Lista CVE 2023/6xxx

CVE nel gruppo: 6xxx

CVE-2023-6046 (N/A)

CVE-2023-6047 (EventON < 2.2 - Admin+ Stored HTML Injection)

CVE-2023-6048 (Reflected XSS in Algoritim E-commerce Software)

CVE-2023-6049 (Estatik Real Estate Plugin < 4.1.1 - Subscriber+ Arbitrary Option Update)

CVE-2023-6050 (Estatik Real Estate Plugin < 4.1.1 - Unauthenticated PHP Object Injection)

CVE-2023-6051 (Estatik Real Estate Plugin < 4.1.1 - Reflected XSS)

CVE-2023-6052 (Improper Control of Generation of Code (‘Code Injection’) in GitLab)

CVE-2023-6053 (Tongda OA 2017 delete.php sql injection)

CVE-2023-6054 (Tongda OA 2017 delete.php sql injection)

CVE-2023-6055 (Tongda OA 2017 lock.php sql injection)

CVE-2023-6056 (Improper Certificate Validation in Bitdefender Total Security HTTPS Scanning (VA-11158))

CVE-2023-6057 (Insecure Trust of Self-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11164))

CVE-2023-6058 (Insecure Trust of DSA-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11166))

CVE-2023-6060 (HTTPS Certificate Validation Issue in Bitdefender Safepay (VA-11167))

CVE-2023-6061 (N/A)

CVE-2023-6062 (N/A)

CVE-2023-6063 (Arbitrary File Write)

CVE-2023-6064 (WP Fastest Cache < 1.2.2 - Unauthenticated SQL Injection)

CVE-2023-6065 (PayHere Payment Gateway < 2.2.12 - Unauthenticated Log Data Disclosure)

CVE-2023-6066 (Quttera Web Malware Scanner < 3.4.2.1 - Directory Listing to Sensitive Data Exposure)

CVE-2023-6067 (WP Custom Widget Area <= 1.2.5 - Subscriber+ Menus Creation/Deletion/Update)

CVE-2023-6068 (WP User Profile Avatar <= 1.0.1 - Contributor+ Stored XSS)

CVE-2023-6069 (On affected 7130 Series FPGA platforms running MOS and recent versions of the MultiAccess FPGA, application of ACL’s may result in incorrect operation of the configured ACL for a port resulting in some packets that should be denied being permitted and some)

CVE-2023-6070 (Improper Link Resolution Before File Access in froxlor/froxlor)

CVE-2023-6071 (N/A)

CVE-2023-6072 (N/A)

CVE-2023-6073 (N/A)

CVE-2023-6074 (DoS and Control of Volume Settings for VW ID.3 ICAS3 IVI ECU)

CVE-2023-6075 (PHPGurukul Restaurant Table Booking System Booking Reservation check-status.php sql injection)

CVE-2023-6076 (PHPGurukul Restaurant Table Booking System Reservation Request index.php cross site scripting)

CVE-2023-6077 (PHPGurukul Restaurant Table Booking System Reservation Status booking-details.php information disclosure)

CVE-2023-6078 (Slider – Ultimate Responsive Image Slider < 3.5.12 - Subscriber+ Arbitrary Post Access)

CVE-2023-6079 (OS Command Injection vulnerability affecting BIOVIA Materials Studio products from Release BIOVIA 2021 through Release BIOVIA 2023)

CVE-2023-6080 (N/A)

CVE-2023-6081 (Privilege Escalation to SYSTEM in Lakeside Software Installer)

CVE-2023-6082 (Chart.js for WordPress <= 2023.2 - Editor+ Stored Cross-Site Scripting in New Chart)

CVE-2023-6083 (Chart.js for WordPress <= 2023.2 - Editor+ Stored Cross-Site Scripting)

CVE-2023-6084 (N/A)

CVE-2023-6085 (Tongda OA 2017 delete.php sql injection)

CVE-2023-6086 (N/A)

CVE-2023-6087 (N/A)

CVE-2023-6088 (N/A)

CVE-2023-6089 (N/A)

CVE-2023-6090 (N/A)

CVE-2023-6091 (WordPress Mollie Payments for WooCommerce Plugin <= 7.3.11 is vulnerable to Arbitrary File Upload)

CVE-2023-6092 (WordPress Theme Editor plugin <= 2.7.1 - Arbitrary File Upload vulnerability)

CVE-2023-6093 (N/A)

CVE-2023-6094 (OnCell G3150A-LTE Series: Clickjacking Vulnerability)

CVE-2023-6095 (OnCell G3150A-LTE Series: Web Server Transmits Cleartext Credentials)

CVE-2023-6096 (Remote Code Execution without authentication using memory overflow)

CVE-2023-6097 (using a inappropriate encryption logic)

CVE-2023-6098 (SQL Injection on ICSSolution ICS Business Manager)

CVE-2023-6099 (Cross-site Scripting on ICSSolution ICS Business Manager)

CVE-2023-6100 (Shenzhen Youkate Industrial Facial Love Cloud Payment System Account SystemMng.ashx privileges management)

CVE-2023-6101 (Maiwei Safety Production Control Platform GetItemList information disclosure)

CVE-2023-6102 (Maiwei Safety Production Control Platform Intelligent Monitoring ha.html information disclosure)

CVE-2023-6103 (Maiwei Safety Production Control Platform unrestricted upload)

CVE-2023-6104 (Intelbras RX 1500 SSID WiFi.html cross site scripting)

CVE-2023-6105 (N/A)

CVE-2023-6106 (ManageEngine Information Disclosure in Multiple Products)