Risk 2022

Overview of the different risk assignments of different sources of the documented vulnerabilities.

ID	Title	VulDB	CVSS	Secunia	XForce	Nessus
206396	CodeIgniter Shield cross-site request forgery [CVE-2022-35943]	low	🔒	-	-	-
206395	Camilova activerecord-update-by-case Base sql injection	medium	🔒	-	-	-
206394	undici undici.request server-side request forgery	medium	🔒	-	-	-
206393	Gitea Issue access control [CVE-2022-38183]	medium	🔒	-	-	-
206392	OpenSearch Security Advanced Access Control unknown vulnerability	low	🔒	-	-	-
206391	BookWyrm Link redirect [CVE-2022-35953]	low	🔒	-	-	-
206390	Esri ArcReader File out-of-bounds [CVE-2021-29118]	low	🔒	-	-	-
206389	Esri ArcReader File use after free [CVE-2021-29117]	medium	🔒	-	-	-
206388	Esri ArcReader File out-of-bounds [CVE-2021-29112]	low	🔒	-	-	-
206387	loopback-connector-postgresql sql injection [CVE-2022-35942]	medium	🔒	-	-	-
206386	Google Chrome OS Audio Server out-of-bounds write [CVE-2022-2587]	medium	🔒	-	-	-
206385	Google Chrome PDF heap-based overflow [CVE-2022-2624]	medium	🔒	-	-	-
206384	Google Chrome Offline use after free [CVE-2022-2623]	medium	🔒	-	-	-
206383	Google Chrome Safe Browsing input validation [CVE-2022-2622]	medium	🔒	-	-	-
206382	Google Chrome Extensions use after free [CVE-2022-2621]	medium	🔒	-	-	-
206381	Google Chrome WebUI use after free [CVE-2022-2620]	medium	🔒	-	-	-
206380	Google Chrome Settings input validation [CVE-2022-2619]	medium	🔒	-	-	-
206379	Google Chrome Internals input validation [CVE-2022-2618]	medium	🔒	-	-	-
206378	Google Chrome Extensions API use after free [CVE-2022-2617]	medium	🔒	-	-	-
206377	Google Chrome Extensions API Remote Code Execution [CVE-2022-2616]	medium	🔒	-	-	-
206376	Google Chrome Cookie access control [CVE-2022-2615]	medium	🔒	-	-	-
206375	Google Chrome Sign-In Flow use after free [CVE-2022-2614]	medium	🔒	-	-	-
206374	Google Chrome Input use after free [CVE-2022-2613]	medium	🔒	-	-	-
206373	Google Chrome Keyboard Input information disclosure [CVE-2022-2612]	low	🔒	-	-	-
206372	Google Chrome Fullscreen API Privilege Escalation [CVE-2022-2611]	low	🔒	-	-	-
206371	Google Chrome Background Fetch access control [CVE-2022-2610]	medium	🔒	-	-	-
206370	Google Chrome Nearby Share use after free [CVE-2022-2609]	medium	🔒	-	-	-
206369	Google Chrome Overview Mode use after free [CVE-2022-2608]	medium	🔒	-	-	-
206368	Google Chrome Tab Strip use after free [CVE-2022-2607]	medium	🔒	-	-	-
206367	Google Chrome Managed Devices API use after free [CVE-2022-2606]	medium	🔒	-	-	-
206366	Google Chrome Dawn out-of-bounds [CVE-2022-2605]	low	🔒	-	-	-
206365	Google Chrome Safe Browsing use after free [CVE-2022-2604]	medium	🔒	-	-	-
206364	Google Chrome Omnibox use after free [CVE-2022-2603]	medium	🔒	-	-	-
206363	YugabyteDB LDAP Authentication config [CVE-2022-37397]	medium	🔒	-	-	-
206362	Google Android Settings access control [CVE-2022-20302]	low	🔒	-	-	-
206361	Google Android Settings permission [CVE-2022-20265]	low	🔒	-	-	-
206360	ForkCMS cross site scripting [CVE-2022-35590]	low	🔒	-	-	-
206359	ForkCMS cross site scripting [CVE-2022-35585]	low	🔒	-	-	-
206358	Synacor Zimbra Collaboration Suite cross site scripting [CVE-2022-37044]	low	🔒	-	-	-
206357	Google Android Core Utilities input validation [CVE-2022-20338]	medium	🔒	-	-	-
206356	Google Android Wifi Slice permission [CVE-2022-20335]	medium	🔒	-	-	-
206355	Google Android Framework improper restriction of rendered ui layers	low	🔒	-	-	-
206354	Google Android Wifi permission [CVE-2022-20329]	medium	🔒	-	-	-
206353	Google Android DreamServices Local Privilege Escalation [CVE-2022-20319]	low	🔒	-	-	-
206352	Google Android KeyChain permission [CVE-2022-20314]	medium	🔒	-	-	-
206351	Google Android Bluetooth out-of-bounds write [CVE-2022-20313]	medium	🔒	-	-	-
206350	Google Android Camera Provider HAL memory corruption [CVE-2022-20306]	medium	🔒	-	-	-
206349	Google Android Settings access control [CVE-2022-20297]	medium	🔒	-	-	-
206348	Google Android Settings access control [CVE-2022-20292]	medium	🔒	-	-	-
206347	Google Android Midi permission [CVE-2022-20290]	medium	🔒	-	-	-
206346	Google Android Connectivity access control [CVE-2022-20286]	medium	🔒	-	-	-
206345	Google Android AppWidget permission [CVE-2022-20282]	medium	🔒	-	-	-
206344	Google Android Core permission [CVE-2022-20281]	medium	🔒	-	-	-
206343	Google Android Keyguard permission [CVE-2022-20274]	medium	🔒	-	-	-
206342	Google Android PermissionController permission [CVE-2022-20271]	medium	🔒	-	-	-
206341	Google Android Bluetooth out-of-bounds write [CVE-2022-20269]	medium	🔒	-	-	-
206340	Google Android RestrictionsManager permission [CVE-2022-20268]	medium	🔒	-	-	-
206339	Google Android Bluetooth permission [CVE-2022-20267]	medium	🔒	-	-	-
206338	Google Android Companion permission [CVE-2022-20266]	medium	🔒	-	-	-
206337	Google Android Bluetooth improper authentication [CVE-2022-20257]	medium	🔒	-	-	-
206336	Google Android Audio HAL out-of-bounds write [CVE-2022-20256]	medium	🔒	-	-	-
206335	Google Android SettingsProvider permission [CVE-2022-20255]	medium	🔒	-	-	-
206334	Google Android Wi-Fi permission [CVE-2022-20254]	medium	🔒	-	-	-
206333	Fork cross site scripting [CVE-2022-35589]	low	🔒	-	-	-
206332	Fork cross site scripting [CVE-2022-35587]	low	🔒	-	-	-
206331	ThingsBoard Rule Engine cross site scripting [CVE-2021-42751]	low	🔒	-	-	-
206330	ThingsBoard Rule Engine cross site scripting [CVE-2021-42750]	low	🔒	-	-	-
206329	Neo4j APOC apoc.log.stream pathname traversal	medium	🔒	-	-	-
206328	Tenda W6 exeCommand command injection	medium	🔒	-	-	-
206327	Google Android PackageManager information disclosure [CVE-2022-20332]	low	🔒	-	-	-
206326	Google Android PackageManager information disclosure [CVE-2022-20328]	low	🔒	-	-	-
206325	Google Android Framework information disclosure [CVE-2022-20324]	low	🔒	-	-	-
206324	Google Android ActivityManager information disclosure [CVE-2022-20320]	low	🔒	-	-	-
206323	Google Android PackageInstaller information disclosure [CVE-2022-20318]	low	🔒	-	-	-
206322	Google Android ContentResolver information disclosure [CVE-2022-20316]	low	🔒	-	-	-
206321	Google Android PackageInstaller information disclosure [CVE-2022-20309]	low	🔒	-	-	-
206320	Google Android AlarmManagerService information disclosure [CVE-2022-20307]	low	🔒	-	-	-
206319	Google Android LauncherApps information disclosure [CVE-2022-20293]	low	🔒	-	-	-
206318	Google Android AppOpsService information disclosure [CVE-2022-20291]	low	🔒	-	-	-
206317	Google Android PackageInstaller information disclosure [CVE-2022-20289]	low	🔒	-	-	-
206316	Google Android AppSearchManagerService information disclosure	low	🔒	-	-	-
206315	Google Android AppSearchManagerService information disclosure	low	🔒	-	-	-
206314	Google Android PackageManager information disclosure [CVE-2022-20285]	low	🔒	-	-	-
206313	Google Android DevicePolicyManager information disclosure [CVE-2022-20279]	low	🔒	-	-	-
206312	Google Android DevicePolicyManager information disclosure [CVE-2022-20277]	low	🔒	-	-	-
206311	Google Android DevicePolicyManager information disclosure [CVE-2022-20276]	low	🔒	-	-	-
206310	Google Android DevicePolicyManager information disclosure [CVE-2022-20275]	low	🔒	-	-	-
206309	Google Android ActivityManager information disclosure [CVE-2022-20263]	low	🔒	-	-	-
206308	Google Android Phone App resource consumption [CVE-2022-20260]	low	🔒	-	-	-
206307	Nextcloud Talk Conversation unknown vulnerability [CVE-2022-35932]	low	🔒	-	-	-
206306	Google Android WiFi information disclosure [CVE-2022-20342]	low	🔒	-	-	-
206305	Google Android ConnectivityService information disclosure [CVE-2022-20341]	low	🔒	-	-	-
206304	Google Android SEpolicy information disclosure [CVE-2022-20339]	low	🔒	-	-	-
206303	Google Android Settings information disclosure [CVE-2022-20336]	low	🔒	-	-	-
206302	Google Android Bluetooth permission [CVE-2022-20330]	medium	🔒	-	-	-
206301	Google Android Wi-Fi information disclosure [CVE-2022-20327]	low	🔒	-	-	-
206300	Google Android Telephony information disclosure [CVE-2022-20326]	low	🔒	-	-	-
206299	Google Android Media use after free [CVE-2022-20325]	medium	🔒	-	-	-
206298	Google Android PackageManager information disclosure [CVE-2022-20323]	low	🔒	-	-	-
206297	Google Android PackageManager information disclosure [CVE-2022-20322]	low	🔒	-	-	-
206296	Google Android Settings information disclosure [CVE-2022-20321]	low	🔒	-	-	-
206295	Google Android SystemUI information disclosure [CVE-2022-20317]	low	🔒	-	-	-
206294	Google Android ActivityManager information disclosure [CVE-2022-20315]	low	🔒	-	-	-
206293	Google Android WifiP2pManager information disclosure [CVE-2022-20312]	low	🔒	-	-	-
206292	Google Android Telecomm information disclosure [CVE-2022-20311]	low	🔒	-	-	-
206291	Google Android Telecomm information disclosure [CVE-2022-20310]	low	🔒	-	-	-
206290	Google Android ContentService information disclosure [CVE-2022-20305]	low	🔒	-	-	-
206289	Google Android Content information disclosure [CVE-2022-20304]	low	🔒	-	-	-
206288	Google Android ContentService information disclosure [CVE-2022-20303]	low	🔒	-	-	-
206287	Google Android Content information disclosure [CVE-2022-20301]	low	🔒	-	-	-
206286	Google Android Content information disclosure [CVE-2022-20300]	low	🔒	-	-	-
206285	Google Android ContentService information disclosure [CVE-2022-20299]	low	🔒	-	-	-
206284	Google Android ContentService information disclosure [CVE-2022-20298]	low	🔒	-	-	-
206283	Google Android ContentService information disclosure [CVE-2022-20296]	low	🔒	-	-	-
206282	Google Android ContentService information disclosure [CVE-2022-20295]	low	🔒	-	-	-
206281	Google Android Content information disclosure [CVE-2022-20294]	low	🔒	-	-	-
206280	Google Android Telephony information disclosure [CVE-2022-20284]	low	🔒	-	-	-
206279	Google Android MMSProvider information disclosure [CVE-2022-20280]	low	🔒	-	-	-
206278	Google Android log file [CVE-2022-20278]	low	🔒	-	-	-
206277	Google Android PermissionController information disclosure [CVE-2022-20272]	low	🔒	-	-	-
206276	Google Android Content information disclosure [CVE-2022-20270]	low	🔒	-	-	-
206275	Google Android ActivityManager information disclosure [CVE-2022-20262]	low	🔒	-	-	-
206274	Google Android LocationManager information disclosure [CVE-2022-20261]	low	🔒	-	-	-
206273	Google Android Telephony information disclosure [CVE-2022-20259]	low	🔒	-	-	-
206272	Google Android Bluetooth config [CVE-2022-20258]	low	🔒	-	-	-
206271	Synacor Zimbra Collaboration Suite Header ProxyServlet.java Privilege Escalation	medium	🔒	-	-	-
206270	Tenda W6 WifiMacFilterSet stack-based overflow	low	🔒	-	-	-
206269	Tenda W6 wifiSSIDset stack-based overflow	low	🔒	-	-	-
206268	Tenda W6 setAutoPing stack-based overflow	medium	🔒	-	-	-
206267	Tenda W6 WifiMacFilterGet stack-based overflow	low	🔒	-	-	-
206266	Tenda W6 wifiSSIDget stack-based overflow	low	🔒	-	-	-
206265	Google Android Bluetooth null pointer dereference [CVE-2022-20334]	low	🔒	-	-	-
206264	Google Android Bluetooth denial of service [CVE-2022-20333]	low	🔒	-	-	-
206263	Google Android hostapd denial of service [CVE-2022-20308]	medium	🔒	-	-	-
206262	Google Android Bluetooth denial of service [CVE-2022-20253]	low	🔒	-	-	-
206261	Ivanti Pulse Connect Secure Push Configuration targets.cgi source code	low	🔒	-	-	-
206260	Synacor Zimbra Collaboration Suite cross-site request forgery	low	🔒	-	-	-
206259	Google Android SELinux Policy information disclosure [CVE-2022-20340]	low	🔒	-	-	-
206258	Synacor Zimbra Collaboration Suite mboximport pathname traversal	medium	🔒	-	-	-
206257	Google Android Bluetooth out-of-bounds write [CVE-2022-20362]	medium	🔒	-	-	-
206256	Google Android Bluetooth out-of-bounds write [CVE-2022-20283]	medium	🔒	-	-	-
206255	Google Android Bluetooth out-of-bounds [CVE-2022-20273]	low	🔒	-	-	-
206254	JetBrains Ktor improper authentication [CVE-2022-38180]	low	🔒	-	-	-
206253	JetBrains Ktor File Download incomplete blacklist [CVE-2022-38179]	medium	🔒	-	-	-
206252	Google Play Services SDK modification of assumed-immutable data	medium	🔒	-	-	-
206251	Linux Kernel Dm-verity authentication bypass by assumed-immutable data	medium	🔒	-	-	-
206250	SourceCodester Zoo Management System apply_vacancy.php unrestricted upload	medium	🔒	-	-	-
206249	SourceCodester Zoo Management System animals.php sql injection	medium	🔒	-	-	-
206248	SourceCodester Gas Agency Management System login.php sql injection	medium	🔒	-	-	-
206247	SourceCodester Automated Beer Parlour Billing System Login sql injection	medium	🔒	-	-	-
206246	SourceCodester Gym Management System clickjacking [CVE-2022-2800]	low	🔒	-	-	-
206245	SourceCodester Student Information System view_student.php sql injection	medium	🔒	-	-	-
206244	Google Android Messaging input validation [CVE-2022-20250]	medium	🔒	-	-	-
206243	Google Android Settings Local Privilege Escalation [CVE-2022-20248]	low	🔒	-	-	-
206242	Google Android WindowManager permission [CVE-2022-20246]	medium	🔒	-	-	-
206241	Google Android Bluetooth out-of-bounds write [CVE-2022-20244]	medium	🔒	-	-	-
206240	Zoom On-Premise Meeting Connector Zone Controller STUN Error Code stack-based overflow	medium	🔒	-	-	-
206239	Google Android PackageManager information disclosure [CVE-2022-20252]	low	🔒	-	-	-
206238	Google Android LocaleManager information disclosure [CVE-2022-20251]	low	🔒	-	-	-
206237	Google Android LocaleManager information disclosure [CVE-2022-20249]	low	🔒	-	-	-
206236	Google Android Telephony information disclosure [CVE-2022-20242]	low	🔒	-	-	-
206235	B&R Studio input validation [CVE-2021-22289]	medium	🔒	-	-	-
206234	Google Android USB Manager information disclosure [CVE-2021-0975]	low	🔒	-	-	-
206233	Google Android Settings information disclosure [CVE-2021-0734]	low	🔒	-	-	-
206232	Google Android g3aa_buffer_allocator.cc out-of-bounds write	medium	🔒	-	-	-
206231	Google Android Kernel out-of-bounds write [CVE-2022-20382]	medium	🔒	-	-	-
206230	Google Android trusty-log.c trusty_log_seq_start use after free	medium	🔒	-	-	-
206229	Google Android Crypto Local Privilege Escalation [CVE-2022-20374]	low	🔒	-	-	-
206228	Google Android st21nfc.c st21nfc_loc_set_polaritymode use after free	medium	🔒	-	-	-
206227	Google Android exynos5_i2c_irq out-of-bounds write	medium	🔒	-	-	-
206226	Google Android dm-bow.c dm_bow_dtr use after free	medium	🔒	-	-	-
206225	Google Android v4l2-mem2mem.c v4l2_m2m_querybuf out-of-bounds write	medium	🔒	-	-	-
206224	Google Android lwis_ioctl.c construct_transaction out-of-bounds write	medium	🔒	-	-	-
206223	Google Android lwis_ioctl.c ioctl_dpm_clk_update out-of-bounds write	medium	🔒	-	-	-
206222	Google Android WindowManager information disclosure [CVE-2022-20245]	low	🔒	-	-	-
206221	Google Android Core Utilities information disclosure [CVE-2022-20243]	low	🔒	-	-	-
206220	Google Android SMS Message information disclosure [CVE-2022-20241]	low	🔒	-	-	-
206219	Google Android backing-dev.c bdi_put memory corruption	medium	🔒	-	-	-
206218	Zoom On-Premise Meeting Connector MMR Waiting Room access control	medium	🔒	-	-	-
206217	Zoom On-Premise Meeting Connector MMR Waiting Room access control	medium	🔒	-	-	-
206216	Google Android Kernel Privilege Escalation [CVE-2022-20408]	low	🔒	-	-	-
206215	Google Android Kernel Privilege Escalation [CVE-2022-20407]	low	🔒	-	-	-
206214	Google Android Kernel Privilege Escalation [CVE-2022-20406]	low	🔒	-	-	-
206213	Google Android Kernel Privilege Escalation [CVE-2022-20405]	low	🔒	-	-	-
206212	Google Android Kernel Privilege Escalation [CVE-2022-20404]	low	🔒	-	-	-
206211	Google Android Kernel Privilege Escalation [CVE-2022-20403]	low	🔒	-	-	-
206210	Google Android Kernel Privilege Escalation [CVE-2022-20402]	low	🔒	-	-	-
206209	Google Android Kernel Privilege Escalation [CVE-2022-20384]	low	🔒	-	-	-
206208	Google Android Kernel Privilege Escalation [CVE-2022-20381]	low	🔒	-	-	-
206207	Google Android Kernel Privilege Escalation [CVE-2022-20380]	low	🔒	-	-	-
206206	Google Android Kernel Privilege Escalation [CVE-2022-20378]	low	🔒	-	-	-
206205	Google Android Kernel Privilege Escalation [CVE-2022-20370]	low	🔒	-	-	-
206204	Google Android Kernel Privilege Escalation [CVE-2022-20368]	low	🔒	-	-	-
206203	Google Android Privilege Escalation [CVE-2022-20365]	low	🔒	-	-	-
206202	Google Android lwis_buffer.c lwis_buffer_alloc use after free	medium	🔒	-	-	-
206201	Google Android Fingerprint keymaster_ipc.cpp Local Privilege Escalation	low	🔒	-	-	-
206200	Google Android mali_gralloc_reference.cpp Local Privilege Escalation	low	🔒	-	-	-
206199	Google Android PackageManager information disclosure [CVE-2021-0735]	low	🔒	-	-	-
206198	Google Android Kernel LteRrcNr_Codec.c LteRrcNrProAsnDecode out-of-bounds	medium	🔒	-	-	-
206197	Android Media out-of-bounds [CVE-2022-20247]	low	🔒	-	-	-
206196	Zoom Client for Meetings URL Parser input validation [CVE-2022-28755]	medium	🔒	-	-	-
206195	Adobe Framemaker File out-of-bounds [CVE-2022-35674]	medium	🔒	-	-	-
206194	Adobe Framemaker out-of-bounds [CVE-2022-35673]	low	🔒	-	-	-
206193	Adobe Premiere Elements uncontrolled search path [CVE-2022-34235]	medium	🔒	-	-	-
206192	Google Android SAEMM_ContextManagement.c SAEMM_RetrievEPLMNList out-of-bounds	low	🔒	-	-	-
206191	Google Android cd_codec.c cd_CodeMsg out-of-bounds write	medium	🔒	-	-	-
206190	Adobe Framemaker heap-based overflow [CVE-2022-35677]	medium	🔒	-	-	-
206189	Adobe Framemaker heap-based overflow [CVE-2022-35676]	medium	🔒	-	-	-
206188	Adobe Framemaker use after free [CVE-2022-35675]	medium	🔒	-	-	-
206187	Adobe Illustrator use after free [CVE-2022-34263]	medium	🔒	-	-	-
206186	Adobe Illustrator out-of-bounds write [CVE-2022-34260]	medium	🔒	-	-	-
206185	Google Android Kernel miscdatabuilder.cpp BuildDevIDResponse out-of-bounds write	medium	🔒	-	-	-
206184	Adobe Framemaker out-of-bounds [CVE-2022-34264]	low	🔒	-	-	-
206183	Adobe Illustrator out-of-bounds [CVE-2022-34262]	low	🔒	-	-	-
206182	Adobe Illustrator out-of-bounds [CVE-2022-34261]	low	🔒	-	-	-
206181	Adobe Acrobat Reader out-of-bounds write [CVE-2022-35667]	medium	🔒	-	-	-
206180	Adobe Acrobat Reader input validation [CVE-2022-35666]	medium	🔒	-	-	-
206179	Adobe Acrobat Reader use after free [CVE-2022-35665]	medium	🔒	-	-	-
206178	Adobe Acrobat Reader out-of-bounds [CVE-2022-35678]	low	🔒	-	-	-
206177	Adobe Acrobat Reader out-of-bounds [CVE-2022-35671]	low	🔒	-	-	-
206176	Adobe Acrobat Reader use after free [CVE-2022-35670]	medium	🔒	-	-	-
206175	Adobe Acrobat Reader information disclosure [CVE-2022-35668]	low	🔒	-	-	-
206174	microweber cross site scripting [CVE-2022-2777]	low	🔒	-	-	-
206173	SourceCodester Gas Agency Management System oneWord.php unrestricted upload	medium	🔒	-	-	-
206172	SourceCodester Gym Management System delete_user.php denial of service	low	🔒	-	-	-
206171	Google Go path-filepath Clean pathname traversal	medium	🔒	-	-	-
206170	SourceCodester Library Management System student.php sql injection	medium	🔒	-	-	-
206169	SourceCodester Apartment Visitor Management System profile.php cross site scripting	low	🔒	-	-	-
206168	SourceCodester Apartment Visitor Management System action-visitor.php sql injection	medium	🔒	-	-	-
206167	SourceCodester Simple Online Book Store System bookPerPub.php sql injection	medium	🔒	-	-	-
206166	SourceCodester Simple Online Book Store System book.php sql injection	medium	🔒	-	-	-
206165	SourceCodester Company Website CMS contact cross site scripting	low	🔒	-	-	-
206164	SourceCodester Library Management System cross site scripting	low	🔒	-	-	-
206163	SourceCodester Online Admission System index.php cross site scripting	low	🔒	-	-	-
206162	SourceCodester Loan Management System index.php sql injection	medium	🔒	-	-	-
206161	SourceCodester Company Website CMS settings improper authentication	medium	🔒	-	-	-
206160	Business-central XML xml external entity reference [CVE-2022-2458]	low	🔒	-	-	-
206159	Google Android SecureNfcPreferenceController.java setChecked permission	medium	🔒	-	-	-
206158	Google Android NotificationManagerService.java permission	low	🔒	-	-	-
206157	Google Android ActiveServices.java shouldAllowFgsWhileInUsePermissionLocked permission	medium	🔒	-	-	-
206156	Google Android PacProxyService.java get denial of service	low	🔒	-	-	-
206155	Google Android Vpn.java onDefaultNetworkChanged Local Privilege Escalation	low	🔒	-	-	-
206154	Google Android EventThread.cpp stealReceiveChannel race condition	low	🔒	-	-	-
206153	Huawei HarmonyOS My Huawei App information disclosure [CVE-2021-40030]	low	🔒	-	-	-
206152	Google Android Task.java Local Privilege Escalation	low	🔒	-	-	-
206151	kareadita kavita server-side request forgery [CVE-2022-2756]	medium	🔒	-	-	-
206150	Gumstix Overo SBC access control [CVE-2022-38161]	medium	🔒	-	-	-
206149	Varnish Cache HTTP1 Backend denial of service [CVE-2022-38150]	low	🔒	-	-	-
206148	Huawei HarmonyOS Recovery Module denial of service [CVE-2022-37008]	low	🔒	-	-	-
206147	Huawei HarmonyOS chinadrm out-of-bounds [CVE-2022-37007]	low	🔒	-	-	-
206146	Huawei Smart Phone Network Module permission [CVE-2022-37006]	low	🔒	-	-	-
206145	Huawei HarmonyOS Settings App argument injection [CVE-2022-37005]	medium	🔒	-	-	-
206144	Huawei HarmonyOS Settings App out-of-bounds [CVE-2022-37004]	low	🔒	-	-	-
206143	Huawei HarmonyOS AOD Module permission [CVE-2022-37003]	medium	🔒	-	-	-
206142	Huawei HarmonyOS SystemUI Module access control [CVE-2022-37002]	medium	🔒	-	-	-
206141	Zoho ManageEngine OpManager Network Configuration information disclosure	low	🔒	-	-	-
206140	EyouCMS cross site scripting [CVE-2022-35509]	low	🔒	-	-	-
206139	Google Go math-big denial of service [CVE-2022-32189]	low	🔒	-	-	-
206138	Google Go net-http httputil.ReverseProxy.ServeHTTP information disclosure	low	🔒	-	-	-
206137	Google Go encoding-gob recursion [CVE-2022-30635]	low	🔒	-	-	-
206136	Google Go encoding-xml Unmarshal recursion	low	🔒	-	-	-
206135	Google Go path-filepath recursion [CVE-2022-30632]	low	🔒	-	-	-
206134	Google Go compress-gzip recursion [CVE-2022-30631]	low	🔒	-	-	-
206133	Google Go io-fs recursion [CVE-2022-30630]	low	🔒	-	-	-
206132	Google Go TLS ticket_age_add observable behavioral discrepancy	low	🔒	-	-	-
206131	Google Go OS Exec Cmd.Start code injection	medium	🔒	-	-	-
206130	Google Go XML Document Decoder.Skip recursion	low	🔒	-	-	-
206129	Google Android Notification NotificationAccessConfirmationActivity.java onCreate information disclosure	low	🔒	-	-	-
206128	Google Go Parser recursion [CVE-2022-1962]	low	🔒	-	-	-
206127	Google Go net-http request smuggling [CVE-2022-1705]	medium	🔒	-	-	-
206126	AMC Zen 1/Zen 2/Zen 3 SMT information exposure [CVE-2021-46778]	low	🔒	-	-	-
206125	Huawei Smart Phone HW_KEYMASTER Module information disclosure	low	🔒	-	-	-
206124	Huawei HarmonyOS Video Framework buffer overflow [CVE-2021-40034]	medium	🔒	-	-	-
206123	JetBrains TeamCity Private SSH Key log file [CVE-2022-38133]	low	🔒	-	-	-
206122	Dell WMS Device API path traversal [CVE-2022-34365]	medium	🔒	-	-	-
206121	Dell Wyse Management Suite UI access control [CVE-2022-33931]	medium	🔒	-	-	-
206120	Dell Wyse Management Suite EndUserSummary Page cross site scripting	low	🔒	-	-	-
206119	Dell Wyse Management Suite session fixiation [CVE-2022-33927]	medium	🔒	-	-	-
206118	Dell Wyse Management Suite Rule access control [CVE-2022-33924]	medium	🔒	-	-	-
206117	Dell Wyse Management Suite sensitive information in gui [CVE-2022-29090]	medium	🔒	-	-	-
206116	SAP Authenticator information disclosure [CVE-2022-35290]	low	🔒	-	-	-
206115	Google Android AbstractThreadedSyncAdapter.java startSync information disclosure	low	🔒	-	-	-
206114	Google Android DefaultRingtonePreference.java onSaveRingtone information disclosure	low	🔒	-	-	-
206113	Google Android LocationManagerService.java addProviderRequestListener information disclosure	low	🔒	-	-	-
206112	Google Android permission [CVE-2022-20349]	medium	🔒	-	-	-
206111	Google Android updateState permission	medium	🔒	-	-	-
206110	Samsung mTower TEE_Malloc memory allocation	low	🔒	-	-	-
206109	Keysight Sensor Management Server path traversal [CVE-2022-38129]	medium	🔒	-	-	-
206108	Huawei HarmonyOS diag-router Module denial of service [CVE-2022-37001]	low	🔒	-	-	-
206107	TOTOLINK A3002RU shadow.sample hard-coded password	medium	🔒	-	-	-
206106	ImageMagick File operation.c WriteImages assertion	low	🔒	-	-	-
206105	Autodesk 3ds Max ActionScript Byte Code File stack-based overflow	medium	🔒	-	-	-
206104	Google Android Bluetooth btif_dm.cc btif_dm_auth_cmpl_evt Remote Code Execution	medium	🔒	-	-	-
206103	Google Android Bluetooth ConnectedDeviceDashboardFragment.java onAttach permission	medium	🔒	-	-	-
206102	Dell Wyse Management Suite Devices Error Page information exposure	low	🔒	-	-	-
206101	Dell Wyse Management Suite UI credentials storage [CVE-2022-33928]	low	🔒	-	-	-
206100	Dell Wyse Management Suite access control [CVE-2022-33926]	medium	🔒	-	-	-
206099	Dell Wyse Management Suite UI access control [CVE-2022-33925]	medium	🔒	-	-	-
206098	Google Android SurfaceControl.cpp writeToParcel information disclosure	low	🔒	-	-	-
206097	Keysight Sensor Management Server HSQLDB Database Remote Code Execution	medium	🔒	-	-	-
206096	Zoho ManageEngine OpManager Database Privilege Escalation [CVE-2022-37024]	medium	🔒	-	-	-
206095	Adobe Experience Manager Core Components URL cross site scripting	low	🔒	-	-	-
206094	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 wireless.cgi command injection	medium	🔒	-	-	-
206093	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 wireless.cgi command injection	medium	🔒	-	-	-
206092	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 qos.cgi command injection	medium	🔒	-	-	-
206091	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 wireless.cgi command injection	medium	🔒	-	-	-
206090	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 wireless.cgi command injection	medium	🔒	-	-	-
206089	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 qos.cgi command injection	medium	🔒	-	-	-
206088	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 login.cgi command injection	medium	🔒	-	-	-
206087	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 adm.cgi command injection	medium	🔒	-	-	-
206086	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 adm.cgi command injection	medium	🔒	-	-	-
206085	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 firewall.cgi command injection	medium	🔒	-	-	-
206084	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 adm.cgi command injection	medium	🔒	-	-	-
206083	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 api.cgi command injection	medium	🔒	-	-	-
206082	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 firewall.cgi command injection	medium	🔒	-	-	-
206081	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 nas.cgi command injection	medium	🔒	-	-	-
206080	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 adm.cgi command injection	medium	🔒	-	-	-
206079	SAP Enable Now authorization [CVE-2022-35293]	medium	🔒	-	-	-
206078	Mega System Technologies MSNSwitch ExportSettings.sh improper authentication	medium	🔒	-	-	-
206077	SAP BusinessObjects Business Intelligence Platform information disclosure	low	🔒	-	-	-
206076	F-Secure Atlant Scanning Engine aerdl.dll denial of service	low	🔒	-	-	-
206075	Google Android MPEG4Extractor.cpp updateAudioTrackInfoFromESDS_MPEG4Audio out-of-bounds	low	🔒	-	-	-
206074	Google Android Bluetooth l2c_ble.cc l2cble_process_sig_cmd out-of-bounds write	medium	🔒	-	-	-
206073	Google Android Kernel remap_pfn_range memory corruption	medium	🔒	-	-	-
206072	WAVLINK WN572HP3/WN533A8/WN530H4/WN535G3/WN531P3 firewall.cgi command injection	medium	🔒	-	-	-
206071	VMware vRealize Operations improper authentication [CVE-2022-31675]	medium	🔒	-	-	-
206070	VMware vRealize Operations log file [CVE-2022-31674]	low	🔒	-	-	-
206069	VMware vRealize Operations access control [CVE-2022-31672]	medium	🔒	-	-	-
206068	Red Hat Process Automation Manager Administration Console excessive authentication	low	🔒	-	-	-
206067	Digi ConnectPort X2D Gateway Web Application unnecessary privileges	high	🔒	-	-	-
206066	VMware vRealize Operations information disclosure [CVE-2022-31673]	low	🔒	-	-	-
206065	libtar th_read memory leak	low	🔒	-	-	-
206064	libtar th_read memory leak	low	🔒	-	-	-
206063	UCMS file unrestricted upload	medium	🔒	-	-	-
206062	IBM Workload Scheduler Key System Files denial of service [CVE-2022-22369]	medium	🔒	-	-	-
206061	Clinics Patient Management System update_user.php sql injection	medium	🔒	-	-	-
206060	libtar Tar File malloc out-of-bounds	low	🔒	-	-	-
206059	libtar Tar File malloc out-of-bounds	low	🔒	-	-	-
206058	IBM Robotic Process Automation weak password [CVE-2022-35280]	low	🔒	-	-	-
206057	IBM Robotic Process Automation information disclosure [CVE-2022-22490]	low	🔒	-	-	-
206056	IBM Spectrum Scale Data Access Services code injection [CVE-2022-22411]	medium	🔒	-	-	-
206055	Clinics Patient Management System users.php Privilege Escalation	medium	🔒	-	-	-
206054	IBM InfoSphere Information Server information exposure [CVE-2022-35715]	low	🔒	-	-	-
206053	VMware Workstation information disclosure [CVE-2022-22983]	low	🔒	-	-	-
206052	NetApp StorageGRID Remote Code Execution [CVE-2022-23238]	medium	🔒	-	-	-
206051	Palo Alto PAN-OS URL Filter amplification [CVE-2022-0028]	medium	🔒	-	-	-
206050	Cisco ASA/Firepower Threat Defense Clientless SSL VPN request smuggling	low	🔒	-	-	-
206049	Cisco ASA/Firepower Threat Defense RSA Key information exposure	low	🔒	-	-	-
206048	Siemens Teamcenter File Server Cache Service infinite loop [CVE-2022-34661]	low	🔒	-	-	-
206047	Siemens Simcenter STAR-CCM+ Display Name information disclosure	low	🔒	-	-	-
206046	Siemens CP-8000 MASTER MODULE Web Server Module access control	medium	🔒	-	-	-
206045	Siemens SCALANCE XR-500 Web Interface cross site scripting [CVE-2022-36325]	low	🔒	-	-	-
206044	Siemens SCALANCE XR-500 SSL allocation of resources [CVE-2022-36324]	low	🔒	-	-	-
206043	Siemens SCALANCE XR-500 injection [CVE-2022-36323]	medium	🔒	-	-	-
206042	Siemens Teamcenter File Server Cache Service command injection	medium	🔒	-	-	-
206041	ClamAV Antivirus Regex Module out-of-bounds [CVE-2022-20792]	medium	🔒	-	-	-
206040	KUKA V-KSS Robot Configuration missing authentication [CVE-2022-2242]	high	🔒	-	-	-
206039	mc-kill-port kill Local Privilege Escalation	medium	🔒	-	-	-
206038	Apache Traffic Server Header request smuggling [CVE-2022-31778]	medium	🔒	-	-	-
206037	Apache Traffic Server Header Parser request smuggling [CVE-2021-37150]	medium	🔒	-	-	-
206036	Apache Traffic Server HTTP2 Frame request smuggling [CVE-2022-31780]	medium	🔒	-	-	-
206035	Apache Traffic Server HTTP2 Header Parser request smuggling [CVE-2022-31779]	medium	🔒	-	-	-
206034	Apache Traffic Server HTTP 1.1 Header Parser input validation	medium	🔒	-	-	-
206033	Apache Traffic Server HTTP2 Request request smuggling [CVE-2022-25763]	low	🔒	-	-	-
206032	Cisco Webex Meetings Web Interface cross site scripting [CVE-2022-20852]	low	🔒	-	-	-
206031	Cisco Webex Meetings Web Interface cross site scripting [CVE-2022-20820]	low	🔒	-	-	-
206030	Cisco BroadWorks Application Delivery Platform Software Web-based Management Interface cross site scripting	low	🔒	-	-	-
206029	Cisco Identity Services Engine External RESTful Services API missing password field masking	low	🔒	-	-	-
206028	Cisco Small Business RV345 buffer overflow [CVE-2022-20842]	high	🔒	-	-	-
206027	Cisco Small Business RV345 buffer overflow [CVE-2022-20841]	medium	🔒	-	-	-
206026	Cisco Small Business RV345 buffer overflow [CVE-2022-20827]	medium	🔒	-	-	-
206025	Cisco Unified Communications Manager Web-based Management Interface path traversal	medium	🔒	-	-	-
206024	SourceCodester Company Website CMS add-portfolio.php unrestricted upload	medium	🔒	-	-	-
206023	Dell BIOS improper authentication [CVE-2022-29083]	medium	🔒	-	-	-
206022	SourceCodester Company Website CMS Add Service add-service.php unrestricted upload	medium	🔒	-	-	-
206021	Atlassian Jira Server/Jira Data Center TeamManagement.jspa cross site scripting	low	🔒	-	-	-
206020	Microsoft Edge Remote Code Execution [CVE-2022-35796]	medium	🔒	-	-	-
206019	Microsoft Edge Remote Code Execution [CVE-2022-33649]	medium	🔒	-	-	-
206018	Microsoft Edge Remote Code Execution [CVE-2022-33636]	medium	🔒	-	-	-
206017	SourceCodester Gym Management System unrestricted upload [CVE-2022-2749]	medium	🔒	-	-	-
206016	SourceCodester Simple Online Book Store System edit.php cross site scripting	low	🔒	-	-	-
206015	SourceCodester Simple Online Book Store book.php sql injection	medium	🔒	-	-	-
206014	SourceCodester Simple Online Book Store System Admin_ add.php unrestricted upload	medium	🔒	-	-	-
206013	SourceCodester Gym Management System Add New Trainer add_trainers.php sql injection	medium	🔒	-	-	-
206012	SourceCodester Gym Management System Background Management add_exercises.php unrestricted upload	medium	🔒	-	-	-
206011	FTL ftlserver Privilege Escalation [CVE-2022-30574]	low	🔒	-	-	-
206010	TIBCO FTL ftlserver access control [CVE-2022-30573]	medium	🔒	-	-	-
206009	Microsoft Visual Studio Remote Code Execution [CVE-2022-35827]	medium	🔒	-	-	-
206008	Microsoft Visual Studio Remote Code Execution [CVE-2022-35826]	medium	🔒	-	-	-
206007	Microsoft Visual Studio Remote Code Execution [CVE-2022-35825]	medium	🔒	-	-	-
206006	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
206005	Microsoft Azure Sphere information disclosure [CVE-2022-35821]	low	🔒	-	-	-
206004	Microsoft Windows Bluetooth Driver Privilege Escalation [CVE-2022-35820]	medium	🔒	-	-	-
206003	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
206002	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
206001	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
206000	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205999	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205998	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205997	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205996	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
205995	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205994	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205993	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205992	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205991	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205990	Microsoft Azure Real Time Operating System GUIX Studio Local Privilege Escalation	medium	🔒	-	-	-
205989	Microsoft Windows SMB Remote Code Execution [CVE-2022-35804]	medium	🔒	-	-	-
205988	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205987	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205986	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
205985	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205984	Microsoft Windows Hello Security Local Privilege Escalation [CVE-2022-35797]	medium	🔒	-	-	-
205983	Microsoft Windows Error Reporting Service Privilege Escalation	medium	🔒	-	-	-
205982	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205981	Microsoft Windows Print Spooler Privilege Escalation [CVE-2022-35793]	medium	🔒	-	-	-
205980	Microsoft Windows Storage Spaces Privilege Escalation [CVE-2022-35792]	medium	🔒	-	-	-
