CVE-2022-35058 A commit 617837b of the OFTC commit bot was found to have a heap buffer overflow.
This issue is resolved in version 2018.3.1p1, which was released on March 6, 2018. An attacker could leverage these vulnerabilities to execute arbitrary
CVE-2022-3496 A critical vulnerability was found in SourceCodester HRMS 1.0 and affects the Admin Panel component.
The affected component can be exploited by remote attackers via a request sent to the targeted server. The hacker doesn’t require authentication to exploit
CVE-2022-3495 A critical vulnerability has been found in SourceCodester Simple Online Public Access Catalog 1.0 and affected code of the file /opac/Actions.php?a=login. It compromises the Admin Login component.
The security risk of manipulating the username/password argument via sql injection in SourceCodester Simple Online Public Access Catalog 1.0 is estimated as critical.
CVE-2022-41535 The Open Source SACCO Management System v1.0 has a SQL injection vulnerability via the id parameter.
The code of this vulnerable management endpoint is as follows.
/sacco_shield/manage_borrower.php?id=1 The id parameter is used to assign an
CVE-2022-41536 The Open Source SACCO Management System v1.0 had a SQL injection vulnerability where id was used as the parameter.
A hacker may inject arbitrary SQL queries that can compromise the integrity of the management system. In addition, the source code of the management system
Episode
00:00:00
00:00:00