CVE-2022-34211

A cross-site request forgery (CSRF) vulnerability in Jenkins vRealize Orchestrator Plugin 3.0 and earlier allows attackers to send an HTTP POST request to an attacker-specified URL.Read More ...

Continue Reading

June 23, 2022

CVE-2022-34209

A cross-site request forgery (CSRF) vulnerability in Jenkins ThreadFix Plugin 1.5.4 and earlier allows attackers to connect to an attacker-specified URL.Read More ...

Continue Reading

June 23, 2022

CVE-2022-34298

The NT auth module in OpenAM before 14.6.6 allows a "replace Samba username attack."Read More ...

Continue Reading

June 23, 2022

CVE-2022-34296

In Zalando Skipper before 0.13.218, a query predicate could be bypassed via a prepared request.Read More ...

Continue Reading

June 23, 2022

CVE-2022-34300

In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData.Read More ...

Continue Reading

June 23, 2022

CVE-2022-34295

totd before 1.5.3 does not properly randomize mesg IDs.Read More ...

Continue Reading

June 23, 2022

CVE-2022-34328

PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=author_see request to index.php.Read More ...

Continue Reading

June 23, 2022

CVE-2022-34299

There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b.Read More ...

Continue Reading

June 23, 2022

1 92,682 92,683 92,684 92,685 92,686 94,437

Back to Main
Subscribe for the latest news: