CVE-2022-32294

Zimbra Collaboration Open Source 8.8.15 does not encrypt the initial-login randomly created password (from the "zmprove ca" command). It is visible in cleartext on port UDP 514 (aka the syslog port).R ...

Continue Reading

July 10, 2022

CVE-2022-35416

H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS.Read More ...

Continue Reading

July 10, 2022

CVE-2022-35414

softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translate_fail path, leading to an io_readx or io_writex crash.Read More ...

Continue Reading

July 10, 2022

CVE-2022-29512

Exposure of sensitive information to an unauthorized actor issue in multiple applications of Cybozu Garoon 4.0.0 to 5.9.1 allows a remote authenticated attacker to obtain the data without the viewing ...

Continue Reading

July 10, 2022

CVE-2022-2365

stored XSSRead More ...

Continue Reading

July 10, 2022

CVE-2022-27910

In Joomla component 'Joomlatools - DOCman 3.5.13 (and likely most versions below)' are affected to an reflected Cross-Site Scripting (XSS) in an image upload functionRead More ...

Continue Reading

July 10, 2022

CVE-2022-2353

Prior to microweber/microweber v1.2.20, due to improper neutralization of input, an attacker can steal tokens to perform cross-site request forgery, fetch contents from same-site and redirect a user.R ...

Continue Reading

July 09, 2022

CVE-2022-2094

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading

July 09, 2022

1 3,205 3,206 3,207 3,208 3,209 3,551

Back to Main
Subscribe for the latest news: