βΌ CVE-2022-1961 βΌ
π Read
via "National Vulnerability Database".
The Google Tag Manager for WordPress (GTM4WP) plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the `gtm4wp-options[scroller-contentid]` parameter found in the `~/public/frontend.php` file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 1.15.1. This affects multi-site installations where unfiltered_html is disabled for administrators, and sites where unfiltered_html is disabled.π Read
via "National Vulnerability Database".
βΌ CVE-2022-1659 βΌ
π Read
via "National Vulnerability Database".
Vulnerable versions of the JupiterX Core (<= 2.0.6) plugin register an AJAX action jupiterx_conditional_manager which can be used to call any function in the includes/condition/class-condition-manager.php file by sending the desired function to call in the sub_action parameter. This can be used to view site configuration and logged-in users, modify post conditions, or perform a denial of service attack.π Read
via "National Vulnerability Database".
βΌ CVE-2022-1654 βΌ
π Read
via "National Vulnerability Database".
Jupiter Theme <= 6.10.1 and JupiterX Core Plugin <= 2.0.7 allow any authenticated attacker, including a subscriber or customer-level attacker, to gain administrative privileges via the "abb_uninstall_template" (both) and "jupiterx_core_cp_uninstall_template" (JupiterX Core Only) AJAX actionsπ Read
via "National Vulnerability Database".
βΌ CVE-2022-30311 βΌ
π Read
via "National Vulnerability Database".
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesnΓΒ’Γ’β¬ÒβΒ’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24077 βΌ
π Read
via "National Vulnerability Database".
Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection.π Read
via "National Vulnerability Database".
βΌ CVE-2022-1749 βΌ
π Read
via "National Vulnerability Database".
The WPMK Ajax Finder WordPress plugin is vulnerable to Cross-Site Request Forgery via the createplugin_atf_admin_setting_page() function found in the ~/inc/config/create-plugin-config.php file due to a missing nonce check which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.1.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46814 βΌ
π Read
via "National Vulnerability Database".
The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation of this vulnerability may affect system availability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31763 βΌ
π Read
via "National Vulnerability Database".
The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful exploitation of this vulnerability may affect system availability.π Read
via "National Vulnerability Database".
β Youβre invited! Join us for a live walkthrough of the βFollinaβ storyβ¦ β
π Read
via "Naked Security".
Live demo, plain English, no sales pitch, just a chance to watch an attack dissected in safety. Join us if you can!π Read
via "Naked Security".
Sophos News
Youβre invited! Join us for a live walkthrough of the βFollinaβ storyβ¦
Live demo, plain English, no sales pitch, just a chance to watch an attack dissected in safety. Join us if you can!
βΌ CVE-2021-46811 βΌ
π Read
via "National Vulnerability Database".
HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information.π Read
via "National Vulnerability Database".
βΌ CVE-2022-23168 βΌ
π Read
via "National Vulnerability Database".
The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin'--π Read
via "National Vulnerability Database".
βΌ CVE-2021-41446 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2022-29455 βΌ
π Read
via "National Vulnerability Database".
DOM-based Reflected Cross-Site Scripting (XSS) vulnerability in Elementor's Elementor Website Builder plugin <= 3.5.5 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46815 βΌ
π Read
via "National Vulnerability Database".
Configuration defects in the secure OS module. Successful exploitation of this vulnerability can affect availability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-28217 βΌ
π Read
via "National Vulnerability Database".
Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document accepted from an untrusted source, which allows an adversary to exploit unprotected XML parking at endpoints, and a possibility to conduct SSRF attacks that could compromise systemΓ’β¬β’s Availability by causing system to crash.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46812 βΌ
π Read
via "National Vulnerability Database".
The Device Manager has a vulnerability in multi-device interaction. Successful exploitation of this vulnerability may affect data integrity.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31055 βΌ
π Read
via "National Vulnerability Database".
kCTF is a Kubernetes-based infrastructure for capture the flag (CTF) competitions. Prior to version 1.6.0, the kctf cluster set-src-ip-ranges was broken and allowed traffic from any IP. The problem has been patched in v1.6.0. As a workaround, those who want to test challenges privately can mark them as `public: false` and use `kctf chal debug port-forward` to connect.π Read
via "National Vulnerability Database".
βΌ CVE-2022-23169 βΌ
π Read
via "National Vulnerability Database".
attacker needs to craft a SQL payload. the vulnerable parameter is "agentid" must be authenticated to the admin panel.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41447 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2022-23167 βΌ
π Read
via "National Vulnerability Database".
Attacker crafts a GET request to: /mobile/downloadfile.aspx? Filename =../.. /windows/boot.ini the LFI is UNAUTHENTICATED.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41448 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.π Read
via "National Vulnerability Database".