Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-0900PUBLISHED: 2022-05-23A Stored Cross-Site Scripting (XSS) vulnerability in DivvyDrive's "aciklama" parameter could allow anyone to gain users' session informations.
CVE-2022-28997PUBLISHED: 2022-05-23CSZCMS v1.3.0 allows attackers to execute a Server-Side Request Forgery (SSRF) which can be leveraged to leak sensitive data via a local file inclusion at /admin/filemanager/connector/.
CVE-2022-28998PUBLISHED: 2022-05-23Xlight FTP v3.9.3.2 was discovered to contain a stack-based buffer overflow which allows attackers to leak sensitive information via crafted code.
CVE-2022-1810PUBLISHED: 2022-05-23Improper Access Control in GitHub repository publify/publify prior to 9.2.9.
CVE-2022-1816PUBLISHED: 2022-05-23
A vulnerability, which was classified as problematic, has been found in Zoo Management System 1.0. Affected by this issue is /zoo/admin/public_html/view_accounts?type=zookeeper of the content module. The manipulation of the argument admin_name with the input <script>alert(1)</script> lea...
User Rank: Apprentice
2/7/2017 | 2:54:59 AM