Skip to main content
CVE-2022-1285 MEDIUM POC PATCH This Month

Server-Side Request Forgery (SSRF) in GitHub repository gogs/gogs prior to 0.12.8. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

SSRF Gogs
NVD GitHub
CVSS 3.1
6.5
EPSS
1.2%
CVE-2022-31000 MEDIUM POC PATCH This Month

solidus_backend is the admin interface for the Solidus e-commerce framework. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF Solidus
NVD GitHub
CVSS 3.1
4.3
EPSS
0.4%
CVE-2022-29232 MEDIUM PATCH This Month

BigBlueButton is an open source web conferencing system. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Bigbluebutton
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2022-31022 MEDIUM PATCH This Month

Bleve is a text indexing library for go. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Bleve
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-26905 MEDIUM PATCH This Month

Microsoft Edge (Chromium-based) Spoofing Vulnerability. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Google Microsoft Information Disclosure Edge Chromium
NVD
CVSS 3.1
4.3
EPSS
1.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy