CVE-2022-3980 V5.0.0 - 9.7.4 Sophos Mobile on-premises has XEE SSRF and potential code execution vulnerabilities.
This vulnerability is an XML External Entity (XEE) issue. In order to exploit this issue, attacker must be able to perform client-side request forgery (CSRF)
CVE-2022-4013 - Hospital Management Center’s CSRF Flaw in appointment.php Explained
A critical vulnerability, tracked as CVE-2022-4013, was discovered in the widely used Hospital Management Center software. The security issue was found in the appointment.php
CVE-2022-20838 - Stored XSS in Cisco Firepower Management Center Explained
CVE-2022-20838 refers to a group of multiple stored Cross-Site Scripting (XSS) vulnerabilities found in Cisco Firepower Management Center (FMC) software. If you're responsible
CVE-2022-20835 - Deep Dive Into Cisco Firepower Management Center XSS Vulnerabilities
In July 2022, Cisco disclosed a set of critical vulnerabilities grouped under CVE-2022-20835 affecting the web-based management interface of Cisco Firepower Management Center (FMC) Software.
CVE-2020-12507 An attacker with access to monit tool 4.2 could access the database by injection.
s::can moni::tools 4.2+ now uses a secure database connection to avoid SQL injection and other security issues.
In s::can moni::tools
Episode
00:00:00
00:00:00