CVE List - 2023 / September
Showing 1301 - 1400 of 2148 CVEs for September 2023 (Page 14 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-42450 | 2023-09-19 | Mastodon Server-Side Request Forgery vulnerability |
| CVE-2023-42451 | 2023-09-19 | Mastodon Invalid Domain Name Normalization vulnerability |
| CVE-2023-42452 | 2023-09-19 | Mastodon vulnerable to Stored XSS through the translation feature |
| CVE-2023-42793 | 2023-09-19 | In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE... |
| CVE-2023-43566 | 2023-09-19 | In JetBrains TeamCity before 2023.05.4 stored XSS was possible during... |
| CVE-2023-22513 | 2023-09-19 | This High severity RCE (Remote Code Execution) vulnerability was introduced... |
| CVE-2023-4376 | 2023-09-19 | Serial Codes Generator and Validator with WooCommerce Support < 2.4.15 - Admin+ Stored XSS |
| CVE-2023-2995 | 2023-09-19 | Leyka < 3.30.4 - Admin+ Stored XSS |
| CVE-2019-19450 | 2023-09-20 | paraparser in ReportLab before 3.5.31 allows remote code execution because... |
| CVE-2023-34575 | 2023-09-20 | SQL injection vulnerability in PrestaShop opartsavecart through 2.0.7 allows remote... |
| CVE-2023-36109 | 2023-09-20 | Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers... |
| CVE-2023-36234 | 2023-09-20 | Cross Site Scripting (XSS) vulnerability in Netbox 3.5.1, allows attackers... |
| CVE-2023-38875 | 2023-09-20 | A reflected cross-site scripting (XSS) vulnerability in msaad1999's PHP-Login-System 2.0.1... |
| CVE-2023-38876 | 2023-09-20 | A reflected cross-site scripting (XSS) vulnerability in msaad1999's PHP-Login-System 2.0.1... |
| CVE-2023-38886 | 2023-09-20 | An issue in Dolibarr ERP CRM v.17.0.1 and before allows... |
| CVE-2023-38887 | 2023-09-20 | File Upload vulnerability in Dolibarr ERP CRM v.17.0.1 and before... |
| CVE-2023-38888 | 2023-09-20 | Cross Site Scripting vulnerability in Dolibarr ERP CRM v.17.0.1 and... |
| CVE-2023-39041 | 2023-09-20 | An information leak in KUKURUDELI Line v13.6.1 allows attackers to... |
| CVE-2023-39044 | 2023-09-20 | An information leak in ajino-Shiretoko Line v13.6.1 allows attackers to... |
| CVE-2023-39045 | 2023-09-20 | An information leak in kokoroe_members card Line 13.6.1 allows attackers... |
| CVE-2023-39052 | 2023-09-20 | An information leak in Earthgarden_waiting 13.6.1 allows attackers to obtain... |
| CVE-2023-39675 | 2023-09-20 | SimpleImportProduct Prestashop Module v6.2.9 was discovered to contain a SQL... |
| CVE-2023-39677 | 2023-09-20 | MyPrestaModules Prestashop Module v6.2.9 and UpdateProducts Prestashop Module v3.6.9 were... |
| CVE-2023-40618 | 2023-09-20 | A reflected cross-site scripting (XSS) vulnerability in OpenKnowledgeMaps Head Start... |
| CVE-2023-40619 | 2023-09-20 | phpPgAdmin 7.14.4 and earlier is vulnerable to deserialization of untrusted... |
| CVE-2023-40930 | 2023-09-20 | An issue in the directory /system/bin/blkid of Skyworth v3.0 allows... |
| CVE-2023-41484 | 2023-09-20 | An issue in cimg.eu Cimg Library v2.9.3 allows an attacker... |
| CVE-2023-41902 | 2023-09-20 | An XPC misconfiguration vulnerability in CoreCode MacUpdater before 2.3.8, and... |
| CVE-2023-42147 | 2023-09-20 | An issue in CloudExplorer Lite 1.3.1 allows an attacker to... |
| CVE-2023-42321 | 2023-09-20 | Cross Site Request Forgery (CSRF) vulnerability in icmsdev iCMSv.7.0.16 allows... |
| CVE-2023-42322 | 2023-09-20 | Insecure Permissions vulnerability in icmsdev iCMS v.7.0.16 allows a remote... |
| CVE-2023-42331 | 2023-09-20 | A file upload vulnerability in EliteCMS v1.01 allows a remote... |
| CVE-2023-42334 | 2023-09-20 | An Indirect Object Reference (IDOR) in Fl3xx Dispatch 2.10.37 and... |
| CVE-2023-42335 | 2023-09-20 | Unrestricted File Upload vulnerability in Fl3xx Dispatch 2.10.37 and fl3xx... |
| CVE-2023-42464 | 2023-09-20 | A Type Confusion vulnerability was found in the Spotlight RPC... |
| CVE-2023-43134 | 2023-09-20 | There is an unauthorized access vulnerability in Netis 360RAC1200 v1.3.4517,... |
| CVE-2023-43135 | 2023-09-20 | There is an unauthorized access vulnerability in TP-LINK ER5120G 4.0... |
| CVE-2023-43137 | 2023-09-20 | TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command... |
| CVE-2023-43138 | 2023-09-20 | TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command... |
| CVE-2023-43196 | 2023-09-20 | D-Link DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow... |
| CVE-2023-43197 | 2023-09-20 | D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack... |
| CVE-2023-43198 | 2023-09-20 | D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack... |
| CVE-2023-43199 | 2023-09-20 | D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack... |
| CVE-2023-43200 | 2023-09-20 | D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack... |
| CVE-2023-43201 | 2023-09-20 | D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack... |
| CVE-2023-43202 | 2023-09-20 | D-LINK DWL-6610 FW_v_4.3.0.8B003C was discovered to contain a command injection... |
| CVE-2023-43203 | 2023-09-20 | D-LINK DWL-6610 FW_v_4.3.0.8B003C was discovered to contain a stack overflow... |
