CVE-2022-2957 A critical vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script. The file /mkshop/Men/profile.php is affected.
Another critical vulnerability has been found in the virtual shopping cart software SourceCodester Simple and Nice Shopping Cart Script. The vulnerability is located in the
CVE-2022-37178 An issue was discovered in 72crm 9.0
A user can inject any SQL code into the view function to run arbitrary SQL code on the database. For example, a hacker can inject
CVE-2022-37333 An injection vulnerability in Exment (PHP8, 7, and 2.5) allows remote attackers to inject arbitrary web
users.
The SQL injection flaw was discovered by Tavis Ormandy of Google. The problem resides in the Exment's integration with the Laravel ecosystem. This
CVE-2022-38463 ServiceNow through San Diego Patch 4b and Patch 6 allows reflected XSS in the logout functionality.
Logging out from one customer profile will reflect on any other customer profile. This can lead to a situation where a malicious customer could potentially
CVE-2022-37223 JFinal CMS 5.1.0 is vulnerable to SQL Injection via /jfinal_cms/system/role/list.
A user can gain access to another user’s data by injecting his own credentials. Multiple parameters can be used to exploit the vulnerability. For
Episode
00:00:00
00:00:00