CNA Recent

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Type

The moderation team is working with the threat intelligence team to categorize software that is affected by security vulnerabilities. This helps to illustrate the assignment of these categories to determine the most affected software types.

Vendor

Identifying all affected vendors is a good starting point for an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

Product

Linux Kernel44
Axiomatic Bento422
SourceCodester Online Tours & Travels Management S ...13
SourceCodester Human Resource Management System12
SourceCodester Gym Management System12

Grouping vulnerabilities by products helps to get an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

IDVulnerabilityScopeResponsibleCreatedUpdatedCVEStatus
220101BDCOM 1704-WGL Backup File param.file.tgz information disclosureVulDBVulDB02/03/202302/03/2023CVE-2023-0659
accepted
220061MobileDetect Example session_example.php initLayoutType cross site scriptingVulDBVulDB02/02/202302/02/2023CVE-2018-25080
accepted
220060NREL api-umbrella-web Flash Message cross site scriptingVulDBVulDB02/02/202302/02/2023CVE-2015-10072
accepted
220059OnShift TurboGears HTTP Header controllers.py response splittingVulDBVulDB02/02/202302/02/2023CVE-2019-25101
accepted
220058Segmentio is-url index.js redosVulDBVulDB02/02/202302/02/2023CVE-2018-25079
accepted
220057fanzila WebFinance save_contact.php sql injectionVulDBVulDB02/02/202302/02/2023CVE-2013-10018
accepted
220056fanzila WebFinance save_roles.php sql injectionVulDBVulDB02/02/202302/02/2023CVE-2013-10017
accepted
220055fanzila WebFinance save_taxes.php sql injectionVulDBVulDB02/02/202302/02/2023CVE-2013-10016
accepted
220054fanzila WebFinance save_Contract_Signer_Role.php sql injectionVulDBVulDB02/02/202302/02/2023CVE-2013-10015
accepted
220053Multilaser RE057/RE170 Backup File param.file.tgz information disclosureVulDBVulDB02/02/202302/02/2023CVE-2023-0658
accepted
220038FastCMS Template Management unrestricted uploadVulDBVulDB02/02/202302/02/2023CVE-2023-0651
accepted
220037YAFNET Signature cross site scriptingVulDBVulDB02/02/202302/02/2023CVE-2023-0650
accepted
220036dst-admin sendBroadcast command injectionVulDBVulDB02/02/202302/02/2023CVE-2023-0649
accepted
220035dst-admin masterConsole command injectionVulDBVulDB02/02/202302/02/2023CVE-2023-0648
accepted
220034dst-admin kickPlayer command injectionVulDBVulDB02/02/202302/02/2023CVE-2023-0647
accepted
220033dst-admin cavesConsole command injectionVulDBVulDB02/02/202302/02/2023CVE-2023-0646
accepted
220021PHPGurukul Employee Leaves Management System changepassword.php weak passwordVulDBVulDB02/02/202302/02/2023CVE-2023-0641
accepted
220020TRENDnet TEW-652BRP Web Interface ping.ccp command injectionVulDBVulDB02/02/202302/02/2023CVE-2023-0640
accepted
220019TRENDnet TEW-652BRP Web Management Interface get_set.ccp cross site scriptingVulDBVulDB02/02/202302/02/2023CVE-2023-0639
accepted
220018TRENDnet TEW-811DRU Web Interface command injectionVulDBVulDB02/02/202302/02/2023CVE-2023-0638
accepted
220017TRENDnet TEW-811DRU Web Management Interface wan.asp memory corruptionVulDBVulDB02/02/202302/02/2023CVE-2023-0637
accepted
219958TRENDnet TEW-652BRP Web Service cfg_op.ccp memory corruptionVulDBVulDB02/01/202302/01/2023CVE-2023-0618
accepted
219957TRENDNet TEW-811DRU httpd guestnetwork.asp buffer overflowVulDBVulDB02/01/202302/01/2023CVE-2023-0617
accepted
219937TRENDnet TEW-811DRU httpd security.asp memory corruptionVulDBVulDB02/01/202302/01/2023CVE-2023-0613
accepted
