CVE-2022-38877
Garage Management System v1.0 is vulnerable to Arbitrary code execution via ip/garage/php_action/editProductImage.php?id=1.
Source: CVE-2022-38877
[월:] 2022년 09월
CVE-2021-42948
CVE-2021-42948
HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id’s.
Source: CVE-2021-42948
CVE-2022-38833
CVE-2022-38833
School Activity Updates with SMS Notification v1.0 is vulnerable to SQL Injection via /activity/admin/modules/modstudent/index.php?view=view&id=.
Source: CVE-2022-38833
CVE-2022-38832
CVE-2022-38832
School Activity Updates with SMS Notification v1.0 is vulnerable to SQL Injection via /activity/admin/modules/department/index.php?view=edit&id=.
Source: CVE-2022-38832
CVE-2022-38831
CVE-2022-38831
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/SetNetControlList
Source: CVE-2022-38831
CVE-2022-38830
CVE-2022-38830
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setIPv6Status.
Source: CVE-2022-38830
CVE-2022-38828
CVE-2022-38828
TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to command injection via cstecgi.cgi
Source: CVE-2022-38828
CVE-2022-38829
CVE-2022-38829
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg.
Source: CVE-2022-38829
CVE-2022-37250
CVE-2022-37250
Craft CMS 4.2.0.1 suffers from Stored Cross Site Scripting (XSS) in /admin/myaccount.
Source: CVE-2022-37250
CVE-2022-38827
CVE-2022-38827
TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to Buffer Overflow via cstecgi.cgi
Source: CVE-2022-38827