CVE-2022-28764 - How a Zoom Meeting Database Bug Could Leak Your Chats (With Exploit Example)
*Published: June 2024*
What Is CVE-2022-28764?
In late 2022, Zoom patched a serious vulnerability tracked as CVE-2022-28764. This bug lived in Zoom Client for Meetings
CVE-2022-34329 - How Attackers Can Steal Sensitive Data from IBM CICS TX 11.7 HTTP Headers
In today's connected world, even the tiniest software slip can open the door to cybercriminals. IBM CICS Transaction Server (TX) 11.7 is
CVE-2022-45136 Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker controls the JDBC URL or causes the underlying database server to return malicious data.
Apache Jena TDB is a drop-in replacement for Apache Jena SDB and can be used in the same applications without any changes required. The Apache
CVE-2022-43288 The v3.2.1 version of the Rukovoditel software contains a SQL injection vulnerability.
A user with the ability to create account can inject arbitrary SQL commands that will be executed once the order_by function is called.
Rukovoditel
CVE-2022-3538 The Webmaster Tools Verification plugin through 1.2 doesn't have authorisation and CSRF, allowing unauthenticated users to disable arbitrary plugins.
This could potentially allow an attacker to disable arbitrary plugins, leading to a plugin breakage and Site deactivation. We are actively investigating this issue, and
Episode
00:00:00
00:00:00