Search
Search Results (363337 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-28082 | 1 Tenda | 2 Ax12, Ax12 Firmware | 2024-11-21 | 9.8 Critical |
| Tenda AX12 v22.03.01.21_CN was discovered to contain a stack overflow via the list parameter at /goform/SetNetControlList. | ||||
| CVE-2022-28081 | 1 Ar-php | 1 Arphp | 2024-11-21 | 6.1 Medium |
| A reflected cross-site scripting (XSS) vulnerability in the component Query.php of arPHP v3.6.0 allows attackers to execute arbitrary web scripts. | ||||
| CVE-2022-28080 | 1 Event Management System Project | 1 Event Management System | 2024-11-21 | 8.8 High |
| Royal Event Management System v1.0 was discovered to contain a SQL injection vulnerability via the todate parameter. | ||||
| CVE-2022-28079 | 1 College Management System Project | 1 College Management System | 2024-11-21 | 8.8 High |
| College Management System v1.0 was discovered to contain a SQL injection vulnerability via the course_code parameter. | ||||
| CVE-2022-28078 | 1 Home Owners Collection Management System Project | 1 Home Owners Collection Management System | 2024-11-21 | 6.1 Medium |
| Home Owners Collection Management v1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in the Admin panel via the $_GET['page'] parameter. | ||||
| CVE-2022-28077 | 1 Home Owners Collection Management System Project | 1 Home Owners Collection Management System | 2024-11-21 | 6.1 Medium |
| Home Owners Collection Management v1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in the Admin panel via the $_GET['s'] parameter. | ||||
| CVE-2022-28076 | 1 Seacms | 1 Seacms | 2024-11-21 | 7.2 High |
| Seacms v11.6 was discovered to contain a remote command execution (RCE) vulnerability via the Mail Server Settings. | ||||
| CVE-2022-28074 | 1 Fit2cloud | 1 Halo | 2024-11-21 | 4.8 Medium |
| Halo-1.5.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via \admin\index.html#/system/tools. | ||||
| CVE-2022-28073 | 1 Radare | 1 Radare2 | 2024-11-21 | 7.5 High |
| A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0. | ||||
| CVE-2022-28072 | 1 Radare | 1 Radare2 | 2024-11-21 | 7.5 High |
| A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0. | ||||
| CVE-2022-28071 | 1 Radare | 1 Radare2 | 2024-11-21 | 7.5 High |
| A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0. | ||||
| CVE-2022-28070 | 1 Radare | 1 Radare2 | 2024-11-21 | 7.5 High |
| A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0. | ||||
| CVE-2022-28069 | 1 Radare | 1 Radare2 | 2024-11-21 | 7.5 High |
| A heap buffer overflow in vax_opfunction in radare2 5.4.2 and 5.4.0. | ||||
| CVE-2022-28068 | 1 Radare | 1 Radare2 | 2024-11-21 | 7.5 High |
| A heap buffer overflow in r_sleb128 function in radare2 5.4.2 and 5.4.0. | ||||
| CVE-2022-28067 | 1 Sandboxie | 1 Sandboxie | 2024-11-21 | 8.6 High |
| An incorrect access control issue in Sandboxie Classic v5.55.13 allows attackers to cause a Denial of Service (DoS) in the Sandbox via a crafted executable. | ||||
| CVE-2022-28063 | 1 Simple Bakery Shop Management System Project | 1 Simple Bakery Shop Management System | 2024-11-21 | 4.9 Medium |
| Simple Bakery Shop Management System v1.0 contains a file disclosure via /bsms/?page=products. | ||||
| CVE-2022-28062 | 1 Online Car Rental System Project | 1 Online Car Rental System | 2024-11-21 | 8.8 High |
| Car Rental System v1.0 contains an arbitrary file upload vulnerability via the Add Car component which allows attackers to upload a webshell and execute arbitrary code. | ||||
| CVE-2022-28060 | 1 Victor Cms Project | 1 Victor Cms | 2024-11-21 | 7.5 High |
| SQL Injection vulnerability in Victor CMS v1.0, via the user_name parameter to /includes/login.php. | ||||
| CVE-2022-28059 | 1 Verydows | 1 Verydows | 2024-11-21 | 8.1 High |
| Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\database_controller.php. | ||||
| CVE-2022-28058 | 1 Verydows | 1 Verydows | 2024-11-21 | 8.1 High |
| Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\file_controller.php. | ||||