Skip to main content
CVE-2022-23375 HIGH POC THREAT This Week

WikiDocs version 0.1.18 has an authenticated remote code execution vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP RCE File Upload Wikidocs
NVD GitHub
CVSS 3.1
8.8
EPSS
19.9%
CVE-2022-0409 HIGH POC PATCH This Week

Unrestricted Upload of File with Dangerous Type in Packagist showdoc/showdoc prior to 2.10.2. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

File Upload Showdoc
NVD GitHub
CVSS 3.1
7.8
EPSS
0.9%
CVE-2022-0630 HIGH POC PATCH This Week

Out-of-bounds Read in Homebrew mruby prior to 3.2. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Mruby
NVD GitHub
CVSS 3.1
7.1
EPSS
1.0%
CVE-2022-25366 HIGH This Week

Cryptomator through 1.6.5 allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Apple Cryptomator
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2022-25365 HIGH PATCH This Week

Docker Desktop before 4.5.1 on Windows allows attackers to move arbitrary files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Docker
NVD
CVSS 3.1
7.8
EPSS
0.8%
CVE-2022-24980 HIGH PATCH This Week

An issue was discovered in the Kitodo.Presentation (aka dif) extension before 2.3.2, 3.x before 3.2.3, and 3.3.x before 3.3.4 for TYPO3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Kitodo Presentation
NVD
CVSS 3.1
7.5
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy