Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2018-5430 KEV |
|
[KEV] Path Traversal in Tibco jasperreports (CVE-2018-5430)
path traversal in Tibco jasperreports (CVE-2018-5430). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-18809 KEV |
|
[KEV] Path Traversal in Tibco jasperreports (CVE-2018-18809)
path traversal in Tibco jasperreports (CVE-2018-18809). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-40011 |
|
Cross-Site Scripting (XSS) in typora (CVE-2022-40011)
cross-site scripting in typora (CVE-2022-40011). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-47928 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2022-47928)
cross-site scripting in misp-project (CVE-2022-47928). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-40841 |
|
Cross-Site Scripting (XSS) in ndk-design (CVE-2022-40841)
cross-site scripting in ndk-design (CVE-2022-40841). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-40434 |
|
Cross-Site Scripting (XSS) in softr (CVE-2022-40434)
cross-site scripting in softr (CVE-2022-40434). Successful exploitation can lead to full system takeover.
|
| CVE-2022-3775 |
|
Out-of-Bounds Write in gnu (CVE-2022-3775)
out-of-bounds write in gnu (CVE-2022-3775). Data can be tampered with by attackers.
|
| CVE-2022-40435 |
|
Cross-Site Scripting (XSS) in employee-performance-evaluation-system-project (CVE-2022-40435)
cross-site scripting in employee-performance-evaluation-system-project (CVE-2022-40435). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-47549 |
|
Vulnerability in trustedfirmware (CVE-2022-47549)
vulnerability in trustedfirmware (CVE-2022-47549). Successful exploitation can lead to full system takeover.
|
| CVE-2022-46392 |
|
Vulnerability in arm (CVE-2022-46392)
vulnerability in arm (CVE-2022-46392). Confidential information can be exposed externally.
|
| CVE-2022-46393 |
|
Out-of-Bounds Read in arm (CVE-2022-46393)
vulnerability in arm (CVE-2022-46393). Successful exploitation can lead to full system takeover.
|
| CVE-2022-2601 |
|
Vulnerability in gnu (CVE-2022-2601)
vulnerability in gnu (CVE-2022-2601). Successful exploitation can lead to full system takeover.
|
| CVE-2022-31358 |
|
Cross-Site Scripting (XSS) in proxmox (CVE-2022-31358)
cross-site scripting in proxmox (CVE-2022-31358). Successful exploitation can lead to full system takeover.
|
| CVE-2022-42856 KEV |
|
[KEV] Vulnerability in Apple ios (CVE-2022-42856)
vulnerability in Apple ios (CVE-2022-42856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-44702 |
|
Windows Terminal Remote Code Execution Vulnerability
Windows Terminal Remote Code Execution Vulnerability
|
| CVE-2022-44303 |
|
Cross-Site Scripting (XSS) in resque-scheduler-project (CVE-2022-44303)
cross-site scripting in resque-scheduler-project (CVE-2022-44303). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-26501 KEV |
|
[KEV] Vulnerability in Veeam backup-replication (CVE-2022-26501)
vulnerability in Veeam backup-replication (CVE-2022-26501). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42475 KEV |
|
[KEV] Vulnerability in Fortinet fortios (CVE-2022-42475)
vulnerability in Fortinet fortios (CVE-2022-42475). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-44698 KEV |
|
[KEV] Vulnerability in Microsoft defender (CVE-2022-44698)
vulnerability in Microsoft defender (CVE-2022-44698). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-27518 KEV |
|
[KEV] Vulnerability in Citrix application-delivery-controller-adc-and-gateway (CVE-2022-27518)
vulnerability in Citrix application-delivery-controller-adc-and-gateway (CVE-2022-27518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26500 KEV |
|
[KEV] Path Traversal in Veeam backup-replication (CVE-2022-26500)
path traversal in Veeam backup-replication (CVE-2022-26500). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-4312 |
|
Vulnerability in arcinfo (CVE-2022-4312)
vulnerability in arcinfo (CVE-2022-4312). Confidential information can be exposed externally.
|
| CVE-2022-4311 |
|
Vulnerability in arcinfo (CVE-2022-4311)
vulnerability in arcinfo (CVE-2022-4311). Confidential information can be exposed externally.
|
| CVE-2022-38599 |
|
Vulnerability in goteleport (CVE-2022-38599)
vulnerability in goteleport (CVE-2022-38599). Confidential information can be exposed externally.
|
| CVE-2022-37325 |
|
Out-of-Bounds Write in c (CVE-2022-37325)
out-of-bounds write in c (CVE-2022-37325). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-3907 |
|
Vulnerability in wordpress (CVE-2022-3907)
vulnerability in wordpress (CVE-2022-3907). Confidential information can be exposed externally.
|
| CVE-2022-4262 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2022-4262)
vulnerability in Google chromium-v8 (CVE-2022-4262). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-44960 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44960)
cross-site scripting in webtareas-project (CVE-2022-44960). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44961 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44961)
cross-site scripting in webtareas-project (CVE-2022-44961). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44962 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44962)
cross-site scripting in webtareas-project (CVE-2022-44962). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44945 |
|
SQL Injection in sqli (CVE-2022-44945)
SQL injection in sqli (CVE-2022-44945). Successful exploitation can lead to full system takeover.
|
| CVE-2022-44944 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44944)
cross-site scripting in rukovoditel (CVE-2022-44944). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44946 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44946)
cross-site scripting in rukovoditel (CVE-2022-44946). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44947 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44947)
cross-site scripting in rukovoditel (CVE-2022-44947). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44948 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44948)
cross-site scripting in rukovoditel (CVE-2022-44948). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44949 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44949)
cross-site scripting in rukovoditel (CVE-2022-44949). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44950 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44950)
cross-site scripting in rukovoditel (CVE-2022-44950). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44951 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44951)
cross-site scripting in rukovoditel (CVE-2022-44951). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44952 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2022-44952)
cross-site scripting in rukovoditel (CVE-2022-44952). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44953 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44953)
cross-site scripting in webtareas-project (CVE-2022-44953). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44954 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44954)
cross-site scripting in webtareas-project (CVE-2022-44954). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44955 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44955)
cross-site scripting in webtareas-project (CVE-2022-44955). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44956 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44956)
cross-site scripting in webtareas-project (CVE-2022-44956). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44957 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44957)
cross-site scripting in webtareas-project (CVE-2022-44957). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44959 |
|
Cross-Site Scripting (XSS) in webtareas-project (CVE-2022-44959)
cross-site scripting in webtareas-project (CVE-2022-44959). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-44290 |
|
SQL Injection in sqli (CVE-2022-44290)
SQL injection in sqli (CVE-2022-44290). Successful exploitation can lead to full system takeover.
|
| CVE-2022-44291 |
|
SQL Injection in sqli (CVE-2022-44291)
SQL injection in sqli (CVE-2022-44291). Successful exploitation can lead to full system takeover.
|
| CVE-2022-2807 |
|
SQL Injection in sqli (CVE-2022-2807)
SQL injection in sqli (CVE-2022-2807). Successful exploitation can lead to full system takeover.
|
| CVE-2022-4135 KEV |
|
[KEV] Out-of-Bounds Write in Google chromium-gpu (CVE-2022-4135)
out-of-bounds write in Google chromium-gpu (CVE-2022-4135). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-35587 KEV |
|
[KEV] Unsafe Deserialization in Oracle fusion-middleware (CVE-2021-35587)
vulnerability in Oracle fusion-middleware (CVE-2021-35587). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|