Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}

Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2022-12-06
Med.
Med.
2022-12-05
Low
Low
Med.
Med.
Med.
2022-12-01
High
Med.
Med.
Med.
Med.
Med.

The latest CVEs

2022-12-07
CVE-2022-3643
Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backend by sending certain kinds of packets. It appears to be an (unwritten?) assumption in the rest of the Linux network stack that packet protocol headers are all contained within the line...
CVE-2022-42328
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-423...
CVE-2022-42329
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-423...
CVE-2022-45915
ILIAS before 7.16 allows OS Command Injection.
CVE-2022-45916
ILIAS before 7.16 allows XSS.
CVE-2022-45917
ILIAS before 7.16 has an Open Redirect.
CVE-2022-45918
ILIAS before 7.16 allows External Control of File Name or Path.
CVE-2022-44153
Rapid Software LLC Rapid SCADA 5.8.4 is vulnerable to Cross Site Scripting (XSS).
CVE-2022-44942
Casdoor before v1.126.1 was discovered to contain an arbitrary file deletion vulnerability via the uploadFile function.
CVE-2022-45008
Online Leave Management System v1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component /leave_system/admin/?page=maintenance/department. This vulnerability allows attackers to execute arbitrary web scripts or HTML via crafted payload injected into the Name field under the Create New module.

Dorks

2022-11-18
Med.
Remote Code Execution in SimpleMachinesForum 2.1.1( CVE-2022-26982 )
SimpleMachinesForum Exploit
Sarang Tumne
2022-11-15
Med.
Remote Code Execution in MODX Revolution V2.8.3-pl( CVE-2022-26149 )
MODX Exploit
Sarang Tumne
2022-11-13
High
Remote Code Execution in Abantecart-1.3.2( CVE-2022-26521 )
Abantecart exploit
Sarang Tumne
2022-10-23
Low
Khameneie.ir XSS vulnerabilities
site:farsi.khamenei.ir/search-result?q="
E1.Coders
Med.
developway SQL Injection
intext:"Powered By DevelopWay"
cymilad

Copyright 2022, cxsecurity.com

 

Back to Top