CVE-2022-30676 Adobes InDesign versions 16.4.2 and earlier are affected by a memory disclosure vulnerability that could be exploited to bypass ASLR.
In addition, it is important to note that InDesign is not directly affected by this issue. However, the updated versions of InDesign received as part
CVE-2022-28854 Adobes InDesign versions 16.4.2 and earlier are affected by a memory disclosure vulnerability that could be exploited to bypass ASLR.
In addition, it is important to note that InDesign is not directly affected by this issue. However, the updated versions of InDesign received as part
CVE-2022-38808 ywoa v6.1 is vulnerable to SQL Injection via backend/oa/visual/exportExcel.do interface.
By sending a specially crafted request, a remote attacker may be able to gain access to the system and possibly run arbitrary SQL queries.
There
CVE-2022-2575 The WBW Currency Switcher for WooCommerce plugin before 1.6.6 has settings that could allow high privilege users to perform Stored Cross-Site Scripting attacks.
WP-Climates plugin before 3.2.2 for WP, due to lack of the fix for CVE-2017-8905, is still vulnerable to SQL injection when exporting certain
CVE-2022-2798 The Affiliates Manager plugin before 2.9.14 was not secure, and could be exploited to perform CSV injection attacks.
This issue happens due to insufficient validation of user-supplied data. Also Affiliates Manager does not properly sanitise the affiliate's data, which could allow
Episode
00:00:00
00:00:00