Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-27161 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2023-27161)
SSRF in ssrf (CVE-2023-27161). Confidential information can be exposed externally.
|
| CVE-2022-48111 |
|
Cross-Site Scripting (XSS) in siri-informatica (CVE-2022-48111)
cross-site scripting in siri-informatica (CVE-2022-48111). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-1091 |
|
SQL Injection in sqli (CVE-2023-1091)
SQL injection in sqli (CVE-2023-1091). Successful exploitation can lead to full system takeover.
|
| CVE-2021-39144 KEV |
|
[KEV] Code Injection in xstream (CVE-2021-39144)
code injection in xstream (CVE-2021-39144). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-5741 KEV |
|
[KEV] Unsafe Deserialization in Plex media-server (CVE-2020-5741)
vulnerability in Plex media-server (CVE-2020-5741). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-1251 |
|
SQL Injection in sqli (CVE-2023-1251)
SQL injection in sqli (CVE-2023-1251). Successful exploitation can lead to full system takeover.
|
| CVE-2023-24282 |
|
Cross-Site Scripting (XSS) in poly (CVE-2023-24282)
cross-site scripting in poly (CVE-2023-24282). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-1267 |
|
SQL Injection in sqli (CVE-2023-1267)
SQL injection in sqli (CVE-2023-1267). Successful exploitation can lead to full system takeover.
|
| CVE-2021-44196 |
|
Cross-Site Scripting (XSS) in ubit (CVE-2021-44196)
cross-site scripting in ubit (CVE-2021-44196). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-44197 |
|
Cross-Site Scripting (XSS) in ubit (CVE-2021-44197)
cross-site scripting in ubit (CVE-2021-44197). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-3760 |
|
SQL Injection in sqli (CVE-2022-3760)
SQL injection in sqli (CVE-2022-3760). Successful exploitation can lead to full system takeover.
|
| CVE-2022-28810 KEV |
|
[KEV] OS Command Injection in Zoho manageengine (CVE-2022-28810)
OS command injection in Zoho manageengine (CVE-2022-28810). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-33891 KEV |
|
[KEV] OS Command Injection in Apache pyspark (CVE-2022-33891)
OS command injection in Apache pyspark (CVE-2022-33891). Successful exploitation can lead to full system takeover. Exploitable via ``spark.acls.enable``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `3.2.2` or later.
|
| CVE-2022-35914 KEV |
|
[KEV] Vulnerability in Teclib glpi (CVE-2022-35914)
vulnerability in Teclib glpi (CVE-2022-35914). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42248 |
|
Cross-Site Scripting (XSS) in qlik (CVE-2022-42248)
cross-site scripting in qlik (CVE-2022-42248). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-35377 |
|
Cross-Site Scripting (XSS) in vicidial (CVE-2021-35377)
cross-site scripting in vicidial (CVE-2021-35377). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-0979 |
|
SQL Injection in sqli (CVE-2023-0979)
SQL injection in sqli (CVE-2023-0979). Successful exploitation can lead to full system takeover.
|
| CVE-2022-2178 |
|
Cross-Site Scripting (XSS) in saysis (CVE-2022-2178)
cross-site scripting in saysis (CVE-2022-2178). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-45552 |
|
Vulnerability in zbt (CVE-2022-45552)
vulnerability in zbt (CVE-2022-45552). Confidential information can be exposed externally.
|
| CVE-2022-45553 |
|
Code Injection in zbt (CVE-2022-45553)
code injection in zbt (CVE-2022-45553). Successful exploitation can lead to full system takeover.
|
| CVE-2022-45551 |
|
Vulnerability in zbt (CVE-2022-45551)
vulnerability in zbt (CVE-2022-45551). Successful exploitation can lead to full system takeover.
|
| CVE-2023-0578 |
|
Cross-Site Scripting (XSS) in asosegitim (CVE-2023-0578)
cross-site scripting in asosegitim (CVE-2023-0578). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-0577 |
|
Cross-Site Scripting (XSS) in asosegitim (CVE-2023-0577)
cross-site scripting in asosegitim (CVE-2023-0577). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-46501 |
|
SQL Injection in sqli (CVE-2022-46501)
SQL injection in sqli (CVE-2022-46501). Successful exploitation can lead to full system takeover.
|
| CVE-2021-3854 |
|
SQL Injection in sqli (CVE-2021-3854)
SQL injection in sqli (CVE-2021-3854). Successful exploitation can lead to full system takeover.
|
| CVE-2021-45479 |
|
Cross-Site Scripting (XSS) in yordam (CVE-2021-45479)
cross-site scripting in yordam (CVE-2021-45479). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24122 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24122)
out-of-bounds write in heimgardtechnologies (CVE-2023-24122). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24123 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24123)
out-of-bounds write in heimgardtechnologies (CVE-2023-24123). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24124 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24124)
out-of-bounds write in heimgardtechnologies (CVE-2023-24124). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24125 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24125)
out-of-bounds write in heimgardtechnologies (CVE-2023-24125). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24126 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24126)
out-of-bounds write in heimgardtechnologies (CVE-2023-24126). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24127 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24127)
out-of-bounds write in heimgardtechnologies (CVE-2023-24127). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24117 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24117)
out-of-bounds write in heimgardtechnologies (CVE-2023-24117). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24118 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24118)
out-of-bounds write in heimgardtechnologies (CVE-2023-24118). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24119 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24119)
out-of-bounds write in heimgardtechnologies (CVE-2023-24119). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24120 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24120)
out-of-bounds write in heimgardtechnologies (CVE-2023-24120). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24121 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24121)
out-of-bounds write in heimgardtechnologies (CVE-2023-24121). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24133 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24133)
out-of-bounds write in heimgardtechnologies (CVE-2023-24133). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24134 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24134)
out-of-bounds write in heimgardtechnologies (CVE-2023-24134). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24131 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24131)
out-of-bounds write in heimgardtechnologies (CVE-2023-24131). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24132 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24132)
out-of-bounds write in heimgardtechnologies (CVE-2023-24132). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24129 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24129)
out-of-bounds write in heimgardtechnologies (CVE-2023-24129). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24130 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24130)
out-of-bounds write in heimgardtechnologies (CVE-2023-24130). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-24128 |
|
Out-of-Bounds Write in heimgardtechnologies (CVE-2023-24128)
out-of-bounds write in heimgardtechnologies (CVE-2023-24128). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-45608 |
|
Privilege Escalation in thingsboard (CVE-2022-45608)
vulnerability in thingsboard (CVE-2022-45608). Successful exploitation can lead to full system takeover.
|
| CVE-2023-1114 |
|
Vulnerability in eskom (CVE-2023-1114)
vulnerability in eskom (CVE-2023-1114). Successful exploitation can lead to full system takeover.
|
| CVE-2023-1064 |
|
SQL Injection in sqli (CVE-2023-1064)
SQL injection in sqli (CVE-2023-1064). Successful exploitation can lead to full system takeover.
|
| CVE-2021-3855 |
|
Command Injection in liman (CVE-2021-3855)
command injection in liman (CVE-2021-3855). Successful exploitation can lead to full system takeover.
|
| CVE-2022-45697 |
|
Vulnerability in razer (CVE-2022-45697)
vulnerability in razer (CVE-2022-45697). Successful exploitation can lead to full system takeover.
|
| CVE-2021-32302 |
|
Cross-Site Scripting (XSS) in irz (CVE-2021-32302)
cross-site scripting in irz (CVE-2021-32302). Risk of unauthorized operations or information disclosure.
|