205979	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205978	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205977	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205976	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205975	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
205974	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205973	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205972	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205971	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
205970	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205969	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205968	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205967	Microsoft Azure Real Time Operating System GUIX Studio Local Privilege Escalation	medium	🔒	-	-	-
205966	Microsoft Visual Studio Remote Code Execution [CVE-2022-35777]	medium	🔒	-	-	-
205965	Microsoft Azure Site Recovery VMWare to Azure denial of service	medium	🔒	-	-	-
205964	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205963	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
205962	Microsoft Azure Real Time Operating System GUIX Studio Local Privilege Escalation	medium	🔒	-	-	-
205961	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
205960	Microsoft Windows Defender Credential Guard Privilege Escalation	medium	🔒	-	-	-
205959	Microsoft Windows Point-to-Point Protocol denial of service [CVE-2022-35769]	medium	🔒	-	-	-
205958	Microsoft Windows Kernel Privilege Escalation [CVE-2022-35768]	medium	🔒	-	-	-
205957	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205956	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205955	Microsoft Windows Storage Spaces Privilege Escalation [CVE-2022-35765]	medium	🔒	-	-	-
205954	Microsoft Windows Storage Spaces Privilege Escalation [CVE-2022-35764]	medium	🔒	-	-	-
205953	Microsoft Windows Storage Spaces Privilege Escalation [CVE-2022-35763]	medium	🔒	-	-	-
205952	Microsoft Windows Storage Spaces Privilege Escalation [CVE-2022-35762]	medium	🔒	-	-	-
205951	Microsoft Windows Kernel Privilege Escalation [CVE-2022-35761]	medium	🔒	-	-	-
205950	Microsoft Windows ATA Port Driver Remote Code Execution [CVE-2022-35760]	medium	🔒	-	-	-
205949	Microsoft Windows Local Security Authority denial of service	medium	🔒	-	-	-
205948	Microsoft Windows Kernel information disclosure [CVE-2022-35758]	low	🔒	-	-	-
205947	Microsoft Windows Cloud Files Mini Filter Driver Privilege Escalation	medium	🔒	-	-	-
205946	Microsoft Windows Kerberos Remote Code Execution [CVE-2022-35756]	medium	🔒	-	-	-
205945	Microsoft Windows Print Spooler Privilege Escalation [CVE-2022-35755]	medium	🔒	-	-	-
205944	Microsoft Windows Unified Write Filter Privilege Escalation [CVE-2022-35754]	medium	🔒	-	-	-
205943	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205942	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205941	Microsoft Windows Hyper-V Privilege Escalation [CVE-2022-35751]	medium	🔒	-	-	-
205940	Microsoft Windows Win32k Privilege Escalation [CVE-2022-35750]	medium	🔒	-	-	-
205939	Microsoft Windows Digital Media Receiver Privilege Escalation	medium	🔒	-	-	-
205938	Microsoft Windows HTTP.sys denial of service [CVE-2022-35748]	medium	🔒	-	-	-
205937	Microsoft Windows Point-to-Point Protocol denial of service [CVE-2022-35747]	low	🔒	-	-	-
205936	Microsoft Windows Digital Media Receiver Privilege Escalation	medium	🔒	-	-	-
205935	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205934	Microsoft Windows Point-to-Point Protocol Remote Code Execution	high	🔒	-	-	-
205933	Microsoft Windows Support Diagnostic Tool Privilege Escalation	medium	🔒	-	-	-
205932	Microsoft Outlook denial of service [CVE-2022-35742]	low	🔒	-	-	-
205931	Microsoft Office Remote Code Execution [CVE-2022-34717]	medium	🔒	-	-	-
205930	Microsoft .NET information disclosure [CVE-2022-34716]	low	🔒	-	-	-
205929	Microsoft Windows Network File System Remote Code Execution [CVE-2022-34715]	high	🔒	-	-	-
205928	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205927	Microsoft Windows Support Diagnostic Tool DogWalk Remote Code Execution	high	🔒	-	-	-
205926	Microsoft Windows Defender Credential Guard information disclosure	low	🔒	-	-	-
205925	Microsoft Windows Defender Credential Guard information disclosure	low	🔒	-	-	-
205924	Microsoft Windows Defender Credential Guard Privilege Escalation	medium	🔒	-	-	-
205923	Microsoft Windows Kernel information disclosure [CVE-2022-34708]	low	🔒	-	-	-
205922	Microsoft Windows Kernel Privilege Escalation [CVE-2022-34707]	medium	🔒	-	-	-
205921	Microsoft Windows Local Security Authority Privilege Escalation	medium	🔒	-	-	-
205920	Microsoft Windows Defender Credential Guard Privilege Escalation	medium	🔒	-	-	-
205919	Microsoft Windows Defender Credential Guard information disclosure	low	🔒	-	-	-
205918	Microsoft Windows Partition Management Driver Privilege Escalation	medium	🔒	-	-	-
205917	Microsoft Windows Secure Socket Tunneling Protocol Remote Code Execution	medium	🔒	-	-	-
205916	Microsoft Windows Secure Socket Tunneling Protocol denial of service	low	🔒	-	-	-
205915	Microsoft Windows Win32k Privilege Escalation [CVE-2022-34699]	medium	🔒	-	-	-
205914	Microsoft Windows Hyper-V Privilege Escalation [CVE-2022-34696]	medium	🔒	-	-	-
205913	Microsoft Exchange Server information disclosure [CVE-2022-34692]	low	🔒	-	-	-
205912	Microsoft Windows Active Directory Domain Services Privilege Escalation	medium	🔒	-	-	-
205911	Microsoft Windows Fax Service Privilege Escalation [CVE-2022-34690]	medium	🔒	-	-	-
205910	Microsoft Azure Real Time Operating System GUIX Studio Local Privilege Escalation	medium	🔒	-	-	-
205909	Microsoft Azure Real Time Operating System GUIX Studio information disclosure	low	🔒	-	-	-
205908	Microsoft Azure Real Time Operating System GUIX Studio information disclosure	low	🔒	-	-	-
205907	Microsoft Windows Crypto Pro Boot Loader Privilege Escalation	low	🔒	-	-	-
205906	Microsoft Windows New Horizon Data Systems Boot Loader Privilege Escalation	low	🔒	-	-	-
205905	Microsoft Windows Eurosoft Boot Loader Privilege Escalation [CVE-2022-34301]	low	🔒	-	-	-
205904	Microsoft Windows Partition Management Driver Privilege Escalation	medium	🔒	-	-	-
205903	Microsoft Office Online Server Excel Remote Code Execution [CVE-2022-33648]	medium	🔒	-	-	-
205902	Microsoft Azure Batch Node Agent Privilege Escalation [CVE-2022-33646]	medium	🔒	-	-	-
205901	Microsoft System Center Operations Manager Open Management Infrastructure Privilege Escalation	medium	🔒	-	-	-
205900	Microsoft Office Excel Remote Code Execution [CVE-2022-33631]	medium	🔒	-	-	-
205899	Microsoft Windows Kernel information disclosure [CVE-2022-30197]	low	🔒	-	-	-
205898	Microsoft Windows WebBrowser Control Privilege Escalation [CVE-2022-30194]	medium	🔒	-	-	-
205897	Microsoft Azure Real Time Operating System GUIX Studio Local Privilege Escalation	medium	🔒	-	-	-
205896	Microsoft Azure Real Time Operating System GUIX Studio Local Privilege Escalation	medium	🔒	-	-	-
205895	Microsoft Windows Bluetooth Service Remote Code Execution [CVE-2022-30144]	medium	🔒	-	-	-
205894	Microsoft Exchange Server information disclosure [CVE-2022-30134]	medium	🔒	-	-	-
205893	Microsoft Windows Point-to-Point Protocol Remote Code Execution	high	🔒	-	-	-
205892	Microsoft Exchange Server Privilege Escalation [CVE-2022-24516]	medium	🔒	-	-	-
205891	Microsoft Exchange Server Privilege Escalation [CVE-2022-24477]	medium	🔒	-	-	-
205890	Microsoft Exchange Server Privilege Escalation [CVE-2022-21980]	medium	🔒	-	-	-
205889	Microsoft Exchange information disclosure [CVE-2022-21979]	low	🔒	-	-	-
205888	OpenEMR cross site scripting [CVE-2022-2733]	low	🔒	-	-	-
205887	OpenEMR cross site scripting [CVE-2022-2731]	low	🔒	-	-	-
205886	OpenEMR cross site scripting [CVE-2022-2729]	low	🔒	-	-	-
205885	OpenEMR improper restriction of rendered ui layers [CVE-2022-2734]	medium	🔒	-	-	-
205884	OpenEMR privileges management [CVE-2022-2732]	medium	🔒	-	-	-
205883	OpenEMR authorization [CVE-2022-2730]	medium	🔒	-	-	-
205882	SourceCodester Company Website CMS Add Blog add-blog.php unrestricted upload	medium	🔒	-	-	-
205881	SourceCodester Company Website CMS Background Upload Logo Icon updatelogo.php unrestricted upload	medium	🔒	-	-	-
205880	ts-deepmerge prototype pollution [CVE-2022-25907]	medium	🔒	-	-	-
205879	Apache Avro Rust SDK denial of service [CVE-2022-36125]	low	🔒	-	-	-
205878	Apache Avro Rust SDK resource consumption [CVE-2022-36124]	low	🔒	-	-	-
205877	Apache Avro Rust SDK infinite loop [CVE-2022-35724]	low	🔒	-	-	-
205876	Airspan AirSpot 5410 Binary File login.cgi cross site scripting	low	🔒	-	-	-
205875	EmbedThis GoAhead Webserver Nonce websda.c entropy	low	🔒	-	-	-
205874	Zammad Secondary Organization access control [CVE-2022-35489]	medium	🔒	-	-	-
205873	Zammad Attachment Endpoint access control [CVE-2022-35487]	medium	🔒	-	-	-
205872	Cockpit session expiration [CVE-2022-2713]	low	🔒	-	-	-
205871	wolfSSL DTLS denial of service [CVE-2022-34293]	low	🔒	-	-	-
205870	Airspan AirSpot 5410 File Upload path traversal [CVE-2022-36264]	low	🔒	-	-	-
205869	eShop Multipurpose Ecommerce Store Website cross site scripting	low	🔒	-	-	-
205868	Zammad excessive authentication [CVE-2022-35490]	low	🔒	-	-	-
205867	Zammad Forgot Password denial of service [CVE-2022-35488]	low	🔒	-	-	-
205866	Airspan AirSpot 5410 Ping diagnostics.cgi command injection	medium	🔒	-	-	-
205865	Airspan AirSpot 5410 System Command Web Page Privilege Escalation	medium	🔒	-	-	-
205864	Thinkific Uploader Plugin Setting cross site scripting [CVE-2022-2426]	low	🔒	-	-	-
205863	WP DS Blog Map Plugin Setting cross site scripting [CVE-2022-2425]	low	🔒	-	-	-
205862	DW Promobar Plugin Setting cross site scripting [CVE-2022-2423]	low	🔒	-	-	-
205861	Better Tag Cloud Plugin Setting cross site scripting [CVE-2022-2412]	low	🔒	-	-	-
205860	Auto More Tag Plugin Setting cross site scripting [CVE-2022-2411]	low	🔒	-	-	-
205859	mTouch Quiz Plugin Setting cross site scripting [CVE-2022-2410]	low	🔒	-	-	-
205858	Rough Chart Plugin Data Label cross site scripting [CVE-2022-2409]	low	🔒	-	-	-
205857	Comments Fields Plugin Field Error Message cross site scripting	low	🔒	-	-	-
205856	SourceCodester Gym Management System index.php sql injection	medium	🔒	-	-	-
205855	SourceCodester Gym Management System login.php sql injection	medium	🔒	-	-	-
205854	weForms Plugin Setting cross site scripting [CVE-2022-2395]	low	🔒	-	-	-
205853	Crowdsignal Dashboard Plugin cross site scripting [CVE-2022-2386]	low	🔒	-	-	-
205852	YaySMTP Plugin Setting cross site scripting [CVE-2022-2372]	low	🔒	-	-	-
205851	YaySMTP Plugin Setting cross site scripting [CVE-2022-2371]	low	🔒	-	-	-
205850	Easy Username Updater Plugin cross-site request forgery [CVE-2022-2355]	low	🔒	-	-	-
205849	WPDating Plugin sql injection [CVE-2022-2460]	medium	🔒	-	-	-
205848	Inspiro PRO Plugin cross site scripting [CVE-2022-2391]	low	🔒	-	-	-
205847	WSM Downloader Plugin Parameter Validation authorization [CVE-2022-2367]	low	🔒	-	-	-
205846	Frontend File Manager & Sharing Plugin File Extension unrestricted upload	medium	🔒	-	-	-
205845	Website File Changes Monitor Plugin sql injection [CVE-2022-2269]	medium	🔒	-	-	-
205844	Directorist Plugin ZIP File unrestricted upload [CVE-2022-2046]	low	🔒	-	-	-
205843	Google Maps Anywhere Plugin cross site scripting [CVE-2022-2424]	low	🔒	-	-	-
205842	Discy Theme POST Request discy_update_options access control	medium	🔒	-	-	-
205841	Backdoor.Win32.Guptachar.20 Service Port 2015 hard-coded credentials	medium	🔒	-	-	-
205840	WSM Downloader Plugin wp-config.php file access	low	🔒	-	-	-
205839	SEMCMS Ant_Check.php sql injection	medium	🔒	-	-	-
205838	SourceCodester Company Website CMS add-blog.php cross site scripting	low	🔒	-	-	-
205837	SourceCodester Employee Management System aprocess.php sql injection	medium	🔒	-	-	-
205836	SourceCodester Employee Management System eprocess.php sql injection	medium	🔒	-	-	-
205835	SourceCodester Simple Student Information System manage_course.php sql injection	medium	🔒	-	-	-
205834	SourceCodester Employee Management System eloginwel.php sql injection	medium	🔒	-	-	-
205833	SourceCodester Gym Management System login.php sql injection	medium	🔒	-	-	-
205832	Exim Alias List host.c host_name_lookup heap-based overflow	medium	🔒	-	-	-
205831	SourceCodester Online Class and Exam Scheduling System faculty_sched.php sql injection	medium	🔒	-	-	-
205830	SourceCodester Online Class and Exam Scheduling System class_sched.php sql injection	medium	🔒	-	-	-
205829	SourceCodester Simple Student Information System manage_department.php sql injection	medium	🔒	-	-	-
205828	SourceCodester Simple E-Learning System downloadFiles.php information disclosure	low	🔒	-	-	-
205827	SourceCodester Gym Management System Exercises Module sql injection	medium	🔒	-	-	-
205826	SourceCodester Company Website CMS Cookie site-settings.php access control	medium	🔒	-	-	-
205825	Exim call_pam.c pam_converse use after free	low	🔒	-	-	-
205824	Foxit PDF Reader/PDF Editor exportXFAData null pointer dereference	low	🔒	-	-	-
205823	Foxit PDF Reader/PDF Editor Collab.addStateModel null pointer dereference	low	🔒	-	-	-
205822	SourceCodester Simple E-Learning System claire_blake cross site scripting	low	🔒	-	-	-
205821	SourceCodester Gym Management System GET Parameter sql injection	medium	🔒	-	-	-
205820	SourceCodester Simple E-Learning System claire_blake sql injection	medium	🔒	-	-	-
205819	SourceCodester Simple E-Learning System search.php sql injection	medium	🔒	-	-	-
205818	SourceCodester Simple E-Learning System comment_frame.php sql injection	medium	🔒	-	-	-
205817	SourceCodester Company Website CMS unrestricted upload [CVE-2022-2694]	medium	🔒	-	-	-
205816	SourceCodester Electronic Medical Records System UPDATE Statement register.php sql injection	medium	🔒	-	-	-
205815	SourceCodester Wedding Hall Booking System Staff User Profile cross site scripting	low	🔒	-	-	-
205814	SourceCodester Wedding Hall Booking System Profile Page cross site scripting	low	🔒	-	-	-
205813	SourceCodester Wedding Hall Booking System Booking Form cross site scripting	low	🔒	-	-	-
205812	SourceCodester Wedding Hall Booking System Contact Page cross site scripting	low	🔒	-	-	-
205811	SourceCodester Expense Management System POST Parameter report.php fetch_report_credit sql injection	medium	🔒	-	-	-
205810	Samsung Game Launcher information disclosure [CVE-2022-36834]	low	🔒	-	-	-
205809	Brocade Fabric OS path traversal [CVE-2021-27798]	medium	🔒	-	-	-
205808	NVIDIA vGPU Software Virtual GPU Manager null pointer dereference	medium	🔒	-	-	-
205807	Samsung Game Optimizing Service Package Name privileges management	medium	🔒	-	-	-
205806	Samsung Charm cancelAlarmManager implicit intent for sensitive communication	low	🔒	-	-	-
205805	Samsung Charm implicit intent for sensitive communication [CVE-2022-36829]	low	🔒	-	-	-
205804	Samsung Dex for PC access control [CVE-2022-33732]	medium	🔒	-	-	-
205803	Samsung Bluetooth information disclosure [CVE-2022-33728]	low	🔒	-	-	-
205802	Samsung Dialer Application ICCID information disclosure [CVE-2022-33724]	low	🔒	-	-	-
205801	Samsung AppLock access control [CVE-2022-33720]	low	🔒	-	-	-
205800	Samsung SEM TA out-of-bounds [CVE-2022-33717]	low	🔒	-	-	-
205799	Samsung ICCC TA uninitialized variable [CVE-2022-33716]	low	🔒	-	-	-
205798	Samsung LauncherProvider One UI access control [CVE-2022-33715]	medium	🔒	-	-	-
205797	Kaspersky VPN Secure Connection denial of service [CVE-2022-27535]	low	🔒	-	-	-
205796	Moodle Conversation Overview cross site scripting [CVE-2020-1691]	low	🔒	-	-	-
205795	AccuSoft ImageGear PSD Header memory corruption [CVE-2022-29465]	medium	🔒	-	-	-
205794	FreshTomato httpd memory corruption [CVE-2022-28665]	medium	🔒	-	-	-
205793	FreshTomato httpd memory corruption [CVE-2022-28664]	medium	🔒	-	-	-
205792	TCL LinkHub Mesh Wi-Fi MS1G Network confctl_set_guest_wlan denial of service	medium	🔒	-	-	-
205791	DD-WRT httpd memory corruption [CVE-2022-27631]	medium	🔒	-	-	-
205790	TCL LinkHub Mesh Wifi MS1G Network confctl_set_master_wlan access control	medium	🔒	-	-	-
205789	TCL LinkHub Mesh Wi-Fi MS1G Network confctl_set_wan_cfg access control	medium	🔒	-	-	-
205788	Asuswrt-Merlin New Gen httpd memory corruption [CVE-2022-26376]	medium	🔒	-	-	-
205787	TCL LinkHub Mesh Wi-Fi MS1G Network ucloud_del_node access control	medium	🔒	-	-	-
205786	TCL LinkHub Mesh Wi-Fi MS1G Network ucloud_set_node_location buffer overflow	medium	🔒	-	-	-
205785	TCL LinkHub Mesh Wi-Fi MS1G Network ucloud_set_node_location stack-based overflow	medium	🔒	-	-	-
205784	TCL LinkHub Mesh Wi-Fi MS1G Network Packet addTimeGroup stack-based overflow	medium	🔒	-	-	-
205783	TCL LinkHub Mesh Wi-Fi MS1G Configuration rp-pppoe.so GetValue buffer overflow	medium	🔒	-	-	-
205782	TCL LinkHub Mesh Wi-Fi MS1G Configuration libcommonprod.so GetValue buffer overflow	medium	🔒	-	-	-
205781	TCL LinkHub Mesh Wi-Fi MS1G Configuration libcommon.so GetValue buffer overflow	medium	🔒	-	-	-
205780	TCL LinkHub Mesh Wi-Fi MS1G Configuration telnet_ate_monitor GetValue buffer overflow	medium	🔒	-	-	-
205779	TCL LinkHub Mesh Wi-Fi MS1G Configuration sntp GetValue buffer overflow	medium	🔒	-	-	-
205778	TCL LinkHub Mesh Wi-Fi MS1G Configuration rtk_ate GetValue buffer overflow	medium	🔒	-	-	-
205777	TCL LinkHub Mesh Wi-Fi MS1G Configuration pppd GetValue buffer overflow	medium	🔒	-	-	-
205776	TCL LinkHub Mesh Wi-Fi MS1G Configuration pannn GetValue buffer overflow	medium	🔒	-	-	-
205775	TCL LinkHub Mesh Wi-Fi MS1G Configuration online_process GetValue buffer overflow	medium	🔒	-	-	-
205774	TCL LinkHub Mesh Wi-Fi MS1G Configuration network_check GetValue buffer overflow	medium	🔒	-	-	-
205773	TCL LinkHub Mesh Wi-Fi MS1G Configuration netctrl GetValue buffer overflow	medium	🔒	-	-	-
205772	TCL LinkHub Mesh Wi-Fi MS1G Configuration multiWAN GetValue buffer overflow	medium	🔒	-	-	-
205771	TCL LinkHub Mesh Wi-Fi MS1G Configuration miniupnpd GetValue buffer overflow	medium	🔒	-	-	-
205770	TCL LinkHub Mesh Wi-Fi MS1G Configuration mesh_status_check GetValue buffer overflow	medium	🔒	-	-	-
205769	TCL LinkHub Mesh Wi-Fi MS1G Configuration log_upload GetValue buffer overflow	medium	🔒	-	-	-
205768	TCL LinkHub Mesh Wi-Fi MS1G Configuration logserver GetValue buffer overflow	medium	🔒	-	-	-
205767	TCL LinkHub Mesh Wi-Fi MS1G Configuration gpio_ctrl GetValue buffer overflow	medium	🔒	-	-	-
205766	TCL LinkHub Mesh Wi-Fi MS1G Configuration fota GetValue buffer overflow	medium	🔒	-	-	-
205765	TCL LinkHub Mesh Wi-Fi MS1G Configuration device_list GetValue buffer overflow	medium	🔒	-	-	-
205764	TCL LinkHub Mesh Wi-Fi MS1G Configuration cwmpd GetValue buffer overflow	medium	🔒	-	-	-
205763	TCL LinkHub Mesh Wi-Fi MS1G Configuration GetValue buffer overflow	medium	🔒	-	-	-
205762	TCL LinkHub Mesh Wi-Fi MS1G Configuration confcli GetValue buffer overflow	medium	🔒	-	-	-
205761	TCL LinkHub Mesh Wi-Fi MS1G Configuration cfm GetValue buffer overflow	medium	🔒	-	-	-
205760	TCL LinkHub Mesh Wi-Fi MS1G Configuration arpbrocast GetValue buffer overflow	medium	🔒	-	-	-
205759	TCL LinkHub Mesh Wi-Fi MS1G Configuration ap_steer GetValue buffer overflow	medium	🔒	-	-	-
205758	TCL LinkHub Mesh Wifi MS1G Network Packet set_mf_rule stack-based overflow	medium	🔒	-	-	-
205757	TCL LinkHub Mesh Wifi MS1G Network Packet set_mf_rule stack-based overflow	medium	🔒	-	-	-
205756	TCL LinkHub Mesh Wifi MS1G Network Packet set_port_fwd_rule stack-based overflow	medium	🔒	-	-	-
205755	TCL LinkHub Mesh Wi-Fi MS1G Network Packet confctl_set_app_language stack-based overflow	medium	🔒	-	-	-
205754	Fortinet FortiADC/FortiProxy/FortiOS/FortiMail CLI format string	medium	🔒	-	-	-
205753	TCL LinkHub Mesh Wi-Fi MS1G Network Packet ucloud_add_node os command injection	medium	🔒	-	-	-
205752	TCL LinkHub Mesh Wi-Fi MS1G Network Packet ucloud_add_node_new stack-based overflow	medium	🔒	-	-	-
205751	TCL LinkHub Mesh Wifi MS1G Network Packet ucloud_add_new_node os command injection	medium	🔒	-	-	-
205750	Asus ADM WebDAV stack-based overflow [CVE-2022-37398]	medium	🔒	-	-	-
205749	Samsung Update Setup uncontrolled search path [CVE-2022-36840]	medium	🔒	-	-	-
205748	Samsung Checkout IAPService sql injection [CVE-2022-36839]	medium	🔒	-	-	-
205747	Samsung Galaxy Wearable information disclosure [CVE-2022-36838]	low	🔒	-	-	-
205746	Samsung Email improper authorization [CVE-2022-36837]	low	🔒	-	-	-
205745	Samsung Charm authorization [CVE-2022-36836]	low	🔒	-	-	-
205744	ESTsoft Alyac OLE File integer overflow to buffer overflow [CVE-2022-32543]	medium	🔒	-	-	-
205743	ESTsoft Alyac OLE File integer overflow to buffer overflow [CVE-2022-29886]	medium	🔒	-	-	-
205742	TCL LinkHub Mesh Wifi MS1G Network Packet confctl_get_guest_wlan information disclosure	low	🔒	-	-	-
205741	TCL LinkHub Mesh Wi-Fi MS1G Network Packet confctl_get_master_wlan information disclosure	low	🔒	-	-	-
205740	TCL LinkHub Mesh Wi-Fi MS1G libcommonprod.so prod_change_root_passwd hard-coded password	medium	🔒	-	-	-
205739	NVIDIA vGPU Software Virtual GPU Manager improper authorization	high	🔒	-	-	-
205738	Go Ethereum Reward Riskless Uncle Making access control	medium	🔒	-	-	-
205737	NVIDIA vGPU Software Virtual GPU Manager double free [CVE-2022-31614]	medium	🔒	-	-	-
205736	Complete Online Job Search System cross site scripting [CVE-2022-35163]	low	🔒	-	-	-
205735	Complete Online Job Search System cross site scripting [CVE-2022-35162]	low	🔒	-	-	-
205734	SourceCodester Gym Management System login.php sql injection	medium	🔒	-	-	-
205733	Samsung Internet Browser information disclosure [CVE-2022-36835]	low	🔒	-	-	-
205732	Samsung Cameralyzer WebApp access control [CVE-2022-36832]	low	🔒	-	-	-
205731	Samsung Notes UriFileUtils path traversal [CVE-2022-36831]	low	🔒	-	-	-
205730	Michlol rashim Web Interface resource injection [CVE-2022-34769]	medium	🔒	-	-	-
205729	Samsung Charm Bluetooth onCharacteristicChanged implicit intent for sensitive communication	low	🔒	-	-	-
205728	Samsung Charm Bluetooth onCharacteristicRead implicit intent for sensitive communication	low	🔒	-	-	-
205727	Samsung DesktopSystemUI access control [CVE-2022-33731]	medium	🔒	-	-	-
205726	Samsung Mobile Device NFC ConfirmConnectActivity information disclosure	low	🔒	-	-	-
205725	oretnom23 Fast Food Ordering System Menu List Page cross site scripting	low	🔒	-	-	-
205724	Samsung Mobile Device SecDevicePickerDialog onCreate improper restriction of rendered ui layers	medium	🔒	-	-	-
205723	Samsung Galaxy Friends dead code [CVE-2022-33726]	low	🔒	-	-	-
205722	Samsung Knox VPN code injection [CVE-2022-33725]	low	🔒	-	-	-
205721	Samsung Mobile Device BluetoothScanDialog onCreate improper restriction of rendered ui layers	medium	🔒	-	-	-
205720	Samsung Smart View MAC Address improper authorization [CVE-2022-33722]	low	🔒	-	-	-
205719	Samsung DeX for PC code injection [CVE-2022-33721]	medium	🔒	-	-	-
205718	Samsung Baseband heap-based overflow [CVE-2022-33719]	medium	🔒	-	-	-
205717	Samsung Wi-Fi Service App authorization [CVE-2022-33718]	medium	🔒	-	-	-
205716	Samsung SemWifiApBroadcastReceiver Mobile Hotspot access control	medium	🔒	-	-	-
205715	Arista CloudVision Portal log file [CVE-2022-29071]	low	🔒	-	-	-
205714	Unitree Go 1 improper authorization [CVE-2022-2675]	medium	🔒	-	-	-
205713	GitLab Enterprise Edition access control [CVE-2022-2501]	low	🔒	-	-	-
205712	GitLab Community Edition/Enterprise Edition Job Error Message cross site scripting	low	🔒	-	-	-
205711	GitLab Enterprise Edition Pipeline access control [CVE-2022-2498]	medium	🔒	-	-	-
205710	GitLab Community Edition/Enterprise Edition Public Project access control	medium	🔒	-	-	-
205709	Moodle Grade History Report access control [CVE-2020-1754]	low	🔒	-	-	-
205708	administrate OAuth cross-site request forgery [CVE-2016-3098]	low	🔒	-	-	-
205707	Ethermint exposure of resource [CVE-2022-35936]	medium	🔒	-	-	-
205706	hestiacp input validation [CVE-2022-2636]	medium	🔒	-	-	-
205705	Samsung Dex for PC out-of-bounds write [CVE-2022-33730]	medium	🔒	-	-	-
205704	KVM use after free [CVE-2022-1158]	medium	🔒	-	-	-
205703	Artica Pandora FMS Module Form cross site scripting [CVE-2021-46680]	low	🔒	-	-	-
205702	Artica Pandora FMS Service Element cross site scripting [CVE-2021-46679]	low	🔒	-	-	-
205701	Artica Pandora FMS Service Name cross site scripting [CVE-2021-46678]	low	🔒	-	-	-
205700	Artica Pandora FMS Event Filter cross site scripting [CVE-2021-46677]	low	🔒	-	-	-
205699	Artica Pandora FMS cross site scripting [CVE-2021-46676]	low	🔒	-	-	-
205698	Supersmart.me Walk Through QR Code access control [CVE-2022-34768]	medium	🔒	-	-	-
205697	KeyCloak SAML Protocol Mapper unrestricted upload [CVE-2022-2668]	medium	🔒	-	-	-
205696	GitLab Community Edition/Enterprise Edition Issue Filter information disclosure	low	🔒	-	-	-
205695	GitLab Community Edition/Enterprise Edition DataDog information disclosure	low	🔒	-	-	-
205694	GitLab Enterprise Edition Grafana API path traversal [CVE-2022-2531]	medium	🔒	-	-	-
205693	GitLab Community Edition/Enterprise Edition TODO information disclosure	low	🔒	-	-	-
205692	GitLab Community Edition/Enterprise Edition Access Token information disclosure	low	🔒	-	-	-
205691	GitLab Enterprise Edition Email Invite access control [CVE-2022-2459]	medium	🔒	-	-	-
205690	GitLab Community Edition/Enterprise Edition POST Request access control	low	🔒	-	-	-
205689	GitLab Community Edition/Enterprise Edition Branch Name access control	medium	🔒	-	-	-
205688	GitLab Community Edition/Enterprise Edition Private Project access control	medium	🔒	-	-	-
205687	GitLab Community Edition/Enterprise Edition Token access control	medium	🔒	-	-	-
205686	Linux Kernel TCP Source Port tcp.c unknown vulnerability	medium	🔒	-	-	-
205685	Arista EOS NAT ACL Rule Filter access control [CVE-2021-28511]	medium	🔒	-	-	-
205684	Artica Pandora FMS cross site scripting [CVE-2021-46681]	low	🔒	-	-	-
205683	F-Secure Atlant PE32-Bit File denial of service [CVE-2022-28880]	low	🔒	-	-	-
205682	GitLab Enterprise Edition resource injection [CVE-2022-2499]	low	🔒	-	-	-
205681	GitLab Community Edition/Enterprise Edition 2FA Enforcement improper authentication	medium	🔒	-	-	-
205680	Starfish Rich Reviews Plugin cross-site request forgery [CVE-2021-36861]	low	🔒	-	-	-
205679	JumpDEMAND ActiveDEMAND Plugin improper authentication [CVE-2022-36296]	medium	🔒	-	-	-
205678	StoreApps Affiliate for WooCommerce Premium Plugin User Profile Page resource injection	medium	🔒	-	-	-
205677	StoreApps Affiliate for WooCommerce Premium Plugin access control	medium	🔒	-	-	-
205676	Linux Kernel NTFS Journal fslog.c log_replay double free	medium	🔒	-	-	-
205675	Undertow POST Request resource consumption [CVE-2022-2053]	low	🔒	-	-	-
205674	MailerLite Signup Forms Plugin API Key cross-site request forgery	low	🔒	-	-	-
205673	SourceCodester Interview Management System addQuestion.php cross site scripting	low	🔒	-	-	-
205672	SourceCodester Apartment Visitor Management System manage-apartment.php cross site scripting	low	🔒	-	-	-
205671	SourceCodester Simple Food Ordering System login.php cross site scripting	low	🔒	-	-	-
205670	SourceCodester Alphaware Simple E-Commerce System stockin.php cross site scripting	low	🔒	-	-	-
205669	SourceCodester Online Student Admission System Student User Page edit-profile.php cross site scripting	low	🔒	-	-	-
205668	SourceCodester Church Management System login.php sql injection	medium	🔒	-	-	-
205667	SourceCodester Interview Management System viewReport.php sql injection	medium	🔒	-	-	-
205666	SourceCodester Alphaware Simple E-Commerce System Background Management Page admin_feature.php unrestricted upload	medium	🔒	-	-	-
205665	SourceCodester Apartment Visitor Management System index.php sql injection	medium	🔒	-	-	-
205664	SourceCodester Electronic Medical Records System POST Request sql injection	medium	🔒	-	-	-
205663	dotCMS Admin Portal cross site scripting [CVE-2022-37431]	low	🔒	-	-	-
205662	hestiacp privileges assignment [CVE-2022-2626]	low	🔒	-	-	-
205661	acrontum filesystem-template fetchRepo API command injection	medium	🔒	-	-	-
205660	zlib Header inflate.c inflateGetHeader heap-based overflow	medium	🔒	-	-	-
205659	Ittiam libmpeg2 impeg2_mc_fullx_fully_8x8 buffer overflow	medium	🔒	-	-	-
205658	SourceCodester Best Fee Management System admin_class.php login sql injection	medium	🔒	-	-	-
205657	Rigatur Online Booking and Hotel Management System POST Request login.php sql injection	medium	🔒	-	-	-
205656	SourceCodester Garage Management System createUser.php sql injection	medium	🔒	-	-	-
205655	SourceCodester Garage Management System removeUser.php sql injection	medium	🔒	-	-	-
205654	Contiki-NG IPv6 Neighbor Discovery uip-nd6.c uip_buf out-of-bounds	low	🔒	-	-	-
205653	Grommunio Gromox PAM Module permission [CVE-2022-37030]	medium	🔒	-	-	-
205652	Renato cross site scripting [CVE-2022-35144]	low	🔒	-	-	-
205651	Renato denial of service [CVE-2022-35142]	low	🔒	-	-	-
205650	cosign signature verification [CVE-2022-35929]	medium	🔒	-	-	-
205649	muhttpd URL request.c do_request information disclosure	low	🔒	-	-	-
205648	Samsung mTower __utee_from_attr buffer overflow	medium	🔒	-	-	-
205647	Renato weak password [CVE-2022-35143]	low	🔒	-	-	-
205646	TOTOLINK A3600R shadow.sample hard-coded credentials	medium	🔒	-	-	-
205645	Crow query_string.h qs_parse denial of service	low	🔒	-	-	-
205644	Nextcloud Server Federated Share insufficient logging [CVE-2022-31120]	low	🔒	-	-	-
205643	PolicyController Image signature verification [CVE-2022-35930]	medium	🔒	-	-	-
205642	Contiki-NG Routing Protocol set_ip_from_prefix buffer overflow	medium	🔒	-	-	-
205641	Contiki-NG IPv6 Address buffer overflow [CVE-2021-32771]	medium	🔒	-	-	-
205640	Uniwill SparkIO.sys Driver IOCTL stack-based overflow [CVE-2022-37415]	medium	🔒	-	-	-
205639	F5 BIG-IP iRules Command privileges management [CVE-2022-33962]	medium	🔒	-	-	-
205638	F5 NGINX Ingress Controller Ingress Object information disclosure	low	🔒	-	-	-
205637	F5 BIG-IP/BIG-IQ Configuration Utility session expiration [CVE-2022-35728]	medium	🔒	-	-	-
205636	F5 BIG-IP iControl REST Endpoint privileges management [CVE-2022-35243]	medium	🔒	-	-	-
205635	F5 BIG-IP Traffic Intelligence Feed certificate validation [CVE-2022-34865]	medium	🔒	-	-	-
205634	F5 BIG-IP/BIG-IQ Centralized Management iControl SOAP denial of service	low	🔒	-	-	-
205633	F5 BIG-IP LTM Monitor/APM SSO out-of-bounds [CVE-2022-33968]	low	🔒	-	-	-
205632	F5 BIG-IP Appliance Mode Restrictions path traversal [CVE-2022-31473]	low	🔒	-	-	-
205631	F5 BIG-IP Configuration Utility injection [CVE-2022-35735]	medium	🔒	-	-	-
205630	F5 BIG-IP Traffic Management Microkernel null pointer dereference	medium	🔒	-	-	-
205629	F5 NGINX Instance Manager API resource consumption [CVE-2022-35241]	medium	🔒	-	-	-
205628	F5 BIG-IP Message Routing denial of service [CVE-2022-35240]	medium	🔒	-	-	-
205627	F5 BIG-IP HTTP2 Profile resource consumption [CVE-2022-35236]	medium	🔒	-	-	-
205626	F5 BIG-IP Traffic Management Microkernel infinite loop [CVE-2022-34862]	medium	🔒	-	-	-
205625	BIG BIG-IP/BIG-IQ Traffic Management Microkernel denial of service	low	🔒	-	-	-
205624	F5 BIG-IP Traffic Management Microkernel payload uninitialized variable	medium	🔒	-	-	-
205623	F5 BIG-IP Traffic Management Microkernel respond null pointer dereference	medium	🔒	-	-	-
205622	F5 BIG-IP Traffic Management User Interface deserialization [CVE-2022-33947]	medium	🔒	-	-	-
205621	F5 BIG-IP Service Connect Agent resource consumption [CVE-2022-33203]	medium	🔒	-	-	-
205620	F5 BIG-IP Traffic Management Microkernel null pointer dereference	medium	🔒	-	-	-
205619	SourceCodester Loan Management System delete_lplan.php sql injection	medium	🔒	-	-	-
205618	SourceCodester Loan Management System login.php sql injection	medium	🔒	-	-	-
205617	Backdoor.Win32.Bushtrommel.122 Service Port 31745 improper authentication	medium	🔒	-	-	-
205616	Backdoor.Win32.Bushtrommel.122 Service Port 31745 backdoor	medium	🔒	-	-	-
205615	SourceCodester Simple E-Learning System classroom.php sql injection	medium	🔒	-	-	-
205614	Private Cloud Management Platform POST Request global_config_query improper authentication	medium	🔒	-	-	-
205613	Nextcloud Mail log file [CVE-2022-31119]	low	🔒	-	-	-
205612	F5 BIG-IP Traffic Management Microkernel denial of service [CVE-2022-35272]	medium	🔒	-	-	-
205611	Apache Hadoop API FileUtil.unTar argument injection	medium	🔒	-	-	-
205610	Nextcloud Mail CSS Minifier css_optimiser.php server-side request forgery	medium	🔒	-	-	-
205609	Nextcloud Server Federated Share sharing excessive authentication	low	🔒	-	-	-
205608	OMICARD EDM Mail Image Relay path traversal [CVE-2022-35216]	medium	🔒	-	-	-
205607	OMICARD EDM hard-coded credentials [CVE-2022-32965]	high	🔒	-	-	-
205606	OMICARD EDM API Function sql injection [CVE-2022-32964]	medium	🔒	-	-	-
205605	OMICARD EDM path traversal [CVE-2022-32963]	medium	🔒	-	-	-
205604	Planka Environment Variable environ path traversal	medium	🔒	-	-	-
205603	v4l2loopback Card Label format string [CVE-2022-2652]	medium	🔒	-	-	-
205602	BookWyrm authentication bypass [CVE-2022-2651]	low	🔒	-	-	-
205601	Apache JSPWiki Image Plugin cross-site request forgery [CVE-2022-34158]	low	🔒	-	-	-
205600	Apache JSPWiki Request AJAXPreview.jsp cross site scripting	low	🔒	-	-	-
205599	Apache JSPWiki WeblogPlugin cross site scripting [CVE-2022-28732]	low	🔒	-	-	-
205598	Apache JSPWiki Email UserPreferences.jsp cross-site request forgery	low	🔒	-	-	-
205597	Apache JSPWiki Request XHRHtml2Markup.jsp cross site scripting	low	🔒	-	-	-
205596	SourceCodester Multi Language Hotel Management Software sql injection	medium	🔒	-	-	-
205595	SourceCodester Multi Language Hotel Management Software sql injection	medium	🔒	-	-	-
205594	jeecg-boot unrestricted upload [CVE-2022-2647]	medium	🔒	-	-	-
205593	xhyve e1000 Virtual Device stack-based overflow [CVE-2022-35867]	medium	🔒	-	-	-
205592	Tencent TscanCode tsclua denial of service [CVE-2022-35158]	low	🔒	-	-	-
205591	HCL Launch authorization [CVE-2022-27551]	low	🔒	-	-	-
205590	Fortinet FortiOS CLI access control [CVE-2022-23442]	medium	🔒	-	-	-
205589	JetBrains Rider Project Dialog code injection [CVE-2022-37396]	medium	🔒	-	-	-
205588	TripleCross Control Command memory corruption [CVE-2022-35505]	medium	🔒	-	-	-
205587	GVRET SerialConsole.cpp handleConfigCmd buffer overflow	medium	🔒	-	-	-
205586	Luadec UnsetPending heap-based overflow	medium	🔒	-	-	-
205585	Vinchin Backup and Recovery hard-coded credentials [CVE-2022-35866]	medium	🔒	-	-	-
205584	BMC Track-It! HTTP Request missing authentication [CVE-2022-35865]	medium	🔒	-	-	-
205583	DevExpress SafeBinaryFormatter deserialization [CVE-2022-28684]	medium	🔒	-	-	-
205582	Sante DICOM Viewer Pro J2K File Parser out-of-bounds write [CVE-2022-28668]	medium	🔒	-	-	-
205581	Sante PACS Server sql injection [CVE-2022-2272]	medium	🔒	-	-	-
205580	Django Header FileResponse information disclosure	low	🔒	-	-	-
205579	D-Link DIR810LA1 Ping_addr command injection	medium	🔒	-	-	-
205578	D-Link DIR820LA1 ping.ccp buffer overflow	medium	🔒	-	-	-
205577	ConnMan WISPR HTTP Query use after free [CVE-2022-32293]	medium	🔒	-	-	-
205576	BMC Track-It! Endpoint GetPopupSubQueryDetails sql injection	low	🔒	-	-	-
205575	Centreon Virtual Metrics sql injection [CVE-2022-34872]	medium	🔒	-	-	-
205574	Centreon sql injection [CVE-2022-34871]	medium	🔒	-	-	-
205573	SourceCodester Garage Management System edituser.php cross site scripting	low	🔒	-	-	-
205572	SourceCodester Online Admission System index.php cross site scripting	low	🔒	-	-	-
205571	ConnMan gweb received_data heap-based overflow	medium	🔒	-	-	-
205570	TripleCross stack-based overflow [CVE-2022-35506]	medium	🔒	-	-	-
205569	CKEditor 5 cross site scripting [CVE-2022-31175]	low	🔒	-	-	-
205568	AES Crypt buffer overflow [CVE-2022-35928]	medium	🔒	-	-	-
205567	PostgreSQL JDBC Driver java.sql.ResultRow.refreshRow sql injection	medium	🔒	-	-	-
205566	Backdoor.Win32.Jokerdoor Service Port 27374 stack-based overflow	medium	🔒	-	-	-
205565	SourceCodester Online Admission System GET Parameter sql injection	medium	🔒	-	-	-
205564	SourceCodester Online Admission System POST Parameter sql injection	medium	🔒	-	-	-
205563	Fortinet FortiADC HTTP Request access control [CVE-2022-27484]	medium	🔒	-	-	-
205562	D-Link DIR-818LW binary.soapcgi_main Privilege Escalation	medium	🔒	-	-	-
205561	D-Link DIR-818LW ssdpcgi_main Privilege Escalation	medium	🔒	-	-	-
205560	SQLite C API array index [CVE-2022-35737]	medium	🔒	-	-	-
205559	OpenStack Nova Neutron Port denial of service [CVE-2022-37394]	low	🔒	-	-	-
205558	Synology USB Copy WebAPI path traversal [CVE-2022-27621]	medium	🔒	-	-	-
205557	VMware Workspace ONE Access cross site scripting [CVE-2022-31663]	low	🔒	-	-	-
205556	VMware Workspace ONE Access path traversal [CVE-2022-31662]	medium	🔒	-	-	-
205555	VMware Workspace ONE Access/Identity Manager URL injection [CVE-2022-31657]	medium	🔒	-	-	-
205554	VMware Workspace ONE Access JDBC injection [CVE-2022-31665]	medium	🔒	-	-	-
205553	VMware Workspace ONE Access access control [CVE-2022-31664]	medium	🔒	-	-	-
205552	VMware Workspace ONE Access access control [CVE-2022-31661]	medium	🔒	-	-	-
205551	VMware Workspace ONE Access access control [CVE-2022-31660]	medium	🔒	-	-	-
205550	VMware Workspace ONE Access/Identity Manager sql injection [CVE-2022-31659]	medium	🔒	-	-	-
205549	VMware Workspace ONE Access JDBC injection [CVE-2022-31658]	medium	🔒	-	-	-
205548	VMware Workspace ONE Access improper authentication [CVE-2022-31656]	high	🔒	-	-	-
205547	TIBCO iWay Service Manager Console cross site scripting [CVE-2022-30571]	low	🔒	-	-	-
205546	Mealie cross site scripting [CVE-2022-34619]	low	🔒	-	-	-
205545	Mealie cross site scripting [CVE-2022-34618]	low	🔒	-	-	-
205544	HiCOS Natural Person Credential Component Client out-of-bounds write	medium	🔒	-	-	-
205543	NHI Card Network Packet stack-based overflow [CVE-2022-35217]	medium	🔒	-	-	-
205542	GitHub Enterprise Server Content Security Policy cross site scripting	low	🔒	-	-	-
205541	Percona fetch_step denial of service	low	🔒	-	-	-
205540	MonetDB Database Server assertion [CVE-2022-34967]	medium	🔒	-	-	-
205539	Synology Note Station Client Authentication Management cleartext transmission	low	🔒	-	-	-
205538	Progress WS_FTP Server Administrative Interface cross-site request forgery	low	🔒	-	-	-
205537	Progress WS_FTP Server Administrative Web Interface cross site scripting	low	🔒	-	-	-
205536	v8n Regular Expression uppercase resource consumption	low	🔒	-	-	-
205535	Lanling OA Landray Office Automation custom.jsp information disclosure	low	🔒	-	-	-
205534	Quest KACE Systems Management Appliance improper authentication	medium	🔒	-	-	-
205533	Quest KACE Systems Management Appliance Appliance Linking random values	low	🔒	-	-	-
205532	NCI Card Network Packet out-of-bounds write [CVE-2022-35219]	low	🔒	-	-	-
205531	NHI Card Web Service out-of-bounds write [CVE-2022-35218]	low	🔒	-	-	-
205530	tooljet access control [CVE-2022-2631]	medium	🔒	-	-	-
205529	Thales Citadel Web Client HTML Tag cross site scripting [CVE-2022-1293]	low	🔒	-	-	-
205528	Mealie File unrestricted upload [CVE-2022-34613]	medium	🔒	-	-	-
205527	socket.io-client null pointer dereference [CVE-2022-25867]	low	🔒	-	-	-
205526	Flask-Security URL Validation get_post_login_redirect	medium	🔒	-	-	-
205525	get-npm-package-version index.js main command injection	medium	🔒	-	-	-
205524	npos-tesseract ocr.js injection [CVE-2020-28453]	medium	🔒	-	-	-
205523	image-tiler Remote Code Execution [CVE-2020-28451]	medium	🔒	-	-	-
205522	heroku-env get.js injection [CVE-2020-28437]	medium	🔒	-	-	-
205521	gitblame gitblame.js injection [CVE-2020-28434]	medium	🔒	-	-	-
205520	node-latex-pdf Remote Code Execution [CVE-2020-28433]	medium	🔒	-	-	-
205519	curljs Remote Code Execution [CVE-2020-28425]	medium	🔒	-	-	-
205518	s3-kilatstorage Remote Code Execution [CVE-2020-28424]	medium	🔒	-	-	-
205517	monorepo-build Remote Code Execution [CVE-2020-28423]	medium	🔒	-	-	-
205516	BigTree CMS PDF File unrestricted upload [CVE-2022-36197]	medium	🔒	-	-	-
205515	JFinal CMS user sql injection	medium	🔒	-	-	-
205514	PingCAP TiDB null pointer dereference [CVE-2022-34969]	low	🔒	-	-	-
205513	MilkyTracker XM Module File load stack-based overflow	medium	🔒	-	-	-
205512	Synology DiskStation Manager WebAPI os command injection [CVE-2022-27616]	medium	🔒	-	-	-
205511	NextAuth.js input validation [CVE-2022-35924]	medium	🔒	-	-	-
205510	EasyUse MailHunter Ultimate Cookie deserialization [CVE-2022-35223]	medium	🔒	-	-	-
205509	Mealie Jinja2 Template injection [CVE-2022-34625]	medium	🔒	-	-	-
205508	Atlassian Jira Service Management Server/Data Center Group browsegroups.action information disclosure	low	🔒	-	-	-
205507	Synology SSO Server WebAPI path traversal [CVE-2022-27620]	low	🔒	-	-	-
205506	Synology Storage Analyzer path traversal [CVE-2022-27618]	low	🔒	-	-	-
205505	Synology Calendar WebAPI path traversal [CVE-2022-27617]	medium	🔒	-	-	-
205504	BookWyrm nginx.conf excessive authentication	low	🔒	-	-	-
205503	FRRouting bgpd bgp_packet.c bgp_notify_send_with_data use after free	low	🔒	-	-	-
205502	ARM Mali GPU Kernel Driver memory corruption [CVE-2022-33917]	medium	🔒	-	-	-
205501	Laravel ChanceGenerator __call Privilege Escalation	medium	🔒	-	-	-
205500	Yuba U5cms savepage.php cross-site request forgery	low	🔒	-	-	-
205499	Quest KACE Systems Management Appliance download_agent_installer.php sql injection	medium	🔒	-	-	-
205498	TIBCO iWay Service Manager Console pathname traversal [CVE-2022-30572]	medium	🔒	-	-	-
205497	rsync File Name channel accessible [CVE-2022-29154]	medium	🔒	-	-	-
205496	Interactive Infocom Teamplus Pro Thread Subject allocation of resources	low	🔒	-	-	-
205495	Interactive Infocom Teamplus Pro allocation of resources [CVE-2022-35220]	low	🔒	-	-	-
205494	MediaTek MT8797 cta permission [CVE-2022-26429]	medium	🔒	-	-	-
205493	beancount fava cross site scripting [CVE-2022-2589]	low	🔒	-	-	-
205492	PyroCMS cross site scripting [CVE-2022-35118]	low	🔒	-	-	-
205491	Backdrop CMS Password Reset information disclosure [CVE-2022-34530]	low	🔒	-	-	-
205490	University of Texas Mango Plugins access control	medium	🔒	-	-	-
205489	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26445]	medium	🔒	-	-	-
205488	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26444]	medium	🔒	-	-	-
205487	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26443]	medium	🔒	-	-	-
205486	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26442]	medium	🔒	-	-	-
205485	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26441]	medium	🔒	-	-	-
205484	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26440]	medium	🔒	-	-	-
205483	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26439]	medium	🔒	-	-	-
205482	MediaTek MT8981 WiFi Driver out-of-bounds write [CVE-2022-26438]	medium	🔒	-	-	-
205481	MediaTek MT8797 Mailbox out-of-bounds write [CVE-2022-26435]	medium	🔒	-	-	-
205480	MediaTek MT8797 Mailbox out-of-bounds write [CVE-2022-26434]	medium	🔒	-	-	-
205479	MediaTek MT8797 Mailbox out-of-bounds write [CVE-2022-26433]	medium	🔒	-	-	-
205478	MediaTek MT8797 Mailbox out-of-bounds write [CVE-2022-26432]	medium	🔒	-	-	-
205477	MediaTek MT8797 Mailbox out-of-bounds write [CVE-2022-26431]	medium	🔒	-	-	-
205476	MediaTek MT8797 Mailbox out-of-bounds write [CVE-2022-26430]	medium	🔒	-	-	-
205475	graphql-go Type Definition Parser recursion [CVE-2022-37315]	low	🔒	-	-	-
205474	Solana Pay Transaction validateTransfer control flow	low	🔒	-	-	-
205473	OpenZeppelin CrossChainEnabledArbitrumL2/LibArbitrumL2 resource transfer	medium	🔒	-	-	-
205472	Shescape Regular Expression escapeAll injection	medium	🔒	-	-	-
205471	DSpace dspace-jspui cross site scripting [CVE-2022-31191]	low	🔒	-	-	-
205470	CVAT server-side request forgery [CVE-2022-31188]	medium	🔒	-	-	-
205469	fof byobu privileges management [CVE-2022-35921]	medium	🔒	-	-	-
205468	OpenZeppelin supportsInterface resource consumption	low	🔒	-	-	-
205467	Bolt Privilege Escalation [CVE-2022-31321]	low	🔒	-	-	-
205466	OpenZeppelin GovernorVotesQuorumFraction calculation [CVE-2022-31198]	medium	🔒	-	-	-
205465	DSpace ItemImportServiceImpl path traversal [CVE-2022-31195]	medium	🔒	-	-	-
205464	DSpace dspace-jspui redirect [CVE-2022-31193]	medium	🔒	-	-	-
205463	DSpace dspace-xmlui information disclosure [CVE-2022-31190]	low	🔒	-	-	-
205462	DSpace dspace-jspui internal.jsp information exposure	low	🔒	-	-	-
205461	fs2 certificate validation [CVE-2022-31183]	medium	🔒	-	-	-
205460	Shescape API Function injection [CVE-2022-31179]	medium	🔒	-	-	-
205459	eLabFTW Template authorization [CVE-2022-31178]	low	🔒	-	-	-
205458	Pligg CMS load_data_for_groups.php sql injection	medium	🔒	-	-	-
205457	Pligg CMS load_data_for_topusers.php sql injection	medium	🔒	-	-	-
205456	Web Based Quiz System update.php sql injection	medium	🔒	-	-	-
205455	Pharmacy Management System invoiceprint.php sql injection	medium	🔒	-	-	-
205454	Pharmacy Management System getOrderReport.php sql injection	medium	🔒	-	-	-
205453	Pharmacy Management System edituser.php sql injection	medium	🔒	-	-	-
205452	Pharmacy Management System getsalereport.php sql injection	medium	🔒	-	-	-
205451	Pharmacy Management System editproduct.php sql injection	medium	🔒	-	-	-
205450	Pharmacy Management System login.php sql injection	medium	🔒	-	-	-
205449	Pharmacy Management System editbrand.php sql injection	medium	🔒	-	-	-
205448	Pharmacy Management System editcategory.php sql injection	medium	🔒	-	-	-
205447	Pharmacy Management System getexpproduct.php sql injection	medium	🔒	-	-	-
205446	Pharmacy Management System getproductreport.php sql injection	medium	🔒	-	-	-
205445	Online Tours And Travels Management System packages.php sql injection	medium	🔒	-	-	-
205444	Sourcegraph Saved Search authorization [CVE-2022-31155]	medium	🔒	-	-	-
205443	Sourcegraph authorization [CVE-2022-31154]	medium	🔒	-	-	-
205442	DSpace dspace-jspui cross site scripting [CVE-2022-31192]	low	🔒	-	-	-
205441	NextAuth.js log file [CVE-2022-31186]	low	🔒	-	-	-
205440	Discourse Nginx Proxy Configuration denial of service [CVE-2022-31182]	low	🔒	-	-	-
205439	Rust-WebSocket Untrusted Source with_capacity resource consumption	low	🔒	-	-	-
205438	DSpace dspace-jspui FileUploadRequest path traversal	medium	🔒	-	-	-
205437	Discourse Email Activation Route allocation of resources [CVE-2022-31184]	low	🔒	-	-	-
205436	Juniper resource consumption [CVE-2022-31173]	medium	🔒	-	-	-
205435	Streamlit Web Server File-System path traversal [CVE-2022-35918]	medium	🔒	-	-	-
205434	Flask-AppBuilder information disclosure [CVE-2022-31177]	low	🔒	-	-	-
205433	Sanic framework path traversal	medium	🔒	-	-	-
205432	MinIO path traversal [CVE-2022-35919]	medium	🔒	-	-	-
205431	mprweb Email Address information disclosure [CVE-2022-31185]	low	🔒	-	-	-
205430	PrestaShop sql injection [CVE-2022-31181]	medium	🔒	-	-	-
205429	MediaTek MT8695 Video Codec memory corruption [CVE-2022-26428]	medium	🔒	-	-	-
205428	MediaTek MT6833/MT6853/MT6873/MT6877/MT6893 Camera ISP out-of-bounds write	medium	🔒	-	-	-
205427	MediaTek MT8797 Camera ISP out-of-bounds write [CVE-2022-26426]	medium	🔒	-	-	-
205426	Shopware Customer Module cross site scripting [CVE-2022-31148]	low	🔒	-	-	-
205425	Enalean Tuleap REST Endpoint authorization [CVE-2022-31128]	medium	🔒	-	-	-
205424	IBM CICS TX input validation [CVE-2022-34164]	medium	🔒	-	-	-
205423	IBM CICS TX HTTP Header injection [CVE-2022-34163]	medium	🔒	-	-	-
205422	IBM CICS TX Local Privilege Escalation [CVE-2022-33955]	low	🔒	-	-	-
205421	IBM CICS TX missing secure attribute [CVE-2022-34307]	low	🔒	-	-	-
205420	IBM CICS TX cross-site request forgery [CVE-2022-34161]	low	🔒	-	-	-
205419	laminas-diactoros Server Request fromGlobals cross site scripting	low	🔒	-	-	-
205418	IBM CICS TX improper restriction of rendered ui layers [CVE-2022-34162]	low	🔒	-	-	-
205417	MediaTek MT6893 Camera ISP out-of-bounds write [CVE-2022-21792]	medium	🔒	-	-	-
205416	MediaTek MT8798 Audio IPI memory corruption [CVE-2022-21789]	medium	🔒	-	-	-
205415	MediaTek MT6879/MT6895/MT6983 SCP Local Privilege Escalation	low	🔒	-	-	-
205414	Nlnet Labs Unbound Domain Name Remote Code Execution [CVE-2022-30699]	low	🔒	-	-	-
205413	Nlnet Labs Unbound Domain Name Remote Code Execution [CVE-2022-30698]	low	🔒	-	-	-
205412	vim undefined behavior for input to api [CVE-2022-2598]	low	🔒	-	-	-
205411	node-fetch denial of service [CVE-2022-2596]	low	🔒	-	-	-
205410	vim out-of-bounds [CVE-2022-2581]	low	🔒	-	-	-
205409	vim heap-based overflow [CVE-2022-2580]	medium	🔒	-	-	-
205408	vim heap-based overflow [CVE-2022-2571]	medium	🔒	-	-	-
205407	Pandora FMS User Management Module improper authorization [CVE-2022-26310]	medium	🔒	-	-	-
205406	MediaTek MT6855/MT6879/MT6895/MT6983 EMI MPU out-of-bounds [CVE-2022-26436]	low	🔒	-	-	-
205405	MediaTek MT6833/MT6853/MT6873/MT6877/MT6885/MT6893 Camera ISP out-of-bounds	low	🔒	-	-	-
205404	MediaTek MT6833/MT6853/MT6873/MT6877/MT6893 Camera ISP out-of-bounds	low	🔒	-	-	-
205403	Pandora FMS Bulk Operation cross-site request forgery [CVE-2022-26309]	low	🔒	-	-	-
205402	Bosch BF-OS unknown vulnerability [CVE-2022-36302]	low	🔒	-	-	-
205401	MediaTek MT2621/MT2625 httpclient out-of-bounds write [CVE-2022-26437]	medium	🔒	-	-	-
205400	kromitgmbh titra improper authorization [CVE-2022-2595]	medium	🔒	-	-	-
205399	Realtek eCos RSDK/eCos MSDK SIP ALG stack-based overflow [CVE-2022-27255]	medium	🔒	-	-	-
205398	Pandora FMS Configuration access control [CVE-2022-26308]	medium	🔒	-	-	-
205397	Lura/KrakenD-CE URL Parameter modification of assumed-immutable data	low	🔒	-	-	-

ID	Title	VulDB	CVSS	Secunia	XForce	Nessus
205396	Bosch BF-OS weak password [CVE-2022-36301]	low	🔒	-	-	-
205395	ideasToCode Enable SVG, WebP & ICO Upload Plugin cross site scripting	low	🔒	-	-	-
205394	Featured Image from URL Plugin cross-site request forgery [CVE-2022-2241]	low	🔒	-	-	-
205393	Progressive License Plugin cross-site request forgery [CVE-2022-2171]	low	🔒	-	-	-
205392	Flexi Quote Rotator Plugin Setting cross site scripting [CVE-2022-2328]	low	🔒	-	-	-
205391	Invitation Based Registrations Plugin Setting cross site scripting	low	🔒	-	-	-
205390	Popup Plugin Setting cross site scripting [CVE-2022-2305]	low	🔒	-	-	-
205389	Featured Image from URL Plugin cross site scripting [CVE-2022-2278]	low	🔒	-	-	-
205388	GiveWP Plugin cross-site request forgery [CVE-2022-2260]	low	🔒	-	-	-
205387	Counter Box Plugin cross-site request forgery [CVE-2022-2245]	low	🔒	-	-	-
205386	ideasToCode Enable SVG, WebP & ICO Upload Plugin unrestricted upload	medium	🔒	-	-	-
205385	GnuTLS pkcs7 Signature Verification gnutls_pkcs7_verify double free	medium	🔒	-	-	-
205384	GiveWP Plugin Currency Setting cross site scripting [CVE-2022-2215]	low	🔒	-	-	-
205383	CAPTCHA 4WP Plugin Admin Template require_once cross-site request forgery	low	🔒	-	-	-
205382	Advanced Reset Plugin Admin Dashboard cross site scripting [CVE-2022-2181]	low	🔒	-	-	-
205381	Copyright Proof Plugin AJAX Action cross site scripting [CVE-2022-1906]	low	🔒	-	-	-
205380	Event Timeline Plugin Timeline Text cross site scripting [CVE-2022-1324]	low	🔒	-	-	-
205379	Login with Phone Number Plugin Setting cross site scripting [CVE-2022-0598]	low	🔒	-	-	-
205378	YaySMTP Plugin Mailer Credential authorization [CVE-2022-2370]	low	🔒	-	-	-
205377	YaySMTP Plugin Log authorization [CVE-2022-2369]	low	🔒	-	-	-
205376	Simple Membership Plugin Registration privileges management [CVE-2022-2317]	medium	🔒	-	-	-
205375	Simple Membership Plugin POST privileges management [CVE-2022-2273]	medium	🔒	-	-	-
205374	Youzify Plugin sql injection [CVE-2022-1950]	medium	🔒	-	-	-
205373	Microsoft Advertising Universal Event Tracking Plugin Setting cross site scripting	low	🔒	-	-	-
205372	Project Source Code Download Plugin Backup wp-config.php file access	low	🔒	-	-	-
205371	YOP Poll Plugin HTTP Header authorization [CVE-2022-1600]	low	🔒	-	-	-
205370	Atlassian JIRA Server/Data Center Velocity Template code injection	medium	🔒	-	-	-
205369	IBM DataPower Gateway server-side request forgery [CVE-2022-31776]	medium	🔒	-	-	-
205368	IBM UrbanCode Deploy information disclosure [CVE-2022-35716]	low	🔒	-	-	-
205367	IBM Robotic Process Automation Bulk Upload insufficiently protected credentials	low	🔒	-	-	-
205366	IBM Robotic Process Automation API access control [CVE-2022-30616]	medium	🔒	-	-	-
205365	IBM Robotic Process Automation information disclosure [CVE-2022-22505]	low	🔒	-	-	-
205364	IBM Robotic Process Automation information disclosure [CVE-2022-22334]	low	🔒	-	-	-
205363	IBM DataPower Gateway improper authorization [CVE-2022-22326]	medium	🔒	-	-	-
205362	IBM DataPower Gateway Web UI cross site scripting [CVE-2022-32750]	low	🔒	-	-	-
205361	IBM DataPower Gateway xml external entity reference [CVE-2022-31775]	low	🔒	-	-	-
205360	IBM DataPower Gateway Web UI cross site scripting [CVE-2022-31774]	low	🔒	-	-	-
205359	IBM Robotic Process Automation information disclosure [CVE-2022-34338]	low	🔒	-	-	-
205358	HPE iLO 5 Local Privilege Escalation [CVE-2022-28636]	medium	🔒	-	-	-
205357	HPE iLO 5 Local Privilege Escalation [CVE-2022-28635]	medium	🔒	-	-	-
205356	HPE iLO 5 Local Privilege Escalation [CVE-2022-28634]	medium	🔒	-	-	-
205355	HPE iLO 5 Remote Code Execution [CVE-2022-28633]	medium	🔒	-	-	-
205354	HPE iLO 5 Remote Code Execution [CVE-2022-28632]	medium	🔒	-	-	-
205353	HPE iLO 5 Remote Code Execution [CVE-2022-28631]	medium	🔒	-	-	-
205352	HPE iLO 5 Local Privilege Escalation [CVE-2022-28630]	medium	🔒	-	-	-
205351	HPE iLO 5 Local Privilege Escalation [CVE-2022-28629]	medium	🔒	-	-	-
205350	HPE iLO 5 Local Privilege Escalation [CVE-2022-28628]	medium	🔒	-	-	-
205349	HPE iLO 5 Local Privilege Escalation [CVE-2022-28627]	medium	🔒	-	-	-
205348	HPE iLO 5 Local Privilege Escalation [CVE-2022-28626]	medium	🔒	-	-	-
205347	Gutenberg Plugin SVG Document cross site scripting [CVE-2022-33994]	low	🔒	-	-	-
205346	Backdoor.Win32.Destrukor.20 Service Port 6969 improper authentication	medium	🔒	-	-	-
205345	Backdoor.Win32.Destrukor.20 Service Port 6969 backdoor	medium	🔒	-	-	-
205344	TEM FLEX-1085 reboot denial of service	medium	🔒	-	-	-
205343	Rockwell Automation ISaGRAF Workbench deserialization [CVE-2022-2465]	medium	🔒	-	-	-
205342	Rockwell Automation ISaGRAF Workbench path traversal [CVE-2022-2464]	medium	🔒	-	-	-
205341	Rockwell Automation ISaGRAF Workbench 7z File path traversal	medium	🔒	-	-	-
205340	AutomationDirect SIO-MB04RTDS cleartext transmission [CVE-2022-2485]	low	🔒	-	-	-
205339	Inductive Automation Ignition xml external entity reference [CVE-2022-1704]	low	🔒	-	-	-
205338	Moxa NPort 5110 out-of-bounds write [CVE-2022-2044]	medium	🔒	-	-	-
205337	Moxa NPort 5110 out-of-bounds write [CVE-2022-2043]	medium	🔒	-	-	-
205336	Velocidex Velociraptor GUI cross site scripting [CVE-2022-35632]	low	🔒	-	-	-
205335	Velocidex Velociraptor Collection Report cross site scripting	low	🔒	-	-	-
205334	Trend Micro VPN Proxy Pro permission [CVE-2022-33158]	medium	🔒	-	-	-
205333	SonicWALL Hosted Email Security Capture ATP Security Service security check	low	🔒	-	-	-
205332	Velocidex Velociraptor improper authentication [CVE-2022-35629]	medium	🔒	-	-	-
205331	Trend Micro Apex One/Worry-Free Business Security link following	medium	🔒	-	-	-
205330	Dogtag PKI XML Document Parser xml external entity reference	medium	🔒	-	-	-
205329	Trend Micro Security 2021/Security 2022 out-of-bounds [CVE-2022-35234]	low	🔒	-	-	-
205328	EllieGrid App code injection [CVE-2022-30083]	medium	🔒	-	-	-
205327	Chia Network CAT1 Standard unknown vulnerability [CVE-2022-36447]	low	🔒	-	-	-
205326	D-Link DSL-3782 getAttrValue stack-based overflow	medium	🔒	-	-	-
205325	D-Link DSL-3782 byte_4C0160 command injection	medium	🔒	-	-	-
205324	Tiffsplit TIFF File _TIFFVGetField stack-based overflow	medium	🔒	-	-	-
205323	HiBy R3 Pro unrestricted upload [CVE-2022-34496]	medium	🔒	-	-	-
205322	Autodesk Design Review TGA File DesignReview.exe out-of-bounds write	medium	🔒	-	-	-
205321	Autodesk Design Review PDF File DesignReview.exe double free	medium	🔒	-	-	-
205320	Western Digital Sweet B Cryptographic Library NIST P-256 Curve unknown vulnerability	low	🔒	-	-	-
205319	Velocidex Velociraptor temp file [CVE-2022-35631]	medium	🔒	-	-	-
205318	HCL Remote Store Server insufficiently protected credentials	low	🔒	-	-	-
205317	Autodesk Fusion360 HTTP Request access control [CVE-2022-27873]	medium	🔒	-	-	-
205316	Autodesk Design Review TIFF File DesignReview.exe out-of-bounds	medium	🔒	-	-	-
205315	SonicWALL Switch command injection [CVE-2022-2323]	medium	🔒	-	-	-
205314	Western Digital Sweet B Cryptographic Library NIST P-256 Curve unknown vulnerability	low	🔒	-	-	-
205313	Western Digital Sweet B Cryptographic Library NIST P-256 Elliptic Curve unknown vulnerability	low	🔒	-	-	-
205312	Western Digital Sweet B Cryptographic Library Elliptic Curve calculation	low	🔒	-	-	-
205311	Autodesk AutoCAD 2023 PRT File out-of-bounds [CVE-2022-33881]	low	🔒	-	-	-
205310	PluginlySpeaking Floating Div Plugin cross site scripting [CVE-2022-36378]	low	🔒	-	-	-
205309	DedeCMS mytag_main.php mytag_ Privilege Escalation	medium	🔒	-	-	-
205308	Eclipse Californium DTLS Resumption amplification [CVE-2022-2576]	low	🔒	-	-	-
205307	IBM PowerVM VIOS Remote Code Execution [CVE-2022-35643]	medium	🔒	-	-	-
205306	Linux Kernel Block Starting Symbol Privilege Escalation [CVE-2022-36123]	low	🔒	-	-	-
205305	Inavitas Solar Log sql injection [CVE-2022-1277]	medium	🔒	-	-	-
205304	Atlantis Webhook Event Validator timing discrepancy [CVE-2022-24912]	low	🔒	-	-	-
205303	Google Play services SDK play-services-basement trust boundary violation	medium	🔒	-	-	-
205302	SourceCodester Garage Management System createUser.php cross site scripting	low	🔒	-	-	-
205301	SourceCodester Garage Management System createUser.php access control	medium	🔒	-	-	-
205300	SourceCodester Garage Management System edituser.php sql injection	medium	🔒	-	-	-
205299	Samba AD DC Database Audit Logging use after free [CVE-2022-32746]	medium	🔒	-	-	-
205298	Samba LDAP memory corruption [CVE-2022-32745]	medium	🔒	-	-	-
205297	Samba Password Change key management [CVE-2022-32744]	medium	🔒	-	-	-
205296	Samba SMB1 memory corruption [CVE-2022-32742]	medium	🔒	-	-	-
205295	Samba KDC/Password Service missing critical step in authentication	low	🔒	-	-	-
205294	SonicWALL Analytics On-Prem sql injection [CVE-2022-22280]	high	🔒	-	-	-
205293	RainLoop Email Viewer cross site scripting [CVE-2022-29360]	low	🔒	-	-	-
205292	Honeywell Safety Manager Firmware Image hard-coded credentials	medium	🔒	-	-	-
205291	WMAgent/reqmgr/reqmon/global-workqueue dbs-client Package Privilege Escalation	medium	🔒	-	-	-
205290	Realtek rtl819x-SDK Web Interface command injection [CVE-2022-29558]	medium	🔒	-	-	-
205289	automattic mongoose prototype pollution [CVE-2022-2564]	medium	🔒	-	-	-
205288	Honeywell Saia Burgess PG5 PCD authentication bypass [CVE-2022-30319]	medium	🔒	-	-	-
205287	nodepdf Pdf os command injection	medium	🔒	-	-	-
205286	zulip SSO access control [CVE-2016-4427]	medium	🔒	-	-	-
205285	zulip Bot API Key access control [CVE-2016-4426]	medium	🔒	-	-	-
205284	Citrix ADC/Gateway redirect [CVE-2022-27509]	medium	🔒	-	-	-
205283	Booth Authfile Directive improper authentication [CVE-2022-2553]	medium	🔒	-	-	-
205282	Ovarro TBox TG2 Configuration File permission assignment [CVE-2021-22648]	high	🔒	-	-	-
205281	Ovarro TBox TG2 hard-coded key [CVE-2021-22644]	low	🔒	-	-	-
205280	Ovarro TBox TG2 Modbus Frame denial of service [CVE-2021-22642]	medium	🔒	-	-	-
205279	Honeywell Safety Manager missing authentication [CVE-2022-30313]	medium	🔒	-	-	-
205278	libxml cross site scripting [CVE-2016-3709]	low	🔒	-	-	-
205277	GitLab Contact Details cross site scripting [CVE-2022-1948]	low	🔒	-	-	-
205276	png2webp PNG File w2p out-of-bounds write	medium	🔒	-	-	-
205275	SDL SDL_x11yuv.c XFree use after free	medium	🔒	-	-	-
205274	PicoC variable.c null pointer dereference	low	🔒	-	-	-
205273	DPTech VPN information disclosure [CVE-2022-34593]	low	🔒	-	-	-
205272	Squirrel Core Interpreter sqclass.cpp out-of-bounds	medium	🔒	-	-	-
205271	Honeywell Saia Burgess PG5 PCD risky encryption [CVE-2022-30320]	low	🔒	-	-	-
205270	Ovarro TBox TG2 Configuration code injection [CVE-2021-22646]	medium	🔒	-	-	-
205269	Ovarro TBox TG2 insufficiently protected credentials [CVE-2021-22640]	low	🔒	-	-	-
205268	Open Source Point of Sale Update Branding Settings Page unrestricted upload	medium	🔒	-	-	-
205267	HP Zero Client AWS Connection Provisioner channel accessible	low	🔒	-	-	-
205266	Ovarro TBox TG2 Project File Remote Code Execution [CVE-2021-22650]	medium	🔒	-	-	-
205265	Honeywell Safety Manager Firmware Update data authenticity [CVE-2022-30316]	medium	🔒	-	-	-
205264	SimpleNetwork TCP Server TCP Packet double free [CVE-2022-36234]	medium	🔒	-	-	-
205263	TP-LINK TL-R473G Packet Privilege Escalation [CVE-2022-34555]	medium	🔒	-	-	-
205262	IBM QRadar SIEM access control [CVE-2021-39088]	medium	🔒	-	-	-
205261	itsourcecode Advanced School Management System index.php cross site scripting	low	🔒	-	-	-
205260	Google Chrome WebGPU use after free [CVE-2022-2399]	medium	🔒	-	-	-
205259	Barangay Management System permit.php sql injection	medium	🔒	-	-	-
205258	Honeywell Safety Manager data authenticity [CVE-2022-30315]	medium	🔒	-	-	-
205257	GS Plugins GS Testimonial Slider Plugin cross site scripting	low	🔒	-	-	-
205256	mb.miniAudioPlayer-an HTML5 Audio Player improper authentication	medium	🔒	-	-	-
205255	kippo-graph KippoInput.class.php xss_clean cross site scripting	low	🔒	-	-	-
205254	kippo-graph KippoInput.class.php cross site scripting	low	🔒	-	-	-
205253	JetBrains IntelliJ IDEA Email Address input validation [CVE-2022-37010]	low	🔒	-	-	-
205252	JetBrains IntelliJ IDEA code injection [CVE-2022-37009]	medium	🔒	-	-	-
205251	Synology Media Server information disclosure [CVE-2022-27614]	low	🔒	-	-	-
205250	Synology CardDAV Server WebAPI sql injection [CVE-2022-27613]	medium	🔒	-	-	-
205249	Synology Audio Station buffer overflow [CVE-2022-27612]	medium	🔒	-	-	-
205248	Synology DiskStation Manager Task Management os command injection	medium	🔒	-	-	-
205247	Synology Media Server CGI buffer overflow [CVE-2022-22683]	high	🔒	-	-	-
205246	Synology Audio Station path traversal [CVE-2022-27611]	medium	🔒	-	-	-
205245	Synology WebDAV Server path traversal [CVE-2022-22685]	low	🔒	-	-	-
205244	Apache Calcite Avatica JDBC Driver initialization [CVE-2022-36364]	medium	🔒	-	-	-
205243	PHP libmagic finfo_buffer free of memory not on the heap	medium	🔒	-	-	-
205242	Fossil Ticket cross site scripting [CVE-2022-34009]	low	🔒	-	-	-
205241	Veritas NetBackup Local Privilege Escalation [CVE-2022-36955]	medium	🔒	-	-	-
205240	Veritas NetBackup OpsCenter VxSS Subsystem hard-coded credentials	medium	🔒	-	-	-
205239	Veritas NetBackup OpsCenter Local Privilege Escalation [CVE-2022-36949]	medium	🔒	-	-	-
205238	Veritas NetBackup OpsCenter cross site scripting [CVE-2022-36948]	low	🔒	-	-	-
205237	GoAnywhere MFT or path traversal	medium	🔒	-	-	-
205236	VISAM VBASE XML Document Remote Code Execution [CVE-2021-42537]	low	🔒	-	-	-
205235	VISAM user-controllable cross site scripting [CVE-2021-42535]	low	🔒	-	-	-
205234	AVEVA Platform Common Services uncontrolled search path [CVE-2021-38410]	medium	🔒	-	-	-
205233	Rockwell Automation CompactLogix 5370/ControlLogix 5570 CIP Packet denial of service	low	🔒	-	-	-
205232	Veritas NetBackup access control [CVE-2022-36985]	medium	🔒	-	-	-
205231	Veritas NetBackup access control [CVE-2022-36995]	medium	🔒	-	-	-
205230	Veritas NetBackup information disclosure [CVE-2022-36994]	low	🔒	-	-	-
205229	Veritas NetBackup access control [CVE-2022-36991]	medium	🔒	-	-	-
205228	Veritas NetBackup access control [CVE-2022-36987]	medium	🔒	-	-	-
205227	Symantec Veritas Netbackup certificate validation [CVE-2022-36956]	medium	🔒	-	-	-
205226	Veritas NetBackup OpsCenter User Account access control [CVE-2022-36954]	medium	🔒	-	-	-
205225	Veritas NetBackup OpsCenter information disclosure [CVE-2022-36953]	low	🔒	-	-	-
205224	Veritas NetBackup OpsCenter Remote Code Execution [CVE-2022-36951]	medium	🔒	-	-	-
205223	Veritas NetBackup OpsCenter Java Classloader code injection [CVE-2022-36950]	high	🔒	-	-	-
205222	VISAM VBASE Web-remote Endpoint information disclosure [CVE-2021-38417]	low	🔒	-	-	-
205221	Veritas NetBackup server-side request forgery [CVE-2022-36997]	medium	🔒	-	-	-
205220	Veritas NetBackup information disclosure [CVE-2022-37000]	low	🔒	-	-	-
205219	Veritas NetBackup information disclosure [CVE-2022-36999]	low	🔒	-	-	-
205218	Veritas NetBackup stack-based overflow [CVE-2022-36998]	medium	🔒	-	-	-
205217	Veritas NetBackup information disclosure [CVE-2022-36996]	low	🔒	-	-	-
205216	Veritas NetBackup access control [CVE-2022-36993]	medium	🔒	-	-	-
205215	Veritas NetBackup access control [CVE-2022-36992]	medium	🔒	-	-	-
205214	Veritas NetBackup access control [CVE-2022-36990]	medium	🔒	-	-	-
205213	Veritas NetBackup Privilege Escalation [CVE-2022-36989]	medium	🔒	-	-	-
205212	Veritas NetBackup Privilege Escalation [CVE-2022-36988]	medium	🔒	-	-	-
205211	Veritas Netbackup access control [CVE-2022-36986]	medium	🔒	-	-	-
205210	Veritas NetBackup denial of service [CVE-2022-36984]	medium	🔒	-	-	-
205209	Synology DNS Server path traversal [CVE-2022-27615]	medium	🔒	-	-	-
205208	Patlite NH-FB Query String denial of service [CVE-2022-35911]	low	🔒	-	-	-
205207	Student Management System Chat Box nav_bar_action.php cross site scripting	low	🔒	-	-	-
205206	Cuppa CMS right.php file inclusion	medium	🔒	-	-	-
205205	Google Chrome WebGL heap-based overflow [CVE-2022-2415]	medium	🔒	-	-	-
205204	Google Chrome HTML use after free [CVE-2022-1919]	medium	🔒	-	-	-
205203	Linux Kernel nfnetlink_queue.c nfqnl_mangle denial of service	medium	🔒	-	-	-
205202	Barangay Management System activity.php Privilege Escalation	medium	🔒	-	-	-
205201	Feehi CMS cross site scripting [CVE-2022-34140]	low	🔒	-	-	-
205200	Lucene-Search Plugin Query Parameter cross site scripting [CVE-2022-36922]	low	🔒	-	-	-
205199	Coverity Plugin cross-site request forgery [CVE-2022-36920]	low	🔒	-	-	-
205198	Openstack Heat Plugin cross-site request forgery [CVE-2022-36911]	low	🔒	-	-	-
205197	OpenShift Deployer Plugin Controller File System cross-site request forgery	low	🔒	-	-	-
205196	OpenShift Deployer Plugin cross-site request forgery [CVE-2022-36906]	low	🔒	-	-	-
205195	Maven Metadata Plugin for Jenkins CI Server URL Validation cross site scripting	low	🔒	-	-	-
205194	Dynamic Extended Choice Parameter Plugin Moded Extended Choice cross site scripting	low	🔒	-	-	-
205193	Job Configuration History Plugin System Configuration cross-site request forgery	low	🔒	-	-	-
205192	External Monitor Job Type Plugin cross-site request forgery [CVE-2022-36886]	low	🔒	-	-	-
205191	OX Software OX App Suite E-Mail Message appHandler cross site scripting	low	🔒	-	-	-
205190	OX Software OX App Suite cross site scripting [CVE-2022-23099]	low	🔒	-	-	-
205189	Coverity Plugin authorization [CVE-2022-36921]	medium	🔒	-	-	-
205188	Coverity Plugin authorization [CVE-2022-36919]	low	🔒	-	-	-
205187	Buckminster Plugin Controller File System authorization [CVE-2022-36918]	low	🔒	-	-	-
205186	Android Signing Plugin authorization [CVE-2022-36915]	low	🔒	-	-	-
205185	Files Found Trigger Plugin Controller File System authorization	low	🔒	-	-	-
205184	Openstack Heat Plugin Controller File System authorization [CVE-2022-36913]	medium	🔒	-	-	-
205183	Openstack Heat Plugin authorization [CVE-2022-36912]	medium	🔒	-	-	-
205182	Lucene-Search Plugin HTTP Endpoint authorization [CVE-2022-36910]	low	🔒	-	-	-
205181	OpenShift Deployer Plugin Controller File System authorization	medium	🔒	-	-	-
205180	OpenShift Deployer Plugin permission [CVE-2022-36907]	medium	🔒	-	-	-
205179	Repository Connector Plugin Controller File System authorization	low	🔒	-	-	-
205178	Repository Connector Plugin authorization [CVE-2022-36903]	low	🔒	-	-	-
205177	HTTP Request Plugin Controller File System credentials storage	low	🔒	-	-	-
205176	Compuware zAdviser API Plugin protection mechanism [CVE-2022-36900]	medium	🔒	-	-	-
205175	Compuware Xpediter Code Coverage Plugin Configuration authorization	low	🔒	-	-	-
205174	Compuware Topaz Utilities Plugin Configuration authorization	low	🔒	-	-	-
205173	CLIF Performance Testing Plugin Controller File System path traversal	medium	🔒	-	-	-
205172	rpmsign-plugin authorization [CVE-2022-36893]	low	🔒	-	-	-
205171	rhnpush-plugin Plugin authorization [CVE-2022-36892]	low	🔒	-	-	-
205170	Deployer Framework Plugin Deployment Log authorization [CVE-2022-36891]	low	🔒	-	-	-
205169	Deployer Framework Plugin Controller File System path traversal	low	🔒	-	-	-
205168	Deployer Framework Plugin Application Path path traversal [CVE-2022-36889]	medium	🔒	-	-	-
205167	HashiCorp Vault Plugin authorization [CVE-2022-36888]	low	🔒	-	-	-
205166	GitHub Plugin timing discrepancy [CVE-2022-36885]	low	🔒	-	-	-
205165	Git Plugin Webhook Endpoint information disclosure [CVE-2022-36884]	low	🔒	-	-	-
205164	Git Plugin Build cross-site request forgery [CVE-2022-36882]	low	🔒	-	-	-
205163	Git Client Plugin SSH Host Key Verification key exchange without entity authentication	low	🔒	-	-	-
205162	OX Software OX App Suite Documentconverter API server-side request forgery	medium	🔒	-	-	-
205161	OX Software OX App Suite Documentconverter API os command injection	medium	🔒	-	-	-
205160	OX Software OX App Suite Email Attachment Documentconverter os command injection	medium	🔒	-	-	-
205159	Sims addNotifyServlet cross site scripting	low	🔒	-	-	-
205158	hestiacp os command injection [CVE-2022-2550]	medium	🔒	-	-	-
205157	GPAC null pointer dereference [CVE-2022-2549]	low	🔒	-	-	-
205156	Google Cloud Backup Plugin Manual Backup cross-site request forgery	low	🔒	-	-	-
205155	Compuware ISPW Operations Plugin protection mechanism [CVE-2022-36899]	low	🔒	-	-	-
205154	Compuware ISPW Operations Plugin Configuration authorization	low	🔒	-	-	-
205153	Compuware Source Code Download Configuration authorization [CVE-2022-36896]	low	🔒	-	-	-
205152	Adobe Acrobat Reader out-of-bounds [CVE-2022-35669]	low	🔒	-	-	-
205151	Nico Amarilla BxSlider WP Plugin cross site scripting [CVE-2022-33943]	low	🔒	-	-	-
