Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-23282 |
|
Paint 3D Remote Code Execution Vulnerability
Paint 3D Remote Code Execution Vulnerability
|
| CVE-2020-18324 |
|
Cross-Site Scripting (XSS) in intelliants (CVE-2020-18324)
cross-site scripting in intelliants (CVE-2020-18324). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-18325 |
|
Cross-Site Scripting (XSS) in intelliants (CVE-2020-18325)
cross-site scripting in intelliants (CVE-2020-18325). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-18326 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2020-18326)
vulnerability in csrf (CVE-2020-18326). Successful exploitation can lead to full system takeover.
|
| CVE-2022-23327 |
|
Vulnerability in dos (CVE-2022-23327)
vulnerability in dos (CVE-2022-23327). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-23328 |
|
Vulnerability in dos (CVE-2022-23328)
vulnerability in dos (CVE-2022-23328). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42950 |
|
Vulnerability in zepl (CVE-2021-42950)
vulnerability in zepl (CVE-2021-42950). Successful exploitation can lead to full system takeover.
|
| CVE-2022-24573 |
|
Cross-Site Scripting (XSS) in element-it (CVE-2022-24573)
cross-site scripting in element-it (CVE-2022-24573). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38265 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38265)
cross-site scripting in liferay (CVE-2021-38265). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38267 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38267)
cross-site scripting in liferay (CVE-2021-38267). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38269 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38269)
cross-site scripting in liferay (CVE-2021-38269). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-25146 |
|
Vulnerability in csrf (CVE-2022-25146)
vulnerability in csrf (CVE-2022-25146). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38263 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38263)
cross-site scripting in liferay (CVE-2021-38263). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38264 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38264)
cross-site scripting in liferay (CVE-2021-38264). Risk of unauthorized operations or information disclosure. Exploitable via ``keywords``.
|
| CVE-2022-25020 |
|
Cross-Site Scripting (XSS) in pluxml (CVE-2022-25020)
cross-site scripting in pluxml (CVE-2022-25020). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-43619 |
|
Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
|
| CVE-2021-42951 |
|
Vulnerability in algorithmia (CVE-2021-42951)
vulnerability in algorithmia (CVE-2021-42951). Successful exploitation can lead to full system takeover.
|
| CVE-2022-25022 |
|
Cross-Site Scripting (XSS) in htmly (CVE-2022-25022)
cross-site scripting in htmly (CVE-2022-25022). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-25064 |
|
OS Command Injection in tp-link (CVE-2022-25064)
OS command injection in tp-link (CVE-2022-25064). Successful exploitation can lead to full system takeover.
|
| CVE-2021-42952 |
|
Vulnerability in zepl (CVE-2021-42952)
vulnerability in zepl (CVE-2021-42952). Successful exploitation can lead to full system takeover.
|
| CVE-2022-25062 |
|
Vulnerability in dos (CVE-2022-25062)
vulnerability in dos (CVE-2022-25062). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-37504 |
|
Cross-Site Scripting (XSS) in hayageek (CVE-2021-37504)
cross-site scripting in hayageek (CVE-2021-37504). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-22899 |
|
Out-of-Bounds Write in dos (CVE-2022-22899)
out-of-bounds write in dos (CVE-2022-22899). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-22914 |
|
Path Traversal in path-traversal (CVE-2022-22914)
path traversal in path-traversal (CVE-2022-22914). Confidential information can be exposed externally.
|
| CVE-2022-22916 |
|
Vulnerability in zoneland (CVE-2022-22916)
vulnerability in zoneland (CVE-2022-22916). Successful exploitation can lead to full system takeover.
|
| CVE-2021-45420 |
|
Information Disclosure in dos (CVE-2021-45420)
vulnerability in dos (CVE-2021-45420). Successful exploitation can lead to full system takeover.
