Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 520 521 522 523 524 525 526 527 528 529 [530] 531 532 533 534 535 536 537 538 539 540 ... Result(s) : 43383

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2022-08-18 CVE-2022-35602 cve A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user.
9.8 2022-08-18 CVE-2022-35603 cve A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.
9.8 2022-08-18 CVE-2022-35605 cve A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users...
9.8 2022-08-18 CVE-2022-35606 cve A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCo...
9.8 2022-08-17 CVE-2022-1400 cve Use of Hard-coded Cryptographic Key vulnerability in the WebReportsApi.dll of Exago Web Reports, as used in the Device42 Asset Management Appliance, allows an attacker to leak s...
9.1 2022-08-17 CVE-2022-1399 cve An Argument Injection or Modification vulnerability in the "Change Secret" username field as used in the Discovery component of Device42 CMDB allows a local attacker to run arbi...
9.8 2022-08-17 CVE-2022-22455 cve IBM Security Verify Governance Identity Manager 10.0 virtual appliance component performs an operation at a privilege level that is higher than the minimum level required, which...
9.8 2022-08-17 CVE-2022-36190 cve GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.
9.8 2022-08-17 CVE-2022-35147 cve DoraCMS v2.18 and earlier allows attackers to bypass login authentication via a crafted HTTP request.
9.1 2022-08-17 CVE-2022-35122 cve An access control issue in Ecowitt GW1100 Series Weather Stations
9.8 2022-08-17 CVE-2022-2336 cve Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administrator credentials as `admin` and password as `admin`. This allows So...
9.8 2022-08-17 CVE-2022-23764 cve The vulnerability causing from insufficient verification procedures for downloaded files during WebCube update. Remote attackers can bypass this verification logic to update bot...
9.8 2022-08-17 CVE-2022-23747 cve In Sony Xperia series 1, 5, and Pro, an out of bound memory access can occur due to lack of validation of the number of frames being passed during music playback.
9.8 2022-08-17 CVE-2022-35516 cve DedeCMS v5.7.93 - v5.7.96 was discovered to contain a remote code execution vulnerability in login.php.
9.8 2022-08-17 CVE-2022-35121 cve Novel-Plus v3.6.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /service/impl/BookServiceImpl.java.
9.8 2022-08-17 CVE-2022-2870 cve A vulnerability was found in laravel 5.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to deserialization. The attack may be ...
9.8 2022-08-16 CVE-2021-39085 cve IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to SQL injection. A remote attacker coul...
9.8 2022-08-16 CVE-2022-36242 cve Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=.
9.8 2022-08-16 CVE-2022-36599 cve Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/model/delete URI via models Lists.
9.8 2022-08-16 CVE-2022-36272 cve Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/page/verify URI via fieldName parameter.
Page(s) : 1 ... 520 521 522 523 524 525 526 527 528 529 [530] 531 532 533 534 535 536 537 538 539 540 ... Result(s) : 43383