Search
Search Results (36977 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-30818 | 1 Wedding Management System Project | 1 Wedding Management System | 2024-11-21 | 7.2 High |
| Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31. | ||||
| CVE-2022-30817 | 1 Simple Bus Ticket Booking System Project | 1 Simple Bus Ticket Booking System | 2024-11-21 | 9.8 Critical |
| Simple Bus Ticket Booking System 1.0 is vulnerable to SQL Injection via /SimpleBusTicket/index.php. | ||||
| CVE-2022-30816 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 9.8 Critical |
| elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_sidebar.php. | ||||
| CVE-2022-30815 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 9.8 Critical |
| elitecms 1.01 is vulnerable to SQL Injection via admin/edit_sidebar.php?page=2&sidebar= | ||||
| CVE-2022-30814 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 9.8 Critical |
| elitecms v1.01 is vulnerable to SQL Injection via /admin/add_sidebar.php. | ||||
| CVE-2022-30813 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 9.8 Critical |
| elitecms 1.01 is vulnerable to SQL Injection via /admin/add_post.php. | ||||
| CVE-2022-30810 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 9.8 Critical |
| elitecms v1.01 is vulnerable to SQL Injection via admin/edit_post.php. | ||||
| CVE-2022-30809 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 9.8 Critical |
| elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_page.php?page=. | ||||
| CVE-2022-30799 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 7.2 High |
| Online Ordering System v1.0 by oretnom23 has SQL injection via store/orderpage.php. | ||||
| CVE-2022-30798 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 7.2 High |
| Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/viewreport.php. | ||||
| CVE-2022-30797 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 9.8 Critical |
| Online Ordering System 1.0 by oretnom23 is vulnerable to SQL Injection via admin/vieworders.php. | ||||
| CVE-2022-30795 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 7.2 High |
| Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductimage.php. | ||||
| CVE-2022-30794 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 7.2 High |
| Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductetails.php. | ||||
| CVE-2022-30765 | 1 Janeczku | 1 Calibre-web | 2024-11-21 | 9.8 Critical |
| Calibre-Web before 0.6.18 allows user table SQL Injection. | ||||
| CVE-2022-30746 | 1 Samsung | 1 Smartthings | 2024-11-21 | 7.5 High |
| Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API. | ||||
| CVE-2022-30731 | 1 Samsung | 1 My Files | 2024-11-21 | 5.1 Medium |
| Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My Files application. | ||||
| CVE-2022-30634 | 3 Golang, Microsoft, Netapp | 3 Go, Windows, Cloud Insights Telegraf Agent | 2024-11-21 | 7.5 High |
| Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker to cause an indefinite hang by passing a buffer larger than 1 << 32 - 1 bytes. | ||||
| CVE-2022-30619 | 1 Agilepoint | 1 Agilepoint Nx | 2024-11-21 | 5.9 Medium |
| Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the parameter: EncodedData | ||||
| CVE-2022-30599 | 3 Fedoraproject, Moodle, Redhat | 3 Fedora, Moodle, Enterprise Linux | 2024-11-21 | 9.8 Critical |
| A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria. | ||||
| CVE-2022-30594 | 4 Debian, Linux, Netapp and 1 more | 24 Debian Linux, Linux Kernel, 8300 and 21 more | 2024-11-21 | 7.8 High |
| The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag. | ||||