| Page(s) : 1 ... 462 463 464 465 466 467 468 469 470 471 [472] 473 474 475 476 477 478 479 480 481 482 ... | Result(s) : 43350 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-11-25 | CVE-2022-44844 | cve | TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pass parameter in the setting/setOpenVpnCfg function. |
| 9 | 2022-11-25 | CVE-2022-37720 | cve | Orchardproject Orchard CMS 1.10.3 is vulnerable to Cross Site Scripting (XSS). When a low privileged user such as an author or publisher, injects a crafted html and javascript p... |
| 9 | 2022-11-25 | CVE-2022-37721 | cve | PyroCMS 3.9 is vulnerable to a stored Cross Site Scripting (XSS_ when a low privileged user such as an author, injects a crafted html and javascript payload in a blog post, lead... |
| 9.8 | 2022-11-25 | CVE-2022-45206 | cve | Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/duplicate/check. |
| 9.8 | 2022-11-25 | CVE-2022-45207 | cve | Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component updateNullByEmptyString. |
| 9.8 | 2022-11-25 | CVE-2022-41705 | cve | Badaso version 2.6.3 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly valid... |
| 9.8 | 2022-11-25 | CVE-2022-45476 | cve | Tiny File Manager version 2.4.8 executes the code of files uploaded by users of the application, instead of just returning them for download. This is possible because the applic... |
| 9.1 | 2022-11-25 | CVE-2022-36133 | cve | The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass. |
| 9.6 | 2022-11-25 | CVE-2022-4135 | cve | Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape v... |
| 9.1 | 2022-11-25 | CVE-2022-29830 | cve | Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Motion Control Setting(GX Works3 related software) versions... |
| 9.8 | 2022-11-24 | CVE-2022-2650 | cve | Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2. |
| 9.8 | 2022-11-24 | CVE-2022-4136 | cve | Dangerous method exposed which can lead to RCE in qmpass/leadshop v1.4.15 allows an attacker to control the target host by calling any function in leadshop.php via the GET method. |
| 9.8 | 2022-11-24 | CVE-2022-4088 | cve | A vulnerability was found in rickxy Stock Management System and classified as critical. Affected by this issue is some unknown functionality of the file /pages/processlogin.php.... |
| 9.8 | 2022-11-23 | CVE-2022-41875 | cve | A remote code execution (RCE) vulnerability in Optica allows unauthenticated attackers to execute arbitrary code via specially crafted JSON payloads. Specially crafted JSON payl... |
| 9.8 | 2022-11-23 | CVE-2022-41923 | cve | Grails Spring Security Core plugin is vulnerable to privilege escalation. The vulnerability allows an attacker access to one endpoint (i.e. the targeted endpoint) using the auth... |
| 9.6 | 2022-11-23 | CVE-2022-41924 | cve | A vulnerability identified in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon `tailscaled`, which can then be used to remotely execut... |
| 9.1 | 2022-11-23 | CVE-2022-43196 | cve | dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via file_manage_control.php. |
| 9.8 | 2022-11-23 | CVE-2022-44117 | cve | Boa 0.94.14rc21 is vulnerable to SQL Injection via username. NOTE: the is disputed by multiple third parties because Boa does not ship with any support for SQL. |
| 9.8 | 2022-11-23 | CVE-2022-44118 | cve | dedecmdv6 v6.1.9 is vulnerable to Remote Code Execution (RCE) via file_manage_control.php. |
| 9.8 | 2022-11-23 | CVE-2022-44120 | cve | dedecmdv6 6.1.9 is vulnerable to SQL Injection. via sys_sql_query.php. |
| Page(s) : 1 ... 462 463 464 465 466 467 468 469 470 471 [472] 473 474 475 476 477 478 479 480 481 482 ... | Result(s) : 43350 |