|
| CVE-2021-46355 |
|
Cross-Site Scripting (XSS) in factorfx (CVE-2021-46355)
cross-site scripting in factorfx (CVE-2021-46355). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-22787 |
|
Vulnerability in dos (CVE-2021-22787)
vulnerability in dos (CVE-2021-22787). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-22788 |
|
Out-of-Bounds Write in dos (CVE-2021-22788)
out-of-bounds write in dos (CVE-2021-22788). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-23321 |
|
Cross-Site Scripting (XSS) in xerox (CVE-2022-23321)
cross-site scripting in xerox (CVE-2022-23321). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-41442 |
|
Vulnerability in dos (CVE-2021-41442)
vulnerability in dos (CVE-2021-41442). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-22709 |
|
VP9 Video Extensions Remote Code Execution Vulnerability
VP9 Video Extensions Remote Code Execution Vulnerability
|
| CVE-2021-41441 |
|
Vulnerability in dos (CVE-2021-41441)
vulnerability in dos (CVE-2021-41441). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42637 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2021-42637)
SSRF in ssrf (CVE-2021-42637). Successful exploitation can lead to full system takeover.
|
| CVE-2022-23913 |
|
Vulnerability in org.apache.activemq:artemis-core-client (CVE-2022-23913)
vulnerability in org.apache.activemq:artemis-core-client (CVE-2022-23913). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.19.1` or later.
|
| CVE-2020-7534 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2020-7534)
vulnerability in csrf (CVE-2020-7534). Successful exploitation can lead to full system takeover.
|
| CVE-2021-42633 |
|
SQL Injection in sqli (CVE-2021-42633)
SQL injection in sqli (CVE-2021-42633). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42639 |
|
Cross-Site Scripting (XSS) in printerlogic (CVE-2021-42639)
cross-site scripting in printerlogic (CVE-2021-42639). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42638 |
|
Command Injection in printerlogic (CVE-2021-42638)
command injection in printerlogic (CVE-2021-42638). Successful exploitation can lead to full system takeover.
|
| CVE-2021-45416 |
|
Cross-Site Scripting (XSS) in rosariosis (CVE-2021-45416)
cross-site scripting in rosariosis (CVE-2021-45416). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42631 |
|
Unsafe Deserialization in printerlogic (CVE-2021-42631)
vulnerability in printerlogic (CVE-2021-42631). Successful exploitation can lead to full system takeover.
|
| CVE-2021-42635 |
|
Vulnerability in printerlogic (CVE-2021-42635)
vulnerability in printerlogic (CVE-2021-42635). Successful exploitation can lead to full system takeover.
|
| CVE-2021-44971 |
|
Vulnerability in tenda (CVE-2021-44971)
vulnerability in tenda (CVE-2021-44971). Successful exploitation can lead to full system takeover.
|
| CVE-2021-46117 |
|
Code Injection in jpress (CVE-2021-46117)
code injection in jpress (CVE-2021-46117). Successful exploitation can lead to full system takeover.
|
| CVE-2021-46116 |
|
Unrestricted File Upload in jpress (CVE-2021-46116)
vulnerability in jpress (CVE-2021-46116). Successful exploitation can lead to full system takeover.
|
| CVE-2021-46114 |
|
Code Injection in jpress (CVE-2021-46114)
code injection in jpress (CVE-2021-46114). Successful exploitation can lead to full system takeover.
|
| CVE-2021-46115 |
|
Unrestricted File Upload in c (CVE-2021-46115)
vulnerability in c (CVE-2021-46115). Successful exploitation can lead to full system takeover.
|
| CVE-2021-46118 |
|
Code Injection in jpress (CVE-2021-46118)
code injection in jpress (CVE-2021-46118). Successful exploitation can lead to full system takeover.
|
| CVE-2022-23302 |
|
Unsafe Deserialization in apache (CVE-2022-23302)
vulnerability in apache (CVE-2022-23302). Successful exploitation can lead to full system takeover.
|
| CVE-2022-23307 |
|
Unsafe Deserialization in apache (CVE-2022-23307)
vulnerability in apache (CVE-2022-23307). Successful exploitation can lead to full system takeover.
|