CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (361486 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-32136	1 Codesys	2 Plcwinnt, Runtime Toolkit	2024-11-21	6.5 Medium
In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a read access to an uninitialized pointer, resulting in a denial-of-service. User interaction is not required.
CVE-2022-32131	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /index/notice/show.
CVE-2022-32130	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /company/down_resume/total/nature.
CVE-2022-32129	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /company/account/safety/trade.
CVE-2022-32128	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /company/service/increment/add/im.
CVE-2022-32127	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /company/view_be_browsed/total.
CVE-2022-32126	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /company.
CVE-2022-32125	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the path /job.
CVE-2022-32124	1 74cms	1 74cmsse	2024-11-21	6.1 Medium
74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the component /index/jobfairol/show/.
CVE-2022-32119	1 Arox	1 School Erp Pro	2024-11-21	8.8 High
Arox School ERP Pro v1.0 was discovered to contain multiple arbitrary file upload vulnerabilities via the Add Photo function at photogalleries.inc.php and the import staff excel function at 1finance_master.inc.php.
CVE-2022-32118	1 Arox	1 School Erp Pro	2024-11-21	6.1 Medium
Arox School ERP Pro v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the dispatchcategory parameter in backoffice.inc.php.
CVE-2022-32117	1 Jerryscript	1 Jerryscript	2024-11-21	7.8 High
Jerryscript v2.4.0 was discovered to contain a stack buffer overflow via the function jerryx_print_unhandled_exception in /util/print.c.
CVE-2022-32115	1 Withknown	1 Known	2024-11-21	6.1 Medium
An issue in the isSVG() function of Known v1.2.2+2020061101 allows attackers to execute arbitrary code via a crafted SVG file.
CVE-2022-32101	1 Kkcms Project	1 Kkcms	2024-11-21	9.8 Critical
kkcms v1.3.7 was discovered to contain a SQL injection vulnerability via the cid parameter at /template/wapian/vlist.php.
CVE-2022-32096	1 Rhonabwy Project	1 Rhonabwy	2024-11-21	7.5 High
Rhonabwy before v1.1.5 was discovered to contain a buffer overflow via the component r_jwe_aesgcm_key_unwrap. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted JWE token.
CVE-2022-32095	1 Hospital Management System Project	1 Hospital Management System	2024-11-21	9.8 Critical
Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter at orders.php.
CVE-2022-32094	1 Hospital Management System Project	1 Hospital Management System	2024-11-21	9.8 Critical
Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the loginid parameter at doctorlogin.php.
CVE-2022-32093	1 Hospital Management System Project	1 Hospital Management System	2024-11-21	9.8 Critical
Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the loginid parameter at adminlogin.php.
CVE-2022-32092	1 Dlink	2 Dir-645, Dir-645 Firmware	2024-11-21	9.8 Critical
D-Link DIR-645 v1.03 was discovered to contain a command injection vulnerability via the QUERY_STRING parameter at __ajax_explorer.sgi.
CVE-2022-32091	4 Debian, Fedoraproject, Mariadb and 1 more	5 Debian Linux, Fedora, Mariadb and 2 more	2024-11-21	7.5 High
MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.

« first previous Page 13164 of 18075. next last »