CVE-2022-44317 PicoC 3.2.2 had a buffer overflow in StdioOutPutc function in cstdlib/stdio.c when called from ExpressionParseFunctionCall.
This would lead to arbitrary code execution in the context of the running PHP interpreter if a user were tricked into opening a specially crafted
CVE-2022-30694 - How Weak Origin Checking in /FormLogin Exposes Your Service to Login CSRF Attacks
In summer 2022, a critical vulnerability—CVE-2022-30694—surfaced, targeting applications and web services using a common login path: /FormLogin. The essence of this bug boils
CVE-2022-43052 - Exploiting SQL Injection in Online Diagnostic Lab Management System v1.
CVE-2022-43052 is a critical vulnerability affecting the Online Diagnostic Lab Management System version 1.. This bug allows attackers to perform SQL injection via the id
CVE-2022-43051 - Serious SQL Injection in Online Diagnostic Lab Management System v1. Exploited via ‘id’ Parameter
---
Introduction
In late 2022, security researchers discovered a high-impact vulnerability in a popular healthcare software, Online Diagnostic Lab Management System v1.. Labelled as CVE-2022-43051,
CVE-2022-43050 The v1.0 of Tours & Travels Management System had a file upload vulnerability.
When the component is installed on the targeted server, hackers can upload a malicious PHP file to trigger this vulnerability and execute arbitrary code on
Episode
00:00:00
00:00:00