Daily Vulnerability Trends: Wed Feb 22 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-0544An integer underflow in the DDS loader of Blender leads to an...
CVE
Crafter Software CrafterCMS SQL injection | CVE-2023-26020
NAME__________Crafter Software CrafterCMS SQL injectionPlatforms Affected:Crafter Software CrafterCMS 3.1 Crafter Software CrafterCMS 4.0Risk Level:5.7Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Crafter Software CrafterCMS is vulnerable...
Online Pizza Ordering System SQL injection | CVE-2023-0910
NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote...
Fortinet FortiOS and FortiAuthenticator information disclosure | CVE-2022-22302
NAME__________Fortinet FortiOS and FortiAuthenticator information disclosurePlatforms Affected:Fortinet FortiOS 6.0.0 Fortinet FortiOS 6.2.0 Fortinet FortiAuthenticator 6.0.0 Fortinet FortiOS 6.4.0 Fortinet FortiAuthenticator...
HPE OneView for VMware vCenter information disclosure | CVE-2022-37935
NAME__________HPE OneView for VMware vCenter information disclosurePlatforms Affected:HPE OneView for VMware vCenter 10.1 HPE OneView for VMware vCenter 10.0 HPE...
NetHack “C” (call) command denial of service | CVE-2023-24809
NAME__________NetHack "C" (call) command denial of servicePlatforms Affected:NetHack NetHack 3.6.2Risk Level:7.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NetHack is vulnerable to a denial of...
Online Pizza Ordering System SQL injection | CVE-2023-0906
NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote...
WP Coder plugin for WordPress SQL injection | CVE-2023-0895
NAME__________WP Coder plugin for WordPress SQL injectionPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________WP Coder plugin for WordPress is vulnerable to SQL injection....
Employee Task Management System security bypass | CVE-2023-0905
NAME__________Employee Task Management System security bypassPlatforms Affected:Risk Level:7.3Exploitability:Proof of ConceptConsequences:Bypass Security DESCRIPTION__________Employee Task Management System could allow a remote attacker...
Twister Antivirus denial of service | CVE-2023-0907
NAME__________Twister Antivirus denial of servicePlatforms Affected:Risk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Twister Antivirus is vulnerable to a denial of service, caused by...
Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalation | CVE-2022-31808
NAME__________Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalationPlatforms Affected:Siemens SiPass integrated AC5100 Siemens SiPass integrated AC5102 Siemens SiPass...
Employee Task Management System SQL injection | CVE-2023-0903
NAME__________Employee Task Management System SQL injectionPlatforms Affected:Risk Level:5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Employee Task Management System is vulnerable to SQL injection. A remote...
Auto Dealer Management System SQL injection | CVE-2023-0912
NAME__________Auto Dealer Management System SQL injectionPlatforms Affected:Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Auto Dealer Management System is vulnerable to SQL injection. A remote...
Xoslab Easy File Locker denial of service | CVE-2023-0908
NAME__________Xoslab Easy File Locker denial of servicePlatforms Affected:Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Xoslab Easy File Locker is vulnerable to a denial...
Auto Dealer Management System SQL injection | CVE-2023-0915
NAME__________Auto Dealer Management System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Auto Dealer Management System is vulnerable to SQL injection. A remote...
YMFE cross-site scripting | CVE-2021-33237
NAME__________YMFE cross-site scriptingPlatforms Affected:YMFE YMFE 1.9.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________YMFE is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Apache Commons FileUpload and Tomcat denial of service | CVE-2023-24998
NAME__________Apache Commons FileUpload and Tomcat denial of servicePlatforms Affected:Apache Tomcat 10.1.0-M1 Apache Tomcat 10.1.4 Apache Commons FileUpload 1.0-beta-1 Apache Commons...
Employee Task Management System SQL injection | CVE-2023-0904
NAME__________Employee Task Management System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Employee Task Management System is vulnerable to SQL injection. A remote...
Auto Dealer Management System security bypass | CVE-2023-0916
NAME__________Auto Dealer Management System security bypassPlatforms Affected:Risk Level:6.3Exploitability:Proof of ConceptConsequences:Bypass Security DESCRIPTION__________Auto Dealer Management System could allow a remote authenticated...
Auto Dealer Management System SQL injection | CVE-2023-0913
NAME__________Auto Dealer Management System SQL injectionPlatforms Affected:Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Auto Dealer Management System is vulnerable to SQL injection. A remote...
Simple Task Managing System SQL injection | CVE-2022-40032
NAME__________Simple Task Managing System SQL injectionPlatforms Affected:Risk Level:7.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Simple Task Managing System is vulnerable to SQL injection. A remote...
Kliqqi-CMS admin/admin_update_module_widgets.php SQL injection | CVE-2020-21119
NAME__________Kliqqi-CMS admin/admin_update_module_widgets.php SQL injectionPlatforms Affected:Kliqqi-CMS Kliqqi-CMS 2.0.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Kliqqi-CMS is vulnerable to SQL injection. A remote authenticated attacker could...
Pharmacy Management System file upload | CVE-2023-0918
NAME__________Pharmacy Management System file uploadPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Pharmacy Management System could allow a remote authenticated attacker to upload arbitrary...
Simple Food Ordering System cross-site scripting | CVE-2023-0902
NAME__________Simple Food Ordering System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Food Ordering System is vulnerable to cross-site scripting, caused by...
