IBM Cloud Pak for Data file upload | CVE-2022-36769
NAME__________IBM Cloud Pak for Data file uploadPlatforms Affected:IBM Watson Knowledge Catalog on-prem 4.0 IBM Cloud Pak for Data 4.5 IBM...
NAME__________IBM Cloud Pak for Data file uploadPlatforms Affected:IBM Watson Knowledge Catalog on-prem 4.0 IBM Cloud Pak for Data 4.5 IBM...
NAME__________Mattermost Server security bypassPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mattermost Server could allow a remote authenticated attacker to bypass security restrictions, caused...
NAME__________Task Reminder System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Task Reminder System is vulnerable to SQL injection. A remote authenticated attacker...
NAME__________Task Reminder System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Task Reminder System is vulnerable to SQL injection. A remote authenticated attacker...
NAME__________Clusternet privilege escalationPlatforms Affected:Clusternet Clusternet 0.15.1Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Clusternet could allow a local authenticated attacker to gain elevated privileges on...
NAME__________Node.js @fastify/passport module session hijackingPlatforms Affected:Node.js @fastify/passport 1.0.1 Node.js @fastify/passport 2.0.0 Node.js @fastify/passport 2.2.0Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Node.js @fastify/passport module is...
NAME__________Chitor CMS SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Chitor CMS is vulnerable to SQL injection. A remote attacker could send specially...
NAME__________Nokia OneNDS privilege escalationPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Nokia OneNDS could allow a local authenticated attacker to gain elevated privileges on...
NAME__________Third Reality Smart Blind denial of servicePlatforms Affected:Third Reality Smart Blind 3RSB015BZ 1.00.54Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Third Reality Smart Blind...
NAME__________Fortinet FortiGate brute forcePlatforms Affected:Risk Level:7.4Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Fortinet FortiGate is vulnerable to a brute force attack, caused by...
NAME__________Online Pizza Ordering System file uploadPlatforms Affected:Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Online Pizza Ordering System could allow a remote authenticated...
NAME__________Kiwi TCMS file uploadPlatforms Affected:Kiwi TCMS Kiwi TCMS 12.1Risk Level:7.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Kiwi TCMS could allow a remote authenticated attacker to...
NAME__________Online Computer and Laptop Store SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Computer and Laptop Store is vulnerable to SQL injection....
NAME__________YAML denial of servicePlatforms Affected:YAML YAML 2.2.1Risk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________YAML is vulnerable to a denial of service,...
NAME__________phpMyFAQ cross-site scriptingPlatforms Affected:phpMyFAQ phpMyFAQ 3.1.11Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________phpMyFAQ is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Kiwi TCMS security bypassPlatforms Affected:Kiwi TCMS Kiwi TCMS 12.1Risk Level:3.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Kiwi TCMS could allow a local authenticated attacker to...
NAME__________Complaint Management System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Complaint Management System is vulnerable to SQL injection. A remote authenticated attacker...
NAME__________Online Eyewear Shop SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Eyewear Shop is vulnerable to SQL injection. A remote authenticated attacker...
NAME__________RIOT-OS RIOT denial of servicePlatforms Affected:RIOT-OS RIOT 2022.07Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________RIOT-OS RIOT is vulnerable to a denial of service,...
NAME__________Northern.tech CFEngine Enterprise information disclosurePlatforms Affected:Northern.tech CFEngine Enterprise 3.21.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Northern.tech CFEngine Enterprise could allow a remote authenticated attacker...
NAME__________IBM Db2 code executionPlatforms Affected:IBM DB2 for Linux UNIX and Windows 10.5 IBM DB2 for Linux UNIX and Windows 11.1...
NAME__________Devolutions Workspace Desktop Windows & macOS security bypassPlatforms Affected:Devolutions Workspace Desktop Windows and macOS 2023.1.1.3Risk Level:6.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Devolutions Workspace Desktop...
NAME__________Microsoft Excel code executionPlatforms Affected:Microsoft ExcelRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Microsoft Excel could allow a remote attacker to execute arbitrary code on...
NAME__________Telindus Apsal file uploadPlatforms Affected:Telindus Apsal 3.14.2022.235 bRisk Level:4.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Telindus Apsal could allow a local authenticated attacker to upload...