Search Results (363530 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-0948 1 Pluginbazaar 1 Order Listener For Woocommerce 2024-11-21 9.8 Critical
The Order Listener for WooCommerce WordPress plugin before 3.2.2 does not sanitise and escape the id parameter before using it in a SQL statement via a REST route available to unauthenticated users, leading to an SQL injection
CVE-2022-0947 1 Abb 48 Arc600a2323na, Arc600a2323na Firmware, Arc600a2324na and 45 more 2024-11-21 9 Critical
A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the vulnerability by remotely connecting to the serial port gateway, and/or protocol converter, depending on the configuration.
CVE-2022-0946 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0945 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS viva axd and cshtml file upload in star7th/showdoc in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0944 1 Sqlpad 1 Sqlpad 2024-11-21 7.2 High
Template injection in connection test endpoint leads to RCE in GitHub repository sqlpad/sqlpad prior to 6.10.1.
CVE-2022-0943 5 Apple, Debian, Fedoraproject and 2 more 5 Macos, Debian Linux, Fedora and 2 more 2024-11-21 7.8 High
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563.
CVE-2022-0942 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0941 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0940 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0939 1 Janeczku 1 Calibre-web 2024-11-21 9.9 Critical
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.
CVE-2022-0938 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS via file upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0937 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored xss in showdoc through file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0936 1 Autolabproject 1 Autolab 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository autolab/autolab prior to 2.8.0.
CVE-2022-0935 1 Livehelperchat 1 Live Helper Chat 2024-11-21 8.8 High
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
CVE-2022-0932 1 Saleor 1 Saleor 2024-11-21 6.5 Medium
Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2.
CVE-2022-0930 1 Microweber 1 Microweber 2024-11-21 4.8 Medium
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
CVE-2022-0929 1 Microweber 1 Microweber 2024-11-21 6.1 Medium
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.11.
CVE-2022-0928 1 Microweber 1 Microweber 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.12.
CVE-2022-0926 1 Microweber 1 Microweber 2024-11-21 4.8 Medium
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
CVE-2022-0924 5 Debian, Fedoraproject, Libtiff and 2 more 5 Debian Linux, Fedora, Libtiff and 2 more 2024-11-21 5.5 Medium
Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4.