CVE-2022-33147 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send a specially-crafted HTTP request to the aVideoEncoder endpoint to exploit this vulnerability. This vulnerability can be exploited by hackers to inject
CVE-2022-2842 A critical vulnerability has been found in SourceCodester Gym Management System. The manipulation of the user_email argument leads to sql injection.
According to the details, this critical vulnerability is caused by a sql injection. It is possible to exploit this vulnerability remotely. An attacker can inject
CVE-2022-2296 After free in Chrome OS Shell prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption.
This issue was addressed by disabling after_free in the UI. For users who are interacting with sites that are explicitly vulnerable to this issue,
CVE-2022-2156 An attacker can exploit heap corruption in Chrome before 103.0.5060.53 to execute malicious code.
This issue has been fixed.
After script injection in Google Chrome prior to 103.0.5060.53 allowed a remote attacker to perform a cross-origin
CVE-2022-1868 An attacker could bypass navigation restrictions in Google Chrome if they convinced a user to install a malicious extension.
If you have installed a malicious extension or have a compromised device, an attacker could potentially trick you into visiting a specifically crafted website, causing
Episode
00:00:00
00:00:00