CVE List - 2024 / May
Showing 1201 - 1300 of 4997 CVEs for May 2024 (Page 13 of 50)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-51598 | 2024-05-03 | Hancom Office Word DOC File Parsing Use-After-Free Remote Code Execution Vulnerability |
| CVE-2023-51599 | 2024-05-03 | Honeywell Saia PG5 Controls Suite Directory Traversal Remote Code Execution Vulnerability |
| CVE-2023-51600 | 2024-05-03 | Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability |
| CVE-2023-51601 | 2024-05-03 | Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability |
| CVE-2023-51602 | 2024-05-03 | Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability |
| CVE-2023-51603 | 2024-05-03 | Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability |
| CVE-2023-51604 | 2024-05-03 | Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability |
| CVE-2023-51605 | 2024-05-03 | Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability |
| CVE-2023-51606 | 2024-05-03 | Kofax Power PDF U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| CVE-2023-51607 | 2024-05-03 | Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2023-51608 | 2024-05-03 | Kofax Power PDF J2K File Parsing Memory Corruption Remote Code Execution Vulnerability |
| CVE-2023-51609 | 2024-05-03 | Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2023-51610 | 2024-05-03 | Kofax Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability |
| CVE-2023-51611 | 2024-05-03 | Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2023-51612 | 2024-05-03 | Kofax Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability |
| CVE-2023-51613 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51614 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51615 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51616 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetSysEmailSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51617 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51618 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetWLanRadioSecurity Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51619 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetMyDLinkRegistration Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51620 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetIPv6PppoeSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51621 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetDeviceSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51622 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetTriggerPPPoEValidate Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51623 | 2024-05-03 | D-Link DIR-X3260 prog.cgi SetAPClientSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51624 | 2024-05-03 | D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Nonce Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51625 | 2024-05-03 | D-Link DCS-8300LHV2 ONVIF SetSystemDateAndTime Command Injection Remote Code Execution Vulnerability |
| CVE-2023-51626 | 2024-05-03 | D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Username Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51627 | 2024-05-03 | D-Link DCS-8300LHV2 ONVIF Duration Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51628 | 2024-05-03 | D-Link DCS-8300LHV2 ONVIF SetHostName Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-51629 | 2024-05-03 | D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability |
| CVE-2023-51633 | 2024-05-03 | Centreon sysName Cross-Site Scripting Remote Code Execution Vulnerability |
| CVE-2023-47220 | 2024-05-03 | Media Streaming add-on |
| CVE-2024-4439 | 2024-05-03 | WordPress Core is vulnerable to Stored Cross-Site Scripting via user... |
| CVE-2024-3637 | 2024-05-03 | Responsive Contact Form Builder & Lead Generation Plugin <= 1.8.9 - Admin+ Stored XSS |
| CVE-2024-3692 | 2024-05-03 | Gutenverse < 1.9.1 - Contributor+ Stored XSS |
| CVE-2024-3703 | 2024-05-03 | Carousel Slider < 2.2.10 - Editor+ Stored XSS |
| CVE-2024-33947 | 2024-05-03 | WordPress RegistrationMagic plugin <= 5.3.2.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33946 | 2024-05-03 | WordPress WPify Woo Czech plugin <= 4.0.10 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33945 | 2024-05-03 | WordPress Eleblog – Elementor Blog And Magazine Addons plugin <= 1.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33943 | 2024-05-03 | WordPress Ultimate Under Construction plugin <= 1.9.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33940 | 2024-05-03 | WordPress EventON plugin <= 2.2.14 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33936 | 2024-05-03 | WordPress Print-O-Matic plugin <= 2.1.10 - Auth. Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33935 | 2024-05-03 | WordPress PB MailCrypt plugin <= 3.1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33934 | 2024-05-03 | WordPress Mini Loops plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33932 | 2024-05-03 | WordPress Login Logout Register Menu plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33928 | 2024-05-03 | WordPress CodeBard's Patron Button and Widgets for Patreon plugin <= 2.2.0 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33927 | 2024-05-03 | WordPress Giphypress plugin <= 1.6.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33926 | 2024-05-03 | WordPress GWP-Histats plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33924 | 2024-05-03 | WordPress Realtyna Organic IDX plugin + WPL Real Estate plugin <= 4.14.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33918 | 2024-05-03 | WordPress AJAX Login and Registration modal popup + inline form plugin <= 2.23 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33916 | 2024-05-03 | WordPress CPO Companion plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-32831 | 2024-05-03 | WordPress Accessibility Widget plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33941 | 2024-05-03 | WordPress iPanorama 360 plugin <= 1.8.1 - Broken Access Control vulnerability |
