Search Results (36953 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-27379 3 Debian, Mariadb, Redhat 4 Debian Linux, Mariadb, Enterprise Linux and 1 more 2024-11-21 7.5 High
An issue in the component Arg_comparator::compare_real_fixed of MariaDB Server v10.6.2 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.
CVE-2022-27378 3 Debian, Mariadb, Redhat 4 Debian Linux, Mariadb, Enterprise Linux and 1 more 2024-11-21 7.5 High
An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.
CVE-2022-27369 1 Chshcms 1 Cscms 2024-11-21 7.2 High
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component news_News.php_hy.
CVE-2022-27368 1 Chshcms 1 Cscms 2024-11-21 7.2 High
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component dance_Lists.php_zhuan.
CVE-2022-27367 1 Chshcms 1 Cscms 2024-11-21 7.2 High
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component dance_Topic.php_del.
CVE-2022-27366 1 Chshcms 1 Cscms 2024-11-21 7.2 High
Cscms Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the component dance_Dance.php_hy.
CVE-2022-27365 1 Chshcms 1 Cscms 2024-11-21 7.2 High
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component dance_Dance.php_del.
CVE-2022-27360 1 Bladex 1 Springblade 2024-11-21 9.8 Critical
SpringBlade v3.2.0 and below was discovered to contain a SQL injection vulnerability via the component customSqlSegment.
CVE-2022-27342 1 Link-admin Project 1 Link-admin 2024-11-21 9.8 Critical
Link-Admin v0.0.1 was discovered to contain a SQL injection vulnerability via DictRest.ResponseResult().
CVE-2022-27341 1 Jfinalcms Project 1 Jfinalcms 2024-11-21 9.8 Critical
JFinalCMS v2.0 was discovered to contain a SQL injection vulnerability via the Article Management function.
CVE-2022-27299 1 Hospital Management System Project 1 Hospital Management System 2024-11-21 9.8 Critical
Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the component room.php.
CVE-2022-27215 1 Jenkins 1 Release Helper 2024-11-21 4.3 Medium
A missing permission check in Jenkins Release Helper Plugin 1.3.3 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials.
CVE-2022-27211 1 Jenkins 1 Kubernetes Continuous Deploy 2024-11-21 6.5 Medium
A missing permission check in Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
CVE-2022-27209 1 Jenkins 1 Kubernetes Continuous Deploy 2024-11-21 6.5 Medium
A missing permission check in Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
CVE-2022-27205 1 Jenkins 1 Extended Choice Parameter 2024-11-21 4.3 Medium
A missing permission check in Jenkins Extended Choice Parameter Plugin 346.vd87693c5a_86c and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.
CVE-2022-27199 1 Jenkins 1 Cloudbees Aws Credentials 2024-11-21 4.3 Medium
A missing permission check in Jenkins CloudBees AWS Credentials Plugin 189.v3551d5642995 and earlier allows attackers with Overall/Read permission to connect to an AWS service using an attacker-specified token.
CVE-2022-27165 1 Cszcms 1 Csz Cms 2024-11-21 9.8 Critical
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Plugin_manager_setstatus
CVE-2022-27164 1 Cszcms 1 Csz Cms 2024-11-21 9.8 Critical
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Users_viewUsers
CVE-2022-27163 1 Cszcms 1 Csz Cms 2024-11-21 9.8 Critical
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Users_editUser
CVE-2022-27162 1 Cszcms 1 Csz Cms 2024-11-21 9.8 Critical
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Members_editUser