Searching...
Please wait while we search the database
| CVE ID | Severity | Description | Published | Actions |
|---|---|---|---|---|
|
CVE-2022-47361
|
N/A |
In firewall service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
|
06 Feb 2023
|
|
|
CVE-2022-47360
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47359
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47358
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47357
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47356
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47355
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47354
|
N/A |
In log service, there is a missing permission check. This could lead to local denial of service in log service.
|
06 Feb 2023
|
|
|
CVE-2022-47348
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47347
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47346
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47345
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47344
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47343
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47342
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
|
06 Feb 2023
|
|
|
CVE-2022-47341
|
N/A |
In engineermode services, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
|
06 Feb 2023
|
|
|
CVE-2022-47331
|
N/A |
In wlan driver, there is a race condition. This could lead to local denial of service in wlan services.
|
06 Feb 2023
|
|
|
CVE-2022-47339
|
N/A |
In cmd services, there is a OS command injection issue due to missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
|
06 Feb 2023
|
|
|
CVE-2022-25853
|
N/A |
All versions of the package semver-tags are vulnerable to Command Injection via the getGitTagsRemote function due to improper input sanitization.
|
06 Feb 2023
|
|
|
CVE-2022-25855
|
N/A |
All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.
|
06 Feb 2023
|
|
|
CVE-2017-20176
|
LOW |
A vulnerability classified as problematic was found in ciubotaru share-on-diaspora 0.7.9. This vulnerability affects unknown code of the file new_window.php. The manipulation of the argument title/url leads to cross site scripting. The attack can be initiated remotely. The name of the patch is fb6fae2f8a9b146471450b5b0281046a17d1ac8d. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-220204.
|
06 Feb 2023
|
|
|
CVE-2014-125086
|
MEDIUM |
A vulnerability has been found in Gimmie Plugin 1.2.2 on vBulletin and classified as critical. Affected by this vulnerability is an unknown functionality of the file trigger_login.php. The manipulation of the argument userid leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The patch is named fe851002d20a8d6196a5abb68bafec4102964d5b. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-220207.
|
06 Feb 2023
|
|
|
CVE-2022-48311
|
N/A |
**UNSUPPORTED WHEN ASSIGNED** Cross Site Scripting (XSS) in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
|
06 Feb 2023
|
|
|
CVE-2023-20609
|
N/A |
In ccu, there is a possible out of bounds read due to a logic error. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07570864; Issue ID: ALPS07570864.
|
06 Feb 2023
|
|
|
CVE-2023-24200
|
N/A |
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at save_ticket.php.
|
06 Feb 2023
|
CVE-2022-47361
N/A
06 Feb 2023
In firewall service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
CVE-2022-47360
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47359
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47358
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47357
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47356
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47355
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47354
N/A
06 Feb 2023
In log service, there is a missing permission check. This could lead to local denial of service in log service.
CVE-2022-47348
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47347
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47346
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47345
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47344
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47343
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47342
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
CVE-2022-47341
N/A
06 Feb 2023
In engineermode services, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
CVE-2022-47331
N/A
06 Feb 2023
In wlan driver, there is a race condition. This could lead to local denial of service in wlan services.
CVE-2022-47339
N/A
06 Feb 2023
In cmd services, there is a OS command injection issue due to missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
CVE-2022-25853
N/A
06 Feb 2023
All versions of the package semver-tags are vulnerable to Command Injection via the getGitTagsRemote function due to improper input sanitization.
CVE-2022-25855
N/A
06 Feb 2023
All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.
CVE-2017-20176
LOW
06 Feb 2023
A vulnerability classified as problematic was found in ciubotaru share-on-diaspora 0.7.9. This vulnerability affects unknown code of the file new_window.php. The manipulation of the argument title/url leads to cross site scripting. The attack can be initiated remotely. The name of the patch is fb6fae2f8a9b146471450b5b0281046a17d1ac8d. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-220204.
CVE-2014-125086
MEDIUM
06 Feb 2023
A vulnerability has been found in Gimmie Plugin 1.2.2 on vBulletin and classified as critical. Affected by this vulnerability is an unknown functionality of the file trigger_login.php. The manipulation of the argument userid leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The patch is named fe851002d20a8d6196a5abb68bafec4102964d5b. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-220207.
CVE-2022-48311
N/A
06 Feb 2023
**UNSUPPORTED WHEN ASSIGNED** Cross Site Scripting (XSS) in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVE-2023-20609
N/A
06 Feb 2023
In ccu, there is a possible out of bounds read due to a logic error. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07570864; Issue ID: ALPS07570864.
CVE-2023-24200
N/A
06 Feb 2023
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at save_ticket.php.
Page 564 of 620
Page 564 of 620