Search Results (36978 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-30957 1 Jenkins 1 Ssh 2024-11-21 4.3 Medium
A missing permission check in Jenkins SSH Plugin 2.6.1 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
CVE-2022-30955 1 Jenkins 1 Gitlab 2024-11-21 6.5 Medium
Jenkins GitLab Plugin 1.5.31 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
CVE-2022-30954 2 Jenkins, Redhat 3 Blue Ocean, Ocp Tools, Openshift 2024-11-21 6.5 Medium
Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.
CVE-2022-30951 1 Jenkins 1 Wmi Windows Agents 2024-11-21 8.8 High
Jenkins WMI Windows Agents Plugin 1.8 and earlier includes the Windows Remote Command library does not implement access control, potentially allowing users to start processes even if they're not allowed to log in.
CVE-2022-30927 1 Simple Task Scheduling System Project 1 Simple Task Scheduling System 2024-11-21 9.8 Critical
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter.
CVE-2022-30886 1 School Dormitory Management System Project 1 School Dormitory Management System 2024-11-21 9.8 Critical
School Dormitory Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /dms/admin/reports/daily_collection_report.php.
CVE-2022-30843 1 Room Rent Portal Site Project 1 Room Rent Portal Site 2024-11-21 8.8 High
Room-rent-portal-site v1.0 is vulnerable to SQL Injection via /rrps/classes/Master.php?f=delete_category, id.
CVE-2022-30838 1 Covid 19 Travel Pass Management System Project 1 Covid 19 Travel Pass Management System 2024-11-21 9.8 Critical
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/classes/Master.php?f=update_application_status
CVE-2022-30836 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin/select.php.
CVE-2022-30835 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin/budget.php?booking_id=.
CVE-2022-30834 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_manage_account_details.php?booking_id=31&user_id=
CVE-2022-30833 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_edit.php?booking=31&user_id=.
CVE-2022-30832 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_assign.php?booking=31&user_id=.
CVE-2022-30831 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via Wedding-Management/wedding_details.php.
CVE-2022-30830 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\feature_edit.php.
CVE-2022-30829 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\users_edit.php.
CVE-2022-30828 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php.
CVE-2022-30827 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php.
CVE-2022-30826 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php.
CVE-2022-30825 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php.