CVE-2022-33127

The function that calls the diff tool in Diffy 3.4.1 does not properly handle double quotes in a filename when run in a windows environment. This allows attackers to execute arbitrary commands via a c ...

Continue Reading

June 23, 2022

CVE-2022-33124

aiohttp v3.8.1 was discovered to contain an invalid IPv6 URL which can lead to a Denial of Service (DoS).Read More ...

Continue Reading

June 23, 2022

CVE-2022-34011

OneBlog v2.3.4 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability via the parameter entryUrls.Read More ...

Continue Reading

June 23, 2022

CVE-2022-33114

Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerability via the attrVal parameter at /jfinal_cms/system/dict/list.Read More ...

Continue Reading

June 23, 2022

CVE-2022-33113

Jfinal CMS v5.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the keyword text field under the publish blog module.Read More ...

Continue Reading

June 23, 2022

CVE-2022-33097

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/campus/campus_job.Read More ...

Continue Reading

June 23, 2022

CVE-2022-33095

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/jobfairol/resumelist.Read More ...

Continue Reading

June 23, 2022

CVE-2022-33096

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/resume/index.Read More ...

Continue Reading

June 23, 2022

1 93,170 93,171 93,172 93,173 93,174 94,947

Back to Main
Subscribe for the latest news: