|
Critical
|
6 Dec 2022 |
6 Dec 2022 |
CPAI-2022-0977
|
|
CVE-2022-30808
|
EliteCMS Remote Code Execution (CVE-2022-30808)
|
|
Medium
|
6 Dec 2022 |
6 Dec 2022 |
CPAI-2018-2145
|
|
CVE-2018-16833
|
Zoho ManageEngine Desktop Central Cross-site Scripting (CVE-2018-16833)
|
|
Critical
|
17 Nov 2022 |
6 Dec 2022 |
CPAI-2022-0860
|
|
CVE-2022-26289
CVE-2022-26290
CVE-2022-27078
CVE-2022-27079
CVE-2022-27080
CVE-2022-27081
CVE-2022-27082
CVE-2022-27083
|
Tenda M3 Command Injection (CVE-2022-26289; CVE-2022-26290; CVE-2022-27078; CVE-2022-27079; CVE-2022-27080; CVE-2022-27081; CVE-2022-27082; CVE-2022-27083)
|
|
High
|
5 Dec 2022 |
5 Dec 2022 |
CPAI-2021-1452
|
|
CVE-2021-2391
|
Oracle Fusion Middleware Business Intelligence Remote Code Execution (CVE-2021-2391)
|
|
Critical
|
5 Dec 2022 |
5 Dec 2022 |
CPAI-2022-1008
|
|
CVE-2022-38555
|
Linksys E1200 Buffer Overflow (CVE-2022-38555)
|
|
High
|
5 Dec 2022 |
5 Dec 2022 |
CPAI-2022-0994
|
|
CVE-2022-25048
|
Control WebPanel Command Injection (CVE-2022-25048)
|
|
High
|
5 Dec 2022 |
5 Dec 2022 |
CPAI-2022-0960
|
|
CVE-2022-36309
|
Airspan AirVelocity 1500 Command Injection (CVE-2022-36309)
|
|
Critical
|
5 Dec 2022 |
5 Dec 2022 |
CPAI-2021-1319
|
|
CVE-2021-25216
|
ISC BIND Integer Overflow (CVE-2021-25216)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-1009
|
|
CVE-2022-37159
|
Claroline Arbitrary File Upload (CVE-2022-37159)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-1003
|
|
CVE-2022-1556
|
WordPress StaffList Plugin SQL Injection (CVE-2022-1556)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-1000
|
|
CVE-2022-23357
|
MoziloCMS Directory Traversal (CVE-2022-23357)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0997
|
|
CVE-2022-29660
|
CSCMS Music Portal System SQL Injection (CVE-2022-29660)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0996
|
|
CVE-2022-23881
|
ZZZCMS Command Injection (CVE-2022-23881)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0993
|
|
CVE-2022-24218
|
eliteCMS Arbitrary File Deletion (CVE-2022-24218)
|
|
High
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0990
|
|
CVE-2022-26965
|
Pluck CMS Remote Code Execution (CVE-2022-26965)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0976
|
|
CVE-2022-28127
|
Robustel R1510 Arbitrary File Deletion (CVE-2022-28127)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0975
|
|
CVE-2022-27984
CVE-2022-27985
|
CuppaCMS SQL Injection (CVE-2022-27984; CVE-2022-27985)
|
|
High
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0948
|
|
CVE-2022-34753
|
SpaceLogic C-Bus Home Controller Command Injection (CVE-2022-34753)
|
|
Critical
|
28 Nov 2022 |
4 Dec 2022 |
CPAI-2022-0946
|
|
CVE-2022-35619
CVE-2022-35620
|
D-Link DIR-818LW Command Injection (CVE-2022-35619; CVE-2022-35620)
|
|
Critical
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0940
|
|
CVE-2022-28373
CVE-2022-28374
CVE-2022-28375
|
Verizon LVSKIHP Command Injection (CVE-2022-28373; CVE-2022-28374; CVE-2022-28375)
|
|
High
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0936
|
|
CVE-2022-25766
|
Git Ungit Package Command Injection (CVE-2022-25766)
|
|
High
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2022-0889
|
|
CVE-2022-30023
|
Tenda HG9 Command Injection (CVE-2022-30023)
|
|
Critical
|
20 Nov 2022 |
4 Dec 2022 |
CPAI-2022-0864
|
|
CVE-2022-26206
CVE-2022-26207
CVE-2022-26208
CVE-2022-26209
CVE-2022-26210
CVE-2022-26211
CVE-2022-26212
CVE-2022-26214
CVE-2022-27003
CVE-2022-27004
CVE-2022-27005
CVE-2022-28935
|
TOTOLINK Routers Command Injection (CVE-2022-26206; CVE-2022-26207; CVE-2022-26208; CVE-2022-26209; CVE-2022-26210; CVE-2022-26211; CVE-2022-26212; CVE-2022-26214; CVE-2022-27003; CVE-2022-27004; CVE-2022-27005; CVE-2022-28935)
|
|
Critical
|
3 Nov 2022 |
4 Dec 2022 |
CPAI-2022-0746
|
|
CVE-2022-28895
CVE-2022-28896
CVE-2022-28901
|
D-Link DIR882 Command Injection (CVE-2022-28895; CVE-2022-28896; CVE-2022-28901)
|
|
Medium
|
4 Dec 2022 |
4 Dec 2022 |
CPAI-2021-1320
|
|
CVE-2021-21630
|
