| Page(s) : 1 ... 511 512 513 514 515 516 517 518 519 520 [521] 522 523 524 525 526 527 528 529 530 531 ... | Result(s) : 43382 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-08-30 | CVE-2022-36712 | cve | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/studentdetails.php. |
| 9.8 | 2022-08-30 | CVE-2022-36735 | cve | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php. |
| 9.8 | 2022-08-30 | CVE-2022-36711 | cve | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/bookdetails.php. |
| 9.8 | 2022-08-29 | CVE-2022-36556 | cve | Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain a command injection vulnerability via the ipAddress parameter at 07system08execute_ping_01. |
| 9.8 | 2022-08-29 | CVE-2022-32993 | cve | TOTOLINK A7000R V4.1cu.4134 was discovered to contain an access control issue via /cgi-bin/ExportSettings.sh. |
| 9.8 | 2022-08-29 | CVE-2022-36560 | cve | Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain multiple hard-coded passcodes for root. Attackers are able to access the passcodes at /etc/srapi/config/sys... |
| 9.8 | 2022-08-29 | CVE-2022-36558 | cve | Seiko SkyBridge MB-A100/A110 v4.2.0 and below implements a hard-coded passcode for the root account. Attackers are able to access the passcord via the file /etc/ciel.cfg. |
| 9.8 | 2022-08-29 | CVE-2022-36555 | cve | Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can be easily cracked via a brute-force attack. |
| 9.8 | 2022-08-29 | CVE-2022-21165 | cve | All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the child_process.exec() fu... |
| 9.8 | 2022-08-29 | CVE-2022-36572 | cve | Sinsiu Sinsiu Enterprise Website System v1.1.1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /upload/admin.php?/deal/. |
| 9.8 | 2022-08-29 | CVE-2022-25644 | cve | All versions of package @pendo324/get-process-by-name are vulnerable to Arbitrary Code Execution due to improper sanitization of getProcessByName function. |
| 9.8 | 2022-08-29 | CVE-2022-22897 | cve | A SQL injection vulnerability in the product_all_one_img and image_product parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthentic... |
| 9.8 | 2022-08-29 | CVE-2022-36559 | cve | Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection vulnerability via the Ping parameter at ping_exec.cgi. |
| 9.8 | 2022-08-29 | CVE-2022-25921 | cve | All versions of package morgan-json are vulnerable to Arbitrary Code Execution due to missing sanitization of input passed to the Function constructor. |
| 9.8 | 2022-08-29 | CVE-2022-36554 | cve | A command injection vulnerability in the CLI (Command Line Interface) implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands wi... |
| 9.8 | 2022-08-29 | CVE-2022-36553 | cve | Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi. |
| 9.8 | 2022-08-29 | CVE-2022-36557 | cve | Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain an arbitrary file upload vulnerability via the restore backup function. This vulnerability allows attacke... |
| 9.8 | 2022-08-29 | CVE-2022-32548 | cve | An issue was discovered on certain DrayTek Vigor routers before July 2022 such as the Vigor3910 before 4.3.1.1. /cgi-bin/wlogin.cgi has a buffer overflow via the username or pas... |
| 9.8 | 2022-08-28 | CVE-2022-36706 | cve | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_stockout.php. |
| 9.8 | 2022-08-28 | CVE-2022-36705 | cve | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_waste.php. |
| Page(s) : 1 ... 511 512 513 514 515 516 517 518 519 520 [521] 522 523 524 525 526 527 528 529 530 531 ... | Result(s) : 43382 |
