CVE-2022-35957 Grafana is an open-source platform for monitoring and observability
There is a critical vulnerability in all versions of Grafana from 8.5.13 to 9.1.6 that can be exploited by an anonymous
CVE-2022-33735 There is a password verification vulnerability in WS7200-10 11.0.2.13
There is a cross-site scripting (XSS) vulnerability in WS7200-10 11.0.2.13. An attacker can inject malicious code into the Web page, which may
CVE-2022-35196 TestLink v1.9.20 had a CSRF vulnerbility in plan/planView.php.
This issue was resolved by updating to version 1.9.21 or higher. Inspect the application URL to determine if you are running an outdated
CVE-2022-3000 XSS stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
It was found that due to the way data was sanitized before being stored to session, there was a possibility of XSS. It was patched
CVE-2022-39957 The OWASP ModSecurity CRS is affected by a response body bypass, which allows a client to issue an Accept header with an optional "charset" parameter.
The OWASP ModSecurity CRS is affected by a cross-site request forgery (CSRF) vulnerability. A malicious actor may pose as an innocent third party, to trick
Episode
00:00:00
00:00:00