17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 16051-16100 of 17282 CVEs Page 322 of 346
CVE-2023-53946
8.4
Arcsoft Multiple Products

Arcsoft PhotoStudio 6

2025-12-20
CVE-2023-53945
Analyzed
8.8
BrainyCP Multiple Products

BrainyCP 1

2025-12-20
CVE-2023-53942
8.8
File Multiple Products

File Thingie 2

2025-12-19
CVE-2023-53941
Analyzed
9.8
HP Multiple Products

EasyPHP Webserver 14.1 contains an OS command injection vulnerability that allows unauthenticated attackers to execute arbitrary system commands by in...

2025-12-19
CVE-2023-53940
7.8
Markdown Multiple Products

Codigo Markdown Editor 1

2025-12-20
CVE-2023-53937
7.8
Hubstaff Multiple Products

Hubstaff 1

2025-12-20
CVE-2023-53934
7.5
Kentico Xperience Multiple Products

A denial of service vulnerability in Kentico Xperience allows attackers to launch DoS attacks via specially crafted requests to the GetResource handle...

2025-12-20
CVE-2023-53933
8.8
Serendipity Multiple Products

Serendipity 2

2025-12-18
CVE-2023-53930
Analyzed
9.8
HP Multiple Products

ProjectSend r1605 contains an insecure direct object reference vulnerability that allows unauthenticated attackers to download private files by manipu...

2025-12-18
CVE-2023-53929
Analyzed
8.8
HP Multiple Products

phpMyFAQ 3

2025-12-18
CVE-2023-53927
Analyzed
8.8
HP Multiple Products

PHPJabbers Simple CMS 5

2025-12-18
CVE-2023-53926
Analyzed
9.8
HP Multiple Products

PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that allows remote attackers to manipulate database queries...

2025-12-18
CVE-2023-53924
8.8
UliCMS Multiple Products

UliCMS 2023

2025-12-18
CVE-2023-53923
Analyzed
9.8
HP Multiple Products

UliCMS 2023.1 contains a privilege escalation vulnerability that allows unauthenticated attackers to create administrative accounts through the UserCo...

2025-12-18
CVE-2023-53922
Analyzed
9.8
HP Multiple Products

TinyWebGallery v2.5 contains a remote code execution vulnerability in the admin upload functionality that allows unauthenticated attackers to upload m...

2025-12-18
CVE-2023-53921
Analyzed
9.8
HP Multiple Products

SitemagicCMS 4.4.3 contains a remote code execution vulnerability that allows attackers to upload malicious PHP files to the files/images directory. A...

2025-12-18
CVE-2023-53914
Analyzed
9.8
HP Multiple Products

UliCMS 2023.1 contains an authentication bypass vulnerability that allows unauthenticated attackers to create admin users through mass assignment in t...

2025-12-18
CVE-2023-53913
8.8
Rukovoditel Multiple Products

Rukovoditel 3

2025-12-18
CVE-2023-53905
8.8
ProjectSend Multiple Products

ProjectSend r1605 contains a CSV injection vulnerability that allows authenticated users to inject malicious formulas into user profile names

2025-12-18
CVE-2023-53900
8.8
Spip Multiple Products

Spip 4

2025-12-17
CVE-2023-53899
Analyzed
9.8
PodcastGenerator Multiple Products

PodcastGenerator 3.2.9 contains a blind server-side request forgery vulnerability that allows attackers to inject XML in the episode upload form. Atta...

2025-12-17
CVE-2023-53896
7.5
D-Link Multiple Products

D-Link DAP-1325 firmware version 1

2025-12-17
CVE-2023-53895
Analyzed
9.8
PimpMyLog Multiple Products

PimpMyLog 1.7.14 contains an improper access control vulnerability that allows remote attackers to create admin accounts without authorization through...

2025-12-17
CVE-2023-53894
Analyzed
9.8
HP Multiple Products

phpfm 1.7.9 contains an authentication bypass vulnerability that allows attackers to log in by exploiting loose type comparison in password hash valid...

