Skip to main content
CVE-2022-3973 CRITICAL POC Act Now

A vulnerability classified as critical has been found in Pingkon HMS-PHP. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Hms Php
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-3972 CRITICAL POC Act Now

A vulnerability was found in Pingkon HMS-PHP. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Hms Php
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-3974 HIGH POC This Week

A vulnerability classified as critical was found in Axiomatic Bento4. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Bento4
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.7%
CVE-2022-3970 HIGH POC PATCH This Week

A vulnerability was found in LibTIFF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Libtiff Active Iq Unified Manager Debian Linux Safari +3
NVD VulDB
CVSS 3.1
8.8
EPSS
1.2%
CVE-2022-3979 HIGH POC PATCH This Week

A vulnerability was found in NagVis up to 1.9.33 and classified as problematic.php. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Information Disclosure PHP Nagvis
NVD GitHub VulDB
CVSS 3.1
8.1
EPSS
1.0%
CVE-2022-3969 MEDIUM POC PATCH This Month

A vulnerability was found in OpenKM up to 6.3.11 and classified as problematic. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Java Information Disclosure Openkm
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.5%
CVE-2022-3976 HIGH PATCH This Week

A vulnerability has been found in MZ Automation libiec61850 up to 1.4 and classified as critical. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Libiec61850
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.5%
CVE-2022-3978 MEDIUM POC PATCH This Month

A vulnerability, which was classified as problematic, was found in NodeBB up to 2.5.7. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF Authentication Bypass Nodebb
NVD VulDB GitHub
CVSS 3.1
4.3
EPSS
0.3%
CVE-2022-3965 HIGH PATCH This Week

A vulnerability classified as problematic was found in ffmpeg. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Ffmpeg
NVD VulDB
CVSS 3.1
8.1
EPSS
0.9%
CVE-2022-3964 HIGH PATCH This Week

A vulnerability classified as problematic has been found in ffmpeg. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Ffmpeg
NVD VulDB
CVSS 3.1
8.1
EPSS
3.5%
CVE-2022-3967 HIGH PATCH This Week

A vulnerability, which was classified as critical, was found in Vesta Control Panel. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Code Injection Control Panel
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-3966 HIGH PATCH This Week

A vulnerability, which was classified as critical, has been found in Ultimate Member Plugin up to 2.5.0.php of the component Template Handler. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal PHP Ultimate Member
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.7%
CVE-2022-3975 MEDIUM PATCH This Month

A vulnerability, which was classified as problematic, has been found in NukeViet CMS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

PHP XSS Nukeviet
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2022-3968 MEDIUM PATCH This Month

A vulnerability has been found in emlog and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

PHP XSS Emlog
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.4%
CVE-2022-3971 MEDIUM PATCH This Month

A vulnerability was found in matrix-appservice-irc up to 0.35.1. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required.

SQLi PostgreSQL Matrix Irc Bridge
NVD GitHub VulDB
CVSS 3.1
5.6
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy