CVE-2022-20459 Code execution can be redirected due to improper input validation. System execution privileges are needed.
This issue was discovered by Ingo Molnar during internal testing. Therefore, details are not publicly known at this point in time. What we do know
CVE-2022-44736 Auth
This POC code is available in Chameleon source code. This XSS vulnerability is due to lack of input validation on certain parameters. An attacker can
CVE-2022-45375 Auth
This XSS vulnerability can be exploited by an attacker when user's input is directly sent to server without being filtered. iFeature Slider plugin
CVE-2022-45071 The premium WPML Multilingual plugin has a CSRF vulnerability.
CSRF is a type of web application vulnerability that occurs when an attacker tricks a user into performing an action on a web application that
CVE-2022-41914 Zulip is an open-source team collaboration tool
The issue is present only in Zulip 5.0 through 5.6. No other Zulip release is affected and Zulip is not vulnerable to this
Episode
00:00:00
00:00:00