CVE-2022-45535 - How a Simple SQL Injection in AeroCMS v..1’s Admin Panel Opens the Door
AeroCMS is a lightweight, open-source content management system. Like many CMS platforms, it has an admin backend that lets you manage posts, users, and categories.
CVE-2022-39066 - SQL Injection in ZTE MF286R—How Attackers Can Run Code on Your Router
---
Introduction
CVE-2022-39066 is a critical SQL injection vulnerability that affects ZTE MF286R 4G home routers. This flaw allows attackers to run their own database
CVE-2022-42098 KLiK SocialMediaWebsite version v1.0.1 is vulnerable to SQL Injection via the profile.php.
A user with the “admin” privilege can inject SQL queries by setting the “name” field to “' or '=' or '%22 or '
CVE-2022-38649 - OS Command Injection Vulnerability in Apache Airflow Pinot Provider – Explained
In August 2022, a critical security issue was discovered in the Apache Airflow Pinot Provider. Labeled CVE-2022-38649, this vulnerability exposes Apache Airflow users to OS
CVE-2022-37931 NetBatch-Plus has a vulnerability, and HPE has provided a workaround and fix.
Customers are encouraged to review their NetBatch-Plus installations and upgrade to the latest software, if necessary.
NetBatch-Plus may accept malformed packets that could be exploited
Episode
00:00:00
00:00:00