CVE-2022-36314 When opening a Windows shortcut, an attacker could supply a remote path that leads to unexpected network requests. This bug only affects Firefox for Windows.
It affects Windows Server operating systems that are running Windows Server 2008 or later, but it might not occur on systems that are running Windows
CVE-2022-34318 IBM CICS TX 11.1 could allow a remote attacker to hijack the clicking action of the victim
X-Force ID: 229462. CVE-2018-1488 Insecure data storage in IBM DB2 for Linux, UNIX, and Windows and other products could allow a remote attacker to obtain
CVE-2022-3865 The WP User Merger plugin before 1.5.3 does not properly sanitise and escape a parameter, which allows users with a role as low as admin to inject SQL queries.
This can be exploited by attackers to run arbitrary SQL queries as high privileged users. WP user merger is used to reduce the amount of
CVE-2022-44120 dedecmdv6 6.1.9 is vulnerable to SQL Injection. via sys_sql_query.php.
An attacker can inject SQL queries in the application in order to exploit vulnerabilities in the database or gain unauthorized access.
It is recommended to
CVE-2022-45278 Jizhicms v2.3.3 contains a SQL injection vulnerability.
If the user was able to inject data into the get_fields.html file, an attacker could exploit the SQL injection vulnerability and potentially acquire
Episode
00:00:00
00:00:00