CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-31846

A vulnerability in live_mfg.shtml of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to obtain sensitive router information via execution of the exec cmd function.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-31847

A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN579 X3 M79X3.V5030.180719 allows attackers to obtain sensitive router information via a crafted POST request.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32336

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/menus/view_menu.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：3 | 回复：0
CVE-2022-30931

Employee Leaves Management System (ELMS) V 2.1 is vulnerable to Cross Site Request Forgery (CSRF) via /myprofile.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32328

Fast Food Ordering System v1.0 is vulnerable to Delete any file. via /ffos/classes/Master.php?f=delete_img.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32330

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/classes/Master.php?f=delete_menu.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32331

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/categories/view_category.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32332

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/classes/Master.php?f=delete_category.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32333

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/sales/receipt.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32334

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/categories/manage_category.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32335

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/menus/manage_menu.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：6 | 回复：0
CVE-2022-32338

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/manage_doctor.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：6 | 回复：0
CVE-2022-32339

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/view_doctor.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32340

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=patients/view_patientid=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：6 | 回复：0
CVE-2022-32341

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=user/manage_userid=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：6 | 回复：0
CVE-2022-32342

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/room_types/view_room_type.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32343

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via hprms/admin/room_types/manage_room_type.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32344

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：4 | 回复：0
CVE-2022-32345

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/manage_room.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32346

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/view_room.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：5 | 回复：0
CVE-2022-32347

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：6 | 回复：0
CVE-2022-32348

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_doctor.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：7 | 回复：0
CVE-2022-32349

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_history.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：8 | 回复：0
CVE-2022-32350

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room_type.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：8 | 回复：0
CVE-2022-32351

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_message.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：10 | 回复：0
CVE-2022-32352

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_admission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：7 | 回复：0
CVE-2021-42675

Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：8 | 回复：0
CVE-2022-27668

Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：7 | 回复：0
CVE-2022-29612

SAP NetWeaver, ABAP Platform and SAP Host Agent - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, 8.04, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, 8.04, S ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：11 | 回复：0
CVE-2022-30930

Tourism Management System Version: V 3.2 is affected by: Cross Site Request Forgery (CSRF).……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：10 | 回复：0
CVE-2022-31289

https://ossindex.sonatype.org/ Sonatype Nexus Repository Manager OSS 3.37.3-02 is affected by: Incorrect Access Control. The impact is: Authentication Bypass (remote). The component is: Admin Panel. T ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：12 | 回复：0
CVE-2022-31403

ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/pages/ajax.render.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：15 | 回复：0
CVE-2022-32337

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/patients/manage_patient.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：14 | 回复：0
CVE-2022-32557

An issue was discovered in Couchbase Server before 7.0.4. The Index Service does not enforce authentication for TCP/TLS servers.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：16 | 回复：0
CVE-2022-32559

An issue was discovered in Couchbase Server before 7.0.4. Random HTTP requests lead to leaked metrics.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：20 | 回复：0
CVE-2022-32561

An issue was discovered in Couchbase Server before 6.6.5 and 7.x before 7.0.4. Previous mitigations for CVE-2018-15728 were found to be insufficient when it was discovered that diagnostic endpoints co ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：17 | 回复：0
CVE-2022-21504

The code in UEK6 U3 was missing an appropiate file descriptor count to be missing. This resulted in a use count error that allowed a file descriptor to a socket to be closed and freed while it was sti ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：24 | 回复：0
CVE-2022-29238

Jupyter Notebook is a web-based notebook environment for interactive computing. Prior to version 6.4.12, authenticated requests to the notebook server with `ContentsManager.allow_hidden = False` only ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：30 | 回复：0
CVE-2022-30903

Nokia G-2425G-A Bharti Airtel Routers Hardware version 3FE48299DEAA Software Version 3FE49362IJHK42 is vulnerable to Cross-Site Scripting (XSS) via the admin-MaintenanceDevice Management.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：61 | 回复：0
CVE-2022-32364

Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/manage_productid=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:05 | 阅读：29 | 回复：0