CVE-2022-40878 Exam Reviewer Management System 1.0 allows an attacker to upload a web-shell php file and achieve RCE.
An attacker can do this by setting up a fake facebook account or by manipulating the system to access the system’s data. By uploading
CVE-2022-38648 SSRF vulnerability in Batik of Apache XML Graphics allows attacker to fetch external resources.
The Apache XML Graphics Batik library is an open source library licensed under the Apache License 2.0. It provides a bridge between the needs
CVE-2022-38339 An older version of Safe Software FME Server contains a XSS vulnerability that allows attackers to execute arbitrary web scripts or HTML.
This XSS flaw may lead to information leak or may be exploited by hackers to conduct session hijacking or clickjacking. Vulnerable versions of FME Software
CVE-2022-38618 The SmartVista SVFE2 v2.2.22 had a SQL injection vulnerability on the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters.
If the user has the Module Manager role and navigates to these vectors, the malicious code will allow the user to insert and delete arbitrary
CVE-2022-34734 Microsoft ODBC Driver Remote Code Execution Vulnerability
This issue was disclosed by a researcher from Tencent Security in a research paper released on January 11, 2019. The researcher found an issue in
Episode
00:00:00
00:00:00