Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-45085 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2022-45085)
SSRF in ssrf (CVE-2022-45085). Confidential information can be exposed externally.
|
| CVE-2022-45589 |
|
SQL Injection in sqli (CVE-2022-45589)
SQL injection in sqli (CVE-2022-45589). Successful exploitation can lead to full system takeover.
|
| CVE-2021-36712 |
|
Cross-Site Scripting (XSS) in yzmcms (CVE-2021-36712)
cross-site scripting in yzmcms (CVE-2021-36712). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-25136 |
|
Vulnerability in openbsd (CVE-2023-25136)
vulnerability in openbsd (CVE-2023-25136). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-46965 |
|
SQL Injection in sqli (CVE-2022-46965)
SQL injection in sqli (CVE-2022-46965). Confidential information can be exposed externally.
|
| CVE-2022-47770 |
|
Serenissima Informatica Fast Checkin version v1.0 is vulnerable to Unauthenticated SQL Injection.
Serenissima Informatica Fast Checkin version v1.0 is vulnerable to Unauthenticated SQL Injection.
|
| CVE-2022-47768 |
|
Serenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal.
Serenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal.
|
| CVE-2022-44897 |
|
Cross-Site Scripting (XSS) in apollotheme (CVE-2022-44897)
cross-site scripting in apollotheme (CVE-2022-44897). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-22452 |
|
SQL Injection in sqli (CVE-2020-22452)
SQL injection in sqli (CVE-2020-22452). Successful exploitation can lead to full system takeover.
|
| CVE-2022-4554 |
|
Cross-Site Scripting (XSS) in idyazilim (CVE-2022-4554)
cross-site scripting in idyazilim (CVE-2022-4554). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24070 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2023-24070)
cross-site scripting in misp-project (CVE-2023-24070). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24027 |
|
In MISP 2.4.167, app/webroot/js/action_table.js allows XSS via a network history name.
In MISP 2.4.167, app/webroot/js/action_table.js allows XSS via a network history name.
|
| CVE-2022-41441 |
|
Cross-Site Scripting (XSS) in reqlogic (CVE-2022-41441)
cross-site scripting in reqlogic (CVE-2022-41441). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-37500 |
|
Path Traversal in path-traversal (CVE-2021-37500)
path traversal in path-traversal (CVE-2021-37500). Data can be tampered with by attackers.
|
| CVE-2021-37498 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2021-37498)
SSRF in ssrf (CVE-2021-37498). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-36630 |
|
Vulnerability in dos (CVE-2021-36630)
vulnerability in dos (CVE-2021-36630). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-3693 |
|
Path Traversal in path-traversal (CVE-2022-3693)
path traversal in path-traversal (CVE-2022-3693). Confidential information can be exposed externally.
|
| CVE-2022-3792 |
|
SQL Injection in sqli (CVE-2022-3792)
SQL injection in sqli (CVE-2022-3792). Successful exploitation can lead to full system takeover.
|
| CVE-2022-4422 |
|
SQL Injection in sqli (CVE-2022-4422)
SQL injection in sqli (CVE-2022-4422). Successful exploitation can lead to full system takeover.
|
| CVE-2022-40011 |
|
Cross-Site Scripting (XSS) in typora (CVE-2022-40011)
cross-site scripting in typora (CVE-2022-40011). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-47928 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2022-47928)
cross-site scripting in misp-project (CVE-2022-47928). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-40841 |
|
Cross-Site Scripting (XSS) in ndk-design (CVE-2022-40841)
cross-site scripting in ndk-design (CVE-2022-40841). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-40435 |
|
Cross-Site Scripting (XSS) in employee-performance-evaluation-system-project (CVE-2022-40435)
cross-site scripting in employee-performance-evaluation-system-project (CVE-2022-40435). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-31358 |
|
Cross-Site Scripting (XSS) in proxmox (CVE-2022-31358)
cross-site scripting in proxmox (CVE-2022-31358). Successful exploitation can lead to full system takeover.
|
| CVE-2022-44694 |
|
Microsoft Office Visio Remote Code Execution Vulnerability
Microsoft Office Visio Remote Code Execution Vulnerability
|
| CVE-2022-44695 |
|
Microsoft Office Visio Remote Code Execution Vulnerability
Microsoft Office Visio Remote Code Execution Vulnerability
|
| CVE-2022-44696 |
|
Microsoft Office Visio Remote Code Execution Vulnerability
Microsoft Office Visio Remote Code Execution Vulnerability
|
| CVE-2022-44702 |
|
Windows Terminal Remote Code Execution Vulnerability
Windows Terminal Remote Code Execution Vulnerability
|
| CVE-2022-44303 |
|
Cross-Site Scripting (XSS) in resque-scheduler-project (CVE-2022-44303)
cross-site scripting in resque-scheduler-project (CVE-2022-44303). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-32415 |
|
Vulnerability in privilege-escalation (CVE-2021-32415)
vulnerability in privilege-escalation (CVE-2021-32415). Successful exploitation can lead to full system takeover.
|
| CVE-2022-44960 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44960)
cross-site scripting in webtareas-project (CVE-2022-44960). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44961 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44961)
cross-site scripting in webtareas-project (CVE-2022-44961). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44962 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44962)
cross-site scripting in webtareas-project (CVE-2022-44962). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44945 |
|
SQL Injection in sqli (CVE-2022-44945)
SQL injection in sqli (CVE-2022-44945). Successful exploitation can lead to full system takeover.
|
| CVE-2022-44944 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44944)
cross-site scripting in rukovoditel (CVE-2022-44944). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44946 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44946)
cross-site scripting in rukovoditel (CVE-2022-44946). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44947 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44947)
cross-site scripting in rukovoditel (CVE-2022-44947). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44948 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44948)
cross-site scripting in rukovoditel (CVE-2022-44948). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44949 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44949)
cross-site scripting in rukovoditel (CVE-2022-44949). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44950 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44950)
cross-site scripting in rukovoditel (CVE-2022-44950). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44951 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44951)
cross-site scripting in rukovoditel (CVE-2022-44951). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44952 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44952)
cross-site scripting in rukovoditel (CVE-2022-44952). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44953 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44953)
cross-site scripting in webtareas-project (CVE-2022-44953). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44954 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44954)
cross-site scripting in webtareas-project (CVE-2022-44954). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44955 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44955)
cross-site scripting in webtareas-project (CVE-2022-44955). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44956 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44956)
cross-site scripting in webtareas-project (CVE-2022-44956). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44957 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44957)
cross-site scripting in webtareas-project (CVE-2022-44957). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44959 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44959)
cross-site scripting in webtareas-project (CVE-2022-44959). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44290 |
|
SQL Injection in sqli (CVE-2022-44290)
SQL injection in sqli (CVE-2022-44290). Successful exploitation can lead to full system takeover.
|
| CVE-2022-44291 |
|
SQL Injection in sqli (CVE-2022-44291)
SQL injection in sqli (CVE-2022-44291). Successful exploitation can lead to full system takeover.
|