NAME Western Digital My Cloud devices cross-site scripting Platforms Affected:Western Digital My CloudRisk Level:8.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Western Digital My Cloud...
NAME SolarView Compact file upload Platforms Affected:Contec SolarView Compact SV-CPT-MC310 7.23 Contec SolarView Compact SV-CPT-MC310F 7.23Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SolarView...
NAME PEGA Infinity security bypass Platforms Affected:PEGA Infinity 7.3.1 PEGA Infinity 8.7.2Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION PEGA Infinity could allow a...
NAME PCProtect Endpoint privilege escalation Platforms Affected:PCProtect Endpoint 5.17.470Risk Level:8.4Exploitability:Proof of ConceptConsequences:Gain Privileges DESCRIPTION PCProtect Endpoint could allow a local...
NAME Jenkins CLIF Performance Testing Plugin directory traversal Platforms Affected:jenkins CLIF Performance Testing Plugin 64.vc0d66de1dfb_fRisk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Jenkins CLIF...
NAME Node.js autolinker module security bypass Platforms Affected:Node.js AutolinkerRisk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Node.js autolinker module could allow a remote attacker...
NAME MOXA NPort 5110 device denial of service Platforms Affected:MOXA NPort 5110 2.10Risk Level:8.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION MOXA NPort 5110...
NAME Joplin command execution Platforms Affected:Joplin Joplin 2022-05Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Joplin could allow a remote attacker to...
The Microsoft 365 Defender Research Team has warned that attackers are increasingly leveraging Internet Information Services (IIS) extensions as covert backdoors into...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-32502 No description provided CVE-2022-32510 No description provided CVE-2022-26134In affected versions of...
NAME Node.js machine-mapper module code execution Platforms Affected:Node.js machine-mapperRisk Level:9.8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION Node.js machine-mapper module could allow a remote attacker...
NAME Node.js deere-ui-toggle-group module code execution Platforms Affected:Node.js deere-ui-toggle-groupRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js deere-ui-toggle-group module could allow a remote attacker...
NAME Ceph security bypass Platforms Affected:Ceph Ceph 17.2Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Ceph could allow a remote authenticated attacker to bypass...
NAME Node.js peekatchuysharmlesspackage module code execution Platforms Affected:Node.js peekatchuysharmlesspackageRisk Level:9.8Exploitability:HighConsequences:Gain Access DESCRIPTION Node.js peekatchuysharmlesspackage module could allow a remote attacker...
NAME Node.js hft-frontend-test module code execution Platforms Affected:Node.js hft-frontend-testRisk Level:9.8Exploitability:HighConsequences:Gain Access DESCRIPTION Node.js hft-frontend-test module could allow a remote attacker...
NAME Node.js wm-accounts-auth-core module code execution Platforms Affected:Node.js wm-accounts-auth-coreRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wm-accounts-auth-core module could allow a remote attacker...
NAME Sourcecodester Hospital Information System SQL injection Platforms Affected:Source Code & Projects Hospital Information System 1.0Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Sourcecodester...
NAME Node.js chat-orion-sdk module code execution Platforms Affected:Node.js chat-orion-sdkRisk Level:9.8Exploitability:HighConsequences:Gain Access DESCRIPTION Node.js chat-orion-sdk module could allow a remote attacker...
NAME Node.js amplify-category-api-dynamodb-simulator module code execution Platforms Affected:Node.js amplify-category-api-dynamodb-simulatorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js amplify-category-api-dynamodb-simulator module could allow a remote attacker...
NAME Node.js jworkflow module code execution Platforms Affected:Node.js jworkflowRisk Level:9.8Exploitability:HighConsequences:Gain Access DESCRIPTION Node.js jworkflow module could allow a remote attacker...
NAME Zephyr code execution Platforms Affected:Zephyr Project Zephyr 3.0Risk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Zephyr could allow a remote authenticated attacker to...
NAME Node.js wm-accounts-sdk module code execution Platforms Affected:Node.js wm-accounts-sdkRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wm-accounts-sdk module could allow a remote attacker...
NAME Cloudflare WARP Client security bypass Platforms Affected:Cloudflare WARP Client for Windows 2022.5 Cloudflare WARP Client for Linux 2022.5 Cloudflare...
NAME Node.js support-center-components module code execution Platforms Affected:Node.js support-center-componentsRisk Level:9.8Exploitability:HighConsequences:Gain Access DESCRIPTION Node.js support-center-components module could allow a remote attacker...
