CVE-2022-26088 An issue was found in BMC Remedy 22.1 with Email-based Incident Forwarding. Remote users can inject HTML into the Activity Log by placing it in the To: field.
Insecure Direct Object References (IDOR) are possible due to the lack of sanitization in the To field. A remote attacker may leverage this issue to
CVE-2022-44727 - SQL Injection in PrestaShop “EU Cookie Law GDPR” Module (Banner + Blocker) via Cookie – Explained
If you run an e-commerce site with PrestaShop, you probably care about GDPR compliance and use a cookie consent banner. Many turn to the “EU
CVE-2022-38122 UPSMON PRO transmits sensitive data in cleartext over HTTP protocol
Unrestricted remote administrative access to a vulnerable device could be accomplished through ARP poisoning, ARP cache poisoning, ARP spoofing, MITM attack, etc. An attacker could
CVE-2022-38015 Windows Hyper-V Denial of Service Vulnerability.
It is a critical issue because it can be exploited by an attacker with the help of a malicious software to create denial of service
CVE-2022-43058 - SQL Injection in Online Diagnostic Lab Management System v1. – Technical Analysis and Exploit Guide
In October 2022, a critical SQL injection vulnerability was identified in the Online Diagnostic Lab Management System (ODLMS) v1.. Tracked as CVE-2022-43058, this vulnerability allows
Episode
00:00:00
00:00:00