CVE-2022-45462 Alarm instance management has command injection when there is a specific command configured. It is only for logged-in users.
after the release of 2.0.5, the version 2.0.5 is not supported any more. An upgraded version is always recommended.
After upgrading
CVE-2022-37332 - Exploiting a Use-After-Free in Foxit PDF Reader’s JavaScript Engine
In June 2022, security researchers discovered a critical vulnerability—CVE-2022-37332—that affects Foxit Software’s PDF Reader, specifically version 12..1.12430. This flaw lies
CVE-2022-43308 - How Attackers Can Create Admin Accounts on Intelbras SG 2404 MR Switches
In late 2022, a serious vulnerability was discovered in the INTELBRAS SG 2404 MR managed network switch, specifically in firmware version 20180928-rel64938. This vulnerability, tracked
CVE-2022-45071 The premium WPML Multilingual plugin has a CSRF vulnerability.
CSRF is a type of web application vulnerability that occurs when an attacker tricks a user into performing an action on a web application that
CVE-2022-43138 Dolibarr Open Source ERP & CRM for Business before v14.0.1 allows attackers to escalate privileges.
This can be leveraged in a Man-In-The-Middle attack to inject arbitrary requests. Dolibarr Open Source ERP & CRM for Business before v14.0.1 does
Episode
00:00:00
00:00:00