Skip to main content
CVE-2021-44596 CRITICAL POC THREAT Emergency

Wondershare LTD Dr. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 22.7%.

RCE Dr Fone
NVD Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
22.7%
Threat
4.1
CVE-2022-28994 CRITICAL POC Act Now

Small HTTP Server version 3.06 suffers from a remote buffer overflow vulnerability via long GET request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Small Http Server
NVD
CVSS 3.1
9.8
EPSS
2.2%
CVE-2022-28480 CRITICAL POC Act Now

ALLMediaServer 1.6 is vulnerable to Buffer Overflow via MediaServer.exe. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Allmediaserver
NVD
CVSS 3.1
9.8
EPSS
1.7%
CVE-2022-28452 CRITICAL POC THREAT Act Now

Red Planet Laundry Management System 1.0 is vulnerable to SQL Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Laundry Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
17.3%
CVE-2022-1531 CRITICAL POC PATCH Act Now

SQL injection vulnerability in ARAX-UI Synonym Lookup functionality in GitHub repository rtxteam/rtx prior to checkpoint_2022-04-20 . Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE SQLi Rtx
NVD GitHub
CVSS 3.1
9.8
EPSS
3.5%
CVE-2022-29906 CRITICAL POC Act Now

The admin API module in the QuizGame extension for MediaWiki through 1.37.2 (before 665e33a68f6fa1167df99c0aa18ed0157cdf9f66) omits a check for the quizadmin user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Mediawiki
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2022-29904 CRITICAL POC THREAT Act Now

The SemanticDrilldown extension for MediaWiki through 1.37.2 (before e688bdba6434591b5dff689a45e4d53459954773) allows SQL injection with certain '-' and '_' constraints. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Mediawiki
NVD
CVSS 3.1
9.8
EPSS
16.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy