| Page(s) : 1 ... 415 416 417 418 419 420 421 422 423 424 [425] 426 427 428 429 430 431 432 433 434 435 ... | Result(s) : 43310 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-02-01 | CVE-2022-42970 | cve | A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality that requires a provable user identity or consumes a s... |
| 9.8 | 2023-02-01 | CVE-2022-42971 | cve | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected P... |
| 9.8 | 2023-02-01 | CVE-2022-45101 | cve | Dell PowerScale OneFS 9.0.0.x - 9.4.0.x, contains an Improper Handling of Insufficient Privileges vulnerability in NFS. A remote unauthenticated attacker could potentially expl... |
| 9.8 | 2023-02-01 | CVE-2023-23924 | cve | Dompdf is an HTML to PDF converter. The URI validation on dompdf 2.0.1 can be bypassed on SVG parsing by passing `` tags with uppercase letters. This may lead to arbitrary objec... |
| 9.8 | 2023-02-01 | CVE-2023-24241 | cve | Forget Heart Message Box v1.1 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/loginpost.php. |
| 9.8 | 2023-01-31 | CVE-2022-47873 | cve | Netcad KEOS 1.0 is vulnerable to XML External Entity (XXE) resulting in SSRF with XXE (remote). |
| 9.8 | 2023-01-31 | CVE-2022-45297 | cve | EQ v1.5.31 to v2.2.0 was discovered to contain a SQL injection vulnerability via the UserPwd parameter. |
| 9.8 | 2023-01-31 | CVE-2022-24963 | cve | Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime (APR) allows an attacker to write beyond bounds of a buffer. This issue affects A... |
| 9.8 | 2023-01-31 | CVE-2022-28331 | cve | On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond the end of a stack based buffer in apr_socket_sendv(). This is a result of integer overflow. |
| 9.8 | 2023-01-31 | CVE-2022-47035 | cve | Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint. |
| 9.8 | 2023-01-31 | CVE-2022-47780 | cve | SQL Injection vulnerability in Bangresto 1.0 via the itemID parameter. |
| 9.8 | 2023-01-31 | CVE-2023-24162 | cve | Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter. |
| 9.8 | 2023-01-31 | CVE-2023-24163 | cve | SQL Inection vulnerability in Dromara hutool before 5.8.21 allows attacker to execute arbitrary code via the aviator template engine. |
| 9.8 | 2023-01-31 | CVE-2022-45172 | cve | An issue was discovered in LIVEBOX Collaboration vDesk before v018. Broken Access Control can occur under the /api/v1/registration/validateEmail endpoint, the /api/v1/vdeskinteg... |
| 9.8 | 2023-01-31 | CVE-2022-47697 | cve | COMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Account takeover. Anyone can reset the password of ... |
| 9.8 | 2023-01-31 | CVE-2022-47699 | cve | COMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1 is vulnerable to Incorrect Access Control. |
| 9.8 | 2023-01-31 | CVE-2022-47854 | cve | i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php. |
| 9.8 | 2023-01-31 | CVE-2022-45789 | cve | A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authentic... |
| 9.8 | 2023-01-31 | CVE-2022-21129 | cve | Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. **Not... |
| 9.8 | 2023-01-30 | CVE-2022-0223 | cve | A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow an attacker to create or overwrite criti... |
| Page(s) : 1 ... 415 416 417 418 419 420 421 422 423 424 [425] 426 427 428 429 430 431 432 433 434 435 ... | Result(s) : 43310 |
