CVE-2022-40775 An issue was discovered in Bento4 through 1.6.0-639
With certain table types, Bento4 will attempt to atomically update a record's data with a call to AP4_StszAtom::SetData(), but if there
CVE-2022-40766 An attack in Campus Omni CMS 10.2.4 allows SQL injection via a ' or '1=1--' substring.
The injection occurs in the 'Users' page, in the 'Create' field. The following code can be used to exploit this vulnerability:
CVE-2022-40768 The stex_queuecommand_lck function lacks a memset for the PASSTHRU_CMD case, which allows local users to obtain sensitive information from kernel memory.
CVE-2018-14633: The further_check_cred function in the Redis key value cache (redis_key_value_cache) in Redis on Red Hat Enterprise Linux (RHEL) 7
CVE-2022-40300 - Deep Dive Into Critical SQL Injection in Zoho ManageEngine Products
In the world of enterprise IT, password management is a big deal. Many companies rely on Zoho’s ManageEngine lineup—including Password Manager Pro, PAM360,
CVE-2022-37251 Craft CMS 4.2.0.1 is vulnerable to Cross Site Scripting (XSS) via Drafts.
When a user copies/pastes a message in Drafts, the message is executed in the site context (i.e. the context of the Drafts application)
Episode
00:00:00
00:00:00