Skip to main content
CVE-2022-44008 MEDIUM POC This Month

An issue was discovered in BACKCLICK Professional 5.9.63. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Tomcat Backclick
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2022-43263 MEDIUM POC This Month

A cross-site scripting (XSS) vulnerability in Arobas Music Guitar Pro for iPad and iPhone before v1.10.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Guitar Pro
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2022-44073 MEDIUM POC This Month

Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via svg,Users & Contacts. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Zenario
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-44071 MEDIUM POC This Month

Zenario CMS 9.3.57186 is is vulnerable to Cross Site Scripting (XSS) via profile. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Zenario
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-44070 MEDIUM POC This Month

Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via News articles. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Zenario
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-44069 MEDIUM POC This Month

Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via the Nest library module. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Zenario
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-44005 MEDIUM POC This Month

An issue was discovered in BACKCLICK Professional 5.9.63. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backclick
NVD
CVSS 3.1
5.3
EPSS
0.6%
CVE-2022-4018 MEDIUM POC PATCH This Month

Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Rdiffweb
NVD GitHub
CVSS 3.1
4.3
EPSS
0.8%
CVE-2022-39383 MEDIUM PATCH This Month

KubeVela is an open source application delivery platform. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Kubevela
NVD GitHub
CVSS 3.1
6.5
EPSS
0.4%
CVE-2022-44002 MEDIUM This Month

An issue was discovered in BACKCLICK Professional 5.9.63. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Backclick
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2022-39318 MEDIUM PATCH This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Freerdp Fedora
NVD GitHub
CVSS 3.1
5.7
EPSS
1.0%
CVE-2022-39347 MEDIUM PATCH This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Freerdp Fedora
NVD GitHub
CVSS 3.1
5.7
EPSS
0.9%
CVE-2022-39316 MEDIUM PATCH This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Information Disclosure Buffer Overflow Freerdp Fedora
NVD GitHub
CVSS 3.1
5.7
EPSS
1.0%
CVE-2022-4022 MEDIUM PATCH This Month

The SVG Support plugin for WordPress defaults to insecure settings in version 2.5 and 2.5.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

WordPress XSS Svg Support
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-39319 MEDIUM PATCH This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Information Disclosure Buffer Overflow Freerdp Fedora
NVD GitHub
CVSS 3.1
4.6
EPSS
0.7%
CVE-2022-39317 MEDIUM This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Freerdp Fedora
NVD GitHub
CVSS 3.1
4.6
EPSS
0.6%
CVE-2022-41877 MEDIUM PATCH This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Freerdp Fedora
NVD GitHub
CVSS 3.1
4.6
EPSS
0.7%
CVE-2022-39320 MEDIUM This Month

FreeRDP is a free remote desktop protocol library and clients. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Freerdp Fedora
NVD GitHub
CVSS 3.1
4.6
EPSS
0.7%
CVE-2022-4014 MEDIUM This Month

A vulnerability, which was classified as problematic, has been found in FeehiCMS. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Authentication Bypass Feehicms
NVD VulDB
CVSS 3.1
4.3
EPSS
0.2%
CVE-2022-41917 MEDIUM PATCH This Month

OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Java Elastic Opensearch
NVD GitHub
CVSS 3.1
4.3
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy