Lista CVE 2023/3xxx

CVE nel gruppo: 3xxx

CVE-2023-3021 (N/A)

CVE-2023-3022 (Cross-site Scripting (XSS) – Stored in mkucej/i-librarian-free)

CVE-2023-3023 (N/A)

CVE-2023-3024 (N/A)

CVE-2023-3025 (Bluetooth LE segmented ‘prepare write response’ packet may lead to out-of-bounds memory access)

CVE-2023-3026 (N/A)

CVE-2023-3027 (Cross-site Scripting (XSS) – Stored in jgraph/drawio)

CVE-2023-3028 (N/A)

CVE-2023-3029 (Improper backend communication allows access and manipulation of the telemetry data)

CVE-2023-3031 (Guangdong Pythagorean OA Office System delete cross-site request forgery)

CVE-2023-3032 (Prestahop module King-Avis – Path traversal)

CVE-2023-3033 (Mobatime web application – Arbitrary file upload (RCE))

CVE-2023-3034 (Mobatime web application – broken authorisation mechanisms)

CVE-2023-3035 (Reflected XSS in BKG Ntrip Professional Caster version <=2.0.44)

CVE-2023-3036 (Guangdong Pythagorean OA Office System Schedule cross site scripting)

CVE-2023-3037 (Out of Bounds Slice index in cfnts leads to remote panic)

CVE-2023-3038 (HelpDezk Community improper authorization)

CVE-2023-3039 (HelpDezk Community improper authorization)

CVE-2023-3040 (N/A)

CVE-2023-3041 (Out of Bounds Access Leading to Undefined Behavior)

CVE-2023-3042 (Autochat <= 1.1.7- Unauthenticated Stored XSS)

CVE-2023-3043 (CNA SHORTNAME: dotCMSORG UUID: 5b9d93f2-25c7-46b4-ab60-d201718c9dd8)

CVE-2023-3044 (Stack-based Buffer Overflow BMC)

CVE-2023-3045 (Divide-by-zero in Xpdf 4.04 due to very large page size)

CVE-2023-3046 (SQLi in Tise Technology’s Parking Web Report)

CVE-2023-3047 (SQLi in Biltay Technlogys Scienta)

CVE-2023-3048 (SQLi in TMT’s Lockcell)

CVE-2023-3049 (IDOR in TMT’s Lockcell)

CVE-2023-3050 (File Upload in TMT’s Lockcell)

CVE-2023-3051 (Authentication Bypass in TMT’s Lockcell)

CVE-2023-3052 (N/A)

CVE-2023-3053 (N/A)

CVE-2023-3055 (N/A)

CVE-2023-3056 (N/A)

CVE-2023-3057 (YFCMF index.php path traversal)

CVE-2023-3058 (YFCMF Ajax.php path traversal)

CVE-2023-3059 (07FLY CRM User Profile cross site scripting)

CVE-2023-3060 (SourceCodester Online Exam Form Submission update_s6.php sql injection)

CVE-2023-3061 (code-projects Agro-School Management System btn_functions.php doAddQuestion cross site scripting)

CVE-2023-3062 (code-projects Agro-School Management System Attachment Image btn_functions.php unrestricted upload)