Skip to main content
CVE-2022-30327 MEDIUM POC This Month

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Tew 831Dr Firmware
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2022-31294 MEDIUM POC This Month

An issue in the save_users() function of Online Discussion Forum Site 1 allows unauthenticated attackers to arbitrarily create or update user accounts. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Online Discussion Forum Site
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2022-31299 MEDIUM POC This Month

Haraj v3.7 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in the User Upgrade Form. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Haraj
NVD GitHub
CVSS 3.1
6.1
EPSS
4.7%
CVE-2022-2085 MEDIUM POC PATCH This Month

A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Null Pointer Dereference Ghostscript Fedora
NVD
CVSS 3.1
5.5
EPSS
1.4%
CVE-2022-31914 MEDIUM POC This Month

Zoo Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via zms/admin/public_html/save_animal?an_id=24. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Zoo Management System
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-31913 MEDIUM POC This Month

Online Discussion Forum Site v1.0 is vulnerable to Cross Site Scripting (XSS) via /odfs/classes/Master.php?f=save_category, name. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Discussion Forum Site
NVD GitHub
CVSS 3.1
4.8
EPSS
0.5%
CVE-2022-31910 MEDIUM POC This Month

Online Tutor Portal Site v1.0 is vulnerable to Cross Site Scripting (XSS). Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Tutor Portal Site
NVD GitHub
CVSS 3.1
4.8
EPSS
0.5%
CVE-2022-31906 MEDIUM POC This Month

Online Fire Reporting System v1.0 is vulnerable to Cross Site Scripting (XSS) via /ofrs/classes/Master.php. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Fire Reporting System
NVD GitHub
CVSS 3.1
4.8
EPSS
0.5%
CVE-2022-30328 MEDIUM This Month

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Tew 831Dr Firmware
NVD
CVSS 3.1
6.5
EPSS
0.4%
CVE-2022-22953 MEDIUM This Month

VMware HCX update addresses an information disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

VMware Information Disclosure Vmware Hcx
NVD
CVSS 3.1
6.5
EPSS
0.7%
CVE-2022-30326 MEDIUM This Month

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Tew 831Dr Firmware
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-31301 MEDIUM This Month

Haraj v3.7 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Post Ads component. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Haraj
NVD GitHub
CVSS 3.1
5.4
EPSS
0.8%
CVE-2022-31298 MEDIUM This Month

A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Haraj
NVD GitHub
CVSS 3.1
5.4
EPSS
1.1%
CVE-2022-31300 MEDIUM This Month

A cross-site scripting vulnerability in the DM Section component of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Haraj
NVD GitHub
CVSS 3.1
5.4
EPSS
1.1%
CVE-2022-30533 MEDIUM This Month

Cross-site scripting vulnerability in Modern Events Calendar Lite versions prior to 6.3.0 allows remote an authenticated attacker to inject an arbitrary script via unspecified vectors. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Modern Events Calendar Lite
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-33755 MEDIUM This Month

CA Automic Automation 12.2 and 12.3 contain an insecure input handling vulnerability in the Automic Agent that could allow a remote attacker to potentially enumerate users. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ca Automic Automation
NVD
CVSS 3.1
5.3
EPSS
0.9%
CVE-2022-27512 MEDIUM This Month

Temporary disruption of the ADM license service. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Citrix Information Disclosure Application Delivery Management
NVD
CVSS 3.1
5.3
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy