CVE-2022-3844 - Remotely Exploitable XSS in Webmin 2.001 (xterm/index.cgi) — Explained and Exploited
On October 8, 2022, security researchers discovered a problematic vulnerability in Webmin, a popular open-source server management tool. The flaw, registered as CVE-2022-3844 (internal reference:
CVE-2020-36608 - Tribal Systems Zenario CMS Vulnerability: Cross Site Scripting in Error Log Module's admin_organizer.js File
A problematic vulnerability, CVE-2020-36608, was recently discovered in Tribal Systems' Zenario Content Management System (CMS). This vulnerability is classified as risky and affects the
CVE-2022-40840 - XSS Vulnerability in ndk design NdkAdvancedCustomizationFields 3.5. via createPdf.php
In September 2022, a critical Cross-Site Scripting (XSS) vulnerability was discovered in the plugin NdkAdvancedCustomizationFields version 3.5., developed by ndk design. This vulnerability is
CVE-2022-38373 - Exploiting XSS in FortiDeceptor Management Interface – A Deep Dive
FortiDeceptor is a well-known deception-based security solution from Fortinet. But in 2022, a significant web application vulnerability was discovered that highlighted a weakness in how
CVE-2022-43982 - How XSS Sneaked Into Apache Airflow’s “Trigger DAG with Config” Screen
With Apache Airflow powering complex data pipelines for thousands of companies, any security flaw in it can ripple across the data world. CVE-2022-43982 is a
Episode
00:00:00
00:00:00