CVE-2022-24682 - Zimbra Calendar XSS Vulnerability—How Attackers Exploited HTML Injection in the Wild
If you’re using Zimbra Collaboration Suite (ZCS), especially versions 8.8.x before 8.8.15 patch 30 (update 1), you need to know
CVE-2022-21702 - How XSS in Grafana Data Sources and Plugins Puts Your Monitoring Data at Risk
Grafana is an open-source platform that powers dashboards, analytics, and monitoring for countless organizations. But as with any software, vulnerabilities do appear—and in 2022,
CVE-2022-21241 - Understanding the CSV+ XSS Vulnerability — How Hackers Can Execute Arbitrary Scripts via Crafted CSV Files
---
CVE-2022-21241 highlights a critical cross-site scripting (XSS) vulnerability in the popular CSV+ tool (versions before .8.1). In simple words, attackers could upload or
CVE-2022-0502 - Stored Cross-site Scripting (XSS) in remdex/livehelperchat Prior to 3.93
A critical stored Cross-site Scripting (XSS) vulnerability, tracked as CVE-2022-0502, was discovered in the popular PHP-based live chat software remdex/livehelperchat before version 3.93.
CVE-2022-0437 - DOM-Based Cross-site Scripting (XSS) in NPM Karma (Before v6.3.14)
On February 8, 2022, a vulnerability was publicly disclosed affecting Karma, a widely used JavaScript test runner for Node.js. The issue, identified as CVE-2022-0437,
Episode
00:00:00
00:00:00