CVE-2022-3966 A critical vulnerability was found in Ultimate Member Plugin up to 2.5.0. This vulnerability affects the function load_template of the file includes/core/class-shortcodes.php of the Template Handler component.
The second critical vulnerability was discovered in the version 2.5.0 of Ultimate Member Plugin. A cross-site scripting issue was found in the file
CVE-2022-3968 A vulnerability in emlog has been found and is being labelled as a problem. The manipulation of the argument tag leads to cross site scripting.
This finding has been verified with emlog version 1.6.1. emlog is a CMS developed using the Django framework. It is currently maintained by
CVE-2022-3941 Activity Log Plugin has a critical vulnerability affecting unknown code.
There is no known fix for the problem at the moment. The only way to protect yourself from this vulnerability is to disable the plugin
CVE-2022-38122 UPSMON PRO transmits sensitive data in cleartext over HTTP protocol
Unrestricted remote administrative access to a vulnerable device could be accomplished through ARP poisoning, ARP cache poisoning, ARP spoofing, MITM attack, etc. An attacker could
CVE-2022-44590 - Authenticated Stored XSS in WordPress Simple Video Embedder ≤ 2.2 – Exploit Details & How It Works
If your WordPress site uses the Simple Video Embedder plugin by James Lao, read on: A vulnerability, logged as CVE-2022-44590, could let attackers inject malicious
Episode
00:00:00
00:00:00