CVE-2022-30690 An XSS vulnerability exists in the image403 functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to arbitrary JavaScript execution.
As of November 2018, this issue is still not fixed. The update for this issue is still in testing. Visit this page to know more
CVE-2022-34652 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send an HTTP request to the following URL to exploit this vulnerability: To exploit this vulnerability, an attacker needs to host a
CVE-2022-33149 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send an HTTP request to the objectYPT endpoint to inject SQL. This injection can lead to a SQL injection, which can be
CVE-2022-2842 A critical vulnerability has been found in SourceCodester Gym Management System. The manipulation of the user_email argument leads to sql injection.
According to the details, this critical vulnerability is caused by a sql injection. It is possible to exploit this vulnerability remotely. An attacker can inject
CVE-2022-36198
A stored XSS vulnerability was detected on the buspassms/admin/view-enquiry.php script that is prone to hacking when user input is processed by the
Episode
00:00:00
00:00:00