205150	Adobe Acrobat Reader File out-of-bounds [CVE-2022-35672]	low	🔒	-	-	-
205149	Git Plugin Build authorization [CVE-2022-36883]	medium	🔒	-	-	-
205148	Sims Attachment Download path traversal [CVE-2022-34551]	medium	🔒	-	-	-
205147	Sims uploadServlet unrestricted upload	medium	🔒	-	-	-
205146	WASM3 Compile_Memory_CopyFill memory corruption	medium	🔒	-	-	-
205145	Google Cloud Backup Plugin Manual Backup authorization [CVE-2022-36917]	medium	🔒	-	-	-
205144	SAP SuccessFactors Mobile Application write privileges management	medium	🔒	-	-	-
205143	biplob018 Shortcode Addons Plugin Options Change access control	medium	🔒	-	-	-
205142	Trellix MA Smart Installer uncontrolled search path [CVE-2022-2313]	medium	🔒	-	-	-
205141	Trellix Skyhigh SWG Administration User Interface authentication spoofing	medium	🔒	-	-	-
205140	InMailX Outlook Plugin Connection Name cross site scripting [CVE-2022-27105]	low	🔒	-	-	-
205139	Webmin/Usermin Read Mail Module cross site scripting [CVE-2022-36880]	low	🔒	-	-	-
205138	WeChat App Address Book wx.searchContacts information disclosure	low	🔒	-	-	-
205137	HashiCorp Vault/Vault Enterprise access control [CVE-2022-36129]	medium	🔒	-	-	-
205136	Motorola MOSCAD Toolbox Configuration File wmdlcdrv.ini cleartext storage in a file or on disk	medium	🔒	-	-	-
205135	Motorola ACE1000 hard-coded key [CVE-2022-30274]	low	🔒	-	-	-
205134	Motorola ACE1000 SSH Private Key sshd_service hard-coded key	low	🔒	-	-	-
205133	Motorola ACE1000 RTU integrity check [CVE-2022-30269]	medium	🔒	-	-	-
205132	Emerson OpenBSI hard-coded key [CVE-2022-29960]	low	🔒	-	-	-
205131	JTEKT TOYOPUC PLC CMPLink Protocol integrity check [CVE-2022-29958]	medium	🔒	-	-	-
205130	Emerson DeltaV Distributed Control System improper authentication	medium	🔒	-	-	-
205129	Bently Nevada 3700 Service Port 4001 hard-coded credentials [CVE-2022-29953]	medium	🔒	-	-	-
205128	Bently Nevada 3701-4X/60M100 TDI Command missing authentication	medium	🔒	-	-	-
205127	JTEKT TOYOPUC PLC CMPLink Protocol missing authentication [CVE-2022-29951]	medium	🔒	-	-	-
205126	QQ App qq.createMapContext permission	medium	🔒	-	-	-
205125	Synology DiskStation Manager Webapi path traversal [CVE-2022-27610]	medium	🔒	-	-	-
205124	Rizin Binary get_long_object integer overflow	low	🔒	-	-	-
205123	Motorola MOSCAD/ACE IP Gateway Module missing authentication	medium	🔒	-	-	-
205122	Motorola MDLC improper enforcement of message integrity [CVE-2022-30273]	medium	🔒	-	-	-
205121	Motorola ACE1000 RTU Front End Processor Module integrity check	high	🔒	-	-	-
205120	Emerson DeltaV Distributed Control System FTP hard-coded credentials	medium	🔒	-	-	-
205119	Emerson DeltaV Distributed Control System Telnet Interface entropy	low	🔒	-	-	-
205118	Emerson DeltaV Distributed Control System WIOC SSH hard-coded credentials	medium	🔒	-	-	-
205117	Emerson DeltaV Distributed Control System Telnet Service hard-coded credentials	high	🔒	-	-	-
205116	Motorola ACE1000 RTU SSH Interface hard-coded credentials [CVE-2022-30270]	medium	🔒	-	-	-
205115	Online Fire Reporting System cross site scripting [CVE-2022-34611]	low	🔒	-	-	-
205114	Feehi CMS Advertising Management Module unrestricted upload [CVE-2022-34971]	medium	🔒	-	-	-
205113	Advanced School Management System update_subject.php cross site scripting	low	🔒	-	-	-
205112	Linux Kernel xfrm_policy.c xfrm_expand_policies denial of service	low	🔒	-	-	-
205111	Linux Kernel server_key.c rxrpc_preparse_s null pointer dereference	medium	🔒	-	-	-
205110	Linux Kernel ACRN Device Model hsm.c acrn_dev_ioctl memory leak	medium	🔒	-	-	-
205109	ianwalter merge code injection	medium	🔒	-	-	-
205108	LibreOffice Configuration Database inadequate encryption [CVE-2022-26307]	low	🔒	-	-	-
205107	Allow SVG Files Plugin cross site scripting [CVE-2022-2299]	low	🔒	-	-	-
205106	beancount fava cross site scripting [CVE-2022-2523]	low	🔒	-	-	-
205105	grapesjs Selector Manager cross site scripting [CVE-2022-21802]	low	🔒	-	-	-
205104	Western Digital My Cloud cross site scripting [CVE-2022-22999]	low	🔒	-	-	-
205103	Pega improper authorization [CVE-2022-24083]	medium	🔒	-	-	-
205102	Fava Error Message cross site scripting [CVE-2022-2514]	low	🔒	-	-	-
205101	Ceph authorization [CVE-2022-0670]	medium	🔒	-	-	-
205100	Zoho ManageEngine SupportCenter Plus API Request improper authentication	medium	🔒	-	-	-
205099	Paymoney cross site scripting [CVE-2022-34991]	low	🔒	-	-	-
205098	Inout Blockchain AltExchanger js cross site scripting	low	🔒	-	-	-
205097	oretnom23 Online Fire Reporting System Parameter sql injection	medium	🔒	-	-	-
205096	Cloudflare WARP Client warp-cli Subcommand access control [CVE-2022-2225]	medium	🔒	-	-	-
205095	zephyrproject-rtos Zephyr Bluetooth Mesh Core Stack out-of-bounds write	medium	🔒	-	-	-
205094	zephyrproject-rtos Zephyr Bluetooth Mesh Core Stack out-of-bounds write	medium	🔒	-	-	-
205093	Synology Calendar Webapi cross-site request forgery [CVE-2022-22686]	low	🔒	-	-	-
205092	Atlassian Confluence Server/Data Center Livesearch Macro cross site scripting	low	🔒	-	-	-
205091	mistune Regular Expression denial of service [CVE-2022-34749]	low	🔒	-	-	-
205090	WAVLINK WN535 G3 POST adm.cgi Privilege Escalation	medium	🔒	-	-	-
205089	WAVLINK WN535 G3 POST ExportAllSettings.sh Privilege Escalation	low	🔒	-	-	-
205088	Wavlink WiFi-Repeater fctest.shtml access control	low	🔒	-	-	-
205087	Wavlink WiFi-Repeater Tftpd32.ini access control	low	🔒	-	-	-
205086	Wavlink WiFi-Repeater mb_wifibasic.shtml access control	medium	🔒	-	-	-
205085	Wavlink WiFi-Repeater tftp.txt access control	low	🔒	-	-	-
205084	Wavlink WiFi-Repeater syslog.shtml access control	low	🔒	-	-	-
205083	WAVLINK WN579 X3 messages.txt information disclosure	low	🔒	-	-	-
205082	Joplin Node Title injection [CVE-2022-35131]	medium	🔒	-	-	-
205081	Orange Station sql injection [CVE-2022-36161]	medium	🔒	-	-	-
205080	Warehouse Management System sql injection [CVE-2022-34067]	medium	🔒	-	-	-
205079	yasm nasm-pp.c error use after free	medium	🔒	-	-	-
205078	yasm nasm-pp.c pp_getline use after free	medium	🔒	-	-	-
205077	yasm nasm-pp.c expand_smacro null pointer dereference	low	🔒	-	-	-
205076	yasm nasm-pp.c expand_mmacro null pointer dereference	low	🔒	-	-	-
205075	yasm nasm-pp.c inc_fopen heap-based overflow	medium	🔒	-	-	-
205074	yasm expr.c yasm_expr__copy_except null pointer dereference	low	🔒	-	-	-
205073	yasm expr.c expr_traverse_nodes_post use after free	medium	🔒	-	-	-
205072	yasm intnum.c yasm_intnum_destroy use after free	medium	🔒	-	-	-
205071	yasm nasm-pp.c if_condition null pointer dereference	low	🔒	-	-	-
205070	yasm nasm-parse.c nasm_parser_directive null pointer dereference	low	🔒	-	-	-
205069	yasm nasm-pp.c find_cc null pointer dereference	low	🔒	-	-	-
205068	yasm nasm-pp.c expand_mmac_params null pointer dereference	low	🔒	-	-	-
205067	yasm nasm-pp.c hash null pointer dereference	low	🔒	-	-	-
205066	yasm nasm-pp.c do_directive null pointer dereference	low	🔒	-	-	-
205065	yasm expr.c yasm_expr_get_intnum null pointer dereference	low	🔒	-	-	-
205064	lrzip stream.c ucompthread use after free	medium	🔒	-	-	-
205063	NASM alloc.c nasm_malloc memory leak	low	🔒	-	-	-
205062	lrzip stream.c fill_buffer memory leak	low	🔒	-	-	-
205061	NASM alloc.c nasm_calloc memory leak	low	🔒	-	-	-
205060	mjs/ES6 mjs.c mjs_bcode_part_get_by_offset null pointer dereference	low	🔒	-	-	-
205059	mjs/ES6 stack-based overflow [CVE-2021-33448]	medium	🔒	-	-	-
205058	mjs/ES6 mjs.c mjs_print null pointer dereference	low	🔒	-	-	-
205057	mjs/ES6 mjs.c mjs_next null pointer dereference	low	🔒	-	-	-
205056	mjs/ES6 mjs.c mjs_string_char_code_at null pointer dereference	low	🔒	-	-	-
205055	IBM Robotic Process Automation Access Token information disclosure	low	🔒	-	-	-
205054	IBM Security Verify Information Queue cross-site request forgery	low	🔒	-	-	-
205053	IBM Partner Engagement Manager denial of service [CVE-2022-35639]	low	🔒	-	-	-
205052	Pandora FMS File Manager path traversal [CVE-2022-1648]	low	🔒	-	-	-
205051	mjs/ES6 mjs.c getprop_builtin_foreign null pointer dereference	low	🔒	-	-	-
205050	mjs/ES6 mjs.c mjs_execute stack-based overflow	medium	🔒	-	-	-
205049	mjs/ES6 mjs.c json_printf null pointer dereference	low	🔒	-	-	-
205048	mjs/ES6 mjs.c exec_expr null pointer dereference	low	🔒	-	-	-
205047	mjs/ES6 mjs.c gc_compact_strings integer overflow	medium	🔒	-	-	-
205046	mjs/ES6 mjs.c json_parse_array stack-based overflow	medium	🔒	-	-	-
205045	mjs/ES6 mjs.c frozen_cb memory leak	low	🔒	-	-	-
205044	mjs/ES6 mjs.c mjs_bcode_commit null pointer dereference	low	🔒	-	-	-
205043	Xen Shadow Mode Privilege Escalation [CVE-2022-33745]	low	🔒	-	-	-
205042	Fruits Bazar user_password_recover.php sql injection	medium	🔒	-	-	-
205041	FileWave improper authentication [CVE-2022-34907]	medium	🔒	-	-	-
205040	FileWave hard-coded key [CVE-2022-34906]	low	🔒	-	-	-
205039	Western Digital My Cloud Web App downgrade [CVE-2022-23000]	medium	🔒	-	-	-
205038	LibreOffice Configuration Database inadequate encryption [CVE-2022-26306]	low	🔒	-	-	-
205037	LibreOffice certificate validation [CVE-2022-26305]	medium	🔒	-	-	-
205036	vim heap-based overflow [CVE-2022-2522]	medium	🔒	-	-	-
205035	OpenKM Community Edition XMLReader Parser XMLTextExtractor.java xml external entity reference	medium	🔒	-	-	-
205034	set-deep-prop main code injection	medium	🔒	-	-	-
205033	node-import index.js eval Remote Code Execution	medium	🔒	-	-	-
205032	thenify eval Remote Code Execution	medium	🔒	-	-	-
205031	snyk-broker pathname traversal [CVE-2020-7649]	low	🔒	-	-	-
205030	properties-reader Remote Code Execution [CVE-2020-28471]	medium	🔒	-	-	-
205029	markdown-it-decorate Event code injection [CVE-2020-28459]	medium	🔒	-	-	-
205028	markdown-it-toc escape output [CVE-2020-28455]	medium	🔒	-	-	-
205027	xopen index.js injection	medium	🔒	-	-	-
205026	ntesseract tesseract.js command injection [CVE-2020-28446]	medium	🔒	-	-	-
205025	npm-help index.js export.latestVersion injection	medium	🔒	-	-	-
205024	sonar-wrapper sonarRunner.js injection [CVE-2020-28443]	medium	🔒	-	-	-
205023	deferred-exec deferred-exec.js injection [CVE-2020-28438]	medium	🔒	-	-	-
205022	git-archive Exports command injection [CVE-2020-28422]	medium	🔒	-	-	-
205021	Pandora FMS Agent Creation Section cross site scripting [CVE-2022-2059]	low	🔒	-	-	-
205020	Pandora FMS File Manager cross site scripting [CVE-2022-2032]	low	🔒	-	-	-
205019	Moodle LTI Module cross site scripting [CVE-2022-35653]	low	🔒	-	-	-
205018	Moodle SCORM Track Detail cross site scripting [CVE-2022-35651]	low	🔒	-	-	-
205017	Booked URL redirect [CVE-2022-30706]	medium	🔒	-	-	-
205016	Inductive Automation Ignition ZIP File Parser deserialization	medium	🔒	-	-	-
205015	Inductive Automation Ignition deserialization [CVE-2022-35870]	medium	🔒	-	-	-
205014	Inductive Automation Ignition authentication bypass [CVE-2022-35869]	medium	🔒	-	-	-
205013	OpenTeknik OSSN Open Source Social Network Group Timeline Module cross site scripting	low	🔒	-	-	-
205012	Moodle Mobile Auto-Login Feature redirect [CVE-2022-35652]	low	🔒	-	-	-
205011	Moodle Lesson Question Import path traversal [CVE-2022-35650]	medium	🔒	-	-	-
205010	OpenTeknik OSSN Open Source Social Network SitePages Module cross site scripting	low	🔒	-	-	-
205009	OpenTeknik OSSN Open Source Social Network News Feed Module cross site scripting	low	🔒	-	-	-
205008	OpenTeknik OSSN Open Source Social Network Users Timeline Module cross site scripting	low	🔒	-	-	-
205007	ABB Hitachi Energy MSM HTTP Web Interface response splitting	medium	🔒	-	-	-
205006	otp-generator One-Time Password random values [CVE-2021-23451]	low	🔒	-	-	-
205005	Atlassian Jira Service Management Server/Data Center JSM Insight server-side request forgery	medium	🔒	-	-	-
205004	OpenTeknik OSSN Open Source Social Network home injection	low	🔒	-	-	-
205003	ion-parser INI File code injection [CVE-2020-28462]	medium	🔒	-	-	-
205002	js-ini INI File code injection [CVE-2020-28461]	medium	🔒	-	-	-
205001	conf-cfg-ini INI File code injection [CVE-2020-28441]	medium	🔒	-	-	-
205000	google-cloudstorage-commands Remote Code Execution [CVE-2020-28436]	medium	🔒	-	-	-
204999	CommuniLink Internet Limited CLink Office sql injection [CVE-2022-29709]	medium	🔒	-	-	-
204998	Moodle PostScript Parser code injection [CVE-2022-35649]	medium	🔒	-	-	-
204997	Name Directory Plugin cross site scripting [CVE-2022-2072]	low	🔒	-	-	-
204996	Name Directory Plugin Import cross-site request forgery [CVE-2022-2071]	low	🔒	-	-	-
204995	Simple Page Transition Plugin Setting cross site scripting [CVE-2022-2341]	low	🔒	-	-	-
204994	W-DALIL Plugin cross site scripting [CVE-2022-2340]	low	🔒	-	-	-
204993	Biplob Adhikari Tabs Plugin Options Change access control [CVE-2022-36375]	medium	🔒	-	-	-
204992	Biplob Adhikari Flipbox Plugin Options Change access control	medium	🔒	-	-	-
204991	untangle xml external entity reference [CVE-2022-31471]	medium	🔒	-	-	-
204990	untangle DTD denial of service [CVE-2022-33977]	low	🔒	-	-	-
204989	Inductive Automation Ignition ZIP File unsafe action warning	high	🔒	-	-	-
204988	Inductive Automation Ignition authenticateAdSso missing authentication	medium	🔒	-	-	-
204987	IBM Security Verify Information Queue information disclosure	low	🔒	-	-	-
204986	IBM Security Verify Information Queue hard-coded credentials	low	🔒	-	-	-
204985	QRcdr process.php pathname traversal	medium	🔒	-	-	-
204984	IBM Security Verify Information Queue cross-site request forgery	low	🔒	-	-	-
204983	IBM Security Verify Information Queue information disclosure	low	🔒	-	-	-
204982	Request a Quote Plugin Setting cross site scripting [CVE-2022-2239]	low	🔒	-	-	-
204981	Unyson Plugin cross site scripting [CVE-2022-2219]	low	🔒	-	-	-
204980	OpenTeknik OSSN Open Source Social Network com_installer unrestricted upload	medium	🔒	-	-	-
204979	WP Video Lightbox Plugin cross site scripting [CVE-2022-2189]	low	🔒	-	-	-
204978	Popup Anything Plugin Frontend Page cross site scripting [CVE-2022-2115]	low	🔒	-	-	-
204977	Header Footer Code Manager Plugin Admin Page cross site scripting	low	🔒	-	-	-
204976	Osamaesh WP Visitor Statistics Plugin sql injection [CVE-2022-33965]	medium	🔒	-	-	-
204975	Request a Quote Plugin csv injection [CVE-2022-2240]	medium	🔒	-	-	-
204974	SP Project & Document Manager Plugin information disclosure [CVE-2022-1551]	low	🔒	-	-	-
204973	ffmpeg-sdk index.js injection	medium	🔒	-	-	-
204972	ABB Hitachi Energy MSM Web Interface cross-site request forgery	low	🔒	-	-	-
204971	Professional Social Sharing Buttons, Icons & Related Posts Plugin AJAX Action information disclosure	low	🔒	-	-	-
204970	Exports and Reports Plugin CSV Export csv injection [CVE-2022-1539]	medium	🔒	-	-	-
204969	Webmin UI Command apt-lib.pl cross site scripting	low	🔒	-	-	-
204968	Obsidian URL code [CVE-2022-36450]	low	🔒	-	-	-
204967	Atos Unify OpenScape SBC/OpenScape Branch/OpenScape BCF Remote Code Execution	high	🔒	-	-	-
204966	GNOME gdk-pixbuf GIF File io-gif-animation.c composite_frame heap-based overflow	medium	🔒	-	-	-
204965	Apache MXNet Operator Name resource consumption [CVE-2022-24294]	low	🔒	-	-	-
204964	Scooter Beyond Compare Windows EXE Installer access control [CVE-2022-36414]	medium	🔒	-	-	-
204963	Django REST Framework DRF Browsable API cross site scripting	low	🔒	-	-	-
204962	Scooter Beyond Compare Uninstaller uncontrolled search path [CVE-2022-36415]	medium	🔒	-	-	-
204961	Hallo Welt BlueSpice commonuserinterface cross site scripting	low	🔒	-	-	-
204960	Hallo Welt BlueSpice Search Term Special:SearchCenter cross site scripting	low	🔒	-	-	-
204959	Dataease Plugin upload unrestricted upload	medium	🔒	-	-	-
204958	Dataease uninstall access control	medium	🔒	-	-	-
204957	convert-svg-core SVG File code injection [CVE-2022-25759]	medium	🔒	-	-	-
204956	F-Secure Atlant Scanning Engine aepack.dll denial of service	low	🔒	-	-	-
204955	F-Secure Atlant APK File denial of service [CVE-2022-28878]	low	🔒	-	-	-
204954	Xiaomi Mi Sound App information disclosure [CVE-2020-14126]	low	🔒	-	-	-
204953	Xiaomi SmartHome App information disclosure [CVE-2020-14114]	low	🔒	-	-	-
204952	Dataease sql injection [CVE-2022-34115]	medium	🔒	-	-	-
204951	Dataease sql injection [CVE-2022-34114]	medium	🔒	-	-	-
204950	PrestaShop sql injection [CVE-2022-36408]	medium	🔒	-	-	-
204949	wpWax Team Plugin cross site scripting [CVE-2022-34853]	low	🔒	-	-	-
204948	wpWax Team Plugin cross site scripting [CVE-2022-34650]	low	🔒	-	-	-
204947	Chinmoy Paul Testimonials Plugin cross site scripting [CVE-2022-33191]	low	🔒	-	-	-
204946	Sygnoos Popup Builder Plugin Plugin Setting cross-site request forgery	low	🔒	-	-	-
204945	CodexShaper WP OAuth2 Server Plugin improper authentication [CVE-2022-34839]	low	🔒	-	-	-
204944	Supsystic Social Share Buttons Plugin sql injection [CVE-2022-33960]	medium	🔒	-	-	-
204943	Supsystic Social Share Buttons Plugin access control [CVE-2022-27235]	medium	🔒	-	-	-
204942	MultiSafepay for WooCommerce Plugin path traversal [CVE-2022-33901]	medium	🔒	-	-	-
204941	WooPlugins.co Homepage Product Organizer for WooCommerce Plugin sql injection	medium	🔒	-	-	-
204940	Radare2 Binary File bfile.c r_bin_file_xtr_load_buffer null pointer dereference	low	🔒	-	-	-
204939	Johnson Controls Metasys ADS/Metasys ADX/Metasys OAS Web API missing authentication	medium	🔒	-	-	-
204938	scu-captcha backdoor [CVE-2022-34983]	medium	🔒	-	-	-
204937	eziod backdoor [CVE-2022-34982]	medium	🔒	-	-	-
204936	PyCrowdTangle backdoor [CVE-2022-34981]	medium	🔒	-	-	-
204935	wikifaces backdoor [CVE-2022-34509]	medium	🔒	-	-	-
204934	QPDF PDF File processXRefStream heap-based overflow	medium	🔒	-	-	-
204933	Radare2 Binary File wasm.c consume_encoded_name_new heap-based overflow	low	🔒	-	-	-
204932	bin-collection backdoor [CVE-2022-34501]	medium	🔒	-	-	-
204931	bin-collect backdoor [CVE-2022-34500]	medium	🔒	-	-	-
204930	Microweber cross site scripting [CVE-2022-2470]	low	🔒	-	-	-
204929	Caddy URI rewrite.go rewrite out-of-bounds	low	🔒	-	-	-
204928	Advantech iView path traversal [CVE-2022-2139]	medium	🔒	-	-	-
204927	Advantech iView missing authentication [CVE-2022-2138]	medium	🔒	-	-	-
204926	Advantech iView command injection [CVE-2022-2143]	high	🔒	-	-	-
204925	Advantech iView sql injection [CVE-2022-2142]	medium	🔒	-	-	-
204924	Advantech iView sql injection [CVE-2022-2137]	medium	🔒	-	-	-
204923	Advantech iView sql injection [CVE-2022-2136]	medium	🔒	-	-	-
204922	Advantech iView sql injection [CVE-2022-2135]	medium	🔒	-	-	-
204921	Red Hat OpenStack Session Cookie cookie httponly flag [CVE-2022-1655]	low	🔒	-	-	-
204920	Better PDF Exporter Add-on PDF Templates Overview Page cross site scripting	low	🔒	-	-	-
204919	Zulip API Call improper authorization [CVE-2022-31168]	medium	🔒	-	-	-
204918	Linux Kernel io_uring use after free	medium	🔒	-	-	-
204917	Linux Kernel io_uring double free	medium	🔒	-	-	-
204916	Apple Safari WebRTC memory corruption [CVE-2022-2294]	medium	🔒	-	-	-
204915	Apple Safari WebKit out-of-bounds write [CVE-2022-32792]	medium	🔒	-	-	-
204914	Apple Safari Safari Extensions information disclosure [CVE-2022-32784]	low	🔒	-	-	-
204913	Apple macOS Windows Server information disclosure [CVE-2022-32848]	low	🔒	-	-	-
204912	Apple macOS Wi-Fi Remote Code Execution [CVE-2022-32847]	high	🔒	-	-	-
204911	Apple macOS Wi-Fi Remote Code Execution [CVE-2022-32837]	high	🔒	-	-	-
204910	Apple macOS WebRTC memory corruption [CVE-2022-2294]	medium	🔒	-	-	-
204909	Apple macOS WebKit out-of-bounds write [CVE-2022-32792]	medium	🔒	-	-	-
204908	Apple macOS WebKit improper restriction of rendered ui layers	medium	🔒	-	-	-
204907	Apple macOS TCC access control [CVE-2022-32834]	low	🔒	-	-	-
204906	Apple macOS subversion Privilege Escalation [CVE-2022-29048]	low	🔒	-	-	-
204905	Apple macOS subversion Privilege Escalation [CVE-2022-29046]	low	🔒	-	-	-
204904	Apple macOS subversion Privilege Escalation [CVE-2022-24070]	low	🔒	-	-	-
204903	Apple macOS subversion Privilege Escalation [CVE-2021-28544]	low	🔒	-	-	-
204902	Apple macOS Spotlight Local Privilege Escalation [CVE-2022-32801]	medium	🔒	-	-	-
204901	Apple macOS Spindump access control [CVE-2022-32807]	low	🔒	-	-	-
204900	Apple macOS Software Update information disclosure [CVE-2022-32857]	low	🔒	-	-	-
204899	Apple macOS SMB information disclosure [CVE-2022-32818]	low	🔒	-	-	-
204898	Apple macOS SMB out-of-bounds [CVE-2022-32799]	low	🔒	-	-	-
204897	Apple macOS SMB out-of-bounds write [CVE-2022-32798]	low	🔒	-	-	-
204896	Apple macOS SMB out-of-bounds [CVE-2022-32842]	low	🔒	-	-	-
204895	Apple macOS SMB memory corruption [CVE-2022-32796]	medium	🔒	-	-	-
204894	Apple macOS PS Normalizer out-of-bounds write [CVE-2022-32843]	medium	🔒	-	-	-
204893	Apple macOS PluginKit state issue [CVE-2022-32838]	low	🔒	-	-	-
204892	Apple macOS PackageKit access control [CVE-2022-32800]	low	🔒	-	-	-
204891	Apple macOS PackageKit access control [CVE-2022-32786]	low	🔒	-	-	-
204890	Apple macOS Multi-Touch type confusion [CVE-2022-32814]	medium	🔒	-	-	-
204889	Apple macOS libxml2 initialization [CVE-2022-32823]	low	🔒	-	-	-
204888	Apple macOS Liblouis Local Privilege Escalation [CVE-2022-26981]	low	🔒	-	-	-
204887	Apple macOS Kernel Local Privilege Escalation [CVE-2022-32829]	medium	🔒	-	-	-
204886	Apple macOS Kernel out-of-bounds [CVE-2022-32817]	low	🔒	-	-	-
204885	Apple macOS Kernel Local Privilege Escalation [CVE-2022-32815]	medium	🔒	-	-	-
204884	Apple macOS Kernel Local Privilege Escalation [CVE-2022-32813]	medium	🔒	-	-	-
204883	Apple macOS Intel Graphics Driver Local Privilege Escalation	medium	🔒	-	-	-
204882	Apple macOS Intel Graphics Driver memory corruption [CVE-2022-32811]	medium	🔒	-	-	-
204881	Apple macOS ImageIO null pointer dereference [CVE-2022-32785]	low	🔒	-	-	-
204880	Apple macOS ImageIO information disclosure [CVE-2022-32841]	low	🔒	-	-	-
204879	Apple macOS ICU out-of-bounds write [CVE-2022-32787]	medium	🔒	-	-	-
204878	Apple macOS iCloud Photo Library information disclosure [CVE-2022-32849]	low	🔒	-	-	-
204877	Apple macOS GPU Drivers memory corruption [CVE-2022-32821]	medium	🔒	-	-	-
204876	Apple macOS GPU Drivers out-of-bounds write [CVE-2022-32793]	low	🔒	-	-	-
204875	Apple macOS File System Events state issue [CVE-2022-32819]	medium	🔒	-	-	-
204874	Apple macOS CoreText Remote Code Execution [CVE-2022-32839]	medium	🔒	-	-	-
204873	Apple macOS CoreMedia information disclosure [CVE-2022-32828]	low	🔒	-	-	-
204872	Apple macOS Calendar information disclosure [CVE-2022-32805]	low	🔒	-	-	-
204871	Apple macOS Automation access control [CVE-2022-32789]	low	🔒	-	-	-
204870	Apple macOS Audio information disclosure [CVE-2022-32825]	low	🔒	-	-	-
204869	Apple macOS Audio out-of-bounds write [CVE-2022-32820]	medium	🔒	-	-	-
204868	Apple macOS AppleScript out-of-bounds [CVE-2022-32831]	medium	🔒	-	-	-
204867	Apple macOS AppleScript out-of-bounds [CVE-2022-32853]	medium	🔒	-	-	-
204866	Apple macOS AppleScript out-of-bounds [CVE-2022-32852]	medium	🔒	-	-	-
204865	Apple macOS AppleScript out-of-bounds [CVE-2022-32851]	medium	🔒	-	-	-
204864	Apple macOS AppleScript Remote Code Execution [CVE-2022-32797]	medium	🔒	-	-	-
204863	Apple macOS Apple Neural Engine sandbox [CVE-2022-32845]	low	🔒	-	-	-
204862	Apple macOS Apple Neural Engine Local Privilege Escalation [CVE-2022-32840]	medium	🔒	-	-	-
204861	Apple macOS Apple Neural Engine Local Privilege Escalation [CVE-2022-32810]	medium	🔒	-	-	-
204860	Apple macOS AppleMobileFileIntegrity improper authorization [CVE-2022-32826]	medium	🔒	-	-	-
204859	Apple macOS APFS Local Privilege Escalation [CVE-2022-32832]	medium	🔒	-	-	-
204858	YIKES Custom Product Tabs for WooCommerce Plugin access control	medium	🔒	-	-	-
204857	Microweber cross site scripting [CVE-2022-2495]	low	🔒	-	-	-
204856	OpenEMR cross site scripting [CVE-2022-2494]	low	🔒	-	-	-
204855	ASUSTek Aura Ready Game SDK Service GameSDK.exe unquoted search path	medium	🔒	-	-	-
204854	Lin CMS Spring Boot access control [CVE-2022-32430]	medium	🔒	-	-	-
204853	OpenZeppelin SignatureChecker.isValidSignatureNow input validation	low	🔒	-	-	-
204852	OpenZeppelin ERC165Checker.supportsInterface input validation	medium	🔒	-	-	-
204851	Wasmtime Cranelift calculation [CVE-2022-31169]	medium	🔒	-	-	-
204850	Tovy improper authentication [CVE-2022-31164]	medium	🔒	-	-	-
204849	Slack Morphism unknown vulnerability [CVE-2022-31162]	low	🔒	-	-	-
204848	OpenEMR Outside Expected Data Manager unknown vulnerability [CVE-2022-2493]	medium	🔒	-	-	-
204847	ALLNET WR0500AC wizardpwd.asp authorization	medium	🔒	-	-	-
204846	Supersmart.me Walk Through API invoiceImg improper authentication	low	🔒	-	-	-
204845	Citilog HTTP Traffic cleartext transmission [CVE-2022-28861]	low	🔒	-	-	-
204844	Citilog channel accessible [CVE-2022-28860]	medium	🔒	-	-	-
204843	F-Secure WithSecure Endpoint Protection access control [CVE-2022-28877]	medium	🔒	-	-	-
204842	file-type MKV File infinite loop [CVE-2022-36313]	low	🔒	-	-	-
204841	ABB RMC-100 Standard path traversal [CVE-2022-0902]	medium	🔒	-	-	-
204840	Florent Maillefaud WP Maintenance Plugin cross site scripting	low	🔒	-	-	-
204839	Sygnoos Popup Builder Plugin Popup Status Change cross-site request forgery	low	🔒	-	-	-
204838	JoomUnited WP Meta SEO Plugin Social Setting cross-site request forgery	low	🔒	-	-	-
204837	biplob018 Shortcode Addons Plugin Option Update access control	medium	🔒	-	-	-
204836	Biplob Adhikari Accordions Plugin Options Change access control	medium	🔒	-	-	-
204835	GiveWP Plugin Export information disclosure [CVE-2022-31475]	low	🔒	-	-	-
204834	GiveWP Plugin Export access control [CVE-2022-28700]	medium	🔒	-	-	-
204833	TZInfo Timezone.get path traversal	medium	🔒	-	-	-
204832	Backdoor.Win32.Eclipse.h Service Port 6210 hard-coded credentials	medium	🔒	-	-	-
204831	Asus IoT Control Center Web-based Management Interface cross site scripting	low	🔒	-	-	-
204830	Cisco Nexus Dashboard CLI Command input validation [CVE-2022-20909]	medium	🔒	-	-	-
204829	Cisco Nexus Dashboard CLI Command toctou [CVE-2022-20908]	medium	🔒	-	-	-
204828	Cisco Nexus Dashboard CLI Command toctou [CVE-2022-20907]	medium	🔒	-	-	-
204827	Cisco Nexus Dashboard CLI Command toctou [CVE-2022-20906]	medium	🔒	-	-	-
204826	Cisco Nexus Dashboard Web-based Management Interface path traversal	medium	🔒	-	-	-
204825	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204824	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204823	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204822	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204821	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204820	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204819	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204818	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204817	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204816	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204815	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204814	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204813	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204812	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204811	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204810	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204809	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204808	Google Chrome Views use after free [CVE-2022-2481]	medium	🔒	-	-	-
204807	Google Chrome Service Worker API use after free [CVE-2022-2480]	medium	🔒	-	-	-
204806	Google Chrome File Remote Code Execution [CVE-2022-2479]	medium	🔒	-	-	-
204805	Google Chrome PDF use after free [CVE-2022-2478]	medium	🔒	-	-	-
204804	Google Chrome Guest View use after free [CVE-2022-2477]	medium	🔒	-	-	-
204803	Apple watchOS Wi-Fi memory corruption [CVE-2022-32847]	high	🔒	-	-	-
204802	Apple watchOS WebKit out-of-bounds write [CVE-2022-32792]	medium	🔒	-	-	-
204801	Apple watchOS WebKit improper restriction of rendered ui layers	medium	🔒	-	-	-
204800	Apple watchOS Software Update information disclosure [CVE-2022-32857]	low	🔒	-	-	-
204799	Apple watchOS Multi-Touch type confusion [CVE-2022-32814]	medium	🔒	-	-	-
204798	Apple watchOS libxml2 initialization [CVE-2022-32823]	low	🔒	-	-	-
204797	Apple watchOS Liblouis Local Privilege Escalation [CVE-2022-26981]	low	🔒	-	-	-
204796	Apple watchOS Kernel state issue [CVE-2022-32844]	low	🔒	-	-	-
204795	Apple watchOS Kernel out-of-bounds [CVE-2022-32817]	low	🔒	-	-	-
204794	Apple watchOS Kernel Local Privilege Escalation [CVE-2022-32815]	medium	🔒	-	-	-
204793	Apple watchOS Kernel Local Privilege Escalation [CVE-2022-32813]	medium	🔒	-	-	-
204792	Apple watchOS ImageIO information disclosure [CVE-2022-32841]	low	🔒	-	-	-
204791	Apple watchOS ICU out-of-bounds write [CVE-2022-32787]	medium	🔒	-	-	-
204790	Apple watchOS GPU Drivers memory corruption [CVE-2022-32821]	medium	🔒	-	-	-
204789	Apple watchOS GPU Drivers out-of-bounds write [CVE-2022-32793]	low	🔒	-	-	-
204788	Apple watchOS File System Events state issue [CVE-2022-32819]	medium	🔒	-	-	-
204787	Apple watchOS CoreText Remote Code Execution [CVE-2022-32839]	medium	🔒	-	-	-
204786	Apple watchOS Audio information disclosure [CVE-2022-32825]	low	🔒	-	-	-
204785	Apple watchOS Audio out-of-bounds write [CVE-2022-32820]	medium	🔒	-	-	-
204784	Apple watchOS Apple Neural Engine Local Privilege Escalation	medium	🔒	-	-	-
204783	Apple watchOS Apple Neural Engine Local Privilege Escalation	medium	🔒	-	-	-
204782	Apple watchOS Apple Neural Engine sandbox [CVE-2022-32845]	low	🔒	-	-	-
204781	Apple watchOS AppleMobileFileIntegrity improper authorization	medium	🔒	-	-	-
204780	Apple watchOS AppleAVD information disclosure [CVE-2022-32824]	low	🔒	-	-	-
204779	Apple watchOS AppleAVD buffer overflow [CVE-2022-32788]	high	🔒	-	-	-
204778	Apple watchOS APFS Local Privilege Escalation [CVE-2022-32832]	medium	🔒	-	-	-
204777	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204776	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204775	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204774	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204773	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204772	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204771	Apple tvOS Wi-Fi Remote Code Execution [CVE-2022-32847]	high	🔒	-	-	-
204770	Apple tvOS Wi-Fi Local Privilege Escalation [CVE-2022-32837]	medium	🔒	-	-	-
204769	Apple tvOS WebKit out-of-bounds write [CVE-2022-32792]	medium	🔒	-	-	-
204768	Apple tvOS WebKit improper restriction of rendered ui layers	medium	🔒	-	-	-
204767	Apple tvOS Software Update information disclosure [CVE-2022-32857]	low	🔒	-	-	-
204766	Apple tvOS Multi-Touch type confusion [CVE-2022-32814]	medium	🔒	-	-	-
204765	Apple tvOS libxml2 initialization [CVE-2022-32823]	low	🔒	-	-	-
204764	Apple tvOS Liblouis Local Privilege Escalation [CVE-2022-26981]	low	🔒	-	-	-
204763	Apple tvOS Kernel state issue [CVE-2022-32844]	low	🔒	-	-	-
204762	Apple tvOS Kernel out-of-bounds [CVE-2022-32817]	low	🔒	-	-	-
204761	Apple tvOS Kernel memory corruption [CVE-2022-32815]	medium	🔒	-	-	-
204760	Apple tvOS Kernel memory corruption [CVE-2022-32813]	medium	🔒	-	-	-
204759	Apple tvOS ImageIO out-of-bounds [CVE-2022-32830]	low	🔒	-	-	-
204758	Apple tvOS ImageIO Remote Code Execution [CVE-2022-32802]	medium	🔒	-	-	-
204757	Apple tvOS ImageIO Remote Code Execution [CVE-2022-32841]	medium	🔒	-	-	-
204756	Apple tvOS ICU out-of-bounds write [CVE-2022-32787]	medium	🔒	-	-	-
204755	Apple tvOS iCloud Photo Library information disclosure [CVE-2022-32849]	low	🔒	-	-	-
204754	Apple tvOS GPU Drivers memory corruption [CVE-2022-32821]	medium	🔒	-	-	-
204753	Apple tvOS GPU Drivers out-of-bounds write [CVE-2022-32793]	low	🔒	-	-	-
204752	Apple tvOS File System Events state issue [CVE-2022-32819]	medium	🔒	-	-	-
204751	Apple tvOS CoreText Remote Code Execution [CVE-2022-32839]	medium	🔒	-	-	-
204750	Apple tvOS CoreMedia information disclosure [CVE-2022-32828]	low	🔒	-	-	-
204749	Apple tvOS Audio information disclosure [CVE-2022-32825]	low	🔒	-	-	-
204748	Apple tvOS Audio out-of-bounds write [CVE-2022-32820]	medium	🔒	-	-	-
204747	Apple tvOS AppleMobileFileIntegrity improper authorization [CVE-2022-32826]	medium	🔒	-	-	-
204746	Apple tvOS AppleAVD information disclosure [CVE-2022-32824]	low	🔒	-	-	-
204745	Apple tvOS AppleAVD buffer overflow [CVE-2022-32788]	high	🔒	-	-	-
204744	Apple tvOS APFS Local Privilege Escalation [CVE-2022-32832]	medium	🔒	-	-	-
204743	Couchbase Server Private Key log file [CVE-2022-32556]	low	🔒	-	-	-
204742	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204741	Apple iOS/iPadOS Wi-Fi memory corruption [CVE-2022-32847]	high	🔒	-	-	-
204740	Apple iOS/iPadOS Wi-Fi memory corruption [CVE-2022-32837]	medium	🔒	-	-	-
204739	Apple iOS/iPadOS WebRTC memory corruption [CVE-2022-2294]	medium	🔒	-	-	-
204738	Apple iOS/iPadOS WebKit out-of-bounds write [CVE-2022-32792]	medium	🔒	-	-	-
204737	Apple iOS/iPadOS WebKit improper restriction of rendered ui layers	medium	🔒	-	-	-
204736	Apple iOS/iPadOS Software Update information disclosure [CVE-2022-32857]	low	🔒	-	-	-
204735	Apple iOS/iPadOS Safari Extensions information disclosure [CVE-2022-32784]	low	🔒	-	-	-
204734	Apple iOS/iPadOS PluginKit state issue [CVE-2022-32838]	low	🔒	-	-	-
204733	Apple iOS/iPadOS Multi-Touch type confusion [CVE-2022-32814]	medium	🔒	-	-	-
204732	Apple iOS/iPadOS libxml2 initialization [CVE-2022-32823]	low	🔒	-	-	-
204731	Apple iOS/iPadOS Liblouis Local Privilege Escalation [CVE-2022-26981]	low	🔒	-	-	-
204730	Apple iOS/iPadOS Kernel race condition [CVE-2022-32844]	low	🔒	-	-	-
204729	Apple iOS/iPadOS Kernel state issue [CVE-2022-32844]	low	🔒	-	-	-
204728	Apple iOS/iPadOS Kernel out-of-bounds [CVE-2022-32817]	low	🔒	-	-	-
204727	Apple iOS/iPadOS Kernel Local Privilege Escalation [CVE-2022-32815]	medium	🔒	-	-	-
204726	Apple iOS/iPadOS Kernel Local Privilege Escalation [CVE-2022-32813]	medium	🔒	-	-	-
204725	Apple iOS/iPadOS IOMobileFrameBuffer memory corruption [CVE-2022-26768]	medium	🔒	-	-	-
204724	Apple iOS/iPadOS ImageIO null pointer dereference [CVE-2022-32785]	low	🔒	-	-	-
204723	Apple iOS/iPadOS ImageIO out-of-bounds [CVE-2022-32830]	low	🔒	-	-	-
204722	Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2022-32802]	medium	🔒	-	-	-
204721	Apple iOS/iPadOS ImageIO information disclosure [CVE-2022-32841]	low	🔒	-	-	-
204720	Apple iOS/iPadOS ICU out-of-bounds write [CVE-2022-32787]	medium	🔒	-	-	-
204719	Apple iOS/iPadOS iCloud Photo Library information disclosure	low	🔒	-	-	-
204718	Apple iOS/iPadOS Home state issue [CVE-2022-32855]	low	🔒	-	-	-
204717	Apple iOS/iPadOS GPU Drivers memory corruption [CVE-2022-32821]	medium	🔒	-	-	-
204716	Apple iOS/iPadOS GPU Drivers out-of-bounds write [CVE-2022-32793]	low	🔒	-	-	-
204715	Apple iOS/iPadOS File System Events state issue [CVE-2022-32819]	medium	🔒	-	-	-
204714	Apple iOS/iPadOS CoreText Remote Code Execution [CVE-2022-32839]	medium	🔒	-	-	-
204713	Apple iOS/iPadOS CoreMedia information disclosure [CVE-2022-32828]	low	🔒	-	-	-
204712	Apple iOS/iPadOS Audio information disclosure [CVE-2022-32825]	low	🔒	-	-	-
204711	Apple iOS/iPadOS Audio out-of-bounds write [CVE-2022-32820]	medium	🔒	-	-	-
204710	Apple iOS/iPadOS Apple Neural Engine Local Privilege Escalation	medium	🔒	-	-	-
