Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-38358 | 1 Eyeofnetwork | 1 Eyes Of Network Web | 2022-08-17 | N/A | 6.1 MEDIUM |
| Improper neutralization of input during web page generation leaves the Eyes of Network web application vulnerable to cross-site scripting attacks at /module/admin_notifiers/rules.php and /module/report_event/indext.php via the parameters rule_notification, rule_name, and rule_name_old, and at /module/admin_user/add_modify_user.php via the parameters user_name and user_email. | |||||
| CVE-2022-35469 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a segmentation violation via /x86_64-linux-gnu/libc.so.6+0xbb384. | |||||
| CVE-2022-35466 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0473. | |||||
| CVE-2022-35465 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0414. | |||||
| CVE-2022-35468 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e420d. | |||||
| CVE-2022-2390 | 1 Google | 1 Google Play Services Software Development Kit | 2022-08-17 | N/A | 8.4 HIGH |
| Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service. As Google Play services SDK is so widely used, this bug affects many applications. For an application affected, this bug will let the attacker, gain the access to all non-exported providers and/or gain the access to other providers the victim has permissions. We recommend upgrading to version 18.0.2 of the Play Service SDK as well as rebuilding and redeploying apps. | |||||
| CVE-2022-35467 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41b8. | |||||
| CVE-2022-35472 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a global overflow via /release-x64/otfccdump+0x718693. | |||||
| CVE-2022-35471 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41b0. | |||||
| CVE-2022-35470 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x65fc97. | |||||
| CVE-2022-35475 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41a8. | |||||
| CVE-2022-35474 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b544e. | |||||
| CVE-2022-35473 | 1 Otfcc Project | 1 Otfcc | 2022-08-17 | N/A | 6.5 MEDIUM |
| OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe9a7. | |||||
| CVE-2017-3641 | 4 Debian, Mariadb, Oracle and 1 more | 10 Debian Linux, Mariadb, Mysql and 7 more | 2022-08-17 | 4.0 MEDIUM | 4.9 MEDIUM |
| Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | |||||
| CVE-2022-36242 | 1 Clinic\'s Patient Management System Project | 1 Clinic\'s Patient Management System | 2022-08-17 | N/A | 9.8 CRITICAL |
| Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=. | |||||
| CVE-2022-38362 | 1 Apache | 1 Apache-airflow-providers-docker | 2022-08-17 | N/A | 8.8 HIGH |
| Apache Airflow Docker's Provider prior to 3.0.0 shipped with an example DAG that was vulnerable to (authenticated) remote code exploit of code on the Airflow worker host. | |||||
| CVE-2022-36599 | 1 Mingsoft | 1 Mcms | 2022-08-17 | N/A | 9.8 CRITICAL |
| Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/model/delete URI via models Lists. | |||||
| CVE-2022-36530 | 1 Rageframe | 1 Rageframe | 2022-08-17 | N/A | 6.1 MEDIUM |
| An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page. | |||||
| CVE-2021-33236 | 1 Htmldoc Project | 1 Htmldoc | 2022-08-17 | N/A | 5.5 MEDIUM |
| Buffer Overflow vulnerability in write_header in htmldoc through 1.9.11 allows attackers to casue a denial of service via /htmldoc/htmldoc/html.cxx:273. | |||||
| CVE-2021-33235 | 1 Htmldoc Project | 1 Htmldoc | 2022-08-17 | N/A | 5.5 MEDIUM |
| Buffer overflow vulnerability in write_node in htmldoc through 1.9.11 allows attackers to cause a denial of service via htmldoc/htmldoc/html.cxx:588. | |||||