| Page(s) : 1 ... 521 522 523 524 525 526 527 528 529 530 [531] 532 533 534 535 536 537 538 539 540 541 ... | Result(s) : 43383 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-08-16 | CVE-2022-36272 | cve | Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/page/verify URI via fieldName parameter. |
| 9.8 | 2022-08-16 | CVE-2022-30264 | cve | The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol (4000/TCP, 5000/TCP) for communications be... |
| 9.6 | 2022-08-16 | CVE-2022-38193 | cve | There is a code injection vulnerability in Esri Portal for ArcGIS versions 10.8.1 and below that may allow a remote, unauthenticated attacker to pass strings which could potenti... |
| 9.8 | 2022-08-16 | CVE-2022-37437 | cve | When using Ingest Actions to configure a destination that resides on Amazon Simple Storage Service (S3) in Splunk Web, TLS certificate validation is not correctly performed and ... |
| 9.8 | 2022-08-16 | CVE-2022-34256 | cve | Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Authorization vulnerability that could result in Privi... |
| 9.8 | 2022-08-16 | CVE-2022-2662 | cve | Sequi PortBloque S has a improper authentication issues which may allow an attacker to bypass the authentication process and gain user-level access to the device. |
| 9.8 | 2022-08-16 | CVE-2022-2847 | cve | A vulnerability, which was classified as critical, has been found in SourceCodester Guest Management System. This issue affects some unknown processing of the file /guestmanagem... |
| 9.8 | 2022-08-16 | CVE-2022-36242 | cve | Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=. |
| 9.8 | 2022-08-16 | CVE-2021-39085 | cve | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to SQL injection. A remote attacker coul... |
| 9.8 | 2022-08-15 | CVE-2022-36010 | cve | This library allows strings to be parsed as functions and stored as a specialized component, [`JsonFunctionValue`](https://github.com/oxyno-zeta/react-editable-json-tree/blob/09... |
| 10 | 2022-08-15 | CVE-2022-35978 | cve | Minetest is a free open-source voxel game engine with easy modding and game creation. In **single player**, a mod can set a global setting that controls the Lua script loaded to... |
| 9.8 | 2022-08-15 | CVE-2022-36523 | cve | D-Link Go-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to command injection via /htdocs/upnpinc/gena.php. |
| 9.8 | 2022-08-15 | CVE-2022-36262 | cve | An issue was discovered in taocms 3.0.2. in the website settings that allows arbitrary php code to be injected by modifying config.php. |
| 9.8 | 2022-08-15 | CVE-2022-34294 | cve | totd 1.5.3 uses a fixed UDP source port in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injecti... |
| 9.8 | 2022-08-15 | CVE-2022-38221 | cve | A buffer overflow in the FTcpListener thread in The Isle Evrima (the dedicated server on Windows and Linux) 0.9.88.07 before 2022-08-12 allows a remote attacker to crash any ser... |
| 9.8 | 2022-08-15 | CVE-2022-2812 | cve | A vulnerability classified as critical was found in SourceCodester Guest Management System. This vulnerability affects unknown code of the file index.php. The manipulation of th... |
| 9.8 | 2022-08-15 | CVE-2022-2180 | cve | The GREYD.SUITE WordPress theme does not properly validate uploaded custom font packages, and does not perform any authorization or csrf checks, allowing an unauthenticated atta... |
| 9.8 | 2022-08-15 | CVE-2022-2314 | cve | The VR Calendar WordPress plugin through 2.3.2 lets any user execute arbitrary PHP functions on the site. |
| 9.8 | 2022-08-15 | CVE-2020-21642 | cve | Directory Traversal vulnerability ZDBQAREFSUBDIR parameter in /zropusermgmt API in Zoho ManageEngine Analytics Plus before 4350 allows remote attackers to run arbitrary code. |
| 9.8 | 2022-08-15 | CVE-2022-36525 | cve | D-Link Go-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to Buffer Overflow via authenticationcgi_main. |
| Page(s) : 1 ... 521 522 523 524 525 526 527 528 529 530 [531] 532 533 534 535 536 537 538 539 540 541 ... | Result(s) : 43383 |
