CVE-2022-48066

An issue in the component global.so of Totolink A830R V4.1.2cu.5182 allows attackers to bypass authentication via a crafted cookie.Read More ...

Continue Reading

January 27, 2023

CVE-2022-48069

Totolink A830R V4.1.2cu.5182 was discovered to contain a command injection vulnerability via the QUERY_STRING parameter.Read More ...

Continue Reading

January 27, 2023

CVE-2022-48067

An information disclosure vulnerability in Totolink A830R V4.1.2cu.5182 allows attackers to obtain the root password via a brute-force attack.Read More ...

Continue Reading

January 27, 2023

CVE-2022-48070

Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.Read More ...

Continue Reading

January 27, 2023

CVE-2022-47632

Razer Synapse before 3.7.0830.081906 allows privilege escalation due to an unsafe installation path, improper privilege management, and improper certificate validation. Attackers can place malicious D ...

Continue Reading

January 27, 2023

Bypassing OGNL sandboxes for fun and charities

## Overview[]() Object Graph Notation Language (OGNL) is a popular, Java-based, expression language used in popular frameworks and applications, such as Apache Struts and Atlassian Confluence. In the ...

Continue Reading

January 27, 2023

CVSS3 - CRITICAL

CVSS2 - HIGH

Threat Round up for January 20 to January 27

![Threat Round up for January 20 to January 27](https://blog.talosintelligence.com/content/images/2023/01/threat-roundup-2.jpg) Today, Talos is publishing a glimpse into the most prevalent threats we' ...

Continue Reading

January 27, 2023

CVE-2022-44717

An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 1 of 2). After successful login, an attacker must visit the vulnerable parameter and inject a crafted ...

Continue Reading

January 27, 2023

1 63,930 63,931 63,932 63,933 63,934 80,460

Back to Main
Subscribe for the latest news: