NAME Node.js yeoman-33enerator module code execution Platforms Affected:Node.js yeoman-33eneratorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yeoman-33enerator module could allow a remote attacker...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-2200 No description provided CVE-2022-26134In affected versions of Confluence Server and Data...
NAME SonicWall SMA100 appliance buffer overflow Platforms Affected:SonicWall SMA100 10.2.1.5-34svRisk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SonicWall SMA100 appliance is vulnerable to a...
NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...
NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...
NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...
NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...
NAME Alpine Linux libxml2 unspecified Platforms Affected:Alpine Linux libxml2 2.9.14Risk Level:8.6Exploitability:UnprovenConsequences:Unknown DESCRIPTION An unspecified error in Alpine Linux libxml2 has...
NAME Claroline cross-site scripting Platforms Affected:Claroline Claroline 13.5.7Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Claroline is vulnerable to cross-site scripting, caused by improper...
NAME Claroline cross-site request forgery Platforms Affected:Claroline Claroline 13.5.7Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Claroline is vulnerable to cross-site request forgery, caused...
NAME IBM DataPower Gateway cross-site request forgery Platforms Affected:IBM DataPower Gateway 2018.4.1.0 IBM DataPower Gateway 10.0.1.0 IBM DataPower Gateway 10.0.2.0...
NAME GitLab command execution Platforms Affected:GitLab GitLab 15.1.4 Community GitLab GitLab 15.1.4 Enterprise GitLab GitLab 11.3.4 Community GitLab GitLab 11.3.4...
NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31676VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability....
NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...
NAME Apache Hadoop command execution Platforms Affected:Apache Hadoop 3.0.0-alpha Apache Hadoop 2.9.0 Apache Hadoop 2.10.1 Apache Hadoop 3.3.0 Apache Hadoop...
NAME Exment SQL Injection Platforms Affected:Exment Exment 5.0.2Risk Level:8.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Exment is vulnerable to SQL injection. A remote attacker...
NAME Elasticsearch Elastic Cloud Enterprise information disclosure Platforms Affected:Elasticsearch Elastic Cloud Enterprise 3.3.0Risk Level:8.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Elasticsearch Elastic Cloud Enterprise...
NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27925Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 has mboximport functionality that receives...
NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...
NAME Node.js ing-feat-cookie-preference module code execution Platforms Affected:Node.js ing-feat-cookie-preferenceRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ing-feat-cookie-preference module could allow a remote attacker...
NAME Cisco ACI Multi-Site Orchestrator (MSO) privilege escalation Platforms Affected:Cisco ACI Multi-Site Orchestrator (MSO) 3.0 Cisco ACI Multi-Site Orchestrator (MSO)...
NAME Node.js fasly-audit-purge module code execution Platforms Affected:Node.js fasly-audit-purgeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js fasly-audit-purge module could allow a remote attacker...