219936TRENDnet TEW-811DRU httpd basic.asp buffer overflowVulDBVulDB02/01/202302/01/2023CVE-2023-0612
accepted
219935TRENDnet TEW-652BRP Web Management Interface get_set.ccp command injectionVulDBVulDB02/01/202302/01/2023CVE-2023-0611
accepted
219765SiteFusion Application Server Extension getextension.php path traversalVulDBVulDB01/30/202301/30/2023CVE-2016-15023
accepted
219730SourceCodester Canteen Management System Add Customer createcustomer.php cross site scriptingVulDBVulDB01/29/202301/29/2023CVE-2023-0571
accepted
219729SourceCodester Online Tours & Travels Management System payment_operation.php sql injectionVulDBVulDB01/29/202301/29/2023CVE-2023-0570
accepted
219717PHPGurukul Bank Locker Management System Assign Locker add-locker-form.php cross site scriptingVulDBVulDB01/28/202301/28/2023CVE-2023-0563
accepted
219716PHPGurukul Bank Locker Management System Login index.php sql injectionVulDBVulDB01/28/202301/29/2023CVE-2023-0562
accepted
219715mosbth cimage check_system.php cross site scriptingVulDBVulDB01/28/202301/28/2023CVE-2016-15022
accepted
219714capnsquarepants wordcraft tag.php cross site scriptingVulDBVulDB01/28/202301/28/2023CVE-2009-10003
accepted
219702SourceCodester Online Tours & Travels Management System s.php sql injectionVulDBVulDB01/28/202301/28/2023CVE-2023-0561
accepted
219701SourceCodester Online Tours & Travels Management System practice_pdf.php sql injectionVulDBVulDB01/28/202301/28/2023CVE-2023-0560
accepted
219676NYUCCL psiTurk experiment.py special elements used in a template engineVulDBVulDB01/27/202301/27/2023CVE-2021-4315
accepted
219665YAFNET Private Message PostPrivateMessage cross site scriptingVulDBVulDB01/27/202302/03/2023CVE-2023-0549
accepted
219603SourceCodester Online Tours & Travels Management System expense_report.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0534
accepted
219602SourceCodester Online Tours & Travels Management System expense_report.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0533
accepted
219601SourceCodester Online Tours & Travels Management System disapprove_user.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0532
accepted
219600SourceCodester Online Tours & Travels Management System booking_report.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0531
accepted
219599SourceCodester Online Tours & Travels Management System approve_user.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0530
accepted
219598SourceCodester Online Tours & Travels Management System add_payment.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0529
accepted
219597SourceCodester Online Tours & Travels Management System abc.php sql injectionVulDBVulDB01/27/202301/27/2023CVE-2023-0528
accepted
219596PHPGurukul Online Security Guards Hiring System search-request.php cross site scriptingVulDBVulDB01/27/202301/28/2023CVE-2023-0527
accepted
219336SourceCodester Online Tours & Travels Management System Parameter forget_password.php sql injectionVulDBVulDB01/26/202301/26/2023CVE-2023-0516
accepted
219335SourceCodester Online Tours & Travels Management System Parameter forget_password.php sql injectionVulDBVulDB01/26/202301/26/2023CVE-2023-0515
accepted
219334isoftforce Dreamer CMS cross site scriptingVulDBVulDB01/26/202301/26/2023CVE-2023-0513
accepted
218951gitter-badger ezpublish-modern-legacy forgotpassword.php password recoveryVulDBVulDB01/18/202301/18/2023CVE-2015-10071
accepted
218911Anant Labs google-enterprise-connector-dctm sql injectionVulDBVulDB01/18/202301/18/2023CVE-2014-125083
accepted

1183 more entries are not shown

Do you know our Splunk app?

Download it now for free!