Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-45598PUBLISHED: 2023-01-31Cross Site Scripting vulnerability in Joplin Desktop App before v2.9.17 allows attacker to execute arbitrary code via improper santization.
CVE-2022-47035PUBLISHED: 2023-01-31Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint.
CVE-2022-47780PUBLISHED: 2023-01-31SQL Injection vulnerability in Bangresto 1.0 via the itemID parameter.
CVE-2023-24162PUBLISHED: 2023-01-31Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter.
CVE-2023-24163PUBLISHED: 2023-01-31SQL Inection vulnerability in Dromara hutool v5.8.11 allows attacker to execute arbitrary code via the aviator template engine.
User Rank: Apprentice
6/28/2019 | 4:31:00 AM