‼ CVE-2022-38794 ‼
📖 Read
via "National Vulnerability Database".
Zaver through 2020-12-15 allows directory traversal via the GET /.. substring.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-3016 ‼
📖 Read
via "National Vulnerability Database".
Use After Free in GitHub repository vim/vim prior to 9.0.0285.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36705 ‼
📖 Read
via "National Vulnerability Database".
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_waste.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36708 ‼
📖 Read
via "National Vulnerability Database".
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36707 ‼
📖 Read
via "National Vulnerability Database".
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/bookdetails.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36706 ‼
📖 Read
via "National Vulnerability Database".
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_stockout.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36704 ‼
📖 Read
via "National Vulnerability Database".
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetails.php.📖 Read
via "National Vulnerability Database".
🕴 Microsoft 365 Empowers Business Users to Shoot Themselves in the Foot 🕴
📖 Read
via "Dark Reading".
Citizen development allows users to design creative solutions for immediate problems, but it requires training and oversight to avoid security holes.📖 Read
via "Dark Reading".
Dark Reading
Edge Articles
👍1
‼ CVE-2022-38511 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a command injection vulnerability via the component downloadFile.cgi.📖 Read
via "National Vulnerability Database".
👍1
‼ CVE-2022-36573 ‼
📖 Read
via "National Vulnerability Database".
A cross-site scripting (XSS) vulnerability in Pagekit CMS v1.0.18 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Markdown text box under /blog/post/edit.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36615 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A3000RU V4.1.2cu.5185_B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36613 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36610 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A720R V4.1.5cu.532_B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38510 ‼
📖 Read
via "National Vulnerability Database".
Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36614 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36611 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A800R V4.1.2cu.5137_B20200730 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-34668 ‼
📖 Read
via "National Vulnerability Database".
NVFLARE, versions prior to 2.1.4, contains a vulnerability that deserialization of Untrusted Data due to Pickle usage may allow an unprivileged network attacker to cause Remote Code Execution, Denial Of Service, and Impact to both Confidentiality and Integrity.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36616 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A810R V4.1.2cu.5182_B20201026 and V5.9c.4050_B20190424 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36612 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK A950RG V4.1.2cu.5204_B20210112 was discovered to contain a hardcoded password for root at /etc/shadow.sample.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36572 ‼
📖 Read
via "National Vulnerability Database".
Sinsiu Sinsiu Enterprise Website System v1.1.1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /upload/admin.php?/deal/.📖 Read
via "National Vulnerability Database".
🕴 The 3 Questions CISOs Must Ask to Protect Their Sensitive Data 🕴
📖 Read
via "Dark Reading".
CISOs must adopt a new mindset to take on the moving targets in modern cybersecurity.📖 Read
via "Dark Reading".
Dark Reading
The 3 Questions CISOs Must Ask to Protect Their Sensitive Data
CISOs must adopt a new mindset to take on the moving targets in modern cybersecurity.