204709	Apple iOS/iPadOS Apple Neural Engine Local Privilege Escalation	medium	🔒	-	-	-
204708	Apple iOS/iPadOS Apple Neural Engine Local Privilege Escalation	medium	🔒	-	-	-
204707	Apple iOS/iPadOS Apple Neural Engine sandbox [CVE-2022-32845]	low	🔒	-	-	-
204706	Apple iOS/iPadOS AppleMobileFileIntegrity improper authorization	medium	🔒	-	-	-
204705	Apple iOS/iPadOS AppleAVD information disclosure [CVE-2022-32824]	low	🔒	-	-	-
204704	Apple iOS/iPadOS AppleAVD buffer overflow [CVE-2022-32788]	high	🔒	-	-	-
204703	Apple iOS/iPadOS APFS Local Privilege Escalation [CVE-2022-32832]	medium	🔒	-	-	-
204702	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204701	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204700	Cisco Small Business RV110W Web-based Management Interface buffer overflow	medium	🔒	-	-	-
204699	Barangay Management System household.php sql injection	medium	🔒	-	-	-
204698	Dell PowerStore PowerStore T Environment os command injection	medium	🔒	-	-	-
204697	Dell EMC PowerStore PSTCLI uncontrolled search path [CVE-2022-32498]	medium	🔒	-	-	-
204696	Dell EMC PowerStore os command injection [CVE-2022-22555]	medium	🔒	-	-	-
204695	jQuery UI checkboxradio cross site scripting	low	🔒	-	-	-
204694	MiCODUS MV720 GPS Tracker Web Server cross site scripting [CVE-2022-2199]	low	🔒	-	-	-
204693	undici Authorization Header redirect [CVE-2022-31151]	low	🔒	-	-	-
204692	MiCODUS MV720 GPS Tracker authorization [CVE-2022-34150]	medium	🔒	-	-	-
204691	WAVLINK WN530HG4 M30HG4 access control [CVE-2022-34049]	medium	🔒	-	-	-
204690	Wavlink WN533A8 M33A8 cross site scripting [CVE-2022-34048]	low	🔒	-	-	-
204689	MiCODUS MV720 GPS Tracker POST Parameter authorization [CVE-2022-33944]	medium	🔒	-	-	-
204688	Rockwell Automation MicroLogix 1100/MicroLogix 1400 X-Frame-Options Header improper restriction of rendered ui layers	medium	🔒	-	-	-
204687	MiCODUS MV720 GPS Tracker SMS-based GPS Command improper authentication	high	🔒	-	-	-
204686	MiCODUS MV720 GPS Tracker API Server hard-coded credentials [CVE-2022-2107]	high	🔒	-	-	-
204685	Anchore Enterprise API insufficiently protected credentials [CVE-2022-1766]	low	🔒	-	-	-
204684	Inductive Automation Ignition Web Configuration path traversal	medium	🔒	-	-	-
204683	JetBrains TeamCity Build Parameter argument injection [CVE-2022-36322]	medium	🔒	-	-	-
204682	JetBrains TeamCity log file [CVE-2022-36321]	low	🔒	-	-	-
204681	DotNetNuke User Profile Biography cross site scripting [CVE-2021-31858]	low	🔒	-	-	-
204680	Questions For Confluence App hard-coded credentials [CVE-2022-26138]	medium	🔒	-	-	-
204679	Dell EMC PowerStore Manager GUI excessive authentication [CVE-2022-31234]	low	🔒	-	-	-
204678	Wasmtime Cranelift use after free [CVE-2022-31146]	medium	🔒	-	-	-
204677	Blogifier PostImage unrestricted upload	medium	🔒	-	-	-
204676	RK Smart TV Box MAX switchNextDisplayInterface Service denial of service	low	🔒	-	-	-
204675	H96 Smart TV Box Pro Plus saveDeepColorAttr denial of service	low	🔒	-	-	-
204674	WAVLINK WN530HG4 M30HG4 view-source access control [CVE-2022-34047]	medium	🔒	-	-	-
204673	Wavlink WN533A8 M33A8 view-source access control [CVE-2022-34046]	medium	🔒	-	-	-
204672	WAVLINK WN530HG4 M30HG4 Configuration File ExportAllSettings.sh hard-coded key	low	🔒	-	-	-
204671	Mitsubishi Electric ICONICS GENESIS64/MC Works64 Project Configuration File deserialization	medium	🔒	-	-	-
204670	Mitsubishi Electric ICONICS GENESIS64/MC Works64 unknown vulnerability	medium	🔒	-	-	-
204669	Mitsubishi Electric ICONICS GENESIS64/MC Works64 XAML Code deserialization	medium	🔒	-	-	-
204668	Mitsubishi Electric ICONICS GENESIS64/MC Works64 XAML Code deserialization	medium	🔒	-	-	-
204667	H3C Magic R200 app stack-based overflow	medium	🔒	-	-	-
204666	H3C Magic R200 doping.asp stack-based overflow	medium	🔒	-	-	-
204665	H3C Magic R200 ajaxget stack-based overflow	medium	🔒	-	-	-
204664	H3C Magic R200 doping.asp stack-based overflow	medium	🔒	-	-	-
204663	H3C Magic R200 dotrace.asp stack-based overflow	medium	🔒	-	-	-
204662	H3C Magic R200 dotrace.asp stack-based overflow	medium	🔒	-	-	-
204661	H3C Magic R200 dotrace.asp stack-based overflow	medium	🔒	-	-	-
204660	H3C Magic R200 DelDNSHnList Interface aspForm stack-based overflow	medium	🔒	-	-	-
204659	H3C Magic R200 ipqos_lanip_editlist Interface aspForm stack-based overflow	medium	🔒	-	-	-
204658	H3C Magic R200 Delstlist Interface aspForm stack-based overflow	medium	🔒	-	-	-
204657	H3C Magic R200 EditSTList Interface aspForm stack-based overflow	medium	🔒	-	-	-
204656	H3C Magic R200 EdittriggerList Interface aspForm stack-based overflow	medium	🔒	-	-	-
204655	Goldshell ASIC Miner Debug Interface information disclosure [CVE-2022-24660]	low	🔒	-	-	-
204654	Dell EMC Data Protection Central cross-site request forgery [CVE-2022-34367]	low	🔒	-	-	-
204653	Linux Kernel null pointer dereference [CVE-2020-36558]	low	🔒	-	-	-
204652	Linux Kernel IOCTL use after free [CVE-2020-36557]	medium	🔒	-	-	-
204651	Cisco Nexus Dashboard Container Image missing authentication	medium	🔒	-	-	-
204650	Cisco Nexus Dashboard Container Image missing authentication	medium	🔒	-	-	-
204649	Cisco Nexus Dashboard Container Image missing authentication	medium	🔒	-	-	-
204648	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20880]	medium	🔒	-	-	-
204647	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20879]	medium	🔒	-	-	-
204646	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20878]	medium	🔒	-	-	-
204645	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20877]	medium	🔒	-	-	-
204644	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20876]	medium	🔒	-	-	-
204643	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20875]	medium	🔒	-	-	-
204642	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20874]	medium	🔒	-	-	-
204641	Cisco Small Business RV110W Request buffer overflow [CVE-2022-20873]	medium	🔒	-	-	-
204640	Cisco Nexus Dashboard certificate validation [CVE-2022-20860]	medium	🔒	-	-	-
204639	Goldshell ASIC Miner path traversal [CVE-2022-24659]	medium	🔒	-	-	-
204638	Atlassian Jira Servlet Filter unknown vulnerability [CVE-2022-26136]	low	🔒	-	-	-
204637	Atlassian Jira HTTP Request unknown vulnerability [CVE-2022-26137]	medium	🔒	-	-	-
204636	Mitsubishi Electric ICONICS GENESIS64/MC Works64 Packets deserialization	medium	🔒	-	-	-
204635	Goldshell ASIC Miner SSH Protocol hard-coded credentials [CVE-2022-24657]	medium	🔒	-	-	-
204634	Mitsubishi Electric ICONICS GENESIS64/MC Works64 Packets out-of-bounds	low	🔒	-	-	-
204633	Mitsubishi Electric ICONICS GENESIS64 URL Parameter path traversal	medium	🔒	-	-	-
204632	ThingsForRestaurants Quick Restaurant Reservations Plugin cross site scripting	low	🔒	-	-	-
204631	Better Messages Plugin File Attachment cross-site request forgery	low	🔒	-	-	-
204630	Ren� Hermenau Social Media Share Buttons Plugin cross site scripting	low	🔒	-	-	-
204629	IBM QRadar SIEM TLS Key permission [CVE-2022-22424]	low	🔒	-	-	-
204628	Juniper Junos OS Download Manager neutralization [CVE-2022-22221]	medium	🔒	-	-	-
204627	IBM QRadar SIEM certificate validation [CVE-2021-29755]	low	🔒	-	-	-
204626	Juniper Junos OS Packet Forwarding Engine unusual condition [CVE-2022-22217]	medium	🔒	-	-	-
204625	Juniper Junos OS Ethernet Packet information disclosure [CVE-2022-22216]	low	🔒	-	-	-
204624	Juniper Junos OS/Junos OS Evolved Packet Forwarding Engine denial of service	medium	🔒	-	-	-
204623	Juniper Junos OS Packet Forwarding Engine null pointer dereference	medium	🔒	-	-	-
204622	Juniper Junos OS PFE buffer overflow [CVE-2022-22206]	medium	🔒	-	-	-
204621	itsourcecode Hospital Management System admin.php sql injection	medium	🔒	-	-	-
204620	itsourcecode Advanced School Management System timetable_insert_form.php sql injection	medium	🔒	-	-	-
204619	itsourcecode Advanced School Management System student_grade_wise.php sql injection	medium	🔒	-	-	-
204618	IBM QRadar SIEM information disclosure [CVE-2021-38936]	low	🔒	-	-	-
204617	Juniper Junos OS appqoe Subsystem memory leak [CVE-2022-22205]	medium	🔒	-	-	-
204616	Juniper Junos OS SIP ALG memory leak [CVE-2022-22204]	low	🔒	-	-	-
204615	Juniper Junos OS PFE comparison [CVE-2022-22203]	medium	🔒	-	-	-
204614	Juniper Junos OS dcpfe exceptional condition [CVE-2022-22202]	medium	🔒	-	-	-
204613	Juniper Junos OS/Junos OS Evolved PAM denial of service [CVE-2022-22215]	medium	🔒	-	-	-
204612	Juniper Junos OS/Junos OS Evolved RPD undefined values [CVE-2022-22213]	low	🔒	-	-	-
204611	Juniper Junos OS Advanced Forwarding Toolkit use after free [CVE-2022-22207]	medium	🔒	-	-	-
204610	Juniper Junos OS Evolved Packet Forwarding Engine allocation of resources	medium	🔒	-	-	-
204609	Juniper Junos Kernel Routing Table memory leak [CVE-2022-22209]	medium	🔒	-	-	-
204608	Pega Platform JMX Interface deserialization [CVE-2022-24082]	medium	🔒	-	-	-
204607	HiCOS Natural Person Credential Component Client double free	medium	🔒	-	-	-
204606	HiCOS Natural Person Credential Component Client out-of-bounds write	medium	🔒	-	-	-
204605	HiCOS HiCOS Natural Person Credential Component Client out-of-bounds write	medium	🔒	-	-	-
204604	HiCOS Natural Person Credential Component Client out-of-bounds write	medium	🔒	-	-	-
204603	Unit4 ERP ExecuteServerProcessAsynchronously xml external entity reference	low	🔒	-	-	-
204602	Fortinet FortiClientWindows unnecessary privileges [CVE-2022-26113]	medium	🔒	-	-	-
204601	Digital Watchdog DW MEGApix IP Camera bia_oneshot.cgi cross site scripting	low	🔒	-	-	-
204600	Digital Watchdog DW MEGApix IP Camera log file [CVE-2022-34536]	low	🔒	-	-	-
204599	Digital Watchdog DW MEGApix IP Camera information disclosure	low	🔒	-	-	-
204598	Digital Watchdog DW Spectrum Server API information disclosure	low	🔒	-	-	-
204597	gstreamer qtdemux_inflate heap-based overflow	medium	🔒	-	-	-
204596	gstreamer MKV Demuxing gst_matroska_decompress_data heap-based overflow	medium	🔒	-	-	-
204595	gstreamer MKV Demuxing heap-based overflow [CVE-2022-1924]	medium	🔒	-	-	-
204594	gstreamer MKV Demuxing heap-based overflow [CVE-2022-1923]	medium	🔒	-	-	-
204593	gstreamer MKV Demuxing gst_matroska_decompress_data heap-based overflow	medium	🔒	-	-	-
204592	TIBCO Data Virtualization Column Based Security information disclosure	low	🔒	-	-	-
204591	Puppet Bolt information disclosure [CVE-2022-2394]	low	🔒	-	-	-
204590	SICK Safety Designer Project File deserialization [CVE-2022-27580]	medium	🔒	-	-	-
204589	SICK Flexi Soft Designer Project File deserialization [CVE-2022-27579]	medium	🔒	-	-	-
204588	HCL BigFix Web Reports Email Administrative Configuration Page cross site scripting	low	🔒	-	-	-
204587	HCL BigFix Web Reports insufficiently protected credentials [CVE-2022-27544]	low	🔒	-	-	-
204586	Fortinet FortiAP-U CLI CLI Command path traversal [CVE-2022-30301]	medium	🔒	-	-	-
204585	Fortinet FortiDDoS API hard-coded key [CVE-2022-29060]	low	🔒	-	-	-
204584	GPAC integer overflow [CVE-2022-2454]	medium	🔒	-	-	-
204583	GPAC use after free [CVE-2022-2453]	medium	🔒	-	-	-
204582	Yokogawa Passage Drive Interprocess Communication os command injection	medium	🔒	-	-	-
204581	U-Boot Squashfs heap-based overflow [CVE-2022-33967]	medium	🔒	-	-	-
204580	libtirpc svc_run file descriptor consumption	low	🔒	-	-	-
204579	openSUSE Tumbleweed keylime symlink [CVE-2022-31250]	medium	🔒	-	-	-
204578	SICK FTMg GET Request authorization [CVE-2021-32504]	low	🔒	-	-	-
204577	Digiwin BPM System Files xml external entity reference [CVE-2022-32458]	medium	🔒	-	-	-
204576	HYPR Workforce Access deserialization [CVE-2022-1984]	medium	🔒	-	-	-
204575	SourceCodester Library Management System index.php sql injection	medium	🔒	-	-	-
204574	SourceCodester Library Management System lab.php sql injection	medium	🔒	-	-	-
204573	Digiwin BPM sql injection [CVE-2022-32456]	medium	🔒	-	-	-
204572	Digital Watchdog DW MEGApix IP Camera POST Request license_tok.cgi command injection	medium	🔒	-	-	-
204571	Digital Watchdog DW MEGApix IP Camera POST Request curltest.cgi command injection	medium	🔒	-	-	-
204570	Digital Watchdog DW MEGApix IP Camera POST Request addacph.cgi command injection	medium	🔒	-	-	-
204569	undici Request Header crlf injection [CVE-2022-31150]	medium	🔒	-	-	-
204568	gstreamer AVI File Parser gst_avi_demux_invert buffer overflow	medium	🔒	-	-	-
204567	gstreamer Matroska File gst_matroska_demux_add_wvpk_header heap-based overflow	medium	🔒	-	-	-
204566	Grails grails-databinding code [CVE-2022-35912]	medium	🔒	-	-	-
204565	Fortinet FortiDeceptor Management Interface path traversal [CVE-2022-30302]	low	🔒	-	-	-
204564	Fortinet FortiEDR Management Console cross site scripting [CVE-2022-29057]	low	🔒	-	-	-
204563	HYPR Server Device Manager Page insufficient permissions or privileges	medium	🔒	-	-	-
204562	Interactive Infocom Teamplus Pro Private Cloud Message allocation of resources	low	🔒	-	-	-
204561	Digiwin BPM URL Error Response server-side request forgery [CVE-2022-32457]	medium	🔒	-	-	-
204560	Redis XAUTOCLAIM Command heap-based overflow [CVE-2022-31144]	medium	🔒	-	-	-
204559	Zoho ManageEngine Access Manager Plus/Password Manager Pro/PAM360 Remote Code Execution	medium	🔒	-	-	-
204558	Fortinet FortiManager/FortiAnalyzer CLI Command os command injection	medium	🔒	-	-	-
204557	HYPR Server direct request [CVE-2022-2192]	low	🔒	-	-	-
204556	Shanghai Feixun Data Communication Technology fir302b A2 Ping Privilege Escalation	medium	🔒	-	-	-
204555	GNU SASL libgsasl out-of-bounds [CVE-2022-2469]	low	🔒	-	-	-
204554	IBM Partner Engagement Manager server-side request forgery [CVE-2022-22416]	medium	🔒	-	-	-
204553	LibTIFF TIFF File tif_dirread.c TIFFFetchStripThing uninitialized resource	low	🔒	-	-	-
204552	SourceCodester Simple E-Learning System search.php sql injection	medium	🔒	-	-	-
204551	SourceCodester Simple E-Learning System classRoom.php sql injection	medium	🔒	-	-	-
204550	Vesta UploadHandler.php body cross site scripting	low	🔒	-	-	-
204549	Vesta UploadHandler.php generate_response cross site scripting	low	🔒	-	-	-
204548	Vesta UploadHandler.php handle_file_upload cross site scripting	low	🔒	-	-	-
204547	Vesta UploadHandler.php cross site scripting	low	🔒	-	-	-
204546	wavpack wvunpack.c null pointer dereference	low	🔒	-	-	-
204545	IBM Partner Engagement Manager Web UI cross site scripting [CVE-2022-22417]	low	🔒	-	-	-
204544	IBM Partner Engagement Manager cross-site request forgery [CVE-2022-22359]	low	🔒	-	-	-
204543	IBM Partner Engagement Manager xml external entity reference	medium	🔒	-	-	-
204542	Barangay Management System Resident Module resident.php unrestricted upload	medium	🔒	-	-	-
204541	Barangay Management System officials.php sql injection	medium	🔒	-	-	-
204540	IBM Partner Engagement Manager Request ldap injection [CVE-2022-22360]	medium	🔒	-	-	-
204539	WAVLINK WN535K2/WN535K3 touchlist_sync.cgi os command injection	medium	🔒	-	-	-
204538	WAVLINK WN535K2/WN535K3 nightled.cgi os command injection	medium	🔒	-	-	-
204537	WAVLINK WN535K2/WN535K3 os command injection [CVE-2022-2486]	medium	🔒	-	-	-
204536	Oracle VM VirtualBox Core denial of service [CVE-2022-21554]	low	🔒	-	-	-
204535	Oracle VM VirtualBox Core Local Privilege Escalation [CVE-2022-21571]	medium	🔒	-	-	-
204534	Oracle Utilities Framework General denial of service [CVE-2020-36518]	medium	🔒	-	-	-
204533	Oracle ZFS Storage Appliance Kit Core unknown vulnerability [CVE-2022-21563]	low	🔒	-	-	-
204532	Oracle Solaris Kernel denial of service [CVE-2022-21439]	low	🔒	-	-	-
204531	Oracle Solaris SMB Server denial of service [CVE-2022-21533]	medium	🔒	-	-	-
204530	Oracle Solaris Remote Administration Daemon denial of service	medium	🔒	-	-	-
204529	Oracle Solaris Filesystem Privilege Escalation [CVE-2022-21524]	medium	🔒	-	-	-
204528	Oracle ZFS Storage Appliance Kit Operating System Image Remote Code Execution	medium	🔒	-	-	-
204527	Oracle ZFS Storage Appliance Kit Core Local Privilege Escalation	medium	🔒	-	-	-
204526	Oracle Agile Engineering Data Management Installation Issues unknown vulnerability	low	🔒	-	-	-
204525	Oracle Autovue for Agile Product Lifecycle Management Internal Operations information disclosure	medium	🔒	-	-	-
204524	Oracle Product Lifecycle Analytics Installation Issues denial of service	medium	🔒	-	-	-
204523	Oracle Agile Engineering Data Management Installation Issues information disclosure	medium	🔒	-	-	-
204522	Oracle Agile Engineering Data Management Installation Issues denial of service	medium	🔒	-	-	-
204521	Oracle Agile PLM Security unknown vulnerability [CVE-2021-41184]	medium	🔒	-	-	-
204520	Oracle Agile PLM Security unknown vulnerability [CVE-2020-11022]	medium	🔒	-	-	-
204519	Oracle Product Lifecycle Analytics Installation Issues denial of service	medium	🔒	-	-	-
204518	Oracle Agile PLM Security denial of service [CVE-2022-23437]	medium	🔒	-	-	-
204517	Oracle Agile Engineering Data Management Installation Issues denial of service	medium	🔒	-	-	-
204516	Oracle Product Lifecycle Analytics Installation Issues Privilege Escalation	medium	🔒	-	-	-
204515	Oracle Product Lifecycle Analytics Installation Issues Remote Code Execution	medium	🔒	-	-	-
204514	Oracle Agile Engineering Data Management Installation Issues Remote Code Execution	medium	🔒	-	-	-
204513	Oracle Product Lifecycle Analytics Installation Issues Remote Code Execution	medium	🔒	-	-	-
204512	Oracle Agile PLM Security unknown vulnerability [CVE-2020-25649]	medium	🔒	-	-	-
204511	Oracle Agile PLM Security information disclosure [CVE-2021-40690]	medium	🔒	-	-	-
204510	Oracle Agile Engineering Data Management Installation Issues denial of service	medium	🔒	-	-	-
204509	Oracle Product Lifecycle Analytics Installation Issues Local Privilege Escalation	medium	🔒	-	-	-
204508	Oracle Product Lifecycle Analytics Installation Issues unknown vulnerability	medium	🔒	-	-	-
204507	Oracle Agile Engineering Data Management Installation Issues unknown vulnerability	medium	🔒	-	-	-
204506	Oracle Agile Product Lifecycle Management for Process Reporting Remote Code Execution	medium	🔒	-	-	-
204505	Oracle Agile PLM Security Remote Code Execution [CVE-2022-25762]	medium	🔒	-	-	-
204504	Oracle Transportation Management Mobile Applications Remote Code Execution	high	🔒	-	-	-
204503	Oracle Agile Engineering Data Management Installation Issues Remote Code Execution	high	🔒	-	-	-
204502	Oracle Siebel Apps Field Service Smart Answer denial of service	medium	🔒	-	-	-
204501	Oracle Retail Xstore Point of Service Xenvironment unknown vulnerability	low	🔒	-	-	-
204500	Oracle Retail Pricing Pricing - Security unknown vulnerability	low	🔒	-	-	-
204499	Oracle Retail Merchandising System Foundation unknown vulnerability	low	🔒	-	-	-
204498	Oracle Retail Xstore Point of Service Xenvironment Privilege Escalation	medium	🔒	-	-	-
204497	Oracle Retail Order Broker Internal Operations Privilege Escalation	medium	🔒	-	-	-
204496	Oracle Retail Sales Audit others Remote Code Execution [CVE-2019-10086]	medium	🔒	-	-	-
204495	Oracle Retail Allocation General Remote Code Execution [CVE-2019-10086]	medium	🔒	-	-	-
204494	Oracle Retail Sales Audit others denial of service [CVE-2020-36518]	medium	🔒	-	-	-
204493	Oracle Retail Order Broker System Administration denial of service	medium	🔒	-	-	-
204492	Oracle Retail Customer Insights Other Local Privilege Escalation	medium	🔒	-	-	-
204491	Oracle Retail Customer Insights Other Privilege Escalation [CVE-2021-29505]	medium	🔒	-	-	-
204490	Oracle Retail Merchandising System Foundation Remote Code Execution	high	🔒	-	-	-
204489	Oracle Retail Integration Bus RIB Kernal Remote Code Execution	high	🔒	-	-	-
204488	Oracle Retail Financial Integration PeopleSoft Integration Bugs Remote Code Execution	high	🔒	-	-	-
204487	Oracle Retail Extract Transform and Load Mathematical Operators Remote Code Execution	high	🔒	-	-	-
204486	Oracle Retail Customer Management and Segmentation Foundation Security Remote Code Execution	high	🔒	-	-	-
204485	Oracle Retail Bulk Data Integration BDI Job Scheduler Remote Code Execution	high	🔒	-	-	-
204484	Oracle Policy Automation Determinations Engine unknown vulnerability	medium	🔒	-	-	-
204483	Oracle Policy Automation for Mobile Devices Core Functionality Privilege Escalation	medium	🔒	-	-	-
204482	Oracle Policy Automation Determinations Engine Privilege Escalation	medium	🔒	-	-	-
204481	Oracle PeopleSoft Enterprise PeopleTools Integration Broker information disclosure	low	🔒	-	-	-
204480	Oracle PeopleSoft Enterprise PeopleTools XML Publisher information disclosure	low	🔒	-	-	-
204479	Oracle PeopleSoft Enterprise PeopleTools XML Publisher unknown vulnerability	medium	🔒	-	-	-
204478	Oracle PeopleSoft Enterprise PeopleTools PeopleSoft CDA unknown vulnerability	medium	🔒	-	-	-
204477	Oracle PeopleSoft Enterprise PeopleTools Fluid Core unknown vulnerability	medium	🔒	-	-	-
204476	Oracle PeopleSoft Enterprise PeopleTools Security denial of service	medium	🔒	-	-	-
204475	Oracle PeopleSoft Enterprise PeopleTools Security denial of service	medium	🔒	-	-	-
204474	Oracle PeopleSoft Enterprise PeopleTools Rich Text Editor denial of service	medium	🔒	-	-	-
204473	Oracle PeopleSoft Enterprise PeopleTools PeopleSoft CDA denial of service	medium	🔒	-	-	-
204472	Oracle PeopleSoft Enterprise PeopleTools Elastic Search denial of service	medium	🔒	-	-	-
204471	Oracle PeopleSoft Enterprise PeopleTools Updates Environment Mgmt Remote Code Execution	high	🔒	-	-	-
204470	Oracle MySQL Shell Core Client denial of service [CVE-2022-21535]	low	🔒	-	-	-
204469	Oracle MySQL Server Encryption denial of service [CVE-2022-21538]	low	🔒	-	-	-
204468	Oracle MySQL Shell for VS Code GUI unknown vulnerability [CVE-2022-21555]	low	🔒	-	-	-
204467	Oracle MySQL Server Stored Procedure denial of service [CVE-2022-21522]	low	🔒	-	-	-
204466	Oracle MySQL Server Stored Procedure denial of service [CVE-2022-21534]	low	🔒	-	-	-
204465	Oracle MySQL Server PAM Auth Plugin unknown vulnerability [CVE-2022-21455]	low	🔒	-	-	-
204464	Oracle MySQL Server Options denial of service [CVE-2022-21515]	low	🔒	-	-	-
204463	Oracle MySQL Server Optimizer denial of service [CVE-2022-21553]	low	🔒	-	-	-
204462	Oracle MySQL Server Optimizer denial of service [CVE-2022-21531]	low	🔒	-	-	-
204461	Oracle MySQL Server Optimizer denial of service [CVE-2022-21530]	low	🔒	-	-	-
204460	Oracle MySQL Server Optimizer denial of service [CVE-2022-21529]	low	🔒	-	-	-
204459	Oracle MySQL Server Optimizer denial of service [CVE-2022-21526]	low	🔒	-	-	-
204458	Oracle MySQL Server Optimizer denial of service [CVE-2022-21525]	low	🔒	-	-	-
204457	Oracle MySQL Server Federated denial of service [CVE-2022-21547]	low	🔒	-	-	-
204456	Oracle MySQL Server InnoDB denial of service [CVE-2022-21537]	low	🔒	-	-	-
204455	Oracle MySQL Server InnoDB denial of service [CVE-2022-21517]	low	🔒	-	-	-
204454	Oracle MySQL Server InnoDB Privilege Escalation [CVE-2022-21539]	medium	🔒	-	-	-
204453	Oracle MySQL Enterprise Monitor Service Manager unknown vulnerability	medium	🔒	-	-	-
204452	Oracle MySQL Server Optimizer unknown vulnerability [CVE-2022-21509]	medium	🔒	-	-	-
204451	Oracle MySQL Server Optimizer unknown vulnerability [CVE-2022-21528]	medium	🔒	-	-	-
204450	Oracle MySQL Server Optimizer unknown vulnerability [CVE-2022-21527]	medium	🔒	-	-	-
204449	Oracle MySQL Cluster denial of service [CVE-2022-21519]	medium	🔒	-	-	-
204448	Oracle MySQL Cluster Privilege Escalation [CVE-2022-21550]	medium	🔒	-	-	-
204447	Oracle MySQL Server Optimizer denial of service [CVE-2022-21569]	medium	🔒	-	-	-
204446	Oracle MySQL Server Optimizer unknown vulnerability [CVE-2022-21556]	medium	🔒	-	-	-
204445	Oracle MySQL Enterprise Monitor Monitoring unknown vulnerability	medium	🔒	-	-	-
204444	Oracle MySQL Workbench denial of service [CVE-2022-23308]	medium	🔒	-	-	-
204443	Oracle MySQL Server Compiling denial of service [CVE-2018-25032]	medium	🔒	-	-	-
204442	Oracle MySQL Enterprise Monitor Monitoring denial of service	medium	🔒	-	-	-
204441	Oracle MySQL Server Packaging name resolution [CVE-2022-27778]	medium	🔒	-	-	-
204440	Oracle MySQL Cluster Cluster: General prototype pollution [CVE-2022-21824]	medium	🔒	-	-	-
204439	Oracle MySQL Workbench os command injection [CVE-2022-1292]	high	🔒	-	-	-
204438	Oracle MySQL Server Server: Packaging os command injection [CVE-2022-1292]	high	🔒	-	-	-
204437	Oracle MySQL Enterprise Monitor Monitoring: General unknown vulnerability	high	🔒	-	-	-
204436	Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator information disclosure	low	🔒	-	-	-
204435	Oracle JD Edwards EnterpriseOne Tools Web Runtime cross site scripting	medium	🔒	-	-	-
204434	Oracle JD Edwards EnterpriseOne Tools Web Runtime information disclosure	medium	🔒	-	-	-
204433	Oracle JD Edwards EnterpriseOne Tools Web Runtime Privilege Escalation	medium	🔒	-	-	-
204432	Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator denial of service	medium	🔒	-	-	-
204431	Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud input validation	high	🔒	-	-	-
204430	Oracle Java SE Libraries unknown vulnerability [CVE-2022-21549]	medium	🔒	-	-	-
204429	Oracle Java SE Hotspot information disclosure [CVE-2022-21540]	medium	🔒	-	-	-
204428	Oracle Java SE Hotspot unknown vulnerability [CVE-2022-21541]	medium	🔒	-	-	-
204427	Oracle GraalVM Enterprise Edition Native Image denial of service	medium	🔒	-	-	-
204426	Oracle Java SE JAXP numeric conversion [CVE-2022-34169]	medium	🔒	-	-	-
204425	Oracle Hospitality Cruise Shipboard Property Management System Next-Gen SPMS denial of service	medium	🔒	-	-	-
204424	Oracle Hospitality OPERA 5 Login unknown vulnerability [CVE-2021-31805]	high	🔒	-	-	-
204423	Oracle Health Sciences Information Manager Health Policy Engine denial of service	medium	🔒	-	-	-
204422	Oracle Health Sciences Information Manager Health Policy Engine denial of service	medium	🔒	-	-	-
204421	Oracle Healthcare Foundation Upload Service denial of service	medium	🔒	-	-	-
204420	Oracle Health Sciences Data Management Workbench User Interface path traversal	low	🔒	-	-	-
204419	Oracle Health Sciences Data Management Workbench User Interface information disclosure	medium	🔒	-	-	-
204418	Oracle Health Sciences Data Management Workbench User Interface input validation	medium	🔒	-	-	-
204417	Oracle Health Sciences Data Management Workbench User Interface code injection	medium	🔒	-	-	-
204416	Oracle Health Sciences Data Management Workbench User Interface deserialization	medium	🔒	-	-	-
204415	Oracle Health Sciences Empirica Signal Web Services denial of service	medium	🔒	-	-	-
204414	Oracle BI Publisher BI Publisher Security information disclosure	low	🔒	-	-	-
204413	Oracle WebLogic Server Web Services denial of service [CVE-2022-21564]	medium	🔒	-	-	-
204412	Oracle WebLogic Server Core denial of service [CVE-2022-21560]	medium	🔒	-	-	-
204411	Oracle HTTP Server Web Listener information disclosure [CVE-2019-0220]	medium	🔒	-	-	-
204410	Oracle WebLogic Server Web Container unknown vulnerability [CVE-2022-21557]	medium	🔒	-	-	-
204409	Oracle WebCenter Sites Support Tools User Interface Privilege Escalation	medium	🔒	-	-	-
204408	Oracle WebLogic Server Centralized Third Party Jars cross site scripting	medium	🔒	-	-	-
204407	Oracle HTTP Server SSL Module redirect [CVE-2020-1927]	medium	🔒	-	-	-
204406	Oracle Business Intelligence Enterprise Edition Service Administration UI cross site scripting	medium	🔒	-	-	-
204405	Oracle WebLogic Server Core unknown vulnerability [CVE-2022-21548]	medium	🔒	-	-	-
204404	Oracle Global Lifecycle Management NextGen OUI Framework NextGen Installer issues denial of service	medium	🔒	-	-	-
204403	Oracle Global Lifecycle Management NextGen OUI Framework NextGen Installer issues denial of service	medium	🔒	-	-	-
204402	Oracle HTTP Server SSL Module out-of-bounds [CVE-2021-35940]	medium	🔒	-	-	-
204401	Oracle WebCenter Content Search unknown vulnerability [CVE-2022-21552]	medium	🔒	-	-	-
204400	Oracle WebLogic Server Centralized Thirdparty Jars information disclosure	medium	🔒	-	-	-
204399	Oracle WebLogic Server Centralized Third Party Jars denial of service	medium	🔒	-	-	-
204398	Oracle WebLogic Server Centralized Third Party Jars denial of service	medium	🔒	-	-	-
204397	Oracle WebLogic Server Centralized Third Party Jars denial of service	medium	🔒	-	-	-

ID	Title	VulDB	CVSS	Secunia	XForce	Nessus
204396	Oracle SOA Suite Fabric Layer unknown vulnerability [CVE-2022-21562]	medium	🔒	-	-	-
204395	Oracle Middleware Common Libraries and Tools Thirdparty Patch denial of service	medium	🔒	-	-	-
204394	Oracle Managed File Transfer MFT Runtime Server denial of service	medium	🔒	-	-	-
204393	Oracle Global Lifecycle Management NextGen OUI Framework NextGen Installer issues denial of service	medium	🔒	-	-	-
204392	Oracle Coherence Core denial of service [CVE-2022-21570]	medium	🔒	-	-	-
204391	Oracle Coherence Centralized Thirdparty Jars denial of service	medium	🔒	-	-	-
204390	Oracle BI Publisher BI Publisher Security server-side request forgery	medium	🔒	-	-	-
204389	Oracle WebLogic Server Centralized Third Party Jars input validation	medium	🔒	-	-	-
204388	Oracle WebLogic Server Installer Remote Code Execution [CVE-2021-2351]	medium	🔒	-	-	-
204387	Oracle WebCenter Portal Security Framework deserialization [CVE-2021-39139]	medium	🔒	-	-	-
204386	Oracle Weblogic Server Proxy Plug-in SSL Module input validation	high	🔒	-	-	-
204385	Oracle WebLogic Server Centralized Third Party Jars origin validation	high	🔒	-	-	-
204384	Oracle Security Service C SSL API input validation [CVE-2020-35169]	high	🔒	-	-	-
204383	Oracle Middleware Common Libraries and Tools Thirdparty Patch xml entity expansion	high	🔒	-	-	-
204382	Oracle HTTP Server SSL Module input validation [CVE-2020-35169]	high	🔒	-	-	-
204381	Oracle HTTP Server SSL Module use after free [CVE-2019-10082]	high	🔒	-	-	-
204380	Oracle WebLogic Server Third Party Tools/Samples code injection	high	🔒	-	-	-
204379	Oracle WebLogic Server Sample apps prototype pollution [CVE-2021-23450]	high	🔒	-	-	-
204378	Oracle WebLogic Server Centralized Third Party Jars path traversal	high	🔒	-	-	-
204377	Oracle Middleware Common Libraries and Tools Third Party Patch input validation	high	🔒	-	-	-
204376	Oracle Hospitality Materials Control Receipt cross site scripting	medium	🔒	-	-	-
204375	Oracle Hospitality Inventory Management Receipt cross site scripting	medium	🔒	-	-	-
204374	Oracle Hospitality Inventory Management Installation Remote Code Execution	medium	🔒	-	-	-
204373	Oracle FLEXCUBE Core Banking Securities path traversal [CVE-2021-29425]	low	🔒	-	-	-
204372	Oracle Financial Services Crime and Compliance Management Studio information disclosure	medium	🔒	-	-	-
204371	Oracle Financial Services Crime and Compliance Management Studio information disclosure	medium	🔒	-	-	-
204370	Oracle Financial Services Revenue Management and Billing Infrastructure Privilege Escalation	medium	🔒	-	-	-
204369	Oracle Banking Trade Finance Infrastructure Privilege Escalation	medium	🔒	-	-	-
204368	Oracle Banking Platform SECURITY cross site scripting [CVE-2021-41184]	medium	🔒	-	-	-
204367	Oracle FLEXCUBE Universal Banking Infrastructure unknown vulnerability	medium	🔒	-	-	-
204366	Oracle FLEXCUBE Universal Banking Infrastructure unknown vulnerability	medium	🔒	-	-	-
204365	Oracle FLEXCUBE Universal Banking Infrastructure Privilege Escalation	medium	🔒	-	-	-
204364	Oracle Banking Trade Finance Infrastructure unknown vulnerability	medium	🔒	-	-	-
204363	Oracle Banking Trade Finance Infrastructure unknown vulnerability	medium	🔒	-	-	-
204362	Oracle Banking Trade Finance Infrastructure Privilege Escalation	medium	🔒	-	-	-
204361	Oracle FLEXCUBE Universal Banking Infrastructure denial of service	medium	🔒	-	-	-
204360	Oracle Financial Services Crime and Compliance Management Studio denial of service	medium	🔒	-	-	-
204359	Oracle Financial Services Crime and Compliance Management Studio denial of service	medium	🔒	-	-	-
204358	Oracle Banking Platform SECURITY request smuggling [CVE-2021-43797]	medium	🔒	-	-	-
204357	Oracle Banking Party Management Web UI request smuggling [CVE-2021-43797]	medium	🔒	-	-	-
204356	Oracle Banking Party Management Web UI denial of service [CVE-2022-23437]	medium	🔒	-	-	-
204355	Oracle Banking Deposits and Lines of Credit Servicing Web UI request smuggling	medium	🔒	-	-	-
204354	Oracle Banking Deposits and Lines of Credit Servicing Web UI denial of service	medium	🔒	-	-	-
204353	Oracle FLEXCUBE Private Banking Infrastructure input validation	medium	🔒	-	-	-
204352	Oracle FLEXCUBE Universal Banking Infrastructure Privilege Escalation	medium	🔒	-	-	-
204351	Oracle FLEXCUBE Universal Banking Infrastructure Privilege Escalation	medium	🔒	-	-	-
204350	Oracle Banking Trade Finance Infrastructure Privilege Escalation	medium	🔒	-	-	-
204349	Oracle Banking Trade Finance Infrastructure Privilege Escalation	medium	🔒	-	-	-
204348	Oracle Financial Services Crime and Compliance Management Studio toctou	medium	🔒	-	-	-
204347	Oracle FLEXCUBE Universal Banking Infrastructure Privilege Escalation	medium	🔒	-	-	-
204346	Oracle Financial Services Crime and Compliance Management Studio code injection	medium	🔒	-	-	-
204345	Oracle Financial Services Crime and Compliance Management Studio os command injection	medium	🔒	-	-	-
204344	Oracle FLEXCUBE Private Banking Infrastructure denial of service	medium	🔒	-	-	-
204343	Oracle FLEXCUBE Private Banking Infrastructure information disclosure	medium	🔒	-	-	-
204342	Oracle Financial Services Trade-Based Anti Money Laundering Enterprise Edition User Interface denial of service	medium	🔒	-	-	-
204341	Oracle Financial Services Trade-Based Anti Money Laundering Enterprise Edition User Interface denial of service	medium	🔒	-	-	-
204340	Oracle Financial Services Enterprise Case Management Installers denial of service	medium	🔒	-	-	-
204339	Oracle Financial Services Enterprise Case Management Installers denial of service	medium	🔒	-	-	-
204338	Oracle Financial Services Crime and Compliance Management Studio denial of service	medium	🔒	-	-	-
204337	Oracle Financial Services Crime and Compliance Management Studio denial of service	medium	🔒	-	-	-
204336	Oracle Financial Services Crime and Compliance Management Studio denial of service	medium	🔒	-	-	-
204335	Oracle Financial Services Crime and Compliance Management Studio information disclosure	medium	🔒	-	-	-
204334	Oracle Financial Services Crime and Compliance Management Studio denial of service	medium	🔒	-	-	-
204333	Oracle Financial Services Behavior Detection Platform Web UI denial of service	medium	🔒	-	-	-
204332	Oracle Financial Services Behavior Detection Platform Third Party denial of service	medium	🔒	-	-	-
204331	Oracle Financial Services Analytical Applications Infrastructure Others denial of service	medium	🔒	-	-	-
204330	Oracle Financial Services Analytical Applications Infrastructure Others denial of service	medium	🔒	-	-	-
204329	Oracle Financial Services Crime and Compliance Management Studio authorization	medium	🔒	-	-	-
204328	Oracle Financial Services Crime and Compliance Management Studio authorization	medium	🔒	-	-	-
204327	Oracle Financial Services Crime and Compliance Management Studio authorization	high	🔒	-	-	-
