漏洞 - 第202页-OGeek|极客世界-中国程序员成长平台

OGeek|极客世界-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2022-29320

MiniTool Partition Wizard v12.0 contains an unquoted service path which allows attackers to escalate privileges to the system level.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：24 | 回复：0
CVE漏洞

CVE-2022-29033

A vulnerability has been identified in JT2Go (All versions V13.3.0.3), Teamcenter Visualization V13.3 (All versions V13.3.0.3), Teamcenter Visualization V14.0 (All versions V14.0.0.1). The CGM_NIST ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：26 | 回复：0
CVE漏洞

CVE-2022-29032

A vulnerability has been identified in JT2Go (All versions V13.3.0.3), Teamcenter Visualization V13.3 (All versions V13.3.0.3), Teamcenter Visualization V14.0 (All versions V14.0.0.1). The CGM_NIST ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：25 | 回复：0
CVE漏洞

CVE-2022-29031

A vulnerability has been identified in JT2Go (All versions V13.3.0.3), Teamcenter Visualization V13.3 (All versions V13.3.0.3), Teamcenter Visualization V14.0 (All versions V14.0.0.1). The CGM_NIST ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：26 | 回复：0
CVE漏洞

CVE-2022-29030

A vulnerability has been identified in JT2Go (All versions V13.3.0.3), Teamcenter Visualization V13.3 (All versions V13.3.0.3), Teamcenter Visualization V14.0 (All versions V14.0.0.1). The Mono_Loa ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：28 | 回复：0
CVE漏洞

CVE-2022-29029

A vulnerability has been identified in JT2Go (All versions V13.3.0.3), Teamcenter Visualization V13.3 (All versions V13.3.0.3), Teamcenter Visualization V14.0 (All versions V14.0.0.1). The CGM_NIST ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：54 | 回复：0
CVE漏洞

CVE-2022-29028

A vulnerability has been identified in JT2Go (All versions V13.3.0.3), Teamcenter Visualization V13.3 (All versions V13.3.0.3), Teamcenter Visualization V14.0 (All versions V14.0.0.1). The Tiff_Loa ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：47 | 回复：0
CVE漏洞

CVE-2022-29023

A buffer overflow in the razermouse driver of OpenRazer v3.3.0 and below allows attackers to cause a Denial of Service (DoS) via a crafted buffer sent to the matrix_custom_frame device.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：44 | 回复：0
CVE漏洞

CVE-2022-29022

A buffer overflow in the razeraccessory driver of OpenRazer v3.3.0 and below allows attackers to cause a Denial of Service (DoS) via a crafted buffer sent to the matrix_custom_frame device.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：54 | 回复：0
CVE漏洞

CVE-2022-29021

A buffer overflow in the razerkbd driver of OpenRazer v3.3.0 and below allows attackers to cause a Denial of Service (DoS) via a crafted buffer sent to the matrix_custom_frame device.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：59 | 回复：0
CVE漏洞

CVE-2022-28993

Multi Store Inventory Management System v1.0 allows attackers to perform an account takeover via a crafted POST request.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：43 | 回复：0
CVE漏洞

CVE-2022-28992

A Cross-Site Request Forgery (CSRF) in Online Banquet Booking System v1.0 allows attackers to change admin credentials via a crafted POST request.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：38 | 回复：0
CVE漏洞

CVE-2022-28991

Multi Store Inventory Management System v1.0 was discovered to contain an information disclosure vulnerability which allows attackers to access sensitive files.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：42 | 回复：0
CVE漏洞

CVE-2022-28106

Online Sports Complex Booking System v1.0 was discovered to allow attackers to take over user accounts via a crafted POST request.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：43 | 回复：0
CVE漏洞

CVE-2022-28105

Online Sports Complex Booking System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /scbs/view_facility.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：42 | 回复：0
CVE漏洞

CVE-2022-28104

Foxit PDF Editor v11.3.1 was discovered to contain an arbitrary file upload vulnerability.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：36 | 回复：0
CVE漏洞

CVE-2022-27653

A vulnerability has been identified in Simcenter Femap (All versions V2022.2). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：26 | 回复：0
CVE漏洞

CVE-2022-27640

A vulnerability has been identified in SIMATIC CP 442-1 RNA (All versions V1.5.18), SIMATIC CP 443-1 RNA (All versions V1.5.18). The affected devices improperly handles excessive ARP broadcast reque ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：27 | 回复：0
CVE漏洞

CVE-2022-27242

A vulnerability has been identified in OpenV2G (V0.9.4). The OpenV2G EXI parsing feature is missing a length check when parsing X509 serial numbers. Thus, an attacker could introduce a buffer overflow ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：21 | 回复：0
CVE漏洞

