CVE-2022-0631
Heap-based Buffer Overflow in Homebrew mruby prior to 3.2.
Source: CVE-2022-0631
[월:] 2022년 02월
CVE-2022-0664
CVE-2022-0664
Use of Hard-coded Cryptographic Key in Go github.com/gravitl/netmaker prior to 0.8.5,0.9.4,0.10.0,0.10.1.
Source: CVE-2022-0664
CVE-2021-46372
CVE-2021-46372
Scoold 1.47.2 is a Q&A/knowledge base platform written in Java. When writing a Q&A, the markdown editor is vulnerable to a XSS attack when using uppercase letters.
Source: CVE-2021-46372
CVE-2022-25299
CVE-2022-25299
This affects the package cesanta/mongoose before 7.6. The unsafe handling of file names during upload using mg_http_upload() method may enable attackers to write files to arbitrary locations outside the designated target folder.
Source: CVE-2022-25299
CVE-2022-25298
CVE-2022-25298
This affects the package sprinfall/webcc before 0.3.0. It is possible to traverse directories to fetch arbitrary files from the server.
Source: CVE-2022-25298
CVE-2022-0660
CVE-2022-0660
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
Source: CVE-2022-0660
CVE-2020-8107
CVE-2020-8107
A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an attacker to tamper with product settings via a specially crafted DLL file. This issue affects: Bitdefender Antivirus Plus versions prior to 24.0.26.136. Bitdefender Internet Security versions prior to 24.0.26.136. Bitdefender Total Security versions prior to 24.0.26.136.
Source: CVE-2020-8107
CVE-2022-25321
CVE-2022-25321
An issue was discovered in Cerebrate through 1.4. XSS could occur in the bookmarks component.
Source: CVE-2022-25321
CVE-2022-25320
CVE-2022-25320
An issue was discovered in Cerebrate through 1.4. Username enumeration could occur.
Source: CVE-2022-25320
CVE-2022-25319
CVE-2022-25319
An issue was discovered in Cerebrate through 1.4. Endpoints could be open even when not enabled.
Source: CVE-2022-25319