CVE-2022-25061
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_setIp6DefaultRoute.
Source: CVE-2022-25061
[월:] 2022년 02월
CVE-2022-25261
CVE-2022-25261
JetBrains TeamCity before 2021.2.2 was vulnerable to reflected XSS.
Source: CVE-2022-25261
CVE-2022-25060
CVE-2022-25060
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_startPing.
Source: CVE-2022-25060
CVE-2022-25262
CVE-2022-25262
In JetBrains Hub before 2022.1.14434, SAML request takeover was possible.
Source: CVE-2022-25262
CVE-2022-25264
CVE-2022-25264
In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged in some cases.
Source: CVE-2022-25264
CVE-2022-25263
CVE-2022-25263
JetBrains TeamCity before 2021.2.3 was vulnerable to OS command injection in the Agent Push feature configuration.
Source: CVE-2022-25263
CVE-2021-44132
CVE-2021-44132
A command injection vulnerability in the function formImportOMCIShell of C-DATA ONU4FERW V2.1.13_X139 allows attackers to execute arbitrary commands via a crafted file.
Source: CVE-2021-44132
CVE-2021-23495
CVE-2021-23495
The package karma before 6.3.16 are vulnerable to Open Redirect due to missing validation of the return_url query parameter.
Source: CVE-2021-23495
CVE-2022-24442
CVE-2022-24442
JetBrains YouTrack before 2021.4.40426 was vulnerable to SSTI (Server-Side Template Injection) via FreeMarker templates.
Source: CVE-2022-24442
CVE-2022-25259
CVE-2022-25259
JetBrains Hub before 2021.1.14276 was vulnerable to reflected XSS.
Source: CVE-2022-25259