Lista CVE 2023/5xxx

CVE nel gruppo: 5xxx

CVE-2023-5042 (N/A)

CVE-2023-5043 (N/A)

CVE-2023-5044 (Ingress nginx annotation injection causes arbitrary command execution)

CVE-2023-5045 (Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation)

CVE-2023-5046 (SQLi in Biltay’s Kayısı)

CVE-2023-5047 (SQLi in Biltay’s Procost)

CVE-2023-5048 (SQLi in DRDrive)

CVE-2023-5049 (N/A)

CVE-2023-5050 (N/A)

CVE-2023-5051 (N/A)

CVE-2023-5052 (N/A)

CVE-2023-5053 (Cross Site Scripting (XSS) in Servidor Uniforme Zero)

CVE-2023-5054 (SQL Injection in hospital-management-system-in-php 378c157 in index.php)

CVE-2023-5055 (N/A)

CVE-2023-5056 (L2CAP: Possible Stack based buffer overflow in le_ecred_reconf_req())

CVE-2023-5057 (Skupper-operator: privelege escalation via config map)

CVE-2023-5058 (ActivityPub for WordPress < 1.0.0 - Contributor+ Stored XSS)

CVE-2023-5059 (N/A)

CVE-2023-5060 (Santesoft Sante FFT Imaging Out-of-bounds Read)

CVE-2023-5061 (Cross-site Scripting (XSS) – DOM in librenms/librenms)

CVE-2023-5062 (Missing Authorization in GitLab)

CVE-2023-5063 (N/A)

CVE-2023-5068 (N/A)

CVE-2023-5070 (Delta Electronics DIAScreen Out-of-bounds Write)

CVE-2023-5071 (N/A)

CVE-2023-5072 (N/A)

CVE-2023-5073 (DoS Vulnerability in JSON-Java)

CVE-2023-5074 (N/A)

CVE-2023-5075 (Authentication Bypass in D-Link D-View 8)

CVE-2023-5076 (N/A)

CVE-2023-5077 (N/A)

CVE-2023-5078 (Vault’s Google Cloud Secrets Engine Removed Existing IAM Conditions When Creating / Updating Rolesets)

CVE-2023-5079 (N/A)

CVE-2023-5080 (N/A)

CVE-2023-5081 (N/A)

CVE-2023-5082 (N/A)

CVE-2023-5084 (History Log by click5 < 1.0.13 - Admin+ Time-Based Blind SQL Injection)

CVE-2023-5085 (Cross-site Scripting (XSS) – Reflected in hestiacp/hestiacp)

CVE-2023-5086 (N/A)

CVE-2023-5087 (N/A)

CVE-2023-5088 (PageLayer < 1.7.8 - Author+ Stored XSS)

CVE-2023-5089 (Qemu: improper ide controller reset can lead to mbr overwrite)

CVE-2023-5090 (Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page))

CVE-2023-5091 (Kernel: kvm: svm: improper check in svm_set_x2apic_msr_interception allows direct access to host x2apic msrs)

CVE-2023-5096 (Mali GPU Kernel Driver allows improper GPU processing operations)

CVE-2023-5097 (N/A)

CVE-2023-5098 (N/A)

CVE-2023-5099 (Campaign Monitor Forms < 2.5.6 - Subscriber+ Arbitrary Options Update)

CVE-2023-5100 (N/A)

CVE-2023-5101 (N/A)

CVE-2023-5102 (N/A)

CVE-2023-5103 (N/A)

CVE-2023-5104 (N/A)

CVE-2023-5105 (Improper Input Validation in nocodb/nocodb)

CVE-2023-5106 (Frontend File Manager < 22.6 - Editor+ Arbitrary File Download)

CVE-2023-5108 (Incorrect Authorization in GitLab)

CVE-2023-5109 (Easy Newsletter Signups <= 1.0.4 - Admin+ SQLi)

CVE-2023-5110 (N/A)

CVE-2023-5111 (N/A)

CVE-2023-5112 (Os Commerce 4.12.56860 – Cross Site Scripting Reflected (XSS))