CVE-2022-44004 An issue was discovered in BACKCLICK Professional 5.9.63
The attacker can also view the email address, first and last names, and the mobile phone number of the target by completing the password-reset process.
CVE-2022-44008 An issue was discovered in BACKCLICK Professional 5.9.63
This can lead to the disclosure of private information and data manipulation.
BACKCLICK Professional 5.9.63 is vulnerable to SQL injection. Attackers can inject
CVE-2022-43135 The v1.0 of the Diagnostic Lab Management System was discovered to contain a SQL injection vulnerability via the username parameter.
Reportedly, a low severity issue where an attacker can create a new user with the ‘Create’ privilege via the username parameter at /admin/settings.
The
CVE-2022-44073 Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via svg,Users & Contacts.
XSS is a class of security vulnerabilities that enable an attacker to inject code into a Web application’s output that is not intended to
CVE-2022-43256 The SeaCms v12.6 was found to have a SQL injection vulnerability.
An attacker can exploit this issue to execute arbitrary SQL commands in the context of the affected site. A user with access to the root
Episode
00:00:00
00:00:00