204326	Oracle Financial Services Crime and Compliance Management Studio input validation	high	🔒	-	-	-
204325	Oracle Financial Services Crime and Compliance Management Studio improper authentication	high	🔒	-	-	-
204324	Oracle Banking Virtual Account Management Common code injection	high	🔒	-	-	-
204323	Oracle Banking Trade Finance Process Management Common code injection	high	🔒	-	-	-
204322	Oracle Banking Supply Chain Finance Common code injection [CVE-2022-22963]	high	🔒	-	-	-
204321	Oracle Banking Origination Common code injection [CVE-2022-22963]	high	🔒	-	-	-
204320	Oracle Banking Liquidity Management Common code injection [CVE-2022-22963]	high	🔒	-	-	-
204319	Oracle Banking Electronic Data Exchange for Corporates Common code injection	high	🔒	-	-	-
204318	Oracle Banking Credit Facilities Process Management Common code injection	high	🔒	-	-	-
204317	Oracle Banking Corporate Lending Process Management Common code injection	high	🔒	-	-	-
204316	Oracle Banking Cash Management Common code injection [CVE-2022-22963]	high	🔒	-	-	-
204315	Oracle Banking Branch Common code injection [CVE-2022-22963]	high	🔒	-	-	-
204314	Oracle Enterprise Manager Base Platform Enterprise Manager Install cross site scripting	medium	🔒	-	-	-
204313	Oracle Enterprise Manager Base Platform Enterprise Manager Install Remote Code Execution	medium	🔒	-	-	-
204312	Oracle Application Testing Suite Load Testing for Web Apps code injection	medium	🔒	-	-	-
204311	Oracle Enterprise Manager Base Platform Policy Framework Remote Code Execution	medium	🔒	-	-	-
204310	Oracle Enterprise Manager Ops Center Networking os command injection	high	🔒	-	-	-
204309	Oracle Enterprise Manager Ops Center Networking integer overflow	high	🔒	-	-	-
204308	Oracle iRecruitment Candidate Self Service Registration information disclosure	medium	🔒	-	-	-
204307	Oracle iReceivables Access Request information disclosure [CVE-2022-21568]	medium	🔒	-	-	-
204306	Oracle Workflow Worklist information disclosure [CVE-2022-21567]	medium	🔒	-	-	-
204305	Oracle User Management Proxy User Delegation information disclosure	medium	🔒	-	-	-
204304	Oracle Applications Framework Diagnostics information disclosure	medium	🔒	-	-	-
204303	Oracle E-Business Suite Information Discovery Packaging issues sql injection	high	🔒	-	-	-
204302	Oracle Primavera Unifier Document Management denial of service	medium	🔒	-	-	-
204301	Oracle Primavera Unifier Platform/User Interface denial of service	medium	🔒	-	-	-
204300	Oracle Primavera P6 Enterprise Project Portfolio Management Web Access denial of service	medium	🔒	-	-	-
204299	Oracle Primavera Gateway Admin denial of service [CVE-2022-23437]	medium	🔒	-	-	-
204298	Oracle Primavera Unifier Document Management denial of service	medium	🔒	-	-	-
204297	Oracle Primavera Gateway Admin denial of service [CVE-2020-36518]	medium	🔒	-	-	-
204296	Oracle Crystal Ball Installation Local Privilege Escalation [CVE-2022-21558]	medium	🔒	-	-	-
204295	Oracle Communications Cloud Native Core Policy denial of service	medium	🔒	-	-	-
204294	Oracle Communications Cloud Native Core Binding Support Function BSF locking	medium	🔒	-	-	-
204293	Oracle Communications Cloud Native Core Policy input validation	medium	🔒	-	-	-
204292	Oracle Communications Cloud Native Core Network Slice Selection Function NSSF denial of service	medium	🔒	-	-	-
204291	Oracle Communications Cloud Native Core Unified Data Repository UDR Privilege Escalation	medium	🔒	-	-	-
204290	Oracle Communications Cloud Native Core Console CNC Console Privilege Escalation	medium	🔒	-	-	-
204289	Oracle SD-WAN Edge MGMT denial of service [CVE-2020-36518]	medium	🔒	-	-	-
204288	Oracle Enterprise Session Border Controller Security denial of service	medium	🔒	-	-	-
204287	Oracle Enterprise Communications Broker Security denial of service	medium	🔒	-	-	-
204286	Oracle Communications Unified Session Manager Security denial of service	medium	🔒	-	-	-
204285	Oracle Communications Session Border Controller Security denial of service	medium	🔒	-	-	-
204284	Oracle Communications Operations Monitor Mediation Engine denial of service	medium	🔒	-	-	-
204283	Oracle Communications Core Session Manager Security denial of service	medium	🔒	-	-	-
204282	Oracle Communications Cloud Native Core Unified Data Repository UDR denial of service	medium	🔒	-	-	-
204281	Oracle Communications Cloud Native Core Unified Data Repository UDR denial of service	medium	🔒	-	-	-
204280	Oracle Communications Cloud Native Core Unified Data Repository UDR denial of service	medium	🔒	-	-	-
204279	Oracle Communications Cloud Native Core Unified Data Repository UDR denial of service	medium	🔒	-	-	-
204278	Oracle Communications Cloud Native Core Service Communication Proxy SCP denial of service	medium	🔒	-	-	-
204277	Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP denial of service	medium	🔒	-	-	-
204276	Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP denial of service	medium	🔒	-	-	-
204275	Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP denial of service	medium	🔒	-	-	-
204274	Oracle Communications Cloud Native Core Network Slice Selection Function NSSF denial of service	medium	🔒	-	-	-
204273	Oracle Communications Cloud Native Core Network Slice Selection Function NSSF denial of service	medium	🔒	-	-	-
204272	Oracle Communications Cloud Native Core Network Repository Function NRF denial of service	medium	🔒	-	-	-
204271	Oracle Communications Cloud Native Core Network Repository Function NRF denial of service	medium	🔒	-	-	-
204270	Oracle Communications Cloud Native Core Network Repository Function NRF denial of service	medium	🔒	-	-	-
204269	Oracle Communications Cloud Native Core Network Function Cloud Native Environment CNE denial of service	medium	🔒	-	-	-
204268	Oracle Communications Cloud Native Core Network Function Cloud Native Environment CNE path traversal	medium	🔒	-	-	-
204267	Oracle Communications Cloud Native Core Network Exposure Function NEF denial of service	medium	🔒	-	-	-
204266	Oracle Communications Cloud Native Core Console CNC Console denial of service	medium	🔒	-	-	-
204265	Oracle Communications Cloud Native Core Binding Support Function BSF denial of service	medium	🔒	-	-	-
204264	Oracle Communications Cloud Native Core Binding Support Function BSF denial of service	medium	🔒	-	-	-
204263	Oracle Communications Operations Monitor Fraud Detection Monitor code injection	medium	🔒	-	-	-
204262	Oracle Communications Cloud Native Core Policy Linux privileges management	medium	🔒	-	-	-
204261	Oracle Communications Cloud Native Core Network Exposure Function Linux privileges management	medium	🔒	-	-	-
204260	Oracle Communications Cloud Native Core Binding Support Function Linux privileges management	medium	🔒	-	-	-
204259	Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP sql injection	medium	🔒	-	-	-
204258	Oracle Communications Cloud Native Core Network Function Cloud Native Environment CNE sql injection	medium	🔒	-	-	-
204257	Oracle Communications Cloud Native Core Console CNC Console sql injection	medium	🔒	-	-	-
204256	Oracle Enterprise Operations Monitor Mediation Engine buffer overflow	high	🔒	-	-	-
204255	Oracle Communications Cloud Native Core Unified Data Repository UDR buffer overflow	high	🔒	-	-	-
204254	Oracle Communications Cloud Native Core Unified Data Repository UDR deserialization	high	🔒	-	-	-
204253	Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP buffer overflow	high	🔒	-	-	-
204252	Oracle Communications Cloud Native Core Policy code injection	high	🔒	-	-	-
204251	Oracle Communications Cloud Native Core Network Repository Function NRF buffer overflow	high	🔒	-	-	-
204250	Oracle Communications Cloud Native Core Network Function Cloud Native Environment DBTier code injection	high	🔒	-	-	-
204249	Oracle Communications Cloud Native Core Network Function Cloud Native Environment CNE buffer overflow	high	🔒	-	-	-
204248	Oracle Communications Cloud Native Core Network Function Cloud Native Environment CNE buffer overflow	high	🔒	-	-	-
204247	Oracle Communications Cloud Native Core Network Function Cloud Native Environment CNE input validation	high	🔒	-	-	-
204246	Oracle Communications Cloud Native Core Network Exposure Function NEF use after free	high	🔒	-	-	-
204245	Oracle Communications Cloud Native Core Binding Support Function BSF buffer overflow	high	🔒	-	-	-
204244	Oracle Communications Cloud Native Core Binding Support Function BSF code injection	high	🔒	-	-	-
204243	Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP code injection	high	🔒	-	-	-
204242	Oracle Communications Cloud Native Core Network Repository Function NRF code injection	high	🔒	-	-	-
204241	Oracle Communications Cloud Native Core Console CNC Console code injection	high	🔒	-	-	-
204240	Oracle Communications Cloud Native Core Binding Support Function BSF code injection	high	🔒	-	-	-
204239	Oracle Communications Billing and Revenue Management Connection Manager denial of service	medium	🔒	-	-	-
204238	Oracle Communications Billing and Revenue Management Billing Care unknown vulnerability	medium	🔒	-	-	-
204237	Oracle Communications BRM - Elastic Charging Engine Notifications information disclosure	medium	🔒	-	-	-
204236	Oracle Communications Design Studio Patch Request denial of service	medium	🔒	-	-	-
204235	Oracle Communications Design Studio PSR Designer request smuggling	medium	🔒	-	-	-
204234	Oracle Communications Billing and Revenue Management Billing Care denial of service	medium	🔒	-	-	-
204233	Oracle Communications ASAP SRT denial of service [CVE-2022-23437]	medium	🔒	-	-	-
204232	Oracle Communications Offline Mediation Controller Admin Server/Node Manager input validation	medium	🔒	-	-	-
204231	Oracle Communications BRM - Elastic Charging Engine Charging Server input validation	medium	🔒	-	-	-
204230	Oracle Communications BRM - Elastic Charging Engine EM Gateway denial of service	medium	🔒	-	-	-
204229	Oracle Communications BRM - Elastic Charging Engine 5G gateway denial of service	medium	🔒	-	-	-
204228	Oracle Communications Billing and Revenue Management Billing Care/BOC/DM Kafka/REST API denial of service	medium	🔒	-	-	-
204227	Oracle Communications Billing and Revenue Management Billing Care Remote Code Execution	medium	🔒	-	-	-
204226	Oracle Communications Unified Inventory Management TMF APIs code injection	high	🔒	-	-	-
204225	Oracle Communications Unified Inventory Management Cloud Native certificate validation	high	🔒	-	-	-
204224	Oracle Communications Offline Mediation Controller Charging Server sql injection	high	🔒	-	-	-
204223	Oracle Communications Instant Messaging Server XMPP Server sql injection	high	🔒	-	-	-
204222	Oracle Commerce Platform Dynamo Application Framework information disclosure	medium	🔒	-	-	-
204221	Oracle Commerce Guided Search Framework/Experience Manager os command injection	medium	🔒	-	-	-
204220	Oracle Commerce Guided Search Framework/Experience Manager certificate validation	medium	🔒	-	-	-
204219	Oracle Commerce Platform Endeca Integration information disclosure	medium	🔒	-	-	-
204218	Oracle Commerce Platform Dynamo Application Framework denial of service	medium	🔒	-	-	-
204217	Oracle Commerce Merchandising Core denial of service [CVE-2022-24729]	medium	🔒	-	-	-
204216	Oracle Commerce Guided Search Framework/Experience Manager information disclosure	medium	🔒	-	-	-
204215	Oracle Commerce Guided Search Content Acquisition System information disclosure	medium	🔒	-	-	-
204214	Oracle Commerce Guided Search Framework/Experience Manager Remote Code Execution	medium	🔒	-	-	-
204213	Oracle Commerce Platform Endeca Integration code injection [CVE-2022-22965]	high	🔒	-	-	-
204212	Oracle Commerce Guided Search Framework/Experience Manager cross-site request forgery	high	🔒	-	-	-
204211	Oracle Commerce Guided Search Content Acquisition System xml external entity reference	high	🔒	-	-	-
204210	Oracle TimesTen In-Memory Database TimesTen In-Memory Database Cache Remote Code Execution	medium	🔒	-	-	-
204209	Oracle Spatial Studio denial of service [CVE-2020-36518]	medium	🔒	-	-	-
204208	Oracle REST Data Services information disclosure [CVE-2021-34429]	medium	🔒	-	-	-
204207	Oracle REST Data Services cross site scripting [CVE-2021-41184]	medium	🔒	-	-	-
204206	Oracle Graph Server and Client denial of service [CVE-2020-36518]	medium	🔒	-	-	-
204205	Oracle Stream Analytics denial of service [CVE-2021-37714]	low	🔒	-	-	-
204204	Oracle Stream Analytics information disclosure [CVE-2021-34429]	medium	🔒	-	-	-
204203	Oracle GoldenGate Privilege Escalation [CVE-2022-21551]	medium	🔒	-	-	-
204202	Oracle GoldenGate denial of service [CVE-2021-3749]	medium	🔒	-	-	-
204201	Oracle Global Lifecycle Management OPatch Patch Installer denial of service	low	🔒	-	-	-
204200	Oracle Essbase Security/Provisioning unknown vulnerability [CVE-2022-21508]	medium	🔒	-	-	-
204199	Oracle Big Data Spatial and Graph Big Data Graph cross site scripting	medium	🔒	-	-	-
204198	Oracle Big Data Spatial and Graph Big Data Graph denial of service	medium	🔒	-	-	-
204197	Oracle Big Data Spatial and Graph Big Data Graph denial of service	medium	🔒	-	-	-
204196	Oracle Database Enterprise Edition RDBMS Security DBA role denial of service	low	🔒	-	-	-
204195	Oracle Spatial and Graph Create Session denial of service [CVE-2021-45943]	low	🔒	-	-	-
204194	Oracle SQLcl Local Logon information disclosure [CVE-2022-0839]	medium	🔒	-	-	-
204193	Oracle Application Express User Account cross site scripting	medium	🔒	-	-	-
204192	Oracle Application Express User Account denial of service [CVE-2022-24729]	medium	🔒	-	-	-
204191	Oracle Java VM Create Procedure unknown vulnerability [CVE-2022-21565]	medium	🔒	-	-	-
204190	Oracle Database Enterprise Edition Recovery EXECUTE ON DBMS_IR.EXECUTESQLSCRIPT Privilege Escalation	medium	🔒	-	-	-
204189	Oracle Database Enterprise Edition Sharding Local Logon Local Privilege Escalation	medium	🔒	-	-	-
204188	Oracle Database Enterprise Edition input validation [CVE-2020-35169]	high	🔒	-	-	-
204187	Mozilla Firefox Internal URL Protection access control [CVE-2022-31746]	medium	🔒	-	-	-
204186	Zyxel USG ZyWALL CLI Command privileges management [CVE-2022-30526]	medium	🔒	-	-	-
204185	Octopus Deploy unknown vulnerability [CVE-2022-30532]	low	🔒	-	-	-
204184	Zyxel USG ZyWALL CGI Program path traversal [CVE-2022-2030]	medium	🔒	-	-	-
204183	Parallels Access Desktop Control Agent service uncontrolled search path	medium	🔒	-	-	-
204182	Feed Them Social Plugin deserialization [CVE-2022-2437]	medium	🔒	-	-	-
204181	cPanel Hudson xml external entity reference [CVE-2015-8031]	low	🔒	-	-	-
204180	Fortinet FortiClient FortiESNAC Service path traversal [CVE-2021-41031]	medium	🔒	-	-	-
204179	Check Point Capsule Workspace App buffer overflow [CVE-2022-23745]	medium	🔒	-	-	-
204178	Parallels Desktop ACPI Virtual Device out-of-bounds [CVE-2022-34889]	medium	🔒	-	-	-
204177	AnyDesk symlink [CVE-2022-32450]	medium	🔒	-	-	-
204176	Fortinet FortiADC Management Interface sql injection [CVE-2022-26120]	medium	🔒	-	-	-
204175	Fortinet FortiNAC CLI empty password in configuration file [CVE-2022-26117]	medium	🔒	-	-	-
204174	Fortinet FortiOS Captive Portal Authentication Replacement Page cross site scripting	low	🔒	-	-	-
204173	IBM FSP access control [CVE-2022-22445]	medium	🔒	-	-	-
204172	Fortinet FortiOS/FortiProxy Command Line Argument stack-based overflow	medium	🔒	-	-	-
204171	Fortinet FortiSwitch integer overflow [CVE-2021-42755]	low	🔒	-	-	-
204170	dompdf file inclusion [CVE-2022-2400]	low	🔒	-	-	-
204169	Zoho ManageEngine Password Manager Pro/OPManager access control	medium	🔒	-	-	-
204168	Chcnav P5E GNSS wifi_ap_pata_get.cmd information disclosure	low	🔒	-	-	-
204167	Chcnav P5E GNSS admin.html password recovery	medium	🔒	-	-	-
204166	Chcnav P5E GNSS authentication bypass [CVE-2022-30623]	medium	🔒	-	-	-
204165	Cellinx NVT IP PTZ Camera Cookie access control [CVE-2022-30620]	medium	🔒	-	-	-
204164	Fortinet FortiAnalyzer privilege chaining [CVE-2022-26118]	medium	🔒	-	-	-
204163	Parallels Access uncontrolled search path [CVE-2022-34901]	medium	🔒	-	-	-
204162	Parallels Access Symbolic Links toctou [CVE-2022-34899]	medium	🔒	-	-	-
204161	SourceCodester Garage Management System editbrand.php sql injection	medium	🔒	-	-	-
204160	SourceCodester Garage Management System login.php sql injection	medium	🔒	-	-	-
204159	Parallels Desktop permission assignment [CVE-2022-34891]	medium	🔒	-	-	-
204158	CVA6 Instruction exceptional condition [CVE-2022-34639]	low	🔒	-	-	-
204157	CVA6 Virtual Address exceptional condition [CVE-2022-34637]	medium	🔒	-	-	-
204156	Samsung CVA6 Privilege Escalation [CVE-2022-34635]	medium	🔒	-	-	-
204155	CVA6 exceptional condition [CVE-2022-34634]	low	🔒	-	-	-
204154	CVA6 exceptional condition [CVE-2022-34633]	low	🔒	-	-	-
204153	HTMLDoc html.cxx e_node heap-based overflow	medium	🔒	-	-	-
204152	HTMLDoc html.cxx write_header heap-based overflow	medium	🔒	-	-	-
204151	Nginx NJS njs_value.c njs_value_own_enumerate memory corruption	medium	🔒	-	-	-
204150	Nginx NJS njs_value_conversion.h njs_value_to_number memory corruption	medium	🔒	-	-	-
204149	Nginx NJS njs_djb_hash.c njs_djb_hash memory corruption	medium	🔒	-	-	-
204148	Nginx NJS njs_scope.h njs_scope_value out-of-bounds	low	🔒	-	-	-
204147	Nginx NJS njs_utf8.h njs_utf8_next memory corruption	medium	🔒	-	-	-
204146	Nginx NJS njs_value.c njs_value_property memory corruption	medium	🔒	-	-	-
204145	Foxit PDF Reader Doc Object out-of-bounds [CVE-2022-28682]	medium	🔒	-	-	-
204144	Kentico GetResource denial of service [CVE-2022-32387]	low	🔒	-	-	-
204143	Linux Kernel IOCTL out-of-bounds write [CVE-2021-33656]	medium	🔒	-	-	-
204142	Linux Kernel IOCTL out-of-bounds write [CVE-2021-33655]	medium	🔒	-	-	-
204141	Chcnav P5E GNSS information disclosure [CVE-2022-30627]	low	🔒	-	-	-
204140	Chcnav P5E GNSS Web Server exposure of information through directory listing	low	🔒	-	-	-
204139	DSK DSKNet HTTP Request sql injection [CVE-2022-24691]	medium	🔒	-	-	-
204138	Apache CloudStack SAML 2.0 Plugin xml external entity reference	low	🔒	-	-	-
204137	Parallels Desktop race condition [CVE-2022-34892]	medium	🔒	-	-	-
204136	Parallels Desktop Tools untrusted pointer dereference [CVE-2022-34890]	medium	🔒	-	-	-
204135	DSK DSKNet cross site scripting [CVE-2022-24692]	low	🔒	-	-	-
204134	RISCV ISA Sim exceptional condition [CVE-2022-34643]	medium	🔒	-	-	-
204133	RISCV ISA Sim mcontrol.action denial of service [CVE-2022-34642]	low	🔒	-	-	-
204132	CVA6/riscv-boom Address Translation exceptional condition [CVE-2022-34641]	low	🔒	-	-	-
204131	CVA6 Privilege Escalation [CVE-2022-34640]	medium	🔒	-	-	-
204130	CVA6/riscv-boom Address Translation exceptional condition [CVE-2022-34636]	medium	🔒	-	-	-
204129	Foxit PDF Reader ADBC Object out-of-bounds [CVE-2022-34875]	low	🔒	-	-	-
204128	Foxit PDF Reader Doc Object out-of-bounds [CVE-2022-34874]	low	🔒	-	-	-
204127	Foxit PDF Reader Annotation Object information disclosure [CVE-2022-34873]	low	🔒	-	-	-
204126	Foxit PDF Reader deletePages use after free	medium	🔒	-	-	-
204125	Foxit PDF Reader deletePages information disclosure	low	🔒	-	-	-
204124	Foxit PDF Reader Annotation Object out-of-bounds [CVE-2022-28680]	medium	🔒	-	-	-
204123	Foxit PDF Reader Annotation Object use after free [CVE-2022-28679]	medium	🔒	-	-	-
204122	Foxit PDF Reader Doc Object use after free [CVE-2022-28678]	medium	🔒	-	-	-
204121	Foxit PDF Reader Annotation Object use after free [CVE-2022-28677]	medium	🔒	-	-	-
204120	Foxit PDF Reader Doc Object use after free [CVE-2022-28676]	medium	🔒	-	-	-
204119	Foxit PDF Reader Annotation Object use after free [CVE-2022-28675]	medium	🔒	-	-	-
204118	Foxit PDF Reader Annotation Object use after free [CVE-2022-28674]	medium	🔒	-	-	-
204117	Foxit PDF Reader Doc Object use after free [CVE-2022-28673]	medium	🔒	-	-	-
204116	Foxit PDF Reader Doc Object use after free [CVE-2022-28672]	medium	🔒	-	-	-
204115	Foxit PDF Reader Doc Object use after free [CVE-2022-28671]	medium	🔒	-	-	-
204114	Foxit PDF Reader AcroForms out-of-bounds [CVE-2022-28670]	low	🔒	-	-	-
204113	Foxit PDF Reader Doc Object use after free [CVE-2022-28669]	medium	🔒	-	-	-
204112	Fortinet FortiTokenAndroid/FortiTokeniOS/FortiTokenWinApp certificate validation	medium	🔒	-	-	-
204111	Cellinx NVT IP PTZ Camera GetFileContent.cgi information disclosure	low	🔒	-	-	-
204110	Rocket-Chip RocketCore.scala cryptographic issues	low	🔒	-	-	-
204109	Apache SkyWalking NodeJS Agent denial of service [CVE-2022-36127]	low	🔒	-	-	-
204108	Gallery for Social Photo gifeed_duplicate_feed cross-site request forgery	low	🔒	-	-	-
204107	Image Slider Plugin ewic_duplicate_slider cross-site request forgery	low	🔒	-	-	-
204106	Download Manager Plugin cross site scripting [CVE-2022-2101]	low	🔒	-	-	-
204105	Button Widget Smartsoft Plugin smartsoftbutton_settings Page cross-site request forgery	low	🔒	-	-	-
204104	DSK DSKNet Account Information Pages access control [CVE-2022-24689]	medium	🔒	-	-	-
204103	Wbcom Designs BuddyPress Group Reviews Plugin authorization [CVE-2022-2108]	medium	🔒	-	-	-
204102	Parallels Access Agent Dispatcher Service uncontrolled search path	medium	🔒	-	-	-
204101	ZTE ZXEN CG200 HTTP GET Request denial of service [CVE-2022-23142]	low	🔒	-	-	-
204100	GiveWP Plugin REST API Endpoint donor-wall information disclosure	low	🔒	-	-	-
204099	IBM Engineering Requirements Quality Assistant On-Premises information disclosure	low	🔒	-	-	-
204098	IBM Engineering Requirements Quality Assistant On-Premises cross-site request forgery	low	🔒	-	-	-
204097	IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting	low	🔒	-	-	-
204096	IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting	low	🔒	-	-	-
204095	DSK DSKNet HTTP Request PresAbs.php sql injection	medium	🔒	-	-	-
204094	Fortinet FortiAuthenticator OWA Agent for Microsoft OWA HTTP GET Request cross site scripting	low	🔒	-	-	-
204093	WP All Import Plugin wp_all_import_get_gz.php unrestricted upload	medium	🔒	-	-	-
204092	DX Share Selection Plugin dx-share-selection.php dxss_admin_page cross-site request forgery	low	🔒	-	-	-
204091	FreeMind WP Browser Plugin freemind-wp-browser.php FreemindOptions cross-site request forgery	low	🔒	-	-	-
204090	AnyMind Widget Plugin anymind-widget-id.php createDOMStructure cross-site request forgery	low	🔒	-	-	-
204089	Free Live Chat Support Plugin livesupporti.php livesupporti_settings cross-site request forgery	low	🔒	-	-	-
204088	DSK DSKNet Touch Settings unrestricted upload [CVE-2022-24688]	medium	🔒	-	-	-
204087	Visualizer Tables and Charts Manager Plugin deserialization [CVE-2022-2444]	medium	🔒	-	-	-
204086	Apache Spark UI command injection [CVE-2022-33891]	medium	🔒	-	-	-
204085	Ferdi/Ferdium cross-site request forgery [CVE-2022-32320]	low	🔒	-	-	-
204084	SoftGuard Web Export pathname traversal [CVE-2022-31202]	low	🔒	-	-	-
204083	ShowMyPC 3606 wodVPN.dll uncontrolled search path [CVE-2021-42923]	medium	🔒	-	-	-
204082	Irfan Skiljan IrfanView ShowPlugInSaveOptions_W memory corruption	medium	🔒	-	-	-
204081	Irfan Skiljan IrfanView ShowPlugInSaveOptions_W memory corruption	medium	🔒	-	-	-
204080	Irfan Skiljan IrfanView ShowPlugInSaveOptions_W memory corruption	medium	🔒	-	-	-
204079	Tor Browser RTT Estimation denial of service [CVE-2022-33903]	low	🔒	-	-	-
204078	Nexans FTTO GigaSwitch SSH Service libnx_apl.so backdoor	medium	🔒	-	-	-
204077	SoftGuard Web injection [CVE-2022-31201]	low	🔒	-	-	-
204076	Gentics CMS cross site scripting [CVE-2022-30982]	low	🔒	-	-	-
204075	Pexip Infinity Conference Join access control [CVE-2022-25357]	medium	🔒	-	-	-
204074	Infiray IRAY-A8Z3 Web Application set_param.cgi hard-coded credentials	medium	🔒	-	-	-
204073	Unit4 Teta Mobile Edition errorReporting Page sql injection [CVE-2022-27434]	medium	🔒	-	-	-
204072	lemonldap-ng x.509 Certificate NG certificate validation	medium	🔒	-	-	-
204071	Pexip Infinity G.719 denial of service [CVE-2022-32263]	low	🔒	-	-	-
204070	dbus-broker XML Config File null pointer dereference [CVE-2022-31213]	low	🔒	-	-	-
204069	dbus-broker Exec Line Parser stack-based overflow [CVE-2022-31212]	medium	🔒	-	-	-
204068	Infiray IRAY-A8Z3 strcpy buffer overflow	medium	🔒	-	-	-
204067	Infiray IRAY-A8Z3 Web Server Privilege Escalation [CVE-2022-31208]	medium	🔒	-	-	-
204066	Open Design Alliance Drawings SDK DWG File out-of-bounds [CVE-2022-28809]	low	🔒	-	-	-
204065	Open Design Alliance Drawings SDK DWG File out-of-bounds [CVE-2022-28808]	low	🔒	-	-	-
204064	Open Design Alliance Drawings SDK DWG File Renderer out-of-bounds	low	🔒	-	-	-
204063	Poly EagleEye Director II os.system os command injection	medium	🔒	-	-	-
204062	Poly Studio CSR Action command injection [CVE-2022-26481]	medium	🔒	-	-	-
204061	Poly EagleEye Director II API Call improper authentication [CVE-2022-26479]	medium	🔒	-	-	-
204060	Squid Web Proxy Gopher Server Response denial of service [CVE-2021-46784]	low	🔒	-	-	-
204059	Reolink E1 Zoom Camera Web Server information disclosure [CVE-2021-40150]	low	🔒	-	-	-
204058	Chcnav P5E GNSS sys_username_passwd.cmd information disclosure	low	🔒	-	-	-
204057	Pexip Infinity H.323 denial of service [CVE-2022-27936]	low	🔒	-	-	-
204056	Pexip Infinity Epic Telehealth denial of service [CVE-2022-27935]	low	🔒	-	-	-
204055	Pexip Infinity HTTP denial of service [CVE-2022-27934]	low	🔒	-	-	-
204054	Pexip Infinity One Touch Join denial of service [CVE-2022-27933]	low	🔒	-	-	-
204053	Pexip Infinity One Touch Join denial of service [CVE-2022-27932]	low	🔒	-	-	-
204052	Pexip Infinity Session Initiation Protocol denial of service	low	🔒	-	-	-
204051	Pexip Infinity Single-Sign-On random values [CVE-2022-27930]	low	🔒	-	-	-
204050	Pexip Infinity HTTP denial of service [CVE-2022-27929]	low	🔒	-	-	-
204049	QVIS NVR DVR sudo Configuration access control [CVE-2021-44954]	medium	🔒	-	-	-
204048	QVIS NVR DVR deserialization [CVE-2021-41419]	medium	🔒	-	-	-
204047	lemonldap-ng RESTServer Plug-in NG improper authentication	medium	🔒	-	-	-
204046	Pexip Infinity Session Initiation Protocol denial of service	low	🔒	-	-	-
204045	Pexip Infinity One Touch Join denial of service [CVE-2022-26657]	low	🔒	-	-	-
204044	Pexip Infinity One Touch Join Privilege Escalation [CVE-2022-26656]	low	🔒	-	-	-
204043	Pexip Infinity Client API denial of service [CVE-2022-26655]	low	🔒	-	-	-
204042	Gentics CMS ZIP File deserialization [CVE-2022-30981]	medium	🔒	-	-	-
204041	Infiray IRAY-A8Z3 Telnet Service missing authentication [CVE-2022-31211]	medium	🔒	-	-	-
204040	Pexip Infinity resource consumption [CVE-2022-29286]	low	🔒	-	-	-
204039	Reolink E1 Zoom Camera SSL Private Key self.key information disclosure	low	🔒	-	-	-
204038	Dovecot passdb Configuration access control [CVE-2022-30550]	medium	🔒	-	-	-
204037	Pexip Infinity H.264 resource consumption [CVE-2022-27937]	low	🔒	-	-	-
204036	Pexip Infinity HTTP denial of service [CVE-2022-26654]	low	🔒	-	-	-
204035	dotCMS ContentResource API pathname traversal [CVE-2022-26352]	medium	🔒	-	-	-
204034	pyenv .python-version path traversal	medium	🔒	-	-	-
204033	Montala ResourceSpace csv_export_results_metadata.php information disclosure	low	🔒	-	-	-
204032	grunt-util-property Function Call code [CVE-2020-7641]	low	🔒	-	-	-
204031	Import CSV Files Plugin cross site scripting [CVE-2022-2146]	low	🔒	-	-	-
204030	Accept Stripe Payments Plugin Setting cross site scripting [CVE-2022-2194]	low	🔒	-	-	-
204029	Contact Form 7 Captcha Plugin Web Browser cross site scripting	low	🔒	-	-	-
204028	Simple Post Notes Plugin cross site scripting [CVE-2022-2186]	low	🔒	-	-	-
204027	Advanced Database Cleaner Plugin Admin Dashboard cross site scripting	low	🔒	-	-	-
204026	Loading Page with Loading Screen Plugin cross site scripting	low	🔒	-	-	-
204025	Download Manager Plugin History Dashboard cross site scripting	low	🔒	-	-	-
204024	Best Contact Management Software Plugin cross site scripting	low	🔒	-	-	-
204023	Very Simple Breadcrumb Plugin cross site scripting [CVE-2022-2149]	low	🔒	-	-	-
204022	LinkedIn Company Updates Plugin Setting cross site scripting	low	🔒	-	-	-
204021	Jquery Validation for Contact Form 7 Plugin cross-site request forgery	low	🔒	-	-	-
204020	404s Plugin Field cross site scripting [CVE-2022-2118]	low	🔒	-	-	-
204019	Supsystic Data Tables Generator Plugin cross site scripting [CVE-2022-2114]	low	🔒	-	-	-
204018	Page Generator Plugin Setting cross site scripting [CVE-2022-2100]	low	🔒	-	-	-
204017	CDI Plugin AJAX Action cross site scripting [CVE-2022-1933]	low	🔒	-	-	-
204016	OAuth Single Sign On Plugin oAuth Access Token improper authentication	medium	🔒	-	-	-
204015	WP User Manager Plugin authorization [CVE-2021-24655]	medium	🔒	-	-	-
204014	WooCommerce Plugin Payment Gateway Title injection [CVE-2022-2099]	low	🔒	-	-	-
204013	Discount Rules for WooCommerce Plugin cross site scripting [CVE-2022-2090]	low	🔒	-	-	-
204012	Insights from Google PageSpeed Plugin cross-site request forgery	low	🔒	-	-	-
204011	Download Monitor Plugin Blog Folder wp-config.php file access	low	🔒	-	-	-
204010	OctoBot WebInterface unrestricted upload [CVE-2021-36711]	medium	🔒	-	-	-
204009	Inductive Automation Ignition Python Script Scriptvoke authorization	medium	🔒	-	-	-
204008	Apache Hive CREATE/DROP missing authentication [CVE-2021-34538]	medium	🔒	-	-	-
204007	Builder XtremeRAT user.info improper authentication	low	🔒	-	-	-
204006	Builder XtremeRAT permission	medium	🔒	-	-	-
204005	Backdoor.Win32.HoneyPot.a Service Port 21 hard-coded password	low	🔒	-	-	-
204004	SourceCodester Multi Restaurant Table Reservation System profile.php cross site scripting	low	🔒	-	-	-
204003	Arox School ERP Pro Add Photo photogalleries.inc.php unrestricted upload	medium	🔒	-	-	-
204002	Angular Cache cross site scripting [CVE-2022-25869]	low	🔒	-	-	-
204001	gollum New Page cross site scripting [CVE-2020-35305]	low	🔒	-	-	-
204000	Parallels Desktop HDAudio Virtual Device buffer overflow [CVE-2021-34987]	medium	🔒	-	-	-
203999	Google Go Crypto Rand infinite loop [CVE-2022-30634]	low	🔒	-	-	-
203998	containrrr shoutrrr util util.PartitionMessage denial of service	low	🔒	-	-	-
203997	terser incorrect regex [CVE-2022-25858]	medium	🔒	-	-	-
203996	OpenZeppelin Cairo Contracts resource control [CVE-2022-31153]	low	🔒	-	-	-
203995	ZTE ZXMP M721 ZBOOT Interface information disclosure [CVE-2022-23141]	low	🔒	-	-	-
203994	Couchbase Server Private Key log file [CVE-2022-34826]	low	🔒	-	-	-
203993	Microweber Settings Upload Picture user.ini unrestricted upload	medium	🔒	-	-	-
203992	Parallels Desktop Symbolic Links toctou [CVE-2021-34986]	medium	🔒	-	-	-
203991	Grafana Unified Alerting cross site scripting [CVE-2022-31097]	low	🔒	-	-	-
203990	Honeywell Alerton Compass Software Configuration access control	medium	🔒	-	-	-
203989	Honeywell Alerton Ascent Control Module Configuration access control	medium	🔒	-	-	-
203988	Inductive Automation Ignition Session ID random values [CVE-2022-35890]	low	🔒	-	-	-
203987	EIP Stack Group OpENer stack-based overflow	medium	🔒	-	-	-
203986	Hap-WI Roxy-WI options.py subprocess_execute command injection	medium	🔒	-	-	-
203985	AWS SDK for Java S3 TransferManager downloadDirectory path traversal	medium	🔒	-	-	-
203984	mbed TLS ClientHello Message heap-based overflow [CVE-2022-35409]	medium	🔒	-	-	-
203983	Grafana authorization [CVE-2022-31107]	medium	🔒	-	-	-
203982	Bentley MicroStation/View DGN File Parser out-of-bounds [CVE-2022-35906]	low	🔒	-	-	-
203981	Bentley MicroStation/View FBX File Parser out-of-bounds [CVE-2022-35905]	low	🔒	-	-	-
203980	Bentley MicroStation/View IFC File Parser out-of-bounds [CVE-2022-35904]	low	🔒	-	-	-
203979	MicroStation MicroStation/View 3DS File Parser out-of-bounds	low	🔒	-	-	-
203978	Bentley MicroStation/View OBJ File Parser out-of-bounds [CVE-2022-35902]	low	🔒	-	-	-
203977	Bentley MicroStation/View J2K File Parser out-of-bounds [CVE-2022-35901]	low	🔒	-	-	-
203976	Bentley MicroStation/View JP2 file Parser out-of-bounds [CVE-2022-35900]	low	🔒	-	-	-
203975	Adobe RoboHelp cross site scripting [CVE-2022-23201]	low	🔒	-	-	-
203974	Honeywell Alerton Ascent Control Module Packet code [CVE-2022-30244]	medium	🔒	-	-	-
203973	Honeywell Alerton Visual Logic Packet code [CVE-2022-30243]	medium	🔒	-	-	-
203972	Adobe InDesign out-of-bounds [CVE-2022-34248]	medium	🔒	-	-	-
203971	Adobe Character Animator when parsing out-of-bounds [CVE-2022-34242]	medium	🔒	-	-	-
203970	Adobe InCopy out-of-bounds write [CVE-2022-34251]	medium	🔒	-	-	-
203969	Adobe InCopy heap-based overflow [CVE-2022-34250]	medium	🔒	-	-	-
203968	Adobe InCopy heap-based overflow [CVE-2022-34249]	medium	🔒	-	-	-
203967	Adobe InDesign out-of-bounds write [CVE-2022-34247]	medium	🔒	-	-	-
203966	Adobe InDesign heap-based overflow [CVE-2022-34246]	medium	🔒	-	-	-
203965	Adobe InDesign heap-based overflow [CVE-2022-34245]	medium	🔒	-	-	-
203964	Adobe Photoshop use after free [CVE-2022-34243]	medium	🔒	-	-	-
203963	Adobe Character Animator heap-based overflow [CVE-2022-34241]	medium	🔒	-	-	-
203962	Adobe InCopy out-of-bounds [CVE-2022-34252]	low	🔒	-	-	-
203961	Adobe Photoshop uninitialized pointer [CVE-2022-34244]	low	🔒	-	-	-
203960	LTI authentication replay [CVE-2022-31158]	medium	🔒	-	-	-
203959	LTI risky encryption [CVE-2022-31157]	low	🔒	-	-	-
203958	Arox School ERP Pro backoffice.inc.php cross site scripting	low	🔒	-	-	-
203957	SourceCodester Multi Restaurant Table Reservation System menu-list.php cross site scripting	low	🔒	-	-	-
203956	SourceCodester Multi Restaurant Table Reservation System menu-list.php cross site scripting	low	🔒	-	-	-
203955	SourceCodester Multi Restaurant Table Reservation System menu-list.php cross site scripting	low	🔒	-	-	-
203954	SourceCodester Multi Restaurant Table Reservation System table-list.php cross site scripting	low	🔒	-	-	-
203953	Adobe Acrobat Reader File Parser out-of-bounds [CVE-2022-34226]	medium	🔒	-	-	-
203952	Adobe Acrobat Reader File Parser out-of-bounds [CVE-2022-34222]	medium	🔒	-	-	-
203951	Adobe Acrobat Reader File Parser out-of-bounds [CVE-2022-34215]	medium	🔒	-	-	-
203950	Adobe Acrobat Reader use after free [CVE-2022-34230]	medium	🔒	-	-	-
203949	Adobe Acrobat Reader use after free [CVE-2022-34229]	medium	🔒	-	-	-
203948	Adobe Acrobat Reader uninitialized pointer [CVE-2022-34228]	medium	🔒	-	-	-
203947	Adobe Acrobat Reader use after free [CVE-2022-34225]	medium	🔒	-	-	-
203946	Adobe Acrobat Reader use after free [CVE-2022-34223]	medium	🔒	-	-	-
203945	Adobe Acrobat Reader use after free [CVE-2022-34220]	medium	🔒	-	-	-
203944	Adobe Acrobat Reader use after free [CVE-2022-34219]	medium	🔒	-	-	-
203943	Adobe Acrobat Reader out-of-bounds write [CVE-2022-34217]	medium	🔒	-	-	-
203942	Adobe Acrobat Reader use after free [CVE-2022-34216]	medium	🔒	-	-	-
203941	Adobe Acrobat Reader out-of-bounds [CVE-2022-34239]	low	🔒	-	-	-
203940	Adobe Acrobat Reader use after free [CVE-2022-34237]	medium	🔒	-	-	-
203939	Adobe Acrobat Reader out-of-bounds [CVE-2022-34236]	low	🔒	-	-	-
203938	Adobe Acrobat Reader use after free [CVE-2022-34234]	medium	🔒	-	-	-
203937	Adobe Acrobat Reader use after free [CVE-2022-34233]	medium	🔒	-	-	-
203936	Adobe Acrobat Reader use after free [CVE-2022-34232]	medium	🔒	-	-	-
