CVE.report search for "CVE-2023-52975"
Listed below are 50 relevant search results for "CVE-2023-52975" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2025-39405 | Incorrect Privilege Assignment vulnerability in mojoomla WPAMS apartment-management allows Privilege Escalation.This issue af... | ||
| CVE-2025-39403 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla WPAMS apartmen... | ||
| CVE-2025-39402 | Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS apartment-management allows Upload a Web Shel... | ||
| CVE-2025-39401 | Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS apartment-management allows Upload a Web Shel... | ||
| CVE-2025-39395 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla WPAMS apartmen... | ||
| CVE-2025-39393 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla Hospital Manag... | ||
| CVE-2025-39392 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla WPAMS apartmen... | ||
| CVE-2025-39386 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla Hospital Manag... | ||
| CVE-2025-39380 | Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla Hospital Management System hospital-management allo... | ||
| CVE-2025-39357 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla Hospital Manag... | ||
| CVE-2023-46306 | Netmodule | Nb1601 | The web administration interface in NetModule Router Software (NRSW) 4.6 before 4.6.0.106 and 4.8 before 4.8.0.101 executes a... |
| CVE-2023-46288 | Apache | Airflow | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Airflow.This issue affects Apache Airflow ... |
| CVE-2023-46267 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-5631. Reason: This candidate is a duplicate of CVE-2023-5... | ||
| CVE-2023-46249 | Goauthentik | Authentik | authentik is an open-source Identity Provider. Prior to versions 2023.8.4 and 2023.10.2, when the default admin user has been... |
| CVE-2023-46129 | Linuxfoundation | Nats-server | NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT,... |
| CVE-2023-45869 | Ilias | Ilias | ILIAS 7.25 (2023-09-12) allows any authenticated user to execute arbitrary operating system commands remotely, when a highly ... |
| CVE-2023-45868 | Ilias | Ilias | The Learning Module in ILIAS 7.25 (2023-09-12 release) allows an attacker (with basic user privileges) to achieve a high-impa... |
| CVE-2023-45849 | Perforce | Helix Core | An arbitrary code execution which results in privilege escalation was discovered in Helix Core versions prior to 2023.2. Rep... |
| CVE-2023-45802 | Apache | Http Server | When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not ... |
| CVE-2023-45393 | Grandingteco | Utime Master | An indirect object reference (IDOR) in GRANDING UTime Master v9.0.7-Build:Apr 4,2023 allows authenticated attackers to access... |
| CVE-2023-45391 | Grandingteco | Utime Master | A stored cross-site scripting (XSS) vulnerability in the Create A New Employee function of Granding UTime Master v9.0.7-Build... |
| CVE-2023-45319 | Perforce | Helix Core | In Helix Core versions prior to 2023.2, an unauthenticated remote Denial of Service (DoS) via the commit function was identif... |
| CVE-2023-44487 | Akka | Http Server | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many stre... |
| CVE-2023-44467 | Langchain | Langchain Experimental | langchain_experimental 0.0.14 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via the PALChain... |
| CVE-2023-44464 | Rami | Pretix | pretix before 2023.7.2 allows Pillow to parse EPS files. |
| CVE-2023-44463 | Rami | Pretix | An issue was discovered in pretix before 2023.7.1. Incorrect parsing of configuration files causes the application to trust u... |
| CVE-2023-44385 | Home-assistant | Home Assistant Companion | The Home Assistant Companion for iOS and macOS app up to version 2023.4 are vulnerable to Client-Side Request Forgery. Attack... |
| CVE-2023-44311 | Liferay | Digital Experience Platform | Multiple reflected cross-site scripting (XSS) vulnerabilities in the Plugin for OAuth 2.0 module's OAuth2ProviderApplicationR... |
| CVE-2023-44196 | Juniper | Junos Os Evolved | An Improper Check for Unusual or Exceptional Conditions in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS E... |
| CVE-2023-44195 | Juniper | Junos Os Evolved | An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the NetworkStack agent daemon (nsage... |
| CVE-2023-44080 | Pgyer | Codefever | An issue in PGYER codefever v.2023.8.14-2ce4006 allows a remote attacker to execute arbitrary code via a crafted request to t... |
| CVE-2023-43798 | Bigbluebutton | Bigbluebutton | BigBlueButton is an open-source virtual classroom. BigBlueButton prior to versions 2.6.12 and 2.7.0-rc.1 is vulnerable to Ser... |
| CVE-2023-43794 | Xgenecloud | Nocodb | Nocodb is an open source Airtable alternative. Affected versions of nocodb contain a SQL injection vulnerability, that allows... |
| CVE-2023-43793 | Misskey | Misskey | Misskey is an open source, decentralized social media platform. Prior to version 2023.9.0, by editing the URL, a user can byp... |
| CVE-2023-43783 | Falktx | Cadence | Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/cadence-wineasio.reg Temporary File. The filename is used even if it h... |
| CVE-2023-43782 | Falktx | Cadence | Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/.cadence-aloop-daemon.x Temporary File. The file is used even if it ha... |
| CVE-2023-43764 | Withsecure | F-secure Policy Manager | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-43762. Reason: This candidate is a duplicate of CVE-2023-... |
| CVE-2023-43662 | Shokoanime | Shokoserver | ShokoServer is a media server which specializes in organizing anime. In affected versions the `/api/Image/WithPath` endpoint ... |
| CVE-2023-43611 | Apple | Macos | The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating privileges during the installation pr... |
| CVE-2023-43566 | Jetbrains | Teamcity | In JetBrains TeamCity before 2023.05.4 stored XSS was possible during nodes configuration |
| CVE-2023-43208 | Nextgen | Mirth Connect | NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this ... |
| CVE-2023-42793 | Jetbrains | Teamcity | In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible |
| CVE-2023-42660 | Progress | Moveit Transfer | In Progress MOVEit Transfer versions released before 2021.1.8 (13.1.8), 2022.0.8 (14.0.8), 2022.1.9 (14.1.9), 2023.0.6 (15.0... |
| CVE-2023-42656 | Progress | Moveit Transfer | In Progress MOVEit Transfer versions released before 2021.1.8 (13.1.8), 2022.0.8 (14.0.8), 2022.1.9 (14.1.9), 2023.0.6 (15.0... |
| CVE-2023-42538 | Samsung | Android | An improper input validation in saped_rec_silence in libsaped prior to SMR Nov-2023 Release 1 allows attacker to cause out-of... |
| CVE-2023-42537 | Samsung | Android | An improper input validation in get_head_crc in libsaped prior to SMR Nov-2023 Release 1 allows attacker to cause out-of-boun... |
| CVE-2023-42536 | Samsung | Android | An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows attacker to cause out-of-bounds ... |
| CVE-2023-42535 | Samsung | Android | Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. |
| CVE-2023-42534 | Samsung | Android | Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arb... |
| CVE-2023-42533 | Samsung | Android | Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arb... |