Export limit exceeded: 80549 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (80549 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-35198 | 1 Contract Management System Project | 1 Contract Managment System | 2024-11-21 | 7.5 High |
| Contract Management System v2.0 contains a weak default password which gives attackers to access database connection information. | ||||
| CVE-2022-35195 | 1 Testlink | 1 Testlink | 2024-11-21 | 7.2 High |
| TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php | ||||
| CVE-2022-35193 | 1 Testlink | 1 Testlink | 2024-11-21 | 7.2 High |
| TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php. | ||||
| CVE-2022-35192 | 1 Dlink | 2 Dsl-3782, Dsl-3782 Firmware | 2024-11-21 | 7.5 High |
| D-Link Wireless AC1200 Dual Band VDSL ADSL Modem Router DSL-3782 Firmware v1.01 allows unauthenticated attackers to cause a Denial of Service (DoS) via the User parameter or Pwd parameter to Login.asp. | ||||
| CVE-2022-35173 | 1 Nginx | 1 Njs | 2024-11-21 | 7.5 High |
| An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation. | ||||
| CVE-2022-35168 | 1 Sap | 1 Business One | 2024-11-21 | 7.5 High |
| Due to improper input sanitization of XML input in SAP Business One - version 10.0, an attacker can perform a denial-of-service attack rendering the system temporarily inoperative. | ||||
| CVE-2022-35167 | 1 Prinitix | 1 Cloud Print Management | 2024-11-21 | 8.8 High |
| Printix Cloud Print Management v1.3.1149.0 for Windows was discovered to contain insecure permissions. | ||||
| CVE-2022-35158 | 1 Tencent | 1 Tscancode | 2024-11-21 | 7.5 High |
| A vulnerability in the lua parser of TscanCode tsclua v2.15.01 allows attackers to cause a Denial of Service (DoS) via a crafted lua script. | ||||
| CVE-2022-35142 | 1 Raneto Project | 1 Raneto | 2024-11-21 | 7.5 High |
| An issue in Renato v0.17.0 allows attackers to cause a Denial of Service (DoS) via a crafted payload injected into the Search parameter. | ||||
| CVE-2022-35011 | 1 Pngdec Project | 1 Pngdec | 2024-11-21 | 8.8 High |
| PNGDec commit 8abf6be was discovered to contain a global buffer overflow via inflate_fast at /src/inffast.c. | ||||
| CVE-2022-35003 | 1 Bitbanksoftware | 1 Jpegdec | 2024-11-21 | 7.8 High |
| JPEGDEC commit be4843c was discovered to contain a global buffer overflow via ucDitherBuffer at /src/jpeg.inl. | ||||
| CVE-2022-34998 | 1 Bitbanksoftware | 1 Jpegdec | 2024-11-21 | 7.8 High |
| JPEGDEC commit be4843c was discovered to contain a global buffer overflow via JPEGDecodeMCU at /src/jpeg.inl. | ||||
| CVE-2022-34992 | 1 Luadec Project | 1 Luadec | 2024-11-21 | 7.8 High |
| Luadec v0.9.9 was discovered to contain a heap-buffer overflow via the function UnsetPending. | ||||
| CVE-2022-34971 | 1 Feehi | 1 Feehi Cms | 2024-11-21 | 8.8 High |
| An arbitrary file upload vulnerability in the Advertising Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary code via a crafted PHP file. | ||||
| CVE-2022-34969 | 1 Pingcap | 1 Tidb | 2024-11-21 | 7.5 High |
| PingCAP TiDB v6.1.0 was discovered to contain a NULL pointer dereference. | ||||
| CVE-2022-34968 | 1 Percona | 1 Percona Server | 2024-11-21 | 7.5 High |
| An issue in the fetch_step function in Percona Server for MySQL v8.0.28-19 allows attackers to cause a Denial of Service (DoS) via a SQL query. | ||||
| CVE-2022-34967 | 1 Monetdb | 1 Monetdb | 2024-11-21 | 7.5 High |
| The assertion `stmt->Dbc->FirstStmt' failed in MonetDB Database Server v11.43.13. | ||||
| CVE-2022-34966 | 1 Openteknik | 1 Open Source Social Network | 2024-11-21 | 7.5 High |
| OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an HTML injection vulnerability via the location parameter at http://ip_address/:port/ossn/home. | ||||
| CVE-2022-34965 | 1 Openteknik | 1 Open Source Social Network | 2024-11-21 | 7.2 High |
| OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an arbitrary file upload vulnerability via the component /ossn/administrator/com_installer. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. Note: The project owner believes this is intended behavior of the application as it only allows authenticated admins to upload files. | ||||
| CVE-2022-34937 | 1 Yuba | 1 U5cms | 2024-11-21 | 8.8 High |
| Yuba u5cms v8.3.5 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component savepage.php. This vulnerability allows attackers to execute arbitrary code. | ||||