Known header injection | CVE-2022-33011
NAME Known header injection Platforms Affected:Idno Known 1.3.1 Idno Known 1.2.2 Idno Known 1.0.0 Idno Known 0.9.9Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Vulnerabilities
TOTOLINK EX300 command execution | CVE-2022-32449
NAME TOTOLINK EX300 command execution Platforms Affected:TOTOLINK EX300 V2 V4.0.3c.7484Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION TOTOLINK EX300 could allow a...
Codoforum file upload | CVE-2022-31854
NAME Codoforum file upload Platforms Affected:Codoforum Codoforum 5.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Codoforum could allow a remote authenticated attacker to upload...
Node.js esper-docs module code execution |
NAME Node.js esper-docs module code execution Platforms Affected:Node.js esper-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js esper-docs module could allow a remote attacker...
Node.js cloudwatchevents-processor module code execution |
NAME Node.js cloudwatchevents-processor module code execution Platforms Affected:Node.js cloudwatchevents-processorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js cloudwatchevents-processor module could allow a remote attacker...
Node.js dependabot-autodeploy-action module code execution |
NAME Node.js dependabot-autodeploy-action module code execution Platforms Affected:Node.js dependabot-autodeploy-actionRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js dependabot-autodeploy-action module could allow a remote attacker...
Outline cross-site scripting | CVE-2022-2342
NAME Outline cross-site scripting Platforms Affected:outline outline 0.64.3Risk Level:7.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Outlin is vulnerable to cross-site scripting, caused by improper...
Mini-Tmall code execution | CVE-2022-30929
NAME Mini-Tmall code execution Platforms Affected:Mini-Tmall Mini-Tmall 1.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mini-Tmall could allow a remote authenticated attacker to execute...
Node.js pixel-server-gateway module code execution |
NAME Node.js pixel-server-gateway module code execution Platforms Affected:Node.js pixel-server-gatewayRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pixel-server-gateway module could allow a remote attacker...
Dell Cloud Mobility for Dell EMC Storage code execution | CVE-2022-33936
NAME Dell Cloud Mobility for Dell EMC Storage code execution Platforms Affected:Dell Cloud Mobility for Dell EMC Storage 1.3.0Risk Level:8Exploitability:UnprovenConsequences:Gain...
Node.js ts-node-lessons-learned module code execution |
NAME Node.js ts-node-lessons-learned module code execution Platforms Affected:Node.js ts-node-lessons-learnedRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ts-node-lessons-learned module could allow a remote attacker...
Bently Nevada default account | CVE-2022-29953
NAME Bently Nevada default account Platforms Affected:Bently Nevada 3701/40 Bently Nevada 3701/44 Bently Nevada 3701/46 Bently Nevada 60M100 (3701/60)Risk Level:9.1Exploitability:UnprovenConsequences:Gain...
CentOS Web Panel command execution | CVE-2022-25048
NAME CentOS Web Panel command execution Platforms Affected:CentOS Web Panel CentOS Web Panel 0.9.8.1126Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CentOS Web Panel...
Node.js teamlead module code execution |
NAME Node.js teamlead module code execution Platforms Affected:Node.js teamleadRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js teamlead module could allow a remote attacker...
Node.js ovotech module code execution |
NAME Node.js ovotech module code execution Platforms Affected:Node.js ovotechRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ovotech module could allow a remote attacker...
Node.js hishampoc module code execution |
NAME Node.js hishampoc module code execution Platforms Affected:Node.js hishampocRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js hishampoc module could allow a remote attacker...
Devolutions Server cross-site scripting | CVE-2022-2316
NAME Devolutions Server cross-site scripting Platforms Affected:Devolutions Devolutions Server 2022.1Risk Level:7.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Devolutions Server is vulnerable to cross-site scripting,...
Node.js compensation-calculator module code execution |
NAME Node.js compensation-calculator module code execution Platforms Affected:Node.js compensation-calculatorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js compensation-calculator module could allow a remote attacker...
Node.js nodejs-resilient-client module code execution |
NAME Node.js nodejs-resilient-client module code execution Platforms Affected:Node.js nodejs-resilient-clientRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js nodejs-resilient-client module could allow a remote attacker...
Node.js fast-todo-app module code execution |
NAME Node.js fast-todo-app module code execution Platforms Affected:Node.js fast-todo-appRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js fast-todo-app module could allow a remote attacker...
H3C Magic R100 command execution | CVE-2022-34598
NAME H3C Magic R100 command execution Platforms Affected:H3C Magic R100 R100V100R005 H3C Magic R100 V200R004Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION...
MediaTek Android privilege escalation | CVE-2022-21767
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
MediaTek Android privilege escalation | CVE-2022-21777
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
Roxy-WI security bypass | CVE-2022-31125
NAME Roxy-WI security bypass Platforms Affected:HAProxy Roxy-WI 6.0.3.0 HAProxy Roxy-WI 6.0.2.0 HAProxy Roxy-WI 6.0.1.0Risk Level:10Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Roxy-WI could allow...
