 2023-09-28 | A Cross-Site Scripting (XSS) vulnerability in installation of October v.3.4.16... |
| CVE-2023-43878 | 2023-09-28 | Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that... |
| CVE-2023-43879 | 2023-09-28 | Rite CMS 3.0 has a Cross-Site scripting (XSS) vulnerability that... |
| CVE-2023-43884 | 2023-09-28 | A Cross-site scripting (XSS) vulnerability in Reference ID from the... |
| CVE-2023-44273 | 2023-09-28 | Consensys gnark-crypto through 0.11.2 allows Signature Malleability. This occurs because... |
| CVE-2023-44275 | 2023-09-28 | OPNsense before 23.7.5 allows XSS via the index.php column_count parameter... |
| CVE-2023-44276 | 2023-09-28 | OPNsense before 23.7.5 allows XSS via the index.php sequence parameter... |
| CVE-2023-5244 | 2023-09-28 | Cross-site Scripting (XSS) - Reflected in microweber/microweber |
| CVE-2023-5232 | 2023-09-28 | The Font Awesome More Icons plugin for WordPress is vulnerable... |
| CVE-2023-5230 | 2023-09-28 | The TM WooCommerce Compare & Wishlist plugin for WordPress is... |
| CVE-2023-5233 | 2023-09-28 | The Font Awesome Integration plugin for WordPress is vulnerable to... |
| CVE-2023-26145 | 2023-09-28 | This affects versions of the package pydash before 6.0.0. A... |
| CVE-2023-26149 | 2023-09-28 | Versions of the package quill-mention before 4.0.0 are vulnerable to... |
| CVE-2022-47186 | 2023-09-28 | Unrestricted Upload of File vulnerability in Generex CS141 |
| CVE-2022-47187 | 2023-09-28 | File upload XSS vulnerability in Generex CS141 |
| CVE-2023-5215 | 2023-09-28 | Libnbd: crash or misbehaviour when nbd server returns an unexpected block size |
| CVE-2023-42756 | 2023-09-28 | Kernel: netfilter: race condition between ipset_cmd_add and ipset_cmd_swap |
| CVE-2023-40307 | 2023-09-28 | Privileges Memory Corruption (Out-of-bound write) |
| CVE-2023-5217 | 2023-09-28 | Heap buffer overflow in vp8 encoding in libvpx in Google... |
| CVE-2023-5186 | 2023-09-28 | Use after free in Passwords in Google Chrome prior to... |
| CVE-2023-5187 | 2023-09-28 | Use after free in Extensions in Google Chrome prior to... |
| CVE-2023-43044 | 2023-09-28 | IBM License Metric Tool directory traversal |
| CVE-2023-40375 | 2023-09-28 | IBM i privilege escalation |
| CVE-2023-43657 | 2023-09-28 | Improper escaping of encrypted topic titles can lead to Cross-site Scripting under non-default site configuration |
| CVE-2023-43663 | 2023-09-28 | Improper Privilege Management in Prestashop |
| CVE-2023-43664 | 2023-09-28 | Employee without any access rights can list all installed modules in Prestashop |
| CVE-2023-5256 | 2023-09-28 | Drupal core - Critical - Cache poisoning - SA-CORE-2023-006 |
| CVE-2023-4316 | 2023-09-28 | Zod 3.22.2 - Regular expression Denial of Service |
| CVE-2023-5004 | 2023-09-28 | Hospital-management-system-in-php 378c157 - Blind SQL Injection |
| CVE-2023-5053 | 2023-09-28 | SQL Injection in hospital-management-system-in-php 378c157 in index.php |