Skip to main content
CVE-2022-25568 HIGH POC PATCH This Week

MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Motioneye
NVD GitHub
CVSS 3.1
7.5
EPSS
6.8%
CVE-2022-0153 HIGH POC PATCH This Week

SQL Injection in GitHub repository forkcms/forkcms prior to 5.11.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

SQLi Fork Cms
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2022-1061 HIGH POC PATCH This Week

Heap Buffer Overflow in parseDragons in GitHub repository radareorg/radare2 prior to 5.6.8. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Heap Overflow Radare2
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
CVE-2022-0551 HIGH This Week

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Cmc Guardian
NVD
CVSS 4.0
8.6
EPSS
0.9%
CVE-2022-0550 HIGH This Week

Improper Input Validation vulnerability in custom report logo upload in Nozomi Networks Guardian, and CMC allows an authenticated attacker with admin or report manager roles to execute unattended. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Cmc Guardian
NVD
CVSS 4.0
8.6
EPSS
0.9%
CVE-2022-25571 HIGH This Week

Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to contain an information leak which allows attackers to access the contents of the password file via. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Internet Access Detector
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2022-0315 HIGH PATCH This Week

Insecure Temporary File in GitHub repository horovod/horovod prior to 0.24.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Horovod
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
CVE-2022-24781 HIGH PATCH This Week

Geon is a board game based on solving questions about the Pythagorean Theorem. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Session Fixation Information Disclosure Geon
NVD GitHub
CVSS 3.1
7.1
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy