Export limit exceeded: 80179 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (80179 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-29684 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Label/js_del. | ||||
| CVE-2022-29683 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Label/page_del. | ||||
| CVE-2022-29682 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/vod/admin/topic/del. | ||||
| CVE-2022-29681 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Links/del. | ||||
| CVE-2022-29680 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/user/zu_del. | ||||
| CVE-2022-29676 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan. | ||||
| CVE-2022-29670 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/del. | ||||
| CVE-2022-29669 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 8.8 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan. | ||||
| CVE-2022-29667 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 8.8 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos. | ||||
| CVE-2022-29666 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan. | ||||
| CVE-2022-29665 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/topic/save. | ||||
| CVE-2022-29664 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 8.8 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/pl_save. | ||||
| CVE-2022-29663 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/hy. | ||||
| CVE-2022-29662 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/news/save. | ||||
| CVE-2022-29661 | 1 Chshcms | 1 Cscms Music Portal System | 2024-11-21 | 7.2 High |
| CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/save. | ||||
| CVE-2022-29655 | 1 Wedding Management System Project | 1 Wedding Management System | 2024-11-21 | 7.2 High |
| An arbitrary file upload vulnerability in the Upload Photos module of Wedding Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | ||||
| CVE-2022-29647 | 1 Mingsoft | 1 Mcms | 2024-11-21 | 8.8 High |
| An issue was discovered in MCMS 5.2.7. There is a CSRF vulnerability that can add an administrator account via ms/basic/manager/save.do. | ||||
| CVE-2022-29643 | 1 Totolink | 2 A3100r, A3100r Firmware | 2024-11-21 | 7.5 High |
| TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the macAddress parameter in the function setMacQos. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. | ||||
| CVE-2022-29642 | 1 Totolink | 2 A3100r, A3100r Firmware | 2024-11-21 | 7.5 High |
| TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the url parameter in the function setUrlFilterRules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. | ||||
| CVE-2022-29641 | 1 Totolink | 2 A3100r, A3100r Firmware | 2024-11-21 | 7.5 High |
| TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the startTime and endTime parameters in the function setParentalRules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. | ||||