CVE-2022-41538 The Wedding Planner v1.0 had an arbitrary file upload vulnerability in the component /Wedding-Management-PHP/admin/photos_add.php.
This issue can be exploited by uploading a file with a malicious extension. An attacker can upload a PHP file with a file path like
CVE-2022-41482 An exploit in the Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was found that had a buffer overflow.
An attacker can exploit this vulnerability by sending a specially crafted request to the 0x47c5dc function. It is advised to update Tenda AC1200 US_AC6V2.
CVE-2022-35080 SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_load at /lib/png.c
The issue was resolved by upgrading to version 1.6.19, which was included in the latest release of 1.6.19.0.
An attacker
CVE-2022-41406 An arbitrary file upload vulnerability in the /admin/admin_pic.php component of Church Management System v1.0 allows attackers to execute arbitrary code.
This issue affects the v1.0 version of the CMS and can be exploited by uploading a malicious PHP file via the /admin/admin_pic.
CVE-2022-41175 An Enhanced Metafile file can be manipulated to trigger a Remote Code Execution.
An attacker can create EMF files by using a 3rd-party 3D printing tool. In order to make it more likely that a victim will open
Episode
00:00:00
00:00:00