CVE-2022-27095

BattlEye v0.9 contains an unquoted service path which allows attackers to escalate privileges to the system level.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：21 | 回复：0
CVE漏洞

CVE-2022-27094

Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate privileges to the system level.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：19 | 回复：0
CVE漏洞

CVE-2022-27092

Private Internet Access v3.3 contains an unquoted service path which allows attackers to escalate privileges to the system level.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：15 | 回复：0
CVE漏洞

CVE-2022-26634

HMA VPN v5.3.5913.0 contains an unquoted service path which allows attackers to escalate privileges to the system level.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：20 | 回复：0
CVE漏洞

CVE-2022-26633

Simple Student Quarterly Result/Grade System v1.0 was discovered to contain a SQL injection vulnerability via /sqgs/Actions.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：19 | 回复：0
CVE漏洞

CVE-2022-26632

Multi-Vendor Online Groceries Management System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /products/view_product.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：19 | 回复：0
CVE漏洞

CVE-2022-24290

A vulnerability has been identified in Teamcenter V12.4 (All versions V12.4.0.13), Teamcenter V13.0 (All versions V13.0.0.9), Teamcenter V13.1 (All versions), Teamcenter V13.2 (All versions V13.2.0 ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：18 | 回复：0
CVE漏洞

CVE-2022-24287

A vulnerability has been identified in SIMATIC PCS 7 V9.0 and earlier (All versions), SIMATIC PCS 7 V9.1 (All versions V9.1 SP1 UC01), SIMATIC WinCC Runtime Professional V16 and earlier (All versions ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：15 | 回复：0
CVE漏洞

CVE-2022-24045

A vulnerability has been identified in Desigo DXR2 (All versions V01.21.142.5-22), Desigo PXC3 (All versions V01.21.142.4-18), Desigo PXC4 (All versions V02.20.142.10-10884), Desigo PXC5 (All versi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：19 | 回复：0
CVE漏洞

CVE-2022-24044

A vulnerability has been identified in Desigo DXR2 (All versions V01.21.142.5-22), Desigo PXC3 (All versions V01.21.142.4-18), Desigo PXC4 (All versions V02.20.142.10-10884), Desigo PXC5 (All versi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：20 | 回复：0
CVE漏洞

CVE-2022-24043

A vulnerability has been identified in Desigo DXR2 (All versions V01.21.142.5-22), Desigo PXC3 (All versions V01.21.142.4-18), Desigo PXC4 (All versions V02.20.142.10-10884), Desigo PXC5 (All versi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：16 | 回复：0
CVE漏洞

CVE-2022-1784

Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.8.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：20 | 回复：0
CVE漏洞

CVE-2022-31215

In certain Goverlan products, the Windows Firewall is temporarily turned off upon a Goverlan agent update operation. This allows remote attackers to bypass firewall blocking rules for a time period of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：24 | 回复：0
CVE漏洞

CVE-2022-30551

OPC UA Legacy Java Stack 2022-04-01 allows a remote attacker to cause a server to stop processing messages by sending crafted messages that exhaust available resources.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：28 | 回复：0
CVE漏洞

CVE-2022-25227

Thinfinity VNC v4.0.0.1 contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker, if they can trick a user into browse malicious site, to obtain an ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：32 | 回复：0
CVE漏洞

CVE-2022-25224

Proton v0.2.0 allows an attacker to create a malicious link inside a markdown file. When the victim clicks the link, the application opens the site in the current frame allowing an attacker to host Ja ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：50 | 回复：0
CVE漏洞

CVE-2022-25229

Popcorn Time 0.4.7 has a Stored XSS in the 'Movies API Server(s)' field via the 'settings' page. The 'nodeIntegration' configuration is set to on which allows the 'webpage ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：31 | 回复：0
CVE漏洞

CVE-2022-1806

Cross-site Scripting (XSS) - Reflected in GitHub repository rtxteam/rtx prior to checkpoint_2022-05-18.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：38 | 回复：0
CVE漏洞

CVE-2022-1754

Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.2.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：49 | 回复：0
CVE漏洞

CVE-2022-28987

ManageEngine ADSelfService Plus v6.1 allows attackers to perform username enumeration via a crafted POST request to /ServletAPI/accounts/login.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：53 | 回复：0
CVE漏洞

CVE-2021-34111

Thecus 4800Eco was discovered to contain a command injection vulnerability via the username parameter in /adm/setmain.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:37 | 阅读：47 | 回复：0