| CVE-2023-44472 | 2024-05-03 | WordPress Unyson plugin <= 2.7.28 - Broken Access Control vulnerability |
| CVE-2023-25457 | 2024-05-03 | WordPress Slider Carousel – Responsive Image Slider plugin <=1.5.1 - Broken Access Control vulnerability |
| CVE-2024-32810 | 2024-05-03 | WordPress ShortPixel Critical CSS plugin <= 1.0.2 - Broken Access Control vulnerability |
| CVE-2024-24710 | 2024-05-03 | WordPress Feed Them Social plugin <= 4.2.0 - Broken Access Control vulnerability |
| CVE-2024-28072 | 2024-05-03 | Arbitrary File Overwrite Vulnerability |
| CVE-2023-35701 | 2024-05-03 | Apache Hive: Arbitrary command execution via JDBC driver |
| CVE-2024-23912 | 2024-05-03 | Out-of-bounds Read vulnerability in Merge DICOM Toolkit C/C++ on Windows.... |
| CVE-2024-23913 | 2024-05-03 | Use of Out-of-range Pointer Offset vulnerability in Merge DICOM Toolkit... |
| CVE-2024-23914 | 2024-05-03 | Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit... |
| CVE-2024-33937 | 2024-05-03 | WordPress Progressive WordPress (PWA) plugin <= 2.1.13 - Broken Access Control vulnerability |
| CVE-2024-33931 | 2024-05-03 | WordPress JW Player for WordPress plugin <= 2.3.3 - Broken Access Control vulnerability |
| CVE-2024-33929 | 2024-05-03 | WordPress Directorist plugin <= 7.8.6 - Broken Access Control vulnerability |
| CVE-2024-33925 | 2024-05-03 | WordPress Embed Google Fonts plugin <= 3.1.0 - Broken Access Control vulnerability |
| CVE-2024-33923 | 2024-05-03 | WordPress SP Project & Document Manager plugin <= 4.69 - Broken Access Control vulnerability |
| CVE-2024-33921 | 2024-05-03 | WordPress ReviewX plugin <= 1.6.21 - Broken Access Control vulnerability |
| CVE-2024-33920 | 2024-05-03 | WordPress Democracy Poll plugin <= 6.0.3 - Broken Access Control vulnerability |
| CVE-2024-33919 | 2024-05-03 | WordPress RomethemeKit For Elementor plugin <= 1.4.1 - Broken Access Control vulnerability |
| CVE-2024-33915 | 2024-05-03 | WordPress Debug Log Manager plugin <= 2.3.1 - Broken Access Control vulnerability |
| CVE-2024-33914 | 2024-05-03 | WordPress Exclusive Addons for Elementor plugin <= 2.6.9.1 - Broken Access Control on Post Duplication vulnerability |
| CVE-2024-34063 | 2024-05-03 | Degraded secret zeroization capabilities in vodozemac |
| CVE-2024-34062 | 2024-05-03 | tqdm CLI arguments injection attack |
| CVE-2024-32986 | 2024-05-03 | Arbitrary code execution due to improper sanitization of web app properties in PWAsForFirefox |
| CVE-2024-34073 | 2024-05-03 | Command Injection in sagemaker-python-sdk |
| CVE-2024-34072 | 2024-05-03 | Deserialization of Untrusted Data in sagemaker-python-sdk |
| CVE-2024-4461 | 2024-05-03 | Unquoted path or search item vulnerability in SugarSync |
| CVE-2024-4466 | 2024-05-03 | SQL injection vulnerability in Gescen |
| CVE-2024-2410 | 2024-05-03 | Use after free in C++ protobuf |
| CVE-2024-1395 | 2024-05-03 | Mali GPU Kernel Driver allows improper GPU memory processing operations |
| CVE-2024-1067 | 2024-05-03 | Mali GPU Kernel Driver allows improper GPU memory processing operations |
| CVE-2023-6363 | 2024-05-03 | Mali GPU Kernel Driver allows improper GPU processing operations |
| CVE-2023-41816 | 2024-05-03 | An improper export vulnerability was reported in the Motorola Services... |
| CVE-2023-41817 | 2024-05-03 | An improper export vulnerability was reported in the Motorola Phone... |
| CVE-2023-41818 | 2024-05-03 | An improper use of the SD card for sensitive data... |
| CVE-2023-41819 | 2024-05-03 | A PendingIntent hijacking vulnerability was reported in the Motorola Face... |
| CVE-2023-41820 | 2024-05-03 | An implicit intent vulnerability was reported in the Motorola Ready... |
| CVE-2023-41821 | 2024-05-03 | A an improper export vulnerability was reported in the Motorola... |
| CVE-2023-41822 | 2024-05-03 | An improper export vulnerability was reported in the Motorola Interface... |
| CVE-2023-41823 | 2024-05-03 | An improper export vulnerability was reported in the Motorola Phone... |
| CVE-2023-41824 | 2024-05-03 | An implicit intent vulnerability was reported in the Motorola Phone... |
| CVE-2023-41825 | 2024-05-03 | A path traversal vulnerability was reported in the Motorola Ready... |
| CVE-2023-41826 | 2024-05-03 | A PendingIntent hijacking vulnerability in Motorola Device Help (Genie) application... |
| CVE-2023-41828 | 2024-05-03 | An implicit intent export vulnerability was reported in the Motorola... |
| CVE-2023-41830 | 2024-05-03 | An improper absolute path traversal vulnerability was reported for the... |
| CVE-2024-3108 | 2024-05-03 | An implicit intent vulnerability was reported for Motorola’s Time Weather... |
| CVE-2024-3109 | 2024-05-03 | A hard-coded AES key vulnerability was reported in the Motorola... |