Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Total 210374 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-32396 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/visits/manage_visit.php:4
CVE-2022-32395 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/crimes/manage_crime.php:4
CVE-2022-32394 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/view_inmate.php:3
CVE-2022-32398 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/cells/manage_cell.php:4
CVE-2022-32397 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/visits/view_visit.php:4
CVE-2022-32399 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/crimes/view_crime.php:4
CVE-2022-32400 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 7.2 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/user/manage_user.php:4.
CVE-2022-32403 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/manage_record.php:4
CVE-2022-32402 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/prisons/manage_prison.php:4
CVE-2022-32401 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/manage_privilege.php:4
CVE-2022-32404 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/manage_inmate.php:3
CVE-2022-32405 1 Prison Management System Project 1 Prison Management System 2022-06-29 6.5 MEDIUM 8.8 HIGH
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/prisons/view_prison.php:4
CVE-2017-20091 1 Wpjos 1 Library File Manager 2022-06-29 4.3 MEDIUM 6.5 MEDIUM
A vulnerability was found in File Manager Plugin 3.0.1. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely.
CVE-2017-20090 1 Global Content Blocks Project 1 Global Content Blocks 2022-06-29 6.8 MEDIUM 8.8 HIGH
A vulnerability was found in Global Content Blocks Plugin 2.1.5. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely.
CVE-2017-20089 1 Gwolle Guestbook Project 1 Gwolle Guestbook 2022-06-29 4.3 MEDIUM 6.1 MEDIUM
A vulnerability was found in Gwolle Guestbook Plugin 1.7.4. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to basic cross site scripting. The attack may be initiated remotely.
CVE-2020-4294 2 Ibm, Linux 2 Qradar Security Information And Event Manager, Linux Kernel 2022-06-29 6.5 MEDIUM 6.3 MEDIUM
IBM QRadar 7.3.0 to 7.3.3 Patch 2 is vulnerable to Server Side Request Forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-ForceID: 176404.
CVE-2020-4274 2 Ibm, Linux 2 Qradar Security Information And Event Manager, Linux Kernel 2022-06-29 5.5 MEDIUM 5.4 MEDIUM
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow an authenticated user to access data and perform unauthorized actions due to inadequate permission checks. IBM X-ForceID: 175980.
CVE-2020-4269 2 Ibm, Linux 2 Qradar Security Information And Event Manager, Linux Kernel 2022-06-29 5.0 MEDIUM 7.5 HIGH
IBM QRadar 7.3.0 to 7.3.3 Patch 2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-ForceID: 175845.
CVE-2020-4270 2 Ibm, Linux 2 Qradar Security Information And Event Manager, Linux Kernel 2022-06-29 4.6 MEDIUM 7.8 HIGH
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a local user to gain escalated privileges due to weak file permissions. IBM X-ForceID: 175846.
CVE-2020-4854 2 Ibm, Linux 2 Spectrum Protect Plus, Linux Kernel 2022-06-29 7.5 HIGH 9.8 CRITICAL
IBM Spectrum Protect Plus 10.1.0 thorugh 10.1.6 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 190454.