Carlo Gavazzi UWP and CPY Car Park Server directory traversal | CVE-2022-28814
NAME Carlo Gavazzi UWP and CPY Car Park Server directory traversal Platforms Affected:Carlo Gavazzi UWP 3.0 Carlo Gavazzi CPY Car...
Vulnerabilities
Matrix Android SDK2 security bypass | CVE-2022-39248
NAME Matrix Android SDK2 security bypass Platforms Affected:matrix.org Matrix Android SDK2 1.4.36Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Matrix Android SDK2 could allow...
matrix-sdk-crypto security bypass | CVE-2022-39252
NAME matrix-sdk-crypto security bypass Platforms Affected:matrix.org matrix-sdk-crypto 0.5Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION matrix-sdk-crypto could allow a remote attacker to bypass security...
Matrix Android SDK2 security bypass | CVE-2022-39246
NAME Matrix Android SDK2 security bypass Platforms Affected:matrix.org Matrix Android SDK2 1.4.36Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Matrix Android SDK2 could allow...
matrix-js-sdk security bypass | CVE-2022-39250
NAME matrix-js-sdk security bypass Platforms Affected:matrix.org Matrix Javascript SDK 19.6.0Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION matrix-js-sdk could allow a remote attacker to...
TP-Link Archer AX10 code execution | CVE-2022-40486
NAME TP-Link Archer AX10 code execution Platforms Affected:TP-Link Archer AX10 firmware 1.3.1 Build 20220401 Rel. 57450(5553)Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION TP-Link...
matrix-ios-sdk security bypass | CVE-2022-39255
NAME matrix-ios-sdk security bypass Platforms Affected:matrix.org matrix-ios-sdk 0.23.18Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION matrix-ios-sdk could allow a remote attacker to bypass security...
Matrix Javascript SDK security bypass | CVE-2022-39251
NAME Matrix Javascript SDK security bypass Platforms Affected:matrix.org Matrix Javascript SDK 19.6.0Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Matrix Javascript SDK could allow...
matrix-nio security bypass | CVE-2022-39254
NAME matrix-nio security bypass Platforms Affected:matrix.org matrix-nio 0.19Risk Level:8.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION matrix-nio could allow a remote attacker to bypass security...
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Mobility denial of service | CVE-2022-20856
NAME Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Mobility denial of service Platforms Affected:Cisco Catalyst...
Daily Vulnerability Trends: Fri Sep 30 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-30075In TP-Link Router AX50 firmware 210730 and older, import of a malicious...
Cisco IOS XE Wireless Controller Software denial of service | CVE-2022-20847
NAME Cisco IOS XE Wireless Controller Software denial of service Platforms Affected:Cisco IOS XE Wireless Controller SoftwareRisk Level:8.6Exploitability:UnprovenConsequences:Denial of Service...
Motopress Hotel Booking Lite plugin for WordPress Add New cross-site scripting |
NAME Motopress Hotel Booking Lite plugin for WordPress Add New cross-site scripting Platforms Affected:WordPress MotoPress Hotel Booking Lite plugin for...
mailcow spoofing | CVE-2022-39258
NAME mailcow spoofing Platforms Affected:mailcow mailcow 2022-08Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION mailcow could allow a remote attacker to conduct spoofing attacks,...
Cisco IOS XE Software denial of service | CVE-2022-20837
NAME Cisco IOS XE Software denial of service Platforms Affected:Cisco IOS XE SoftwareRisk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Cisco IOS XE...
Cisco IOS and Cisco IOS XE denial of service | CVE-2022-20919
NAME Cisco IOS and Cisco IOS XE denial of service Platforms Affected:Cisco IOS Cisco IOS XERisk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
Cisco IOS XE denial of service | CVE-2022-20848
NAME Cisco IOS XE denial of service Platforms Affected:Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100Risk Level:8.6Exploitability:UnprovenConsequences:Denial...
Smart eVision privilege escalation | CVE-2022-39032
NAME Smart eVision privilege escalation Platforms Affected:Smart eVision Smart eVision 2022.02.21Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Smart eVision could allow a remote...
Cisco IOS XE Software denial of service | CVE-2022-20870
NAME Cisco IOS XE Software denial of service Platforms Affected:Cisco IOS XE Software Cisco Catalyst 3650 Series Switches Cisco Catalyst...
Online Diagnostic Lab Management System SQL injection |
NAME Online Diagnostic Lab Management System SQL injection Platforms Affected:Sourcecodester Online Diagnostic Lab Management System 1.0Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Online...
Orckestra C1 CMS code execution | CVE-2022-39256
NAME Orckestra C1 CMS code execution Platforms Affected:Orckestra C1 CMS 6.12Risk Level:9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Orckestra C1 CMS could allow a...
Smart eVision directory traversal | CVE-2022-39033
NAME Smart eVision directory traversal Platforms Affected:Smart eVision Smart eVision 2022.02.21Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Smart eVision could allow a remote...
Daily Vulnerability Trends: Thu Sep 29 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-26134In affected versions of Confluence Server and Data Center, an OGNL injection...
AjaXplorer cross-site scripting | CVE-2022-40358
NAME AjaXplorer cross-site scripting Platforms Affected:Ajaxplorer Ajaxplorer 4.2.3Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION AjaXplorer is vulnerable to cross-site scripting, caused by improper...
