CVE-2022-40846 Tenda AC1200 Router has a stored XSS vulnerability that allows an attacker to execute JavaScript code via the applications stored hostname.
An attacker can exploit this vulnerability to perform remote code execution in the context of the affected application or the user of the affected application.
CVE-2022-42130 - Liferay Portal Dynamic Data Mapping Permission Flaw Exposed
In November 2022, a critical vulnerability was disclosed in Liferay Portal’s Dynamic Data Mapping (DDM) module, tracked as CVE-2022-42130. This flaw impacts a range
CVE-2022-40845 - How Tenda AC120 Router's Password Exposure Bug Can Leave Your Network Wide Open
In 2022, security researchers discovered a serious vulnerability in the Tenda AC120 router, model W15Ev2 with firmware version V15.11..10(1576). Tracked as CVE-2022-40845,
CVE-2022-42124 - ReDoS Vulnerability in Liferay Portal’s LayoutPageTemplateEntryUpgradeProcess – Deep Dive & Exploit Details
Liferay Portal is widely used by enterprises for building reliable and scalable web platforms. Unfortunately, a potentially damaging security flaw — CVE-2022-42124 — was discovered in the
CVE-2022-42128 Liferay Portal and DXP don't properly check permissions, which allows remote attackers to obtain a WikiNode object.
CVE-2018-5617 The Hypermedia REST APIs module in Liferay Portal 7.4.1 through 7.4.3.4, and Liferay DXP 7.4 GA does not
Episode
00:00:00
00:00:00