Skip to main content
CVE-2022-34827 CRITICAL POC Act Now

Carel Boss Mini 1.5.0 has Improper Access Control. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Boss Mini Firmware
NVD GitHub
CVSS 3.1
9.9
EPSS
0.8%
CVE-2022-45132 CRITICAL POC Act Now

In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Lava
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2022-41900 CRITICAL POC PATCH Act Now

TensorFlow is an open source platform for machine learning. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure RCE Buffer Overflow Tensorflow
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-41840 CRITICAL POC Act Now

Unauth. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal WordPress Welcart E Commerce
NVD
CVSS 3.1
9.8
EPSS
5.1%
CVE-2022-45474 CRITICAL POC PATCH Act Now

drachtio-server 0.8.18 has a request-handler.cpp event_cb use-after-free for any request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Use After Free Memory Corruption Drachtio Server
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-44204 CRITICAL POC Act Now

D-Link DIR3060 DIR3060A1_FW111B04.bin is vulnerable to Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

D-Link Buffer Overflow Dir 3060 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.2%
CVE-2022-41880 CRITICAL POC PATCH Act Now

TensorFlow is an open source platform for machine learning. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Buffer Overflow Tensorflow
NVD GitHub
CVSS 3.1
9.1
EPSS
0.4%
CVE-2022-42698 CRITICAL Act Now

Unauth. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress File Upload Api2Cart Bridge Connector
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-42497 CRITICAL Act Now

Arbitrary Code Execution vulnerability in Api2Cart Bridge Connector plugin <= 1.1.0 on WordPress. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE SQLi WordPress Api2Cart Bridge Connector
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2022-41781 CRITICAL Act Now

Broken Access Control vulnerability in Permalink Manager Lite plugin <= 2.2.20 on WordPress. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation WordPress Permalink Manager Lite
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-41652 CRITICAL Act Now

Bypass vulnerability in Quiz And Survey Master plugin <= 7.3.10 on WordPress. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass WordPress Quiz And Survey Master
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-44584 CRITICAL Act Now

Unauth. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure WordPress Watchtower
NVD
CVSS 3.1
9.1
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy