CVE-2021-46850 - How Command Injection Threatens myVesta & Vesta Control Panel – Exploit and Details
CVE-2021-46850 is a serious vulnerability found in the myVesta Control Panel (before version .9.8-26-43) and Vesta Control Panel (before version .9.8-26). This issue
CVE-2022-42205 Hospital Management System in PHP 4.0 is vulnerable to XSS via add-patient.php
Exploitation of this vulnerability requires no authentication, thus it might be a low-severity issue, but it is still important to be aware of it.
A
CVE-2022-41741 The NGINX Open Source versions before 1.23.2, 1.22.1, R2 P1, and R1 P1 have a vulnerability in the ngx_http_mp4_module module that might allow a local attacker to execute arbitrary code.
An attacker can exploit this issue by sending an audio or video file to an online service through HTTP protocol, for example, to a banking
CVE-2022-43015 - Exploiting a Reflected XSS Vulnerability in OpenCATS v.9.6 (`entriesPerPage`)
OpenCATS is a popular open-source Applicant Tracking System (ATS) used by many organizations for recruitment management. In October 2022, a security issue surfaced in version
CVE-2022-43434 Jenkins NeuVector Vulnerability Scanner Plugin 1.20 and earlier disables Content-Security-Policy protection for user-generated content.
This can be dangerous if a user uploads their own content to a shared hosting environment, for example. Users can turn off the content security
Episode
00:00:00
00:00:00