CVE-2022-40098 The ID of the expense update system was found to be vulnerable to a SQL injection attack.
If exploited, this would allow an attacker to execute arbitrary SQL commands against the application.
On July 14th 2018, it was discovered that The official
CVE-2022-40099 The id parameter of the TOURES Management System v1.0 was found to be vulnerable to SQL injection.
An attacker can exploit this vulnerability to inject arbitrary SQL queries into the affected system and obtain sensitive information or even execute arbitrary code.
An
CVE-2022-30003 The 1.0 version of Codester Online Market Place is vulnerable to XSS, allowing attackers to register as a seller and create products with XSS payloads in the Product Title and Short Description fields.
In addition, the CodeNSCodester 1.0 site was tested for a variety of security issues - including Insecure Direct Object References, Incorrect Access Control ( allowing
CVE-2022-3043 Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker to exploit heap corruption if they convinced a user to engage in specific UI interactions.
It was reported that this issue did not occur in the staging environment due to changes implemented since the last release. A user had to
CVE-2022-3199 An attack in Frames in Google Chrome prior to version 105.0.5195.125 could lead to heap corruption.
CVE-2018-6038 was discovered in WebRTC. A remote attacker could exploit weaknesses to conduct click fraud or SSRF.
To exploit these issues, an attacker would deliver
Episode
00:00:00
00:00:00