Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}

Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2022-01-15
Low
Med.
Low
Med.
Med.
2022-01-13
High
Low
Low
Med.
Med.
Med.
Low
2022-01-12
Med.

The latest CVEs

2022-01-17
CVE-2022-23303
The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.
CVE-2022-23304
The implementations of EAP-pwd in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495.
CVE-2021-4170
calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2022-01-16
CVE-2022-0235
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
CVE-2022-0238
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2021-33827
The files_antivirus component before 1.0.0 for ownCloud allows OS Command Injection via the administration settings.
CVE-2021-33828
The files_antivirus component before 1.0.0 for ownCloud mishandles the protection mechanism by which malicious files (that have been uploaded to a public share) are supposed to be deleted upon detection.
CVE-2021-44537
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
2022-01-15
CVE-2020-28919
A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.
CVE-2021-32545
Pexip Infinity before 26 allows remote denial of service because of missing RTMP input validation.

Dorks

2022-01-15
Med.
da Grazioli Design - Sql Injection Vulnerability
"Sito web creato da Grazioli Design"
behrouz mansoori
Med.
Web Canvas - Sql Injection Vulnerability
"Web Design by Web Canvas"
behrouz mansoori
2022-01-13
Med.
MARKS DESIGN - Sql Injection Vulnerability
"Designed by MARKS DESIGN"
behrouz mansoori
Med.
EDSA Designs - Sql Injection Vulnerability
"website by EDSA Designs"
behrouz mansoori
2022-01-12
Med.
Agile Web Solutions - Sql Injection Vulnerability
"Developed By Agile Web Solutions"
behrouz mansoori

Copyright 2022, cxsecurity.com

 

Back to Top