CVE-2022-33147 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send a specially-crafted HTTP request to the aVideoEncoder endpoint to exploit this vulnerability. This vulnerability can be exploited by hackers to inject
CVE-2022-25942 An OOB read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially crafted GIF file can lead to code execution.
HDF5 is a high performance data storage format used in a wide-range of fields such as scientific research, genomics, and big data analytics. HDF5 is
CVE-2022-29468 CSRF vulnerability in WWBN AVideo 11.6 and dev master commit 3f7c0364 allows HTTP requests to increase privileges.
To exploit this vulnerability, an attacker must trick a user into clicking a crafted link. For example, attackers can host a website on a server
CVE-2022-2842 A critical vulnerability has been found in SourceCodester Gym Management System. The manipulation of the user_email argument leads to sql injection.
According to the details, this critical vulnerability is caused by a sql injection. It is possible to exploit this vulnerability remotely. An attacker can inject
CVE-2022-2841 CrowdStrike Falcon Uninstallation Handler has a vulnerability that can be exploited to circumvent the security feature.
The exploitation of this flaw enables an attacker to install additional programs or modify existing ones. In some cases, the adversary can execute malicious code
Episode
00:00:00
00:00:00