Skip to main content
CVE-2022-41443 CRITICAL POC Act Now

phpipam v1.5.0 was discovered to contain a header injection vulnerability via the component /admin/subnets/ripe-query.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection PHP Phpipam
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2022-40721 CRITICAL POC Act Now

Arbitrary file upload vulnerability in php uploader. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Creativedream File Uploader
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2022-33882 CRITICAL Act Now

Under certain conditions, an attacker could create an unintended sphere of control through a vulnerability present in file delete operation in Autodesk desktop app (ADA). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Autodesk Desktop
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2022-42307 CRITICAL PATCH Act Now

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This XML External Entity (XXE) vulnerability could allow attackers to read arbitrary files or perform SSRF through XML processing.

XXE Netbackup
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2022-42304 CRITICAL PATCH Act Now

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Netbackup
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2022-42303 CRITICAL PATCH Act Now

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Netbackup
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2022-42302 CRITICAL PATCH Act Now

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Netbackup
NVD
CVSS 3.1
9.8
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy