Gain Access

Node.js yunt module code execution |

August 30, 2022

NAME Node.js yunt module code execution Platforms Affected:Node.js yuntRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yunt module could allow a remote attacker...

Node.js xrunt-cl module code execution |

August 30, 2022

NAME Node.js xrunt-cl module code execution Platforms Affected:Node.js xrunt-clRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xrunt-cl module could allow a remote attacker...

Node.js xpostcss-loadsr module code execution |

August 30, 2022

NAME Node.js xpostcss-loadsr module code execution Platforms Affected:Node.js xpostcss-loadsrRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xpostcss-loadsr module could allow a remote attacker...

Node.js xmdzdom module code execution |

August 30, 2022

NAME Node.js xmdzdom module code execution Platforms Affected:Node.js xmdzdomRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xmdzdom module could allow a remote attacker...

CentreCOM AR260S V2 command execution | CVE-2022-35273

August 30, 2022

NAME CentreCOM AR260S V2 command execution Platforms Affected:Allied Telesis K.K. CentreCOM AR260S V2 3.3.6Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CentreCOM AR260S V2...

exotel (aka exotel-py) package in PyPI code execution | CVE-2022-38792

August 30, 2022

NAME exotel (aka exotel-py) package in PyPI code execution Platforms Affected:exotel-py exotel-py 0.1.6Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION exotel (aka exotel-py) package...

Node.js xten module code execution |

August 30, 2022

NAME Node.js xten module code execution Platforms Affected:Node.js xtenRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xten module could allow a remote attacker...

Node.js yncrquest module code execution |

August 30, 2022

NAME Node.js yncrquest module code execution Platforms Affected:Node.js yncrquestRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yncrquest module could allow a remote attacker...

Node.js yeoman-enviromenv module code execution |

August 30, 2022

NAME Node.js yeoman-enviromenv module code execution Platforms Affected:Node.js yeoman-enviromenvRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yeoman-enviromenv module could allow a remote attacker...

Node.js xml2jsno module code execution |

August 30, 2022

NAME Node.js xml2jsno module code execution Platforms Affected:Node.js xml2jsnoRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xml2jsno module could allow a remote attacker...

Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution | CVE-2022-38078

August 30, 2022

NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...

Node.js xpsaht module code execution |

August 30, 2022

NAME Node.js xpsaht module code execution Platforms Affected:Node.js xpsahtRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xpsaht module could allow a remote attacker...

Node.js webb3 module code execution |

August 30, 2022

NAME Node.js webb3 module code execution Platforms Affected:Node.js webb3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js webb3 module could allow a remote attacker...

Node.js zyamkljs module code execution |

August 30, 2022

NAME Node.js zyamkljs module code execution Platforms Affected:Node.js zyamkljsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js zyamkljs module could allow a remote attacker...

CentreCOM AR260S V2 default account | CVE-2022-38394

August 30, 2022

NAME CentreCOM AR260S V2 default account Platforms Affected:Allied Telesis K.K. CentreCOM AR260S V2 3.3.6Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CentreCOM AR260S V2...

Node.js xlj2s module code execution |

August 30, 2022

NAME Node.js xlj2s module code execution Platforms Affected:Node.js xlj2sRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xlj2s module could allow a remote attacker...

Node.js yeoman-33enerator module code execution |

August 30, 2022

NAME Node.js yeoman-33enerator module code execution Platforms Affected:Node.js yeoman-33eneratorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yeoman-33enerator module could allow a remote attacker...

SonicWall SMA100 appliance buffer overflow | CVE-2022-2915

August 29, 2022

NAME SonicWall SMA100 appliance buffer overflow Platforms Affected:SonicWall SMA100 10.2.1.5-34svRisk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SonicWall SMA100 appliance is vulnerable to a...

Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution | CVE-2022-38078

August 29, 2022

NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...

Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution | CVE-2022-38078

August 28, 2022

NAME Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution Platforms Affected:Six Apart Moveable Type 7.1.4 Six Apart...

UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution | CVE-2022-35733

August 28, 2022

NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...

UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution | CVE-2022-35733

August 27, 2022

NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...

Claroline cross-site request forgery | CVE-2022-37160

August 27, 2022

NAME Claroline cross-site request forgery Platforms Affected:Claroline Claroline 13.5.7Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Claroline is vulnerable to cross-site request forgery, caused...

IBM DataPower Gateway cross-site request forgery | CVE-2022-31773

August 27, 2022

NAME IBM DataPower Gateway cross-site request forgery Platforms Affected:IBM DataPower Gateway 2018.4.1.0 IBM DataPower Gateway 10.0.1.0 IBM DataPower Gateway 10.0.2.0...

Gain Access

Node.js yunt module code execution |

Node.js xrunt-cl module code execution |

Node.js xpostcss-loadsr module code execution |

Node.js xmdzdom module code execution |

CentreCOM AR260S V2 command execution | CVE-2022-35273

exotel (aka exotel-py) package in PyPI code execution | CVE-2022-38792

Node.js xten module code execution |

Node.js yncrquest module code execution |

Node.js yeoman-enviromenv module code execution |

Node.js xml2jsno module code execution |

Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution | CVE-2022-38078

Node.js xpsaht module code execution |

Node.js webb3 module code execution |

Node.js zyamkljs module code execution |

CentreCOM AR260S V2 default account | CVE-2022-38394

Node.js xlj2s module code execution |

Node.js yeoman-33enerator module code execution |

SonicWall SMA100 appliance buffer overflow | CVE-2022-2915

Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution | CVE-2022-38078

Moveable Type, Moveable Type Premium, and Moveable Type Advanced command execution | CVE-2022-38078

UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution | CVE-2022-35733

UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution | CVE-2022-35733

Claroline cross-site request forgery | CVE-2022-37160

IBM DataPower Gateway cross-site request forgery | CVE-2022-31773

CVE Alert: CVE-2024-57823

CVE Alert: CVE-2024-41787

CVE Alert: CVE-2024-57686

CVE Alert: CVE-2024-57822

CVE Alert: CVE-2024-57687

You may have missed