Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-30016PUBLISHED: 2022-05-23Rescue Dispatch Management System 1.0 is vulnerable to Incorrect Access Control via http://localhost/rdms/admin/?page=system_info.
CVE-2022-30017PUBLISHED: 2022-05-23Rescue Dispatch Management System 1.0 suffers from Stored XSS, leading to admin account takeover via cookie stealing.
CVE-2022-28932PUBLISHED: 2022-05-23D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00 was discovered to contain insecure permissions.
CVE-2022-29004PUBLISHED: 2022-05-23Diary Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Name parameter in search-result.php.
CVE-2022-29005PUBLISHED: 2022-05-23Multiple cross-site scripting (XSS) vulnerabilities in the component /obcs/user/profile.php of Online Birth Certificate System v1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fname or lname parameters.
User Rank: Apprentice
4/24/2020 | 11:03:42 PM