| CVE-2023-43204 | 2023-09-20 | D-LINK DWL-6610 FW_v_4.3.0.8B003C was discovered to contain a command injection... |
| CVE-2023-43206 | 2023-09-20 | D-LINK DWL-6610 FW_v_4.3.0.8B003C was discovered to contain a command injection... |
| CVE-2023-43207 | 2023-09-20 | D-LINK DWL-6610 FW_v_4.3.0.8B003C was discovered to contain a command injection... |
| CVE-2023-43371 | 2023-09-20 | Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-43373 | 2023-09-20 | Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-43374 | 2023-09-20 | Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-43375 | 2023-09-20 | Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities... |
| CVE-2023-43376 | 2023-09-20 | A cross-site scripting (XSS) vulnerability in /hoteldruid/clienti.php of Hoteldruid v3.0.5... |
| CVE-2023-43377 | 2023-09-20 | A cross-site scripting (XSS) vulnerability in /hoteldruid/visualizza_contratto.php of Hoteldruid v3.0.5... |
| CVE-2023-43616 | 2023-09-20 | An issue was discovered in Croc through 9.6.5. A sender... |
| CVE-2023-43617 | 2023-09-20 | An issue was discovered in Croc through 9.6.5. When a... |
| CVE-2023-43618 | 2023-09-20 | An issue was discovered in Croc through 9.6.5. The protocol... |
| CVE-2023-43619 | 2023-09-20 | An issue was discovered in Croc through 9.6.5. A sender... |
| CVE-2023-43620 | 2023-09-20 | An issue was discovered in Croc through 9.6.5. A sender... |
| CVE-2023-43621 | 2023-09-20 | An issue was discovered in Croc through 9.6.5. The shared... |
| CVE-2023-25525 | 2023-09-20 | NVIDIA Cumulus Linux contains a vulnerability in forwarding where a... |
| CVE-2023-25526 | 2023-09-20 | NVIDIA Cumulus Linux contains a vulnerability in neighmgrd and nlmanager... |
| CVE-2023-25527 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the host... |
| CVE-2023-25528 | 2023-09-20 | NVIDIA DGX H100 baseboard management controller (BMC) contains a vulnerability... |
| CVE-2023-25529 | 2023-09-20 | NVIDIA DGX H100 BMC and DGX A100 BMC contains a... |
| CVE-2023-25530 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the KVM... |
| CVE-2023-25531 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where... |
| CVE-2023-25532 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where... |
| CVE-2023-25533 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the web... |
| CVE-2023-25534 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where... |
| CVE-2023-31008 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where... |
| CVE-2023-31009 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the REST... |
| CVE-2023-31010 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where... |
| CVE-2023-31011 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the REST... |
| CVE-2023-31012 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the REST... |
| CVE-2023-31013 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the REST... |
| CVE-2023-31015 | 2023-09-20 | NVIDIA DGX H100 BMC contains a vulnerability in the REST... |
| CVE-2023-31014 | 2023-09-20 | NVIDIA GeForce Now for Android contains a vulnerability in the... |
| CVE-2023-4088 | 2023-09-20 | Malicious Code Execution Vulnerability in FA Engineering Software Products |
| CVE-2023-5062 | 2023-09-20 | The WordPress Charts plugin for WordPress is vulnerable to Stored... |
| CVE-2023-5063 | 2023-09-20 | The Widget Responsive for Youtube plugin for WordPress is vulnerable... |
| CVE-2023-26144 | 2023-09-20 | Versions of the package graphql from 16.3.0 and before 16.8.1... |
| CVE-2023-2163 | 2023-09-20 | Incorrect Verifier Branch Pruning Logic Leads To Arbitrary Read/Write In Linux Kernel and Lateral Privilege Escalation |
| CVE-2022-47560 | 2023-09-20 | Cleartext Transmission of Sensitive Information in Ormazabal products |
| CVE-2022-47561 | 2023-09-20 | Unprotected Storage of Credentials in Ormazabal products |
| CVE-2022-47562 | 2023-09-20 | Allocation of Resources Without Limits or Throttling in Ormazabal products |
| CVE-2023-22644 | 2023-09-20 | JWT token compromise can allow malicious actions including Remote Code Execution (RCE) |
| CVE-2023-41375 | 2023-09-20 | Use after free vulnerability exists in Kostac PLC Programming Software... |
| CVE-2023-41374 | 2023-09-20 | Double free issue exists in Kostac PLC Programming Software Version... |
| CVE-2023-34047 | 2023-09-20 | Exposure of data and identity to wrong session in Spring for GraphQL |
| CVE-2022-45447 | 2023-09-20 | Path Traversal in M4 PDF plugin for Prestashop sites |
| CVE-2023-4853 | 2023-09-20 | Quarkus: http security policy bypass |
| CVE-2023-5084 | 2023-09-20 | Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp |
| CVE-2023-5042 | 2023-09-20 | Sensitive information disclosure due to insecure folder permissions. The following... |
| CVE-2022-45448 | 2023-09-20 | Cross-site Scripting in M4 PDF plugin for Prestashop sites |
| CVE-2023-3341 | 2023-09-20 | A stack exhaustion flaw in control channel code may cause named to terminate unexpectedly |
| CVE-2023-4236 | 2023-09-20 | named may terminate unexpectedly under high DNS-over-TLS query load |
| CVE-2023-0829 | 2023-09-20 | Cross-Site Scripting (XSS) vulnerability in Plesk |