Vim code execution | CVE-2022-3016
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0285Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Month: September 2022
Node.js ppreact-lib module code execution |
NAME Node.js ppreact-lib module code execution Platforms Affected:Node.js ppreact-libRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ppreact-lib module could allow a remote attacker...
Node.js com.alice.adonis module code execution |
NAME Node.js com.alice.adonis module code execution Platforms Affected:Node.js com.alice.adonisRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js com.alice.adonis module could allow a remote attacker...
Node.js k0s module code execution |
NAME Node.js k0s module code execution Platforms Affected:Node.js k0sRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js k0s module could allow a remote attacker...
Node.js sm-cesium module code execution |
NAME Node.js sm-cesium module code execution Platforms Affected:Node.js sm-cesiumRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js sm-cesium module could allow a remote attacker...
Honeywell Experion LX denial of service | CVE-2022-30317
NAME Honeywell Experion LX denial of service Platforms Affected:Honeywell Experion LXRisk Level:9.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Honeywell Experion LX is vulnerable...
Node.js tolbichgo3 module code execution |
NAME Node.js tolbichgo3 module code execution Platforms Affected:Node.js tolbichgo3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tolbichgo3 module could allow a remote attacker...
Sourcecodester Simple Task Managing System SQL injection | CVE-2022-3013
NAME Sourcecodester Simple Task Managing System SQL injection Platforms Affected:Sourcecodester Simple Task Managing System 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION Sourcecodester Simple...
Honeywell ControlEdge default account | CVE-2022-30318
NAME Honeywell ControlEdge default account Platforms Affected:Honeywell ControlEdge 151.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Honeywell ControlEdge contains default hardcoded credentials. A remote...
Vim code execution | CVE-2022-3037
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0321Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Node.js remotepshell module code execution |
NAME Node.js remotepshell module code execution Platforms Affected:Node.js remotepshellRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js remotepshell module could allow a remote attacker...
Freeciv buffer overflow | CVE-2022-39047
NAME Freeciv buffer overflow Platforms Affected:Freeciv Freeciv 2.6.6 Freeciv Freeciv 3.0.2Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Freeciv is vulnerable to a buffer...
Node.js hwzpgf module code execution |
NAME Node.js hwzpgf module code execution Platforms Affected:Node.js hwzpgfRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js hwzpgf module could allow a remote attacker...
Node.js wm-publish-statuses module code execution |
NAME Node.js wm-publish-statuses module code execution Platforms Affected:Node.js wm-publish-statusesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wm-publish-statuses module could allow a remote attacker...
Fuji Electric D300win information disclosure | CVE-2022-1738
NAME Fuji Electric D300win information disclosure Platforms Affected:Fuji Electric D300win 3.7.1.16 Fuji Electric D300win 3.7.1.15Risk Level:8.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Fuji Electric...
Hgiga OAKlouds Portal website SQL injection | CVE-2022-38118
NAME Hgiga OAKlouds Portal website SQL injection Platforms Affected:HGiga OAKlouds Portal 3.0-2 HGiga OAKlouds Portal 2.0-2Risk Level:8.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Hgiga...
Node.js wm-cookies-api module code execution |
NAME Node.js wm-cookies-api module code execution Platforms Affected:Node.js wm-cookies-apiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wm-cookies-api module could allow a remote attacker...
Node.js api-discord.js module code execution |
NAME Node.js api-discord.js module code execution Platforms Affected:Node.js api-discord.jsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js api-discord.js module could allow a remote attacker...
PTC Kepware KEPServerEX buffer overflow | CVE-2022-2848
NAME PTC Kepware KEPServerEX buffer overflow Platforms Affected:PTC Kepware KEPServerEX 6.11 PTC ThingWorkx Kepware Server 6.11 PTC ThingWorkx Industrial Connectivity...
Watchguard Firebox buffer overflow | CVE-2022-31789
NAME Watchguard Firebox buffer overflow Platforms Affected:WatchGuard WatchGuard FireboxRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Watchguard Firebox is vulnerable to a buffer overflow,...
PTC Kepware KEPServerEX buffer overflow | CVE-2022-2825
NAME PTC Kepware KEPServerEX buffer overflow Platforms Affected:PTC Kepware KEPServerEX 6.11 PTC ThingWorkx Kepware Server 6.11 PTC ThingWorkx Industrial Connectivity...
WordPress Core Link SQL injection |
NAME WordPress Core Link SQL injection Platforms Affected:WordPress WordPress 2.0.9 WordPress WordPress 2.0.11 WordPress WordPress 2.3.2 WordPress WordPress 2.3.3 WordPress...
A flaw in TikTok Android app could have allowed the hijacking of users’ accounts
Microsoft discovered a vulnerability in the TikTok app for Android that could lead to one-click account hijacking. Microsoft researchers discovered...