203935	Adobe Acrobat Reader type confusion [CVE-2022-34221]	medium	🔒	-	-	-
203934	Octopus Server Help Sidebar cross site scripting [CVE-2022-29890]	low	🔒	-	-	-
203933	Octopus Server resource injection [CVE-2022-1881]	low	🔒	-	-	-
203932	jquery-validation redos [CVE-2022-31147]	medium	🔒	-	-	-
203931	Mealie Login timing discrepancy [CVE-2022-32425]	low	🔒	-	-	-
203930	oretnom23 Product Show Room Site sql injection [CVE-2022-32415]	medium	🔒	-	-	-
203929	Mattermost Guest Account information disclosure [CVE-2022-2408]	low	🔒	-	-	-
203928	fastify bearer-auth crypto.timingSafeEqual timing discrepancy	medium	🔒	-	-	-
203927	GtkRadiant q3map2 buffer overflow [CVE-2022-32406]	low	🔒	-	-	-
203926	Isode SWIFT Registry Editor hard-coded credentials [CVE-2022-32389]	medium	🔒	-	-	-
203925	AutoTrace input-bmp.c ReadImage heap-based overflow	medium	🔒	-	-	-
203924	MPlayer File vo_v4l2.c denial of service	low	🔒	-	-	-
203923	Toybox httpd.c null pointer dereference	low	🔒	-	-	-
203922	Piwigo Search sql injection [CVE-2022-32297]	medium	🔒	-	-	-
203921	Gradle Dependency Verification unknown vulnerability [CVE-2022-31156]	low	🔒	-	-	-
203920	AMD Ryzen/Athlon/EPYC Branch Predictor information disclosure	low	🔒	-	-	-
203919	AMD Ryzen/Athlon System Management Interface out-of-bounds [CVE-2021-26384]	medium	🔒	-	-	-
203918	AMD Ryzen Audio Co-Processor denial of service [CVE-2021-26382]	low	🔒	-	-	-
203917	Mattermost Legacy Slack Import resource consumption [CVE-2022-2406]	low	🔒	-	-	-
203916	Mattermost API information disclosure [CVE-2022-2401]	low	🔒	-	-	-
203915	Portal do Software Publico Brasileiro i3geo HTTP Request codemirror.php file inclusion	medium	🔒	-	-	-
203914	Linux Kernel eBPF bpf.c nsim_bpf_map_alloc information disclosure	low	🔒	-	-	-
203913	Portal do Software Publico Brasileiro i3geo request_token.php cross site scripting	low	🔒	-	-	-
203912	Portal do Software Publico Brasileiro i3geo access_token.php cross site scripting	low	🔒	-	-	-
203911	Portal do Software Publico Brasileiro i3geo svg2img.php cross site scripting	low	🔒	-	-	-
203910	oretnom23 Product Show Room Site sql injection [CVE-2022-32416]	medium	🔒	-	-	-
203909	oretnom23 Fast Food Ordering System cross site scripting [CVE-2022-32318]	low	🔒	-	-	-
203908	IBM Security Verify Identity Manager information disclosure [CVE-2022-22460]	low	🔒	-	-	-
203907	IBM Security Verify Identity Manager inadequate encryption [CVE-2022-22453]	low	🔒	-	-	-
203906	IBM Security Verify Identity Manager HTTP Request unrestricted upload	medium	🔒	-	-	-
203905	IBM Security Verify Identity Manager excessive authentication	low	🔒	-	-	-
203904	PbootCMS function.php parserIfLabel code injection	medium	🔒	-	-	-
203903	URVE Web Manager uploader.php unrestricted upload	medium	🔒	-	-	-
203902	URVE Web Manager upload.php unrestricted upload	medium	🔒	-	-	-
203901	URVE Web Manager img_upload.php unrestricted upload	medium	🔒	-	-	-
203900	Sage 300 ERP Installer Runtime untrusted search path	medium	🔒	-	-	-
203899	Node.js http Module request smuggling [CVE-2022-32215]	medium	🔒	-	-	-
203898	Node.js http Module request smuggling [CVE-2022-32213]	medium	🔒	-	-	-
203897	Node.js IsAllowedHost os command injection [CVE-2022-32212]	medium	🔒	-	-	-
203896	Dingtian DT-R002 2CH HTTP POST Request relay_cgi.cgi improper authentication	medium	🔒	-	-	-
203895	pki-core Message Content improper authorization [CVE-2022-2393]	medium	🔒	-	-	-
203894	Node.js http Module request smuggling [CVE-2022-32214]	medium	🔒	-	-	-
203893	TP-LINK TL-WR841N httpd buffer overflow [CVE-2022-30024]	medium	🔒	-	-	-
203892	convert2rhel run-convert2rhel.yml information disclosure	low	🔒	-	-	-
203891	Undici.ProxyAgent certificate validation [CVE-2022-32210]	medium	🔒	-	-	-
203890	F-Secure Atlant Scanning Engine aeheur.dll denial of service	low	🔒	-	-	-
203889	Xiaomi Smart Phone heap-based overflow [CVE-2020-14127]	medium	🔒	-	-	-
203888	IBM Security Verify Information Queue HTTP Request denial of service	low	🔒	-	-	-
203887	Node.js openssl.cnf uncontrolled search path	medium	🔒	-	-	-
203886	Node.js openssl.cnf cryptographic issues	low	🔒	-	-	-
203885	IBM Engineering Lifecycle Optimization HTTP Header cross site scripting	low	🔒	-	-	-
203884	IBM Engineering Lifecycle Optimization Web UI cross site scripting	low	🔒	-	-	-
203883	IBM Engineering Lifecycle Optimization HTTP GET Request information disclosure	low	🔒	-	-	-
203882	IBM Engineering Lifecycle Optimization SQL Error Message information disclosure	low	🔒	-	-	-
203881	IBM Engineering Lifecycle Optimization access control [CVE-2021-39017]	medium	🔒	-	-	-
203880	IBM Engineering Lifecycle Optimization Network Traffic access control	medium	🔒	-	-	-
203879	Veeam Management Pack for Microsoft System Center URL cross site scripting	low	🔒	-	-	-
203878	IBM WebSphere Application Server Web UI cross site scripting	low	🔒	-	-	-
203877	IBM WebSphere Application Server Administrative Console information disclosure	low	🔒	-	-	-
203876	yunzhongzhuan Electronic Mall System sql injection [CVE-2022-30113]	medium	🔒	-	-	-
203875	Best Practical Request Tracker Attachment cross site scripting	low	🔒	-	-	-
203874	Best Practical Request Tracker Ticket Search redirect [CVE-2022-25803]	low	🔒	-	-	-
203873	Best Practical RT for Incident Response Scripted Action Tools server-side request forgery	medium	🔒	-	-	-
203872	Best Practical RT for Incident Response Whois Lookup Tool server-side request forgery	medium	🔒	-	-	-
203871	Verizon 5G Home LVSKIHP InDoorUnit RPC Endpoint improper authentication	medium	🔒	-	-	-
203870	Verizon 5G Home LVSKIHP InDoorUnit RPC Endpoint crtc.lua crtcfwimage unrestricted upload	medium	🔒	-	-	-
203869	Verizon 5G Home LVSKIHP InDoorUnit RPC Endpoint ca.pem access control	medium	🔒	-	-	-
203868	Verizon 5G Home LVSKIHP OutDoorUnit RPC Endpoint wnc_crtc_fw.sh crtc_fw_upgrade risky encryption	medium	🔒	-	-	-
203867	Verizon 5G Home LVSKIHP OutDoorUnit crtcrpc JSON Listener rpc.lua crtcswitchsimprofile os command injection	medium	🔒	-	-	-
203866	Verizon 5G Home LVSKIHP OutDoorUnit Settings Page settings.lua os command injection	medium	🔒	-	-	-
203865	5G Home LVSKIHP InDoorUnit crtcrpc JSON Listener crtc.lua crtcreadpartition os command injection	medium	🔒	-	-	-
203864	Verizon 5G Home LVSKIHP InDoorUnit crtcrpc JSON Listener crtcmode.sh enable_ssh os command injection	medium	🔒	-	-	-
203863	Spryker Commerce OS os command injection [CVE-2022-28888]	medium	🔒	-	-	-
203862	Google Android Kernel Memory remap_pfn_range memory corruption	medium	🔒	-	-	-
203861	Google Android bta_hf_client_at.cc bta_hf_client_handle_cind_list_item out-of-bounds write	medium	🔒	-	-	-
203860	Google Android C2DmaBufAllocator.cpp use after free	medium	🔒	-	-	-
203859	Google Android Bluetooth Stack bta_hf_client_at.cc AT_SKIP_REST out-of-bounds	low	🔒	-	-	-
203858	Google Android gatt_db.cc read_attr_value out-of-bounds write	medium	🔒	-	-	-
203857	Google Android Bluetooth avrc_pars_ct.cc avrc_ctrl_pars_vendor_cmd out-of-bounds	low	🔒	-	-	-
203856	Google Android Notification NotificationAccessConfirmationActivity permission	low	🔒	-	-	-
203855	Google Android WindowManagerService.java finishDrawingWindow input validation	medium	🔒	-	-	-
203854	Google Android AppRestrictionsFragment.java assertSafeToStartCustomActivity permission	medium	🔒	-	-	-
203853	Google Android CallLogProvider.java openFile path traversal	medium	🔒	-	-	-
203852	Google Android PermissionController permission [CVE-2022-20218]	medium	🔒	-	-	-
203851	Google Android SprdContactsProvider denial of service [CVE-2022-20217]	low	🔒	-	-	-
203850	Google Android permission [CVE-2022-20216]	medium	🔒	-	-	-
203849	Google Android overlay improper restriction of rendered ui layers	low	🔒	-	-	-
203848	Google Android DRM Driver denial of service [CVE-2022-20236]	low	🔒	-	-	-
203847	Google Android KeyChain.java choosePrivateKeyAlias information disclosure	low	🔒	-	-	-
203846	Google Android SubscriptionController.java getSubscriptionProperty information disclosure	low	🔒	-	-	-
203845	Google Android StorageManagerService.java information disclosure	low	🔒	-	-	-
203844	Google Android USB Driver out-of-bounds [CVE-2022-20227]	low	🔒	-	-	-
203843	Schneider Electric X80 Advanced RTU Communication Module Firmware Image file inclusion	low	🔒	-	-	-
203842	Schneider Electric X80 Advanced RTU Communication Module Firmware data authenticity	medium	🔒	-	-	-
203841	Schneider Electric X80 Advanced RTU Communication Module JSON Content Type Parser null pointer dereference	low	🔒	-	-	-
203840	Schneider Electric X80 Advanced RTU Communication Module Cookie infinite loop	low	🔒	-	-	-
203839	Schneider Electric X80 Advanced RTU Communication Module HTTP Header Parser out-of-bounds write	medium	🔒	-	-	-
203838	Schneider Electric Easergy P5 Device Watchdog denial of service	low	🔒	-	-	-
203837	Schneider Electric Easergy P5 SSH Connection risky encryption	low	🔒	-	-	-
203836	Schneider Electric Acti9 PowerTag Link C privileges management	medium	🔒	-	-	-
203835	uBlock Origin Extension Renderer Process cross site scripting	low	🔒	-	-	-
203834	Strapi Add New Assets unrestricted upload [CVE-2022-32114]	medium	🔒	-	-	-
203833	kvf-admin com.kalvin.kvf.common.shiro.ShiroConfig File deserialization	medium	🔒	-	-	-
203832	Schneider Electric X80 Advanced RTU Communication Module URL Parser memory corruption	medium	🔒	-	-	-
203831	Schneider Electric X80 Advanced RTU Communication Module Firmware Image path traversal	medium	🔒	-	-	-
203830	JerryScript print.c jerryx_print_unhandled_exception stack-based overflow	medium	🔒	-	-	-
203829	FlyteAdmin session expiration [CVE-2022-31145]	medium	🔒	-	-	-
203828	PrestaShop Catalog unrestricted upload [CVE-2020-21967]	medium	🔒	-	-	-
203827	Schneider Electric Easergy P5 HTTP Stack buffer overflow [CVE-2022-34756]	high	🔒	-	-	-
203826	Schneider Electric SpaceLogic C-Bus Home Controller os command injection	medium	🔒	-	-	-
203825	VMware vCenter Server/Cloud Foundation URL Request server-side request forgery	medium	🔒	-	-	-
203824	Linux Kernel sm712fb.c smtcfb_read out-of-bounds	medium	🔒	-	-	-
203823	Rhonabwy JWE Token r_jwe_aesgcm_key_unwrap denial of service	low	🔒	-	-	-
203822	WolfSSH wolfSSH_SFTP_RecvRMDIR integer overflow	medium	🔒	-	-	-
203821	osTicket Plugins SVG class.audit.php cross site scripting	low	🔒	-	-	-
203820	IBM i Web UI cross site scripting [CVE-2022-34358]	low	🔒	-	-	-
203819	Transition Scheduler Add-on Project Name cross site scripting	low	🔒	-	-	-
203818	RuoYi Background Management Module unrestricted upload [CVE-2022-32065]	medium	🔒	-	-	-
203817	codecov popen Privilege Escalation	low	🔒	-	-	-
203816	Oxygen XML WebHelp Search Field cross site scripting [CVE-2021-46827]	low	🔒	-	-	-
203815	vm2 recursion [CVE-2019-10761]	low	🔒	-	-	-
203814	Apache Tapestry Content-Type org.apache.tapestry5.http.ContentType incorrect regex	medium	🔒	-	-	-
203813	Samsung Smart Phone SecSoterService information disclosure [CVE-2022-30753]	low	🔒	-	-	-
203812	Argo CD callback cross site scripting	low	🔒	-	-	-
203811	Mogu Blog cross site scripting [CVE-2022-30517]	low	🔒	-	-	-
203810	svelte Attribute toString cross site scripting	low	🔒	-	-	-
203809	whoogle-search HTML Template error.html cross site scripting	low	🔒	-	-	-
203808	Nautilus Treadmill access control [CVE-2022-35648]	medium	🔒	-	-	-
203807	Samsung USB Driver Windows Installer for Mobile Phones integrity check	low	🔒	-	-	-
203806	Samsung Galaxy Store BillingPackageInsraller input validation	medium	🔒	-	-	-
203805	Samsung Galaxy Store ApexPackageInstaller input validation [CVE-2022-33709]	medium	🔒	-	-	-
203804	Samsung Galaxy Store AppsPackageInstaller input validation [CVE-2022-33708]	medium	🔒	-	-	-
203803	Samsung Gallery S Pen Air Gesture access control [CVE-2022-33706]	low	🔒	-	-	-
203802	Samsung Smart Phone Knoxguard improper authorization [CVE-2022-33702]	medium	🔒	-	-	-
203801	Samsung Smart Phone TelephonyUI putDsaSimImsi information disclosure	low	🔒	-	-	-
203800	Samsung Smart Phone TelephonyUI getDsaSimImsi information disclosure	low	🔒	-	-	-
203799	Samsung Smart Phone Telecom Application information disclosure	low	🔒	-	-	-
203798	Samsung Smart Phone ImsServiceSwitchBase log file [CVE-2022-33697]	low	🔒	-	-	-
203797	Samsung Smart Phone Telephony unknown vulnerability [CVE-2022-33696]	low	🔒	-	-	-
203796	Samsung Smart Phone CSC Application information disclosure [CVE-2022-33694]	low	🔒	-	-	-
203795	Samsung Smart Phone CID Manager information disclosure [CVE-2022-33693]	low	🔒	-	-	-
203794	Microsoft Windows Security Account Manager denial of service	medium	🔒	-	-	-
203793	Microsoft Windows Internet Information Services Cachuri Module denial of service	low	🔒	-	-	-
203792	SAP Enterprise Portal cross site scripting [CVE-2022-35224]	low	🔒	-	-	-
203791	Git for Windows Installer git.exe untrusted search path	medium	🔒	-	-	-
203790	Western Digital My Cloud Home/My Cloud Home Duo AWS Credential insufficiently protected credentials	low	🔒	-	-	-
203789	libguestfs get_keys denial of service	low	🔒	-	-	-
203788	Pyramid EtherNet-IP Adapter Development Kit Packet out-of-bounds write	high	🔒	-	-	-
203787	Argo CD access control [CVE-2022-1025]	medium	🔒	-	-	-
203786	Zoho ManageEngine ServiceDesk Plus Ticket-Creation Email improper authentication	medium	🔒	-	-	-
203785	SAP BusinessObjects CMC cross-site request forgery [CVE-2022-35228]	low	🔒	-	-	-
203784	SAP BusinessObjects BW Publisher Service unquoted search path	medium	🔒	-	-	-
203783	SAP NW EP WPC cross site scripting [CVE-2022-35227]	low	🔒	-	-	-
203782	SAP Business one/HANA Cockpit exposure of resource [CVE-2022-32249]	low	🔒	-	-	-
203781	SAP S4HANA Manage Checkbooks input validation [CVE-2022-32248]	medium	🔒	-	-	-
203780	SAP S4HANA Application Business Partner Extension authorization	medium	🔒	-	-	-
203779	SourceCodester Simple e-Learning System claire_blake cross site scripting	low	🔒	-	-	-
203778	SAP Business One Client code injection [CVE-2022-31593]	medium	🔒	-	-	-
203777	Zulip Public Data Export information disclosure [CVE-2022-31134]	low	🔒	-	-	-
203776	SAP SAP BusinessObjects Business Intelligence Platform authorization	low	🔒	-	-	-
203775	Git access control [CVE-2022-29187]	medium	🔒	-	-	-
203774	SAP Business one License Service API HTTP Request improper authentication	medium	🔒	-	-	-
203773	VMware vRealize Log Insight cross site scripting [CVE-2022-31655]	low	🔒	-	-	-
203772	VMware vRealize Log Insight Configuration cross site scripting	low	🔒	-	-	-
203771	SAP 3D Visual Enterprise Viewer JPEG 2000 File denial of service	low	🔒	-	-	-
203770	SAP SAP BusinessObjects Business Intelligence Platform LCM information disclosure	low	🔒	-	-	-
203769	SAP Business One xml external entity reference [CVE-2022-35168]	low	🔒	-	-	-
203768	SAP Business Intelligence Platform Visual Difference Application sql injection	medium	🔒	-	-	-
203767	Western Digital My Cloud AWS S3 Bucket os command injection [CVE-2022-22997]	medium	🔒	-	-	-
203766	Argo CD certificate validation [CVE-2022-31105]	medium	🔒	-	-	-
203765	SAP Business Objects Request data authenticity [CVE-2022-31598]	medium	🔒	-	-	-
203764	SAP Enterprise Extension Defense Forces & Public Security authorization	medium	🔒	-	-	-
203763	libconnect Extension cross site scripting [CVE-2022-33157]	low	🔒	-	-	-
203762	matomo_integration Extension cross site scripting [CVE-2022-33156]	low	🔒	-	-	-
203761	ameos_tarteaucitron Extension cross site scripting [CVE-2022-33155]	low	🔒	-	-	-
203760	schema Extension cross site scripting [CVE-2022-33154]	low	🔒	-	-	-
203759	gridelements Extension cross site scripting [CVE-2022-29602]	low	🔒	-	-	-
203758	seminars Extension sql injection [CVE-2022-29601]	medium	🔒	-	-	-
203757	oelib Extension sql injection [CVE-2022-29600]	medium	🔒	-	-	-
203756	SAP Netweaver Enterprise Portal cross site scripting [CVE-2022-35172]	low	🔒	-	-	-
203755	Lux Extension sql injection [CVE-2022-35628]	medium	🔒	-	-	-
203754	SAP Netweaver Enterprise Portal cross site scripting [CVE-2022-35225]	low	🔒	-	-	-
203753	SAP Netweaver Enterprise Portal cross site scripting [CVE-2022-35170]	low	🔒	-	-	-
203752	Linux Kernel Keystroke information disclosure [CVE-2011-4916]	low	🔒	-	-	-
203751	SAP Netweaver Enterprise Portal cross site scripting [CVE-2022-32247]	low	🔒	-	-	-
203750	October CMS fromData race condition	low	🔒	-	-	-
203749	Samsung Smart Phone Messaging unknown vulnerability [CVE-2022-33692]	low	🔒	-	-	-
203748	Samsung Smart Phone SecTelephonyProvider EventType log file	low	🔒	-	-	-
203747	Samsung Smart Phone telephony-common.jar information disclosure	low	🔒	-	-	-
203746	Samsung Smart Phone GsmAlarmManager information disclosure [CVE-2022-33686]	low	🔒	-	-	-
203745	Kubernetes aws-iam-authenticator access control [CVE-2022-2385]	medium	🔒	-	-	-
203744	Intel CPU Instruction Retbleed information disclosure	low	🔒	-	-	-
203743	AMD CPU Instruction Retbleed information disclosure	low	🔒	-	-	-
203742	IBM QRadar SIEM denial of service [CVE-2021-39041]	low	🔒	-	-	-
203741	IBM QRadar Network Security hard-coded credentials [CVE-2020-4157]	low	🔒	-	-	-
203740	IBM QRadar Network Security information disclosure [CVE-2020-4159]	low	🔒	-	-	-
203739	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203738	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203737	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203736	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203735	Microsoft Azure Site Recovery VMWare to Azure Remote Code Execution	medium	🔒	-	-	-
203734	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203733	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203732	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203731	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203730	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203729	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203728	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203727	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203726	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203725	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203724	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203723	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203722	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203721	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203720	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203719	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203718	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203717	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203716	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203715	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203714	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203713	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203712	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203711	Microsoft Windows Xbox Live Save Service Privilege Escalation	medium	🔒	-	-	-
203710	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203709	Microsoft Azure Site Recovery VMWare to Azure information disclosure	low	🔒	-	-	-
203708	Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation	medium	🔒	-	-	-
203707	Microsoft Defender for Endpoint Privilege Escalation [CVE-2022-33637]	medium	🔒	-	-	-
203706	Microsoft Lync Server/Skype for Business Server Privilege Escalation	medium	🔒	-	-	-
203705	Microsoft Office authorization [CVE-2022-33632]	medium	🔒	-	-	-
203704	Microsoft Windows Print Spooler privileges management [CVE-2022-30226]	medium	🔒	-	-	-
203703	Microsoft Windows Media Player Network Sharing Service privileges management	medium	🔒	-	-	-
203702	Microsoft Windows privileges management [CVE-2022-30224]	medium	🔒	-	-	-
203701	Microsoft Windows Hyper-V information disclosure [CVE-2022-30223]	low	🔒	-	-	-
203700	Microsoft Windows Shell Privilege Escalation [CVE-2022-30222]	medium	🔒	-	-	-
203699	Microsoft Windows Graphics Remote Code Execution [CVE-2022-30221]	medium	🔒	-	-	-
203698	Microsoft Windows Common Log File System Driver Privilege Escalation	medium	🔒	-	-	-
203697	Microsoft Windows Server Service unrestricted upload [CVE-2022-30216]	medium	🔒	-	-	-
203696	Microsoft Windows Active Directory Federation Services Privilege Escalation	medium	🔒	-	-	-
203695	Microsoft Windows DNS Server race condition [CVE-2022-30214]	medium	🔒	-	-	-
203694	Microsoft Windows GDI+ information disclosure [CVE-2022-30213]	low	🔒	-	-	-
203693	Microsoft Windows Connected Devices Platform Service information disclosure	low	🔒	-	-	-
203692	Microsoft Windows L2TP Privilege Escalation [CVE-2022-30211]	medium	🔒	-	-	-
203691	Microsoft Windows IIS Remote Code Execution [CVE-2022-30209]	medium	🔒	-	-	-
203690	Microsoft Windows Print Spooler Privilege Escalation [CVE-2022-30206]	medium	🔒	-	-	-
203689	Microsoft Windows Group Policy race condition [CVE-2022-30205]	medium	🔒	-	-	-
203688	Microsoft Windows Boot Manager Local Privilege Escalation [CVE-2022-30203]	medium	🔒	-	-	-
203687	Microsoft Windows Advanced Local Procedure Call Privilege Escalation	medium	🔒	-	-	-
203686	Microsoft Azure Storage Blobs Client Library information disclosure	low	🔒	-	-	-
203685	Microsoft Azure Site Recovery VMWare to Azure privileges management	medium	🔒	-	-	-
203684	Microsoft Windows Cookie information disclosure [CVE-2022-27776]	low	🔒	-	-	-
203683	Microsoft Windows AMD CPU Branch type confusion [CVE-2022-23825]	low	🔒	-	-	-
203682	Microsoft Windows AMD CPU Branch type confusion [CVE-2022-23816]	low	🔒	-	-	-
203681	Microsoft Edge V8 type confusion [CVE-2022-2295]	medium	🔒	-	-	-
203680	Microsoft Edge WebRTC heap-based overflow [CVE-2022-2294]	medium	🔒	-	-	-
203679	Microsoft Windows BitLocker information disclosure [CVE-2022-22711]	low	🔒	-	-	-
203678	Microsoft Windows Fax Service Privilege Escalation [CVE-2022-22050]	medium	🔒	-	-	-
203677	Microsoft Windows CSRSS Privilege Escalation [CVE-2022-22049]	medium	🔒	-	-	-
203676	Microsoft Windows BitLocker authorization [CVE-2022-22048]	medium	🔒	-	-	-
203675	Microsoft Windows CSRSS privileges management [CVE-2022-22047]	medium	🔒	-	-	-
203674	Microsoft Windows Windows.Devices.Picker.dll privileges management	medium	🔒	-	-	-
203673	Microsoft Windows Fast FAT File System Driver privileges management	medium	🔒	-	-	-
203672	Microsoft Windows Hyper-V information disclosure [CVE-2022-22042]	low	🔒	-	-	-
203671	Microsoft Windows Print Spooler privileges management [CVE-2022-22041]	medium	🔒	-	-	-
203670	Microsoft Windows denial of service [CVE-2022-22040]	low	🔒	-	-	-
203669	Microsoft Windows Network File System code injection [CVE-2022-22039]	medium	🔒	-	-	-
203668	Microsoft Windows Remote Procedure Call Runtime code injection	medium	🔒	-	-	-
203667	Microsoft Windows Advanced Local Procedure Call privileges management	medium	🔒	-	-	-
203666	Microsoft Windows Performance Counters privileges management	medium	🔒	-	-	-
203665	Microsoft Windows Graphics privileges management [CVE-2022-22034]	medium	🔒	-	-	-
203664	Microsoft Windows Credential Guard privileges management [CVE-2022-22031]	medium	🔒	-	-	-
203663	Microsoft Windows Network File System code injection [CVE-2022-22029]	medium	🔒	-	-	-
203662	Microsoft Windows Network File System information disclosure	low	🔒	-	-	-
203661	Microsoft Windows Fax Service code injection [CVE-2022-22027]	medium	🔒	-	-	-
203660	Microsoft Windows CSRSS privileges management [CVE-2022-22026]	high	🔒	-	-	-
203659	Microsoft Windows Fax Service Privilege Escalation [CVE-2022-22024]	medium	🔒	-	-	-
203658	Microsoft Windows Portable Device Enumerator Service Local Privilege Escalation	medium	🔒	-	-	-
203657	Microsoft Windows Print Spooler Privilege Escalation [CVE-2022-22022]	medium	🔒	-	-	-
203656	Microsoft Windows Kernel information disclosure [CVE-2022-21845]	low	🔒	-	-	-
203655	Huawei HarmonyOS AT Command out-of-bounds [CVE-2022-34743]	low	🔒	-	-	-
203654	Huawei HarmonyOS System Module information disclosure [CVE-2022-34742]	low	🔒	-	-	-
203653	Huawei HarmonyOS NFC Module buffer overflow [CVE-2022-34741]	medium	🔒	-	-	-
203652	Huawei HarmonyOS NFC Module buffer overflow [CVE-2022-34740]	medium	🔒	-	-	-
203651	Huawei HarmonyOS Fingerprint Module integer overflow [CVE-2022-34739]	medium	🔒	-	-	-
203650	Huawei HarmonyOS Aapplication Security Module permission [CVE-2022-34737]	medium	🔒	-	-	-
203649	Samsung Cloud Intent improper authorization [CVE-2022-33713]	low	🔒	-	-	-
203648	Samsung Camera Intent improper authorization [CVE-2022-33712]	low	🔒	-	-	-
203647	Samsung Find My Mobile small space of random values [CVE-2022-33707]	low	🔒	-	-	-
203646	Samsung Calendar Schedule improper authorization [CVE-2022-33705]	medium	🔒	-	-	-
203645	Samsung Smart Phone CACertificateInfo input validation [CVE-2022-33703]	low	🔒	-	-	-
203644	Samsung Smart Phone KnoxCustomManagerService PowerManaer.goToSleep access control	low	🔒	-	-	-
203643	Samsung Smart Phone InputManagerService permission assignment	medium	🔒	-	-	-
203642	Samsung Smart Phone Contacts Storage information disclosure [CVE-2022-33690]	low	🔒	-	-	-
203641	Samsung Smart Phone TelephonyUI improper authentication [CVE-2022-33689]	medium	🔒	-	-	-
203640	Samsung Smart Phone Wearable Manager Service dead code [CVE-2022-33685]	low	🔒	-	-	-
203639	Samsung Smart Phone Finder default permission [CVE-2022-30758]	low	🔒	-	-	-
203638	Samsung Smart Phone improper authorization [CVE-2022-30757]	low	🔒	-	-	-
203637	Samsung Smart Phone Finder input validation [CVE-2022-30756]	low	🔒	-	-	-
203636	Samsung AppLock improper authentication [CVE-2022-30755]	medium	🔒	-	-	-
203635	Samsung Smart Phone AppLinker input validation [CVE-2022-30754]	low	🔒	-	-	-
203634	Samsung Smart Phone SemWifiApClient sendDHCPACKBroadcast access control	low	🔒	-	-	-
203633	Samsung Smart Phone SemWifiApClient sendDHCPACKBroadcast access control	low	🔒	-	-	-
203632	Samsung Smart Phone SemWifiApClient updateLastConnectedClientInfo access control	low	🔒	-	-	-
203631	Huawei HarmonyOS Basic Framework/Setting Module unknown vulnerability	low	🔒	-	-	-
203630	Live555 Socket Connection heap-based overflow [CVE-2021-41396]	low	🔒	-	-	-
203629	Huawei Smart Phone Bluetooth Module permission [CVE-2021-40016]	low	🔒	-	-	-
203628	Huawei Smart Phone Bluetooth Module permission [CVE-2021-40013]	medium	🔒	-	-	-
203627	Huawei Smart Phone Video Framework information disclosure [CVE-2021-40012]	low	🔒	-	-	-
203626	Huawei eSE620X vESS Packet denial of service [CVE-2021-39999]	low	🔒	-	-	-
203625	Samsung Smart Phone Score Driver toctou [CVE-2022-33691]	low	🔒	-	-	-
203624	Druva inSync inSyncDecommission privileges management [CVE-2021-36666]	medium	🔒	-	-	-
203623	Druva inSync inSyncUpgradeDaemon deserialization [CVE-2021-36665]	medium	🔒	-	-	-
203622	Huawei HarmonyOS SystemUI Module permission [CVE-2022-34738]	medium	🔒	-	-	-
203621	Linux Kernel Frame Scheduling Module null pointer dereference	low	🔒	-	-	-
203620	Huawei HarmonyOS Frame Scheduling Module null pointer dereference	low	🔒	-	-	-
203619	Couchbase Server Field Name information disclosure [CVE-2022-33911]	low	🔒	-	-	-
203618	Samsung KnoxSDK ucmRetParcelable input validation	low	🔒	-	-	-
203617	Mattermost Trusted IP Header default permission [CVE-2022-2366]	medium	🔒	-	-	-
203616	Novastar VNNOX iCare Novaicare access control [CVE-2021-38289]	medium	🔒	-	-	-
203615	Druva inSync Electron App injection [CVE-2021-36668]	medium	🔒	-	-	-
203614	Couchbase Server Analytics Remote Links downgrade [CVE-2022-33173]	low	🔒	-	-	-
203613	Druva inSync os.system Library command injection [CVE-2021-36667]	medium	🔒	-	-	-
203612	EGT-Kommunikationstechnik UG Mediacenter Online_Update.php cross site scripting	low	🔒	-	-	-
203611	Siemens SIMATIC CP 1242-7 V2 OpenVPN Configuration code injection	medium	🔒	-	-	-
203610	Siemens SIMATIC CP 1242-7 V2 Field command injection [CVE-2022-34820]	medium	🔒	-	-	-
203609	Siemens SIMATIC CP 1242-7 V2 Message Parser heap-based overflow	medium	🔒	-	-	-
203608	Siemens Simcenter Femap X_T File Parser out-of-bounds write [CVE-2022-34748]	medium	🔒	-	-	-
203607	Siemens Mendix Excel Importer Module xml entity expansion [CVE-2022-34467]	low	🔒	-	-	-
203606	Siemens Parasolid/Simcenter Femap NEU File Parser out-of-bounds	low	🔒	-	-	-
203605	Siemens SICAM GridEdge Essential ARM SSH Key exposure of resource	medium	🔒	-	-	-
203604	Siemens PADS Standard/PADS Standard Plus PCB File Parser memory corruption	medium	🔒	-	-	-
203603	Siemens PADS Standard/PADS Standard Plus PCB File Parser memory corruption	medium	🔒	-	-	-
203602	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203601	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203600	Siemens PADS Standard/PADS Standard Plus PCB File Parser memory corruption	medium	🔒	-	-	-
203599	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203598	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203597	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203596	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203595	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203594	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203593	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203592	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203591	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203590	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203589	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203588	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203587	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203586	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds write	medium	🔒	-	-	-
203585	Siemens PADS Standard/PADS Standard Plus PCB File Parser out-of-bounds	medium	🔒	-	-	-
203584	Siemens Mendix access control [CVE-2022-31257]	medium	🔒	-	-	-
203583	Siemens EN100 Ethernet module DNP3 IP HTTP Packet txtrace memory corruption	medium	🔒	-	-	-
203582	Siemens RUGGEDCOM ROS i803 Console code injection [CVE-2022-34663]	medium	🔒	-	-	-
203581	Siemens Mendix Workflow Subsystem injection [CVE-2022-34466]	low	🔒	-	-	-
203580	Siemens Opcenter Quality Login unknown vulnerability [CVE-2022-33736]	medium	🔒	-	-	-
203579	Siemens SIMATIC MV540 H Web API Endpoint missing authentication	medium	🔒	-	-	-
203578	Siemens SIMATIC MV540 H Web Session Management session expiration	low	🔒	-	-	-
203577	Siemens SCALANCE X200-4P IRT HTTP GET Request buffer overflow	medium	🔒	-	-	-
203576	Siemens SCALANCE X200-4P IRT GET Parameter buffer overflow [CVE-2022-26648]	medium	🔒	-	-	-
203575	Siemens SIMATIC eaSie Core Package MQTT Service missing authentication	medium	🔒	-	-	-
203574	Siemens SIMATIC eaSie Core Package Message denial of service	low	🔒	-	-	-
203573	Siemens CP-8000 MASTER MODULE HTTPS Server release of resource	medium	🔒	-	-	-
203572	Siemens SCALANCE X200-4P IRT Session ID random values [CVE-2022-26647]	low	🔒	-	-	-
203571	Siemens RUGGEDCOM ROX RX5000 Shell/Web CLI command injection	medium	🔒	-	-	-
203570	Free Booking Plugin for Hotels, Restaurant and Car Rental Plugin AJAX Action unrestricted upload	medium	🔒	-	-	-
203569	Dell BSAFE Crypto-C Micro Edition signature verification [CVE-2020-35169]	medium	🔒	-	-	-
203568	Dell BSAFE Crypto-C Micro Edition random values [CVE-2020-35163]	low	🔒	-	-	-
203567	Dell BSAFE Crypto-C Micro Edition entropy [CVE-2020-29508]	low	🔒	-	-	-
203566	Dell BSAFE Crypto-C Micro Edition information disclosure [CVE-2020-29507]	low	🔒	-	-	-
203565	Dell BSAFE Crypto-C Micro Edition Key Management entropy [CVE-2020-29505]	low	🔒	-	-	-
203564	Synology Calendar Event Management cross site scripting [CVE-2022-22682]	low	🔒	-	-	-
203563	KubeEdge ServiceBus Server resource consumption [CVE-2022-31073]	medium	🔒	-	-	-
203562	KubeEdge resource consumption [CVE-2022-31080]	low	🔒	-	-	-
203561	KubeEdge CloudHub Module resource consumption [CVE-2022-31075]	low	🔒	-	-	-
203560	KubeEdge Cloud AdmissionController resource consumption [CVE-2022-31074]	low	🔒	-	-	-
203559	Dell BSAFE Crypto-C Micro Edition missing encryption [CVE-2020-35168]	low	🔒	-	-	-
203558	Dell BSAFE Crypto-C Micro Edition information disclosure [CVE-2020-35167]	low	🔒	-	-	-
203557	Dell BSAFE Crypto-C Micro Edition covert timing channel [CVE-2020-35166]	low	🔒	-	-	-
203556	Dell BSAFE Crypto-C Micro Edition covert timing channel [CVE-2020-35164]	low	🔒	-	-	-
203555	Dell BSAFE Crypto-C Micro Edition covert timing channel [CVE-2020-29506]	low	🔒	-	-	-
203554	KubeEdge Cloud Stream Server/Edge Stream Server resource consumption	low	🔒	-	-	-
203553	KubeEdge CloudCore Router resource consumption [CVE-2022-31078]	low	🔒	-	-	-
203552	UnsafeAccessor Named Module information disclosure [CVE-2022-31139]	low	🔒	-	-	-
203551	mailcow os command injection [CVE-2022-31138]	medium	🔒	-	-	-
203550	Pagebar Plugin Setting cross-site request forgery [CVE-2022-1757]	low	🔒	-	-	-
203549	Sharebar Plugin Setting cross-site request forgery [CVE-2022-1626]	low	🔒	-	-	-
203548	WP Opt-in Plugin Mail cross-site request forgery [CVE-2022-2123]	low	🔒	-	-	-
203547	WP Duplicate Page Plugin Setting cross site scripting [CVE-2022-2093]	low	🔒	-	-	-
203546	Cache Images Plugin cross-site request forgery [CVE-2022-2091]	low	🔒	-	-	-
203545	Bold Page Builder Plugin Setting cross site scripting [CVE-2022-2089]	low	🔒	-	-	-
203544	WP-Paginate Plugin Setting cross site scripting [CVE-2022-2050]	low	🔒	-	-	-
203543	Comment License Plugin Setting cross-site request forgery [CVE-2022-1957]	low	🔒	-	-	-
203542	Shortcut Macros Plugin cross-site request forgery [CVE-2022-1956]	low	🔒	-	-	-
203541	Core plugin for Kitestudio Plugin AJAX Action cross site scripting	low	🔒	-	-	-
203540	Awin Data Feed Plugin Analytics Data cross site scripting [CVE-2022-1938]	low	🔒	-	-	-
203539	Awin Data Feed Plugin AJAX Action cross site scripting [CVE-2022-1937]	low	🔒	-	-	-
203538	Shortcodes and Extra Features for Phlox Plugin cross site scripting	low	🔒	-	-	-
203537	Popup Builder Plugin Setting cross site scripting [CVE-2022-1894]	low	🔒	-	-	-
203536	Admin Management Xtended Plugin cross-site request forgery [CVE-2022-1599]	low	🔒	-	-	-
203535	WP Maintenance Mode & Coming Soon Plugin Subscribed Users List cross-site request forgery	low	🔒	-	-	-
203534	WP Event Manager Plugin Event Dashboard cross site scripting	low	🔒	-	-	-
203533	FoxyShop Plugin Admin Page cross site scripting [CVE-2022-1220]	low	🔒	-	-	-
203532	WooCommerce PDF Invoices & Packing Slips Plugin Setting Page cross site scripting	low	🔒	-	-	-
203531	WooCommerce Product Importer Plugin cross site scripting [CVE-2022-1546]	low	🔒	-	-	-
203530	Pricing Deals for WooCommerce Plugin AJAX Action sql injection	medium	🔒	-	-	-
203529	IBM SiteProtector Appliance information disclosure [CVE-2020-4138]	low	🔒	-	-	-
203528	Valinor Throwable#getMessage information exposure	low	🔒	-	-	-
203527	IBM SiteProtector Appliance hard-coded credentials [CVE-2020-4150]	medium	🔒	-	-	-
203526	Rename wp-login.php Plugin Secret Login URL cross-site request forgery	low	🔒	-	-	-
203525	CODESYS V3 CmpChannelServer resource consumption	low	🔒	-	-	-
203524	CODESYS V3 TCP Connection CmpBlkDrvTcp resource consumption	low	🔒	-	-	-
203523	Lenze cabinet c520/cabinet c550/cabinet c750 Password Verification missing critical step in authentication	high	🔒	-	-	-
