CVE-2022-40405 The online community platform v4.1.2 was found to have a SQL injection vulnerability.
By sending a request with the parameter ‘offset=XX’, a remote attacker can inject SQL statements that will be executed against the database.
An attacker
CVE-2022-43688 Concrete CMS 8.5.10 and 9.0.0 to 9.1.2 is vulnerable to Stored XSS because the Microsoft application tile color is not sanitized.
This issue does not affect versions of Concrete CMS below 8.5.10 or above 8.5.10 if the Microsoft application tile color is
CVE-2022-28764 - How a Zoom Meeting Database Bug Could Leak Your Chats (With Exploit Example)
*Published: June 2024*
What Is CVE-2022-28764?
In late 2022, Zoom patched a serious vulnerability tracked as CVE-2022-28764. This bug lived in Zoom Client for Meetings
CVE-2022-34329 - How Attackers Can Steal Sensitive Data from IBM CICS TX 11.7 HTTP Headers
In today's connected world, even the tiniest software slip can open the door to cybercriminals. IBM CICS Transaction Server (TX) 11.7 is
CVE-2022-45136 Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker controls the JDBC URL or causes the underlying database server to return malicious data.
Apache Jena TDB is a drop-in replacement for Apache Jena SDB and can be used in the same applications without any changes required. The Apache
Episode
00:00:00
00:00:00