Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-42130 |
|
Vulnerability in liferay (CVE-2022-42130)
vulnerability in liferay (CVE-2022-42130). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42125 |
|
Path Traversal in path-traversal (CVE-2022-42125)
path traversal in path-traversal (CVE-2022-42125). Data can be tampered with by attackers.
|
| CVE-2022-42126 |
|
Vulnerability in liferay (CVE-2022-42126)
vulnerability in liferay (CVE-2022-42126). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42127 |
|
Vulnerability in liferay (CVE-2022-42127)
vulnerability in liferay (CVE-2022-42127). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42128 |
|
Vulnerability in liferay (CVE-2022-42128)
vulnerability in liferay (CVE-2022-42128). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42123 |
|
Path Traversal in path-traversal (CVE-2022-42123)
path traversal in path-traversal (CVE-2022-42123). Data can be tampered with by attackers.
|
| CVE-2022-42124 |
|
Vulnerability in liferay (CVE-2022-42124)
vulnerability in liferay (CVE-2022-42124). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42118 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42118)
cross-site scripting in liferay (CVE-2022-42118). Risk of unauthorized operations or information disclosure. Exploitable via ``tag``.
|
| CVE-2022-42119 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42119)
cross-site scripting in liferay (CVE-2022-42119). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42120 |
|
SQL Injection in c (CVE-2022-42120)
SQL injection in c (CVE-2022-42120). Successful exploitation can lead to full system takeover. Exploitable via ``namespace``.
|
| CVE-2022-42121 |
|
SQL Injection in sqli (CVE-2022-42121)
SQL injection in sqli (CVE-2022-42121). Successful exploitation can lead to full system takeover.
|
| CVE-2022-42122 |
|
SQL Injection in sqli (CVE-2022-42122)
SQL injection in sqli (CVE-2022-42122). Successful exploitation can lead to full system takeover. Exploitable via ``title``.
|
| CVE-2022-41049 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2022-41049)
vulnerability in Microsoft windows (CVE-2022-41049). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41103 |
|
Microsoft Word Information Disclosure Vulnerability
Microsoft Word Information Disclosure Vulnerability
|
| CVE-2022-41104 |
|
Microsoft Excel Security Feature Bypass Vulnerability
Microsoft Excel Security Feature Bypass Vulnerability
|
| CVE-2022-41105 |
|
Microsoft Excel Information Disclosure Vulnerability
Microsoft Excel Information Disclosure Vulnerability
|
| CVE-2022-41106 |
|
Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
|
| CVE-2022-41107 |
|
Microsoft Office Graphics Remote Code Execution Vulnerability
Microsoft Office Graphics Remote Code Execution Vulnerability
|
| CVE-2022-41060 |
|
Microsoft Word Information Disclosure Vulnerability
Microsoft Word Information Disclosure Vulnerability
|
| CVE-2022-41061 |
|
Microsoft Word Remote Code Execution Vulnerability
Microsoft Word Remote Code Execution Vulnerability
|
| CVE-2022-41063 |
|
Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
|
| CVE-2022-43321 |
|
Cross-Site Scripting (XSS) in shopwind (CVE-2022-43321)
cross-site scripting in shopwind (CVE-2022-43321). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-41091 KEV |
|
[KEV] Authorization Flaw in Microsoft windows (CVE-2022-41091)
vulnerability in Microsoft windows (CVE-2022-41091). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41073 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41073)
out-of-bounds write in Microsoft windows (CVE-2022-41073). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41125 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41125)
out-of-bounds write in Microsoft windows (CVE-2022-41125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41128 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41128)
out-of-bounds write in Microsoft windows (CVE-2022-41128). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25337 KEV |
|
[KEV] Privilege Escalation in Samsung mobile-devices (CVE-2021-25337)
vulnerability in Samsung mobile-devices (CVE-2021-25337). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25369 KEV |
|
[KEV] Information Disclosure in Samsung mobile-devices (CVE-2021-25369)
vulnerability in Samsung mobile-devices (CVE-2021-25369). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25370 KEV |
|
[KEV] Use-After-Free in Samsung mobile-devices (CVE-2021-25370)
vulnerability in Samsung mobile-devices (CVE-2021-25370). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-43945 |
|
Vulnerability in c (CVE-2022-43945)
vulnerability in c (CVE-2022-43945). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-20969 |
|
Cross-Site Scripting (XSS) in cisco (CVE-2022-20969)
cross-site scripting in cisco (CVE-2022-20969). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-40840 |
|
Cross-Site Scripting (XSS) in ndk-design (CVE-2022-40840)
cross-site scripting in ndk-design (CVE-2022-40840). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-3723 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2022-3723)
vulnerability in Google chromium-v8 (CVE-2022-3723). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42827 KEV |
|
[KEV] Vulnerability in Apple ios-and-ipados (CVE-2022-42827)
vulnerability in Apple ios-and-ipados (CVE-2022-42827). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3433 KEV |
|
[KEV] Vulnerability in Cisco anyconnect-secure (CVE-2020-3433)
vulnerability in Cisco anyconnect-secure (CVE-2020-3433). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3153 KEV |
|
[KEV] Vulnerability in Cisco anyconnect-secure (CVE-2020-3153)
vulnerability in Cisco anyconnect-secure (CVE-2020-3153). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-19323 KEV |
|
[KEV] Vulnerability in Gigabyte multiple-products (CVE-2018-19323)
vulnerability in Gigabyte multiple-products (CVE-2018-19323). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-19322 KEV |
|
[KEV] Vulnerability in Gigabyte multiple-products (CVE-2018-19322)
vulnerability in Gigabyte multiple-products (CVE-2018-19322). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-19321 KEV |
|
[KEV] Vulnerability in Gigabyte multiple-products (CVE-2018-19321)
vulnerability in Gigabyte multiple-products (CVE-2018-19321). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-19320 KEV |
|
[KEV] Vulnerability in Gigabyte multiple-products (CVE-2018-19320)
vulnerability in Gigabyte multiple-products (CVE-2018-19320). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-31366 |
|
Unrestricted File Upload in eve-ng (CVE-2022-31366)
vulnerability in eve-ng (CVE-2022-31366). Successful exploitation can lead to full system takeover.
|
| CVE-2021-3493 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2021-3493)
vulnerability in Linux kernel (CVE-2021-3493). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41352 KEV |
|
[KEV] Path Traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-41352)
path traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-41352). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-38901 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-38901)
cross-site scripting in liferay (CVE-2022-38901). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42112 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42112)
cross-site scripting in liferay (CVE-2022-42112). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42113 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42113)
cross-site scripting in liferay (CVE-2022-42113). Risk of unauthorized operations or information disclosure. Exploitable via ``redirect``.
|
| CVE-2022-42114 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42114)
cross-site scripting in liferay (CVE-2022-42114). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42115 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42115)
cross-site scripting in liferay (CVE-2022-42115). Risk of unauthorized operations or information disclosure. Exploitable via ``Label``.
|
| CVE-2022-42116 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42116)
cross-site scripting in liferay (CVE-2022-42116). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42117 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42117)
cross-site scripting in liferay (CVE-2022-42117). Risk of unauthorized operations or information disclosure.
|