CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-30286

pyscriptjs (aka PyScript Demonstrator) in PyScript through 2022-05-04 allows a remote user to read Python source code.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：50 | 回复：0
CVE-2022-1631

Users Account Pre-Takeover or Users Account Takeover. in GitHub repository microweber/microweber prior to 1.2.15. Victim Account Take Over. Since, there is no email confirmation, an attacker can easil ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：64 | 回复：0
CVE-2022-23332

Command injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information Technology Co., Ltd. ACOM508/ACOM516/ACOM532 609-915-041-100-020 allows a remote attacker to inject arbitrary ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：75 | 回复：0
CVE-2022-27224

An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated attacker can perform command injection as root via shell metacharacters within the Network Tools secti ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：76 | 回复：0
CVE-2019-25060

The WPGraphQL WordPress plugin before 0.3.5 doesn't properly restrict access to information about other users' roles on the affected site. Because of this, a remote attacker could forge a Grap ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：97 | 回复：0
CVE-2021-20479

IBM Cloud Pak System 2.3.0 through 2.3.3.3 Interim Fix 1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 197498 ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：66 | 回复：0
CVE-2022-0424

The Popup by Supsystic WordPress plugin before 1.10.9 does not have any authentication and authorisation in an AJAX action, allowing unauthenticated attackers to call it and get the email addresses of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：52 | 回复：0
CVE-2022-0592

The MapSVG WordPress plugin before 6.2.20 does not validate and escape a parameter via a REST endpoint before using it in a SQL statement, leading to a SQL Injection exploitable by unauthenticated use ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：42 | 回复：0
CVE-2022-0625

The Admin Menu Editor WordPress plugin through 1.0.4 does not sanitize and escape a parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：40 | 回复：0
CVE-2022-0814

The Ubigeo de PerÃº para Woocommerce WordPress plugin before 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：40 | 回复：0
CVE-2022-0817

The BadgeOS WordPress plugin through 3.7.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated us ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：39 | 回复：0
CVE-2022-0826

The WP Video Gallery WordPress plugin through 1.7.1 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthent ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：46 | 回复：0
CVE-2022-0836

The SEMA API WordPress plugin before 4.02 does not properly sanitise and escape some parameters before using them in SQL statements via an AJAX action, leading to SQL Injections exploitable by unauthe ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：47 | 回复：0
CVE-2022-0874

The WP Social Buttons WordPress plugin through 2.1 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilter ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：56 | 回复：0
CVE-2022-0898

The IgniteUp WordPress plugin through 3.4.1 does not sanitise and escape some fields when high privilege users don't have the unfiltered_html capability, which could lead to Stored Cross-Site Scri ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：73 | 回复：0
CVE-2022-0948

The Order Listener for WooCommerce WordPress plugin before 3.2.2 does not sanitise and escape the id parameter before using it in a SQL statement via a REST route available to unauthenticated users, l ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：61 | 回复：0
CVE-2022-1013

The Personal Dictionary WordPress plugin before 1.3.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to a blind SQL i ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：52 | 回复：0
CVE-2022-1047

The Themify Post Type Builder Search Addon WordPress plugin before 1.4.0 does not properly escape the current page URL before reusing it in a HTML attribute, leading to a reflected cross site scriptin ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：69 | 回复：0
CVE-2022-1104

The Popup Maker WordPress plugin before 1.16.5 does not sanitise and escape some of its Popup settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting atta ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：68 | 回复：0
CVE-2022-1171

The Vertical scroll recent post WordPress plugin before 14.0 does not sanitise and escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：117 | 回复：0
CVE-2022-1303

The Slide Anything WordPress plugin before 2.3.44 does not sanitize and escape sliders' description, which could allow high privilege users such as editor and above to perform Cross-Site Scripting ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：185 | 回复：0
CVE-2022-1338

The Easily Generate Rest API Url WordPress plugin through 1.0.0 does not escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：114 | 回复：0
CVE-2022-22319

IBM Robotic Process Automation 21.0.1 could allow a register user on the system to physically delete a queue that could cause disruption for any scripts dependent on the queue. IBM X-Force ID: 218366.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：82 | 回复：0
CVE-2022-22481

IBM Navigator for i 7.2, 7.3, and 7.4 (heritage version) could allow a remote attacker to obtain access to the web interface without valid credentials. By modifying the sign on request, an attacker ca ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：82 | 回复：0
CVE-2022-27114

There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：64 | 回复：0
CVE-2022-28161

An information exposure through log file vulnerability in Brocade SANNav versions before Brocade SANnav 2.2.0 could allow an authenticated, local attacker to view sensitive information such as ssh pas ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：71 | 回复：0
CVE-2022-28162

Brocade SANnav before version SANnav 2.2.0 logs the REST API Authentication token in plain text.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：89 | 回复：0
CVE-2022-27308

A stored cross-site scripting (XSS) vulnerability in PHProjekt PhpSimplyGest v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a project title.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：93 | 回复：0
CVE-2022-27412

Explore CMS v1.0 was discovered to contain a SQL injection vulnerability via a /page.php?id= request.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：40 | 回复：0
CVE-2022-28738

A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to u ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：45 | 回复：0
CVE-2022-28739

There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：41 | 回复：0
CVE-2022-29933

Craft CMS through 3.7.36 allows a remote unauthenticated attacker, who knows at least one valid username, to reset the account's password and take over the account by providing a crafted HTTP head ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：52 | 回复：0
CVE-2022-29971

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Athena ODBC Driver 1.1.1 through 1.1.x before 1.1.17 may allow a local user to execute a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：44 | 回复：0
CVE-2022-29972

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Redshift ODBC Driver (1.4.14 through 1.4.21.1001 and 1.4.22 through 1.4.x before 1.4.52) ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：41 | 回复：0
CVE-2022-30239

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Athena JDBC Driver 2.0.25 through 2.0.28 may allow a local user to execute code. NOTE: t ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：50 | 回复：0
CVE-2022-30240

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Redshift JDBC Driver 1.2.40 through 1.2.55 may allow a local user to execute code. NOTE: ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：48 | 回复：0
CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by (for example) ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：59 | 回复：0
CVE-2022-29868

1Password for Mac 7.2.4 through 7.9.x before 7.9.3 is vulnerable to a process validation bypass. Malicious software running on the same computer can exfiltrate secrets from 1Password provided that 1Pa ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：67 | 回复：0
CVE-2022-30335

Bonanza Wealth Management System (BWM) 7.3.2 allows SQL injection via the login form. Users who supply the application with a SQL injection payload in the User Name textbox could collect all passwords ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：92 | 回复：0
CVE-2021-43712

Stored XSS in Add New Employee Form in Sourcecodester Employee Daily Task Management System 1.0 Allows Remote Attacker to Inject/Store Arbitrary Code via the Name Field.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:33 | 阅读：64 | 回复：0