Exploit for Code Injection in Apache Commons Text
# CVE-2022-42889-POC A simple application that shows how to expl...Read More ...
Continue Reading
October 19, 2022
Exploit for Code Injection in Apache Commons Text
CVE-2022-21587
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite (component: Upload). Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vuln ...
Continue Reading
October 18, 2022
CVE-2022-39056
RAVA certificate validation system has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL command to access, modify and delete database.Read More ...
Continue Reading
October 18, 2022
New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889
Yet another RCE with a CVSS score of 9.8 out of 10 was disclosed a few hours ago. This issue looks like the same Log4shell and it seems even more dangerous since Common Texts are used more broadly. T ...
Continue Reading
October 17, 2022
CVE-2022-32176
In "Gin-Vue-Admin", versions v2.5.1 through v2.5.3b are vulnerable to Unrestricted File Upload that leads to execution of javascript code, through the "Compress Upload" functionality to the Media Libr ...
Continue Reading
October 17, 2022
Exploit for Code Injection in Apache Commons Text
# CVE-2022-42889-MASS-RCE (another LOG4SHELL) Mass exploitation ...Read More ...
Continue Reading
October 17, 2022
CVE-2022-2052
Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system.Read More ...
Continue Reading
October 17, 2022
CVE-2022-35698
Adobe Commerce versions 2.4.4-p1 (and earlier) and 2.4.5 (and earlier) are affected by a Stored Cross-site Scripting vulnerability. Exploitation of this issue does not require user interaction and cou ...
Continue Reading
October 14, 2022
CVE-2022-38418
Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could ...
Continue Reading
October 14, 2022
CVE-2022-40684
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this c ...
Continue Reading
October 14, 2022
Load more