2025-12-17
CVE-2023-53888
Analyzed
8.8
HP code through

Zomplog 3

2026-05-26
CVE-2023-53691
8.3
Hikvision Multiple Products

Hikvision CSMP (Comprehensive Security Management Platform) iSecure Center through 2023-06-25 allows file upload via /center/api/files directory trave...

2025-10-22
CVE-2023-52163
KEV
9.5
Digiever DS-2105 Pro

Digiever DS-2105 Pro Missing Authorization Vulnerability - Active in CISA KEV catalog.

2025-12-23
CVE-2023-50897
Analyzed
9.1
HP Multiple Products

Unrestricted Upload of File with Dangerous Type vulnerability in Meow Apps Media File Renamer allows Using Malicious Files.This issue affects Media Fi...

2026-01-06
CVE-2023-50780
Analyzed
8.8
Apache ActiveMQ Artemis

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia...

2026-06-16
CVE-2023-50224
KEV
9.5
TP-Link TL-WR841N

TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability - Active in CISA KEV catalog.

2025-09-03
CVE-2023-49886
Analyzed
9.8
IBM Multiple Products

IBM Standards Processing Engine 10.0.1.10 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe java deserializat...

2025-10-06
CVE-2023-49565
Analyzed
8.4
Unknown Multiple Products

The cbis_manager Podman container is vulnerable to remote command execution via the /api/plugins endpoint

2025-09-18
CVE-2023-49564
Analyzed
8.8
NCS Multiple Products

The CBIS/NCS Manager API is vulnerable to an authentication bypass

2025-09-18
CVE-2023-49367
Analyzed
8.8
Unknown Multiple Products

An issue in user interface in Kyocera Command Center RX EXOSYS M5521cdn allows remote to obtain sensitive information via inspecting sent packages by...

2025-09-19
CVE-2023-49186
Analyzed
7.1
KlbTheme Machic Core Multiple Products

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in KlbTheme Machic Core allows DOM-Based XSS

2026-01-06
CVE-2023-47799
7.5
Mahara Multiple Products

Mahara before 22

2025-08-25
CVE-2023-46453
Analyzed
9.8
Unknown Multiple Products

Certain GL.iNet devices with 4.x firmware allow authentication bypass (resulting in administrative control of the device) via a username that is both...

2026-05-09
CVE-2023-45796
Analyzed
8.1
Pilz PASvisu

A stored cross-site scripting vulnerability in the Runtime component of Pilz PASvisu before 1

2026-06-23
CVE-2023-45795
Analyzed
7.8
Pilz PASvisu

A cross-site scripting vulnerability in the Builder Component of Pilz PASvisu before 1

2026-06-23
CVE-2023-43692
7.5
Malwarebytes Multiple Products

An issue was discovered in Malwarebytes before 4

2025-08-15
CVE-2023-43010
8.8
Unknown Multiple Products

The issue was addressed with improved memory handling

2026-03-13
CVE-2023-43000
KEV
8.8
Unknown Multiple Products

A use-after-free issue was addressed with improved memory management

2025-11-06
CVE-2023-41974
KEV
9.5
Apple iOS and iPadOS

Apple iOS and iPadOS Use-After-Free Vulnerability - Active in CISA KEV catalog.

2026-03-06
CVE-2023-41532
8.8
Hospital Multiple Products

Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the doctor_contact parameter in doctorsearch

2025-08-07
CVE-2023-41531
8.8
Hospital Multiple Products

Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func3

2025-08-07
CVE-2023-41524
8.8
Tenda Multiple Products

Student Attendance Management System v1 was discovered to contain a SQL injection vulnerability via the username parameter at index

2025-08-08
CVE-2023-41523
8.8
Tenda Multiple Products

Student Attendance Management System v1 was discovered to contain a SQL injection vulnerability via the emailAddress parameter at createClassTeacher

2025-08-08
CVE-2023-41522
8.8
Tenda Multiple Products

Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createStudents

2025-08-08
CVE-2023-41521
8.8
Tenda Multiple Products

Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createSessionTerm

2025-08-07
CVE-2023-41520
Analyzed
8.8
Tenda Multiple Products

Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createClassArms

2025-08-07