Jenkins Extra Columns Plugin Cross Site Scripting (CVE-2021-21630)
|
|
Medium
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2021-1436
|
|
CVE-2021-22238
|
GitLab Community and Enterprise Edition Cross-Site Scripting (CVE-2021-22238)
|
|
Critical
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-1001
|
|
CVE-2022-31788
|
IdeaLMS SQL Injection (CVE-2022-31788)
|
|
Medium
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2021-1418
|
|
CVE-2021-43813
|
Grafana Labs Directory Traversal (CVE-2021-43813)
|
|
High
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2021-1417
|
|
CVE-2021-43405
|
FusionPBX Fax Server Command Injection (CVE-2021-43405)
|
|
High
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-0973
|
|
CVE-2022-36633
|
Teleport Command Injection (CVE-2022-36633)
|
|
Critical
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-0971
|
|
CVE-2022-29329
|
D-Link DAP-1330 Heap Overflow (CVE-2022-29329)
|
|
Critical
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-0947
|
|
CVE-2022-33312
CVE-2022-33313
CVE-2022-33314
CVE-2022-33325
CVE-2022-33326
CVE-2022-33327
CVE-2022-33328
CVE-2022-33329
|
Robustel R1510 Command Injection (CVE-2022-33312; CVE-2022-33313; CVE-2022-33314; CVE-2022-33325; CVE-2022-33326; CVE-2022-33327; CVE-2022-33328; CVE-2022-33329)
|
|
High
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-0934
|
|
CVE-2022-36667
|
Garage Management System Arbitrary File Upload (CVE-2022-36667)
|
|
High
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-0921
|
|
CVE-2022-26780
CVE-2022-26781
CVE-2022-26782
|
InHand Networks InRouter302 Buffer Overflow (CVE-2022-26780; CVE-2022-26781; CVE-2022-26782)
|
|
High
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2020-3613
|
|
CVE-2020-1421
|
Microsoft Windows Remote Code Execution (CVE-2020-1421)
|
|
Medium
|
30 Nov 2022 |
30 Nov 2022 |
CPAI-2022-0743
|
|
CVE-2021-20167
CVE-2022-28379
|
Nginx Proxy Manager Cross-Site Scripting (CVE-2022-28379; CVE-2021-20167)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2021-1434
|
|
CVE-2021-22123
|
Fortinet FortiWeb Command Injection (CVE-2021-22123)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2021-1433
|
|
CVE-2021-22720
|
Schneider Electric C-Bus Toolkit Information Disclosure (CVE-2021-22720)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-1004
|
|
|
Schneider Electric C-Bus Toolkit File Upload (CVE-2021-22719)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2021-1432
|
|
CVE-2021-22717
|
Schneider Electric C-Bus Toolkit Directory Traversal (CVE-2021-22717)
|
|
Critical
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-0961
|
|
CVE-2022-32449
|
TOTOLINK EX300 Command Injection (CVE-2022-32449)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2016-1207
|
|
CVE-2016-6272
|
Epic MyChart XPATH Injection (CVE-2016-6272)
|
|
Critical
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-0935
|
|
CVE-2022-30887
|
Pharmacy Management System Arbitrary File Upload (CVE-2022-30887)
|
|
Critical
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-0933
|
|
CVE-2022-28573
|
D-Link DIR-823 Command Injection (CVE-2022-28573)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-0914
|
|
CVE-2022-30425
|
Tenda HG6 Command Injection (CVE-2022-30425)
|
|
Critical
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-0913
|
|
CVE-2022-37860
|
TP-Link M7350 Command Injection (CVE-2022-37860)
|
|
Critical
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2017-1535
|
|
CVE-2017-16597
|
NetGain Systems Enterprise Manager Directory Traversal (CVE-2017-16597)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2022-0783
|
|
CVE-2022-0661
|
WordPress Ad Injection Plugin Remote Code Execution (CVE-2022-0661)
|
|
Critical
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2019-2676
|
|
CVE-2019-9203
|
Nagios IM Authentication Bypass (CVE-2019-9203)
|
|
High
|
29 Nov 2022 |
29 Nov 2022 |
CPAI-2021-1291
|
|
CVE-2021-2400
|
Oracle BI Publisher XML External Entity Injection (CVE-2021-2400)
|
Feedback