CVE-2022-26952
Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow in the function for building the Location header string when an unauthenticated user is redirected to the authentication page.
Source: CVE-2022-26952
[월:] 2022년 04월
CVE-2022-26251
CVE-2022-26251
The HTTP interface of Synaman v5.1 and below was discovered to allow authenticated attackers to execute arbitrary code and escalate privileges.
Source: CVE-2022-26251
CVE-2021-45103
CVE-2021-45103
An issue was discovered in HTCondor 9.0.x before 9.0.10 and 9.1.x before 9.5.1. An attacker can access files stored in S3 cloud storage that a user has asked HTCondor to transfer.
Source: CVE-2021-45103
CVE-2022-28468
CVE-2022-28468
Payroll Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter.
Source: CVE-2022-28468
CVE-2022-27304
CVE-2022-27304
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via the user parameter.
Source: CVE-2022-27304
CVE-2022-28115
CVE-2022-28115
Online Sports Complex Booking v1.0 was discovered to contain a SQL injection vulnerability via the id parameter.
Source: CVE-2022-28115
CVE-2022-28116
CVE-2022-28116
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter.
Source: CVE-2022-28116
CVE-2022-26909
CVE-2022-26909
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24475, CVE-2022-26891, CVE-2022-26894, CVE-2022-26895, CVE-2022-26900, CVE-2022-26908, CVE-2022-26912.
Source: CVE-2022-26909
CVE-2022-26908
CVE-2022-26908
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24475, CVE-2022-26891, CVE-2022-26894, CVE-2022-26895, CVE-2022-26900, CVE-2022-26909, CVE-2022-26912.
Source: CVE-2022-26908
CVE-2022-27124
CVE-2022-27124
Insurance Management System 1.0 was discovered to contain a SQL injection vulnerability via the username parameter.
Source: CVE-2022-27124