CVE-2022-39303 Rea6 is a moderation bot that is vulnerable to SQL injection. The issue has been patched by using Javas PreparedStatements.
This vulnerability allows SQL injection. An attacker can manipulate SQL queries. An attacker can inject malicious SQL code into the application. This issue has been
CVE-2022-41497 ClipperCMS 1.3.3 had an SSRF vulnerability via the pkg_url parameter.
SSRF is a vulnerability that occurs when a request is sent to a server-side component of a website and the component accepts the request without
CVE-2022-41495 ClipperCMS 1.3.3 had an SSRF vulnerability via the rss_url_news parameter.
SSRF is an attack on a website where an attacker is able to view or change data on a server without being blocked by the
CVE-2022-41403 The OpenCart 3.x Newsletter Custom Popup contains a SQL injection vulnerability.
An attacker can exploit this vulnerability to execute arbitrary SQL commands with the privileges of the application user. This can lead to the takeover of
CVE-2022-3464 An issue has been found in puppyCMS up to 5.1. The manipulation of the argument site_name leads to XSS.
What to do if your site is infected? You can follow these recommendations to protect your site and its users. End users should never input
Episode
00:00:00
00:00:00