CVE-2022-38104 Auth
The Change Admin Email and New Admin Email fields were vulnerable to SQL Injection and XSS injection methods. The Attack vector for this vulnerability was
CVE-2022-42189 Emlog Pro 1.6.0 plugins upload suffers from a remote code execution (RCE) vulnerability.
Emlog Pro is a web log analyser, which can be used to view, filter and search log data like Hacker News. Emlog Pro has a
CVE-2022-42199 v1.0 of Exam Reviewer Management System is vulnerable to CSRF attack.
If a remote attacker can trick an authenticated user into clicking a specially crafted link, they can execute commands against the management system. This can
CVE-2022-42201 Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload.
When creating new accounts and submitting existing ones, user passwords are not required to be validated and can be easily obtained. The information such as
CVE-2022-43017 OpenCATS v0.9.6 had a reflected XSS vulnerability in the indexFile component.
When uploading an index file via the openCAT admin panel, an attacker can inject malicious code into the file with relative ease. The XSS flaw
Episode
00:00:00
00:00:00