203522	CODESYS OPC DA Server Configuration File credentials storage	low	🔒	-	-	-
203521	microweber behavioral workflow [CVE-2022-2368]	low	🔒	-	-	-
203520	H3C SSL VPN login.json cross site scripting	low	🔒	-	-	-
203519	DSAB send_file path traversal	medium	🔒	-	-	-
203518	zadam trilium cross site scripting [CVE-2022-2365]	low	🔒	-	-	-
203517	QEMU physmem.c translate_fail uninitialized pointer	medium	🔒	-	-	-
203516	zippies testplatform send_file path traversal	medium	🔒	-	-	-
203515	yuriyouzhou KG-fashion-chatbot send_file path traversal	medium	🔒	-	-	-
203514	unizar-30226-2019-06 ChangePop-Back send_file path traversal	medium	🔒	-	-	-
203513	stonethree s3label send_file path traversal	medium	🔒	-	-	-
203512	sravaniboinepelli AutomatedQuizEval send_file path traversal	medium	🔒	-	-	-
203511	shaolo1 VideoServer send_file path traversal	medium	🔒	-	-	-
203510	scorelab OpenMF send_file path traversal	medium	🔒	-	-	-
203509	sanojtharindu caretakerr-api send_file path traversal	medium	🔒	-	-	-
203508	ralphjzhang iasset send_file path traversal	medium	🔒	-	-	-
203507	piaoyunsoft bt_lnmp send_file path traversal	medium	🔒	-	-	-
203506	longmaoteamtf audio_aligner_app send_file path traversal	medium	🔒	-	-	-
203505	heidi-luong1109 shackerpanel send_file path traversal	medium	🔒	-	-	-
203504	deepaliupadhyay RealEstate send_file path traversal	medium	🔒	-	-	-
203503	chainer chainerrl-visualizer send_file path traversal	medium	🔒	-	-	-
203502	ceee-vip cockybook send_file path traversal	medium	🔒	-	-	-
203501	adriankoczuruek ceneo-web-scrapper send_file path traversal	medium	🔒	-	-	-
203500	RipudamanKaushikDal projects send_file path traversal	medium	🔒	-	-	-
203499	Rexians rex-web send_file path traversal	medium	🔒	-	-	-
203498	DSABenchmark DSAB send_file path traversal	medium	🔒	-	-	-
203497	yogson syrabond send_file path traversal	medium	🔒	-	-	-
203496	woduq1414 munhak-moa send_file path traversal	medium	🔒	-	-	-
203495	whmacmac vprj send_file path traversal	medium	🔒	-	-	-
203494	waveyan internshipsystem send_file path traversal	medium	🔒	-	-	-
203493	varijkapil13 Sphere_ImageBackend send_file path traversal	medium	🔒	-	-	-
203492	uncleYiba photo_tag send_file path traversal	medium	🔒	-	-	-
203491	tsileo flask-yeoman send_file path traversal	medium	🔒	-	-	-
203490	tooxie shiva-server send_file path traversal	medium	🔒	-	-	-
203489	seveas golem send_file path traversal	medium	🔒	-	-	-
203488	rusyasoft TrainEnergyServer send_file path traversal	medium	🔒	-	-	-
203487	romain20100 nursequest send_file path traversal	medium	🔒	-	-	-
203486	rohitnayak movie-review-sentiment-analysis send_file path traversal	medium	🔒	-	-	-
203485	rainsoupah sleep-learner send_file path traversal	medium	🔒	-	-	-
203484	anuvaad corpus send_file path traversal	medium	🔒	-	-	-
203483	pleomax00 flask-mongo-skel send_file path traversal	medium	🔒	-	-	-
203482	olmax99 pyathenastack send_file path traversal	medium	🔒	-	-	-
203481	olmax99 helm-flask-celery send_file path traversal	medium	🔒	-	-	-
203480	nrlakin homepage send_file path traversal	medium	🔒	-	-	-
203479	noamezekiel sphere send_file path traversal	medium	🔒	-	-	-
203478	nlpweb glance send_file path traversal	medium	🔒	-	-	-
203477	ml-inory ModelConverter send_file path traversal	medium	🔒	-	-	-
203476	meerstein rbtm send_file path traversal	medium	🔒	-	-	-
203475	maxtortime SetupBox send_file path traversal	medium	🔒	-	-	-
203474	mandoku mdweb send_file path traversal	medium	🔒	-	-	-
203473	lyubolp Barry-Voice-Assistant send_file path traversal	medium	🔒	-	-	-
203472	kumardeepak hin-eng-preprocessing send_file path traversal	medium	🔒	-	-	-
203471	kotekan send_file path traversal	medium	🔒	-	-	-
203470	joaopedro-fg mp-m08-interface send_file path traversal	medium	🔒	-	-	-
203469	jmcginty15 Solar-system-simulator send_file path traversal	medium	🔒	-	-	-
203468	jaygarza1982 ytdl-sync send_file path traversal	medium	🔒	-	-	-
203467	freefood89 Fishtank send_file path traversal	medium	🔒	-	-	-
203466	decentraminds umbral send_file path traversal	medium	🔒	-	-	-
203465	dankolbman travel_blahg send_file path traversal	medium	🔒	-	-	-
203464	dainst cilantro send_file path traversal	medium	🔒	-	-	-
203463	csm send_file path traversal	medium	🔒	-	-	-
203462	cinemaproject monorepo send_file path traversal	medium	🔒	-	-	-
203461	bonn-activity-maps bam_annotation_tool send_file path traversal	medium	🔒	-	-	-
203460	ThundeRatz ThunderDocs send_file path traversal	medium	🔒	-	-	-
203459	SummaLabs DLS send_file path traversal	medium	🔒	-	-	-
203458	PureStorage-OpenConnect swagger send_file path traversal	medium	🔒	-	-	-
203457	PaddlePaddle Anakin send_file path traversal	medium	🔒	-	-	-
203456	NotVinay karaokey send_file path traversal	medium	🔒	-	-	-
203455	Niyaz-Mohamed mosaic send_file path traversal	medium	🔒	-	-	-
203454	Luxas98 logstash-management-api send_file path traversal	medium	🔒	-	-	-
203453	Lukasavicus WindMill send_file path traversal	medium	🔒	-	-	-
203452	HolgerGraef MSM send_file path traversal	medium	🔒	-	-	-
203451	Caoyongqi912 Fan_Platform send_file path traversal	medium	🔒	-	-	-
203450	BolunHan Krypton send_file path traversal	medium	🔒	-	-	-
203449	Atom02 flask-mvc send_file path traversal	medium	🔒	-	-	-
203448	sergeKashkin Simple-RAT send_file path traversal	medium	🔒	-	-	-
203447	iedadata usap-dc-website send_file path traversal	medium	🔒	-	-	-
203446	idayrus evoting send_file path traversal	medium	🔒	-	-	-
203445	ganga send_file path traversal	medium	🔒	-	-	-
203444	cmusatyalab opendiamond send_file path traversal	medium	🔒	-	-	-
203443	cheo0 MercadoEnLineaBack send_file path traversal	medium	🔒	-	-	-
203442	ChangeWeDer BaiduWenkuSpider_flaskWeb send_file path traversal	medium	🔒	-	-	-
203441	orchest send_file path traversal	medium	🔒	-	-	-
203440	ChaoticOnyx OnyxForum send_file path traversal	medium	🔒	-	-	-
203439	LiteCart cross site scripting [CVE-2022-27168]	low	🔒	-	-	-
203438	Synacor Zimbra Collaboration zmprove ca Command missing encryption	low	🔒	-	-	-
203437	Wildog flask-file-server send_file path traversal	medium	🔒	-	-	-
203436	Delor4 CarceresBE send_file path traversal	medium	🔒	-	-	-
203435	AFDudley equanimity send_file path traversal	medium	🔒	-	-	-
203434	operatorequals wormnest send_file path traversal	medium	🔒	-	-	-
203433	Cybozu Garoon Cabinet access control [CVE-2022-31472]	medium	🔒	-	-	-
203432	Cybozu Garoon Bulletin access control [CVE-2022-30943]	medium	🔒	-	-	-
203431	Cybozu Garoon information disclosure [CVE-2022-29512]	low	🔒	-	-	-
203430	umeshpatil-dev Home__internet send_file path traversal	medium	🔒	-	-	-
203429	Cybozu Garoon File access control [CVE-2022-30602]	medium	🔒	-	-	-
203428	duducosmos livro_python send_file path traversal	medium	🔒	-	-	-
203427	akashtalole python-flask-restful-api send_file path traversal	medium	🔒	-	-	-
203426	echoleegroup PythonWeb send_file path traversal	medium	🔒	-	-	-
203425	JustAnotherSoftwareDeveloper Python-Recipe-Database send_file path traversal	medium	🔒	-	-	-
203424	Harveyzyh Python send_file path traversal	medium	🔒	-	-	-
203423	Joomlatools DOCman Image Upload cross site scripting [CVE-2022-27910]	low	🔒	-	-	-
203422	Microweber cross site scripting [CVE-2022-2353]	low	🔒	-	-	-
203421	SourceCodester Simple Parking Management System category cross site scripting	low	🔒	-	-	-
203420	SourceCodester Simple Parking Management System cross site scripting	low	🔒	-	-	-
203419	Digital Guardian Agent access control [CVE-2022-35412]	medium	🔒	-	-	-
203418	vim use after free [CVE-2022-2345]	medium	🔒	-	-	-
203417	Metadata Anonymisation Toolkit ZIP Archive path traversal [CVE-2022-35410]	low	🔒	-	-	-
203416	Webswing Header injection [CVE-2022-34914]	medium	🔒	-	-	-
203415	vim heap-based overflow [CVE-2022-2344]	medium	🔒	-	-	-
203414	vim heap-based overflow [CVE-2022-2343]	medium	🔒	-	-	-
203413	rpc.py HTTP Header deserialization [CVE-2022-35411]	medium	🔒	-	-	-
203412	Hap-WI Roxy-WI options.py subprocess_execute os command injection	medium	🔒	-	-	-
203411	IBM Security Access Manager Appliance Permissions permission	medium	🔒	-	-	-
203410	IBM Security Access Manager Appliance inadequate encryption [CVE-2022-22464]	low	🔒	-	-	-
203409	IBM Security Verify Access Web UI cross site scripting [CVE-2022-22370]	low	🔒	-	-	-
203408	IBM Security Access Manager Appliance sql injection [CVE-2022-22463]	medium	🔒	-	-	-
203407	IBM WebSphere Application Server Liberty Request authentication spoofing	low	🔒	-	-	-
203406	PortSwigger Burp Suite Repeater/Intruder redirect [CVE-2022-35406]	low	🔒	-	-	-
203405	IBM CICS TX Standard/CICS TX Advanced HTTP Header injection [CVE-2022-34306]	low	🔒	-	-	-
203404	IBM CICS TX Standard/CICS TX Advanced Web UI cross site scripting	low	🔒	-	-	-
203403	IBM CICS TX Standard/CICS TX Advanced Web UI cross site scripting	low	🔒	-	-	-
203402	IBM CICS TX Standard/CICS TX Advanced injection [CVE-2022-34160]	medium	🔒	-	-	-
203401	Known cross site scripting [CVE-2022-31290]	low	🔒	-	-	-
203400	Known SVG File isSVG cross site scripting	medium	🔒	-	-	-
203399	Known Header injection [CVE-2022-33011]	medium	🔒	-	-	-
203398	Known resource injection [CVE-2022-30852]	medium	🔒	-	-	-
203397	HPE FlexNetwork/FlexFabric cross site scripting [CVE-2022-28624]	low	🔒	-	-	-

ID	Title	VulDB	CVSS	Secunia	XForce	Nessus
203396	HPE IceWall SSO sql injection [CVE-2022-28623]	medium	🔒	-	-	-
203395	AdminLTE cross site scripting [CVE-2022-31029]	low	🔒	-	-	-
203394	GFI Mail Archiver Telerik Web UI Plugin unrestricted upload [CVE-2021-29281]	medium	🔒	-	-	-
203393	Keycloak authorization [CVE-2022-1245]	medium	🔒	-	-	-
203392	Snipe-IT People Menu unrestricted upload [CVE-2022-32061]	medium	🔒	-	-	-
203391	Snipe-IT Update Branding Settings unrestricted upload [CVE-2022-32060]	medium	🔒	-	-	-
203390	Eclipse Jetty SslConnection resource control	medium	🔒	-	-	-
203389	Eclipse Jetty HttpURI input validation	low	🔒	-	-	-
203388	Eclipse Lyo RDF xml external entity reference [CVE-2021-41042]	low	🔒	-	-	-
203387	Dell EMC PowerProtect Cyber Recovery access control [CVE-2022-32481]	medium	🔒	-	-	-
203386	Eclipse Jetty HTTP2 Server insufficient resource pool [CVE-2022-2048]	low	🔒	-	-	-
203385	Dell EMC Storage Cloud Mobility Remote Code Execution [CVE-2022-33936]	high	🔒	-	-	-
203384	Eclipse Equinox p2 unknown vulnerability [CVE-2021-41037]	medium	🔒	-	-	-
203383	atoms183 CMS product_admin.php sql injection	medium	🔒	-	-	-
203382	Microsoft Edge privileges management [CVE-2022-33680]	medium	🔒	-	-	-
203381	Magnolia CMS Edit Contact cross site scripting [CVE-2022-33098]	low	🔒	-	-	-
203380	TP-LINK TL-WR741N/TL-WR742N Packet httpRpmPass infinite loop	medium	🔒	-	-	-
203379	HumHub Spaces cross site scripting [CVE-2022-31133]	low	🔒	-	-	-
203378	Wavlink WL-WN575A3 POST Request obtw command injection	medium	🔒	-	-	-
203377	TOTOLINK EX300 MQTT Data Packet setLanguageCfg command injection	medium	🔒	-	-	-
203376	Akashi Evidence Packet denial of service [CVE-2022-31135]	low	🔒	-	-	-
203375	Hyperledger Fabric denial of service [CVE-2022-31121]	low	🔒	-	-	-
203374	Bookwyrm User Profiles/Book Description/Status cross site scripting	low	🔒	-	-	-
203373	Google Login Plugin improper authentication [CVE-2015-5298]	medium	🔒	-	-	-
203372	Apache Druid URL Parameter cross site scripting [CVE-2021-44791]	low	🔒	-	-	-
203371	Apache Druid Header improper restriction of rendered ui layers	medium	🔒	-	-	-
203370	glFTPd Connection Limit denial of service [CVE-2021-31645]	low	🔒	-	-	-
203369	Tenda AC10 code injection [CVE-2022-32054]	medium	🔒	-	-	-
203368	Online Accreditation Management process.php sql injection	medium	🔒	-	-	-
203367	Inout Homestay sql injection [CVE-2022-32055]	medium	🔒	-	-	-
203366	EQS Integrity Line Whistleblower Entry cross site scripting [CVE-2022-34007]	low	🔒	-	-	-
203365	Check Point ZoneAlarm unknown vulnerability [CVE-2022-23744]	low	🔒	-	-	-
203364	Hex-Rays Ida Pro File memory corruption [CVE-2022-32441]	medium	🔒	-	-	-
203363	Devolutions Server permission [CVE-2022-33996]	medium	🔒	-	-	-
203362	cURL FTP Transfer behavioral workflow [CVE-2022-32208]	low	🔒	-	-	-
203361	cURL HTTP Response allocation of resources [CVE-2022-32205]	low	🔒	-	-	-
203360	CWP Password Reset Token generation of predictable numbers or identifiers	low	🔒	-	-	-
203359	Openshift Origin Console missing secure attribute [CVE-2015-3207]	low	🔒	-	-	-
203358	cURL Cookie behavioral workflow [CVE-2022-32207]	medium	🔒	-	-	-
203357	curl HTTP Compression allocation of resources [CVE-2022-32206]	low	🔒	-	-	-
203356	Codoforum Admin Panel unrestricted upload [CVE-2022-31854]	medium	🔒	-	-	-
203355	CWP command injection [CVE-2022-25048]	medium	🔒	-	-	-
203354	Symantec Advanced Secure Gateway/ProxySG HTTP improper authentication	medium	🔒	-	-	-
203353	nextgen-gallery Plugin HTTP Request unrestricted upload [CVE-2015-1785]	medium	🔒	-	-	-
203352	nextgen-gallery Plugin HTTP Request unrestricted upload [CVE-2015-1784]	medium	🔒	-	-	-
203351	CWP POST Request loader.php path traversal	medium	🔒	-	-	-
203350	Red Hat IcedTea-Web applet Tag data authenticity [CVE-2015-5236]	medium	🔒	-	-	-
203349	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21781]	medium	🔒	-	-	-
203348	MediaTek MT8365 GED Driver use after free [CVE-2022-21771]	medium	🔒	-	-	-
203347	MediaTek MT8167S/MT8175/MT8183/MT8362A/MT8365/MT8385 Bluetooth out-of-bounds write	medium	🔒	-	-	-
203346	outline cross site scripting [CVE-2022-2342]	low	🔒	-	-	-
203345	EidoGo SGF cross site scripting [CVE-2015-3172]	low	🔒	-	-	-
203344	HCL Launch credentials storage [CVE-2022-27548]	low	🔒	-	-	-
203343	Appfire Jira Misc Custom Fields App Project Name cross site scripting	low	🔒	-	-	-
203342	MediaTek MT8798 Audio DSP out-of-bounds write [CVE-2022-21787]	medium	🔒	-	-	-
203341	MediaTek MT8798 Audio DSP memory corruption [CVE-2022-21786]	medium	🔒	-	-	-
203340	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21785]	medium	🔒	-	-	-
203339	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21784]	medium	🔒	-	-	-
203338	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21783]	medium	🔒	-	-	-
203337	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21782]	medium	🔒	-	-	-
203336	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21780]	medium	🔒	-	-	-
203335	MediaTek MT8797 WLAN Driver out-of-bounds write [CVE-2022-21779]	medium	🔒	-	-	-
203334	MediaTek MT8797 Autoboot permission [CVE-2022-21777]	medium	🔒	-	-	-
203333	MediaTek MT8798 MDP use after free [CVE-2022-21776]	medium	🔒	-	-	-
203332	MediaTek MT8797 sched Driver use after free [CVE-2022-21775]	medium	🔒	-	-	-
203331	MediaTek MT6983 TEEI Driver use after free [CVE-2022-21774]	medium	🔒	-	-	-
203330	MediaTek MT6893 TEEI Driver use after free [CVE-2022-21773]	medium	🔒	-	-	-
203329	MediaTek MT8797 TEEI Driver type confusion [CVE-2022-21772]	medium	🔒	-	-	-
203328	MediaTek MT8167/MT8175/MT8183/MT8362A/MT8365/MT8385 Bluetooth out-of-bounds write	medium	🔒	-	-	-
203327	MediaTek MT8797 out-of-bounds write [CVE-2022-21766]	medium	🔒	-	-	-
203326	MediaTek MT8797 out-of-bounds write [CVE-2022-21765]	medium	🔒	-	-	-
203325	MediaTek MT6983 GPU use after free [CVE-2022-20082]	medium	🔒	-	-	-
203324	Northern.tech Mender Client improper authentication [CVE-2022-32290]	medium	🔒	-	-	-
203323	IOBit Advanced System Care Named Pipe AscService.exe ImpersonateNamedPipeClient access control	medium	🔒	-	-	-
203322	PESCMS cross site scripting [CVE-2021-31676]	low	🔒	-	-	-
203321	NocoDB server-side request forgery [CVE-2022-2339]	medium	🔒	-	-	-
203320	HCL Launch log file [CVE-2022-27549]	low	🔒	-	-	-
203319	Devolutions injection [CVE-2022-2316]	medium	🔒	-	-	-
203318	H3C Magic R100 Service Port 9034 Privilege Escalation [CVE-2022-34598]	low	🔒	-	-	-
203317	OpenVPN Access Server Web Portal entropy [CVE-2022-33738]	low	🔒	-	-	-
203316	OpenVPN Access Server incorrect ownership assignment [CVE-2022-33737]	low	🔒	-	-	-
203315	Gallagher Command Centre Server Windows Registry Setting sql injection	medium	🔒	-	-	-
203314	Gallagher Controller 6000 ARP Packet unusual condition [CVE-2022-26078]	medium	🔒	-	-	-
203313	Mini-Tmall tomcat-embed-jasper permission [CVE-2022-30929]	medium	🔒	-	-	-
203312	Agile Point NX Legacy Work Center FetchUsingEncodedData sql injection	medium	🔒	-	-	-
203311	Elastic Vega Charts Kibana cross site scripting [CVE-2022-23713]	low	🔒	-	-	-
203310	Priority Web Interface authorization [CVE-2022-23173]	medium	🔒	-	-	-
203309	Priority Forgot my Password Button information exposure [CVE-2022-23172]	low	🔒	-	-	-
203308	iTop VPN Named Pipe iTopVPNmini.exe ImpersonateNamedPipeClient information disclosure	low	🔒	-	-	-
203307	PESCMS cross-site request forgery [CVE-2021-31679]	low	🔒	-	-	-
203306	PESCMS cross-site request forgery [CVE-2021-31678]	low	🔒	-	-	-
203305	PESCMS cross-site request forgery [CVE-2021-31677]	low	🔒	-	-	-
203304	Nextcloud Mail Attachment improper authentication [CVE-2022-31131]	medium	🔒	-	-	-
203303	Elastic Endpoint Security Ransomware Canaries access control	medium	🔒	-	-	-
203302	OpenVPN Access Server amplification [CVE-2021-4234]	low	🔒	-	-	-
203301	OTFCC otfccbuild.c heap-based overflow	medium	🔒	-	-	-
203300	moment String-to-Date Parser resource consumption [CVE-2022-31129]	low	🔒	-	-	-
203299	NextAuth.js Email Signin Endpoint cross site scripting [CVE-2022-31127]	low	🔒	-	-	-
203298	Frontier control flow [CVE-2022-31111]	medium	🔒	-	-	-
203297	Red Hat CloudForms certificate validation [CVE-2014-8164]	medium	🔒	-	-	-
203296	Linux Kernel Timer rose_timer.c rose_idletimer_expiry use after free	medium	🔒	-	-	-
203295	Cisco Expressway/TelePresence Video Communication Server Web-based Management Interface/API null byte or nul character	low	🔒	-	-	-
203294	Cisco Expressway/TelePresence Video Communication Server Web-based Management Interface/API null byte or nul character	medium	🔒	-	-	-
203293	Cisco Smart Software Manager On-Prem Device Registration resource consumption	medium	🔒	-	-	-
203292	Cisco TelePresence Collaboration Endpoint/RoomOS log file [CVE-2022-20768]	low	🔒	-	-	-
203291	Hap-WI Roxy-wi HTTP Request improper authentication [CVE-2022-31125]	medium	🔒	-	-	-
203290	Hap-WI Roxy-wi HTTP Request options.py injection	medium	🔒	-	-	-
203289	openssh_key_parser information exposure [CVE-2022-31124]	low	🔒	-	-	-
203288	Cisco Unified Communications Manager Web-based Management Interface cross site scripting	low	🔒	-	-	-
203287	Cisco Unified Communications Manager Web-based Management Interface cross site scripting	low	🔒	-	-	-
203286	custom-content-type-manager Plugin code injection [CVE-2015-3173]	medium	🔒	-	-	-
203285	Cisco Unified Communications Manager Disaster Recovery Framework access control	medium	🔒	-	-	-
203284	Cisco Unified Communications Manager timing discrepancy [CVE-2022-20752]	low	🔒	-	-	-
203283	Cisco Unified Communications Manager Database User Privilege absolute path traversal	medium	🔒	-	-	-
203282	Cisco Unified Communications Manager Web-based Management Interface path traversal	low	🔒	-	-	-
203281	MediaTek MT8798 Sound Driver symlink [CVE-2022-21770]	medium	🔒	-	-	-
203280	MediaTek MT8797 CCCI out-of-bounds [CVE-2022-21769]	low	🔒	-	-	-
203279	MediaTek MT8797 Telecom Service information disclosure [CVE-2022-21764]	low	🔒	-	-	-
203278	MediaTek MT8797 Telecom Service information disclosure [CVE-2022-21763]	low	🔒	-	-	-
203277	Tenda AX1806 WanParameterSetting command injection	medium	🔒	-	-	-
203276	Tenda AX1803 WanParameterSetting command injection	medium	🔒	-	-	-
203275	Tenda AX1803 setipv6status command injection	medium	🔒	-	-	-
203274	grub2 JPEG Reader out-of-bounds write [CVE-2021-3697]	medium	🔒	-	-	-
203273	grub2 PNG Reader out-of-bounds write [CVE-2021-3696]	medium	🔒	-	-	-
203272	Tenda AC23 fromAdvSetMacMtuWan buffer overflow	medium	🔒	-	-	-
203271	Tenda AC23 stack-based overflow [CVE-2022-32385]	medium	🔒	-	-	-
203270	Tenda AC23 AdvSetMacMtuWan stack-based overflow	medium	🔒	-	-	-
203269	TOTOLINK A800R/A810R/A830R/A950RG/A3000RU/A3100R command injection	medium	🔒	-	-	-
203268	IOBit Advanced System Care/Action Download Center Asc.exe permission	medium	🔒	-	-	-
203267	quic-go Request mtu_discoverer.go denial of service [Disputed]	low	🔒	-	-	-
203266	grub2 16-bit Grayscale PNG Image out-of-bounds write [CVE-2021-3695]	medium	🔒	-	-	-
203265	MediaTek MT8797 Modem 2G RR out-of-bounds write [CVE-2022-21744]	medium	🔒	-	-	-
203264	MediaTek MT8797 Modem out-of-bounds write [CVE-2022-20083]	medium	🔒	-	-	-
203263	IOBit Advanced System Care/Driver Booster Update Procedure data authenticity	medium	🔒	-	-	-
203262	Apache Superset Metadata dropped privileges [CVE-2021-37839]	medium	🔒	-	-	-
203261	Apache Commons Configuration Variable Interpolation Privilege Escalation	medium	🔒	-	-	-
203260	JFrog Artifactory User REST API Endpoint cross site scripting	low	🔒	-	-	-
203259	JFrog Artifactory Endpoint cross-site request forgery [CVE-2021-23163]	low	🔒	-	-	-
203258	Zabbix Link cross site scripting [CVE-2022-35230]	low	🔒	-	-	-
203257	JFrog Artifactory Project Administrator REST API unknown vulnerability	low	🔒	-	-	-
203256	Zabbix Discovery Page cross site scripting [CVE-2022-35229]	low	🔒	-	-	-
203255	Apache JetSpeed server-side request forgery [CVE-2022-32533]	medium	🔒	-	-	-
203254	Synology Photo Station session fixiation [CVE-2022-22681]	medium	🔒	-	-	-
203253	Google Chrome Chrome OS Shell use after free [CVE-2022-2296]	medium	🔒	-	-	-
203252	Google Chrome V8 type confusion [CVE-2022-2295]	medium	🔒	-	-	-
203251	Dice File unrestricted upload [CVE-2022-32413]	medium	🔒	-	-	-
203250	SourceCodester Ingredient Stock Management System POST Request Users.php access control	medium	🔒	-	-	-
203249	So Filter Shop sql injection [CVE-2022-34972]	medium	🔒	-	-	-
203248	SourceCodester Ingredient Stock Management System view_stock.php sql injection	medium	🔒	-	-	-
203247	Newsletter Module index.php sql injection	medium	🔒	-	-	-
203246	SourceCodester Zoo Management System Add Classification cross site scripting	low	🔒	-	-	-
203245	Taocms Edit Category sql injection [CVE-2021-44915]	medium	🔒	-	-	-
203244	Nakama excessive authentication [CVE-2022-2321]	low	🔒	-	-	-
203243	Nextcloud Server SMTP crlf injection [CVE-2022-31014]	medium	🔒	-	-	-
203242	UltraJSON Internal Decoder double free [CVE-2022-31117]	medium	🔒	-	-	-
203241	UltraJSON JSON String control flow [CVE-2022-31116]	medium	🔒	-	-	-
203240	VICIdial AST Agent Time Sheet Interface AST_agent_time_sheet.php cross site scripting	low	🔒	-	-	-
203239	IBM App Connect Enterprise Certified Container Administration Console denial of service	low	🔒	-	-	-
203238	VICIdial User Stats Interface user_stats.php sql injection	medium	🔒	-	-	-
203237	VICIdial AST Agent Time Sheet Interface AST_agent_time_sheet.php sql injection	medium	🔒	-	-	-
203236	VICIdial admin.php sql injection	medium	🔒	-	-	-
203235	Alibaba Nacos Access Prompt Page access control [CVE-2021-43116]	medium	🔒	-	-	-
203234	Beego Wildcard leafInfo.match path traversal	medium	🔒	-	-	-
203233	Google Chrome WebRTC heap-based overflow [CVE-2022-2294]	medium	🔒	-	-	-
203232	Xen Linux Block Device information disclosure [CVE-2022-26365]	low	🔒	-	-	-
203231	OpenCTI Data Import cross site scripting [CVE-2022-30289]	low	🔒	-	-	-
203230	Asus RT-A88U Admin Panel cross site scripting [CVE-2021-43702]	low	🔒	-	-	-
203229	Xen Dom0 denial of service [CVE-2022-33744]	low	🔒	-	-	-
203228	OpenCTI access control [CVE-2022-30290]	medium	🔒	-	-	-
203227	vim stack-based overflow [CVE-2022-2304]	medium	🔒	-	-	-
203226	Xen Linux Netfront denial of service [CVE-2022-33743]	low	🔒	-	-	-
203225	Xen Linux Block Device information disclosure [CVE-2022-33742]	low	🔒	-	-	-
203224	Xen Linux Block Device information disclosure [CVE-2022-33741]	low	🔒	-	-	-
203223	Xen Linux Block Device information disclosure [CVE-2022-33740]	low	🔒	-	-	-
203222	libxml2 lxml null pointer dereference [CVE-2022-2309]	low	🔒	-	-	-
203221	OpenSSL AES OCB Mode missing encryption [CVE-2022-2097]	low	🔒	-	-	-
203220	Nakama session expiration [CVE-2022-2306]	low	🔒	-	-	-
203219	Zoho ManageEngine ADSelfService Mobile App Deployment API denial of service	low	🔒	-	-	-
203218	TypeORM FindOneOptions findOne sql injection [Disputed]	medium	🔒	-	-	-
203217	KDE Django Extract sql injection	medium	🔒	-	-	-
203216	Nvidia DGX A100 SBIOS SmbiosPei out-of-bounds write	medium	🔒	-	-	-
203215	Nvidia DGX A100 SBIOS Ofbd uninitialized pointer	medium	🔒	-	-	-
203214	Nvidia DGX A100 SBIOS IpSecDxe array index	medium	🔒	-	-	-
203213	Nvidia DGX A100 SBIOS IpSecDxe out-of-bounds write	medium	🔒	-	-	-
203212	Nvidia DGX A100 SBIOS SmmCore integer overflow	medium	🔒	-	-	-
203211	Ransom Lockbit RstrtMgr.dll uncontrolled search path	medium	🔒	-	-	-
203210	Linux Kernel User Namespace nf_tables_api.c nft_set_elem_init type confusion	medium	🔒	-	-	-
203209	WP Championship Plugin cross-site request forgery [CVE-2022-1967]	low	🔒	-	-	-
203208	Gallery Plugin AJAX Action cross site scripting [CVE-2022-1946]	low	🔒	-	-	-
203207	WP Contact Slider Plugin Text to Display Settings cross site scripting	low	🔒	-	-	-
203206	Redirection for Contact Form 7 Plugin Attribute cross site scripting	low	🔒	-	-	-
203205	Ninja Forms Contact Form Plugin Data Import cross site scripting	low	🔒	-	-	-
203204	Ninja Forms Contact Form Plugin Field Label cross site scripting	low	🔒	-	-	-
203203	Import any XML or CSV File to Plugin ZIP File code injection	medium	🔒	-	-	-
203202	hpjansson chafa buffer over-read [CVE-2022-2301]	medium	🔒	-	-	-
203201	Cybozu Garoon Portal access control [CVE-2022-26051]	medium	🔒	-	-	-
203200	Microweber cross site scripting [CVE-2022-2300]	low	🔒	-	-	-
203199	Cybozu Garoon cross site scripting [CVE-2022-29513]	low	🔒	-	-	-
203198	Cybozu Garoon cross site scripting [CVE-2022-27627]	low	🔒	-	-	-
203197	Cybozu Garoon Space denial of service [CVE-2022-29892]	low	🔒	-	-	-
203196	Cybozu Garoon Bulletin access control [CVE-2022-29471]	medium	🔒	-	-	-
203195	Cybozu Garoon Scheduler improper authentication [CVE-2022-28713]	medium	🔒	-	-	-
203194	Cybozu Garoon Scheduler access control [CVE-2022-28692]	medium	🔒	-	-	-
203193	Cybozu Garoon Category access control [CVE-2022-27807]	medium	🔒	-	-	-
203192	Cybozu Garoon Space access control [CVE-2022-27803]	medium	🔒	-	-	-
203191	Cybozu Garoon Space access control [CVE-2022-29484]	medium	🔒	-	-	-
203190	Cybozu Garoon Address information disclosure [CVE-2022-29467]	low	🔒	-	-	-
203189	Cybozu Garoon Bulletin access control [CVE-2022-28718]	medium	🔒	-	-	-
203188	Cybozu Garoon behavioral workflow [CVE-2022-27661]	medium	🔒	-	-	-
203187	Cybozu Garoon Cabinet access control [CVE-2022-26368]	medium	🔒	-	-	-
203186	Cybozu Garoon Link access control [CVE-2022-26054]	medium	🔒	-	-	-
203185	Omron NX7/NX1/NJ authentication replay [CVE-2022-33971]	medium	🔒	-	-	-
203184	Home Spot Cube2 DHCP Server Reply os command injection [CVE-2022-33948]	medium	🔒	-	-	-
203183	Omron NJ hard-coded credentials [CVE-2022-34151]	medium	🔒	-	-	-
203182	Omron NJ authentication replay [CVE-2022-33208]	medium	🔒	-	-	-
203181	Yokogawa AW810D VI461 denial of service [CVE-2022-32284]	medium	🔒	-	-	-
203180	Ransom Lockbit Password stack-based overflow	medium	🔒	-	-	-
203179	SourceCodester Clinics Patient Management System Login Page index.php sql injection	medium	🔒	-	-	-
203178	SourceCodester Clinics Patient Management System unrestricted upload	medium	🔒	-	-	-
203177	vim use after free [CVE-2022-2289]	medium	🔒	-	-	-
203176	vim out-of-bounds write [CVE-2022-2288]	medium	🔒	-	-	-
203175	zadam trilium cross site scripting [CVE-2022-2290]	low	🔒	-	-	-
203174	md2roff Markdown File stack-based overflow [CVE-2022-34913] [Disputed]	medium	🔒	-	-	-
203173	vim out-of-bounds [CVE-2022-2287]	medium	🔒	-	-	-
203172	vim out-of-bounds [CVE-2022-2286]	medium	🔒	-	-	-
203171	vim integer overflow [CVE-2022-2285]	medium	🔒	-	-	-
203170	vim heap-based overflow [CVE-2022-2284]	medium	🔒	-	-	-
203169	MediaWiki Welcome successfulAction escape output	medium	🔒	-	-	-
203168	MediaWiki Special:Contributions cross site scripting	low	🔒	-	-	-
203167	SourceCodester Simple Sales Management System create cross site scripting	low	🔒	-	-	-
203166	SourceCodester Hotel Management System Room Edit Page 1 cross site scripting	low	🔒	-	-	-
203165	SourceCodester Hotel Management System Search search cross site scripting	low	🔒	-	-	-
203164	Zoho ManageEngine ServiceDesk Plus MSP web.xml path traversal	medium	🔒	-	-	-
203163	NVIDIA DGX A100 BiosCfgTool memory corruption [CVE-2022-28200]	medium	🔒	-	-	-
203162	TOTOLINK T6 FUN_0041621c stack-based overflow	medium	🔒	-	-	-
203161	TOTOLINK T6 FUN_004137a4 stack-based overflow	medium	🔒	-	-	-
203160	TOTOLINK T6 FUN_004133c4 stack-based overflow	medium	🔒	-	-	-
203159	TOTOLINK T6 FUN_0041af40 stack-based overflow	medium	🔒	-	-	-
203158	TOTOLINK T6 FUN_00418540 stack-based overflow	medium	🔒	-	-	-
203157	TOTOLINK T6 FUN_0041cc88 stack-based overflow	medium	🔒	-	-	-
203156	TOTOLINK T6 FUN_00412ef4 stack-based overflow	medium	🔒	-	-	-
203155	TOTOLINK T6 FUN_0041880c stack-based overflow	medium	🔒	-	-	-
203154	TOTOLINK T6 FUN_00413be4 stack-based overflow	medium	🔒	-	-	-
203153	TOTOLINK T6 FUN_00413f80 stack-based overflow	medium	🔒	-	-	-
203152	Tenda M3 formSetAccessCodeInfo stack-based overflow	medium	🔒	-	-	-
203151	Tenda M3 formGetPassengerAnalyseData stack-based overflow	medium	🔒	-	-	-
203150	Tenda M3 formSetCfm stack-based overflow	medium	🔒	-	-	-
203149	Tenda M3 fromDhcpListClient stack-based overflow	medium	🔒	-	-	-
203148	Tenda M3 formSetAPCfg stack-based overflow	medium	🔒	-	-	-
203147	Tenda M3 formSetStoreWeb stack-based overflow	medium	🔒	-	-	-
203146	Tenda M3 formMasterMng stack-based overflow	medium	🔒	-	-	-
203145	Tenda M3 formdelMasteraclist stack-based overflow	medium	🔒	-	-	-
203144	Tenda AX1806 formSetVirtualSer stack-based overflow	medium	🔒	-	-	-
203143	Tenda AX1806 formAddMacfilterRule stack-based overflow	medium	🔒	-	-	-
203142	Tenda AX1806 Parameter fromSetRouteStatic stack-based overflow	medium	🔒	-	-	-
203141	Tenda AX1806 Parameter formSetQosBand stack-based overflow	medium	🔒	-	-	-
203140	GitLab Autocomplete information disclosure [CVE-2022-0167]	low	🔒	-	-	-
203139	GitLab Enterprise Edition Group Milestone information disclosure	low	🔒	-	-	-
203138	GitLab Conan Package permission [CVE-2022-2270]	medium	🔒	-	-	-
203137	GitLab Project Import permission assignment [CVE-2022-2185]	medium	🔒	-	-	-
203136	GitLab Community Edition/Enterprise Edition REST API access control	medium	🔒	-	-	-
203135	GitLab Enterprise Edition Deploy improper authorization [CVE-2022-1983]	medium	🔒	-	-	-
203134	GitLab Enterprise Edition Group Setting access control [CVE-2022-1981]	medium	🔒	-	-	-
203133	link-preview-js server-side request forgery [CVE-2022-25876]	medium	🔒	-	-	-
203132	HongCMS edit Privilege Escalation	medium	🔒	-	-	-
203131	HongCMS Languages Config File Privilege Escalation [CVE-2022-32411]	medium	🔒	-	-	-
203130	GitLab Enterprise Edition ZenTao Link cross site scripting [CVE-2022-2235]	low	🔒	-	-	-
203129	GitLab Community Edition/Enterprise Edition cross site scripting	low	🔒	-	-	-
203128	git-clone command injection [CVE-2022-25900]	medium	🔒	-	-	-
203127	jsrsasign signature verification [CVE-2022-25898]	low	🔒	-	-	-
203126	passport Session session fixiation [CVE-2022-25896]	low	🔒	-	-	-
203125	scss-tokenizer Regular Expression loadAnnotation incorrect regex	medium	🔒	-	-	-
203124	GitLab Community Edition/Enterprise Edition Response Header incorrect regex	medium	🔒	-	-	-
203123	Distributed Data Systems WebHMI cross site scripting [CVE-2022-2254]	low	🔒	-	-	-
203122	GitLab Community Edition/Enterprise Edition redirect [CVE-2022-2250]	medium	🔒	-	-	-
203121	GitLab Community Edition/Enterprise Edition Error Tracking improper authorization	medium	🔒	-	-	-
203120	GitLab Enterprise Edition Non-linked Sentry Project access control	medium	🔒	-	-	-
203119	GitLab Community Edition/Enterprise Edition Private Project improper authorization	medium	🔒	-	-	-
203118	GitLab Enterprise Edition Group access control [CVE-2022-2228]	low	🔒	-	-	-
203117	GitLab Community Edition/Enterprise Edition Rrunner Jobs API access control	medium	🔒	-	-	-
203116	Distributed Data Systems WebHMI os command injection [CVE-2022-2253]	medium	🔒	-	-	-
203115	Aerogear cross site scripting [CVE-2014-3650]	low	🔒	-	-	-
203114	Simplepush Server resource consumption [CVE-2014-3648]	low	🔒	-	-	-
203113	MCMS unrestricted upload [CVE-2022-31943]	medium	🔒	-	-	-
203112	Tenda AC23 formWifiBasicSet stack-based overflow	medium	🔒	-	-	-
203111	JPEGOPTIM jpegoptim.c memory corruption	low	🔒	-	-	-
203110	PDFAlto pdfalto.cc heap-based overflow	medium	🔒	-	-	-
203109	MariaDB exclude_level denial of service	low	🔒	-	-	-
203108	MariaDB report_use/filesort memory corruption	medium	🔒	-	-	-
203107	MariaDB walk_args memory corruption	medium	🔒	-	-	-
203106	MariaDB fix_outer_field denial of service	low	🔒	-	-	-
203105	MariaDB cleanup_processor memory corruption	medium	🔒	-	-	-
203104	MariaDB sub_select memory corruption	medium	🔒	-	-	-
203103	MariaDB init_expr_cache_tracker memory corruption	low	🔒	-	-	-
203102	MariaDB dict0dict.cc get_ref_count assertion	low	🔒	-	-	-
203101	MariaDB handler0alter.cc prepare_inplace_add_virtual memory corruption	medium	🔒	-	-	-
203100	MariaDB sanitizer_common_interceptors.inc __interceptor_memset memory corruption	medium	🔒	-	-	-
203099	NVIDIA NVFLARE YAML File yaml.load deserialization	medium	🔒	-	-	-
203098	NVIDIA NVFLARE PKI Implementation Module deserialization [CVE-2022-31604]	medium	🔒	-	-	-
203097	GitLab Community Edition/Enterprise Edition Two-factor Authentication information disclosure	low	🔒	-	-	-
203096	Canarytokens cross site scripting [CVE-2022-31113]	low	🔒	-	-	-
203095	GnuPG Status Line injection [CVE-2022-34903]	medium	🔒	-	-	-
203094	IBM UrbanCode Deploy cleartext storage [CVE-2022-22366]	low	🔒	-	-	-
203093	IBM UrbanCode Deploy information disclosure [CVE-2022-22367]	low	🔒	-	-	-
203092	Hospital Management System orders.php sql injection	medium	🔒	-	-	-
203091	Hospital Management System doctorlogin.php sql injection	medium	🔒	-	-	-
203090	Hospital Management System adminlogin.php sql injection	medium	🔒	-	-	-
203089	IBM InfoSphere Information Server access control [CVE-2022-22373]	medium	🔒	-	-	-
203088	FusionPBX login.php cross site scripting	low	🔒	-	-	-
203087	itsourcecode College Management System PHP File teacher.php Privilege Escalation	medium	🔒	-	-	-
203086	Lua luaG_runerror heap-based overflow	medium	🔒	-	-	-
203085	SaltStack Salt improper authorization [CVE-2022-2282]	medium	🔒	-	-	-
203084	Das U-Boot sqfs_readdir out-of-bounds write	medium	🔒	-	-	-
203083	Failed Job Deactivator Plugin cross-site request forgery [CVE-2022-34817]	low	🔒	-	-	-
203082	Request Rename Or Delete Plugin Pending Request cross-site request forgery	low	🔒	-	-	-
203081	XPath Configuration Viewer Plugin cross-site request forgery	low	🔒	-	-	-
203080	Deployment Dashboard Plugin HTTP URL cross-site request forgery	low	🔒	-	-	-
203079	Deployment Dashboard Plugin Environment Name cross site scripting	low	🔒	-	-	-
203078	Recipe Plugin HTTP Request cross-site request forgery [CVE-2022-34792]	low	🔒	-	-	-
203077	Validating Email Parameter Plugin cross site scripting [CVE-2022-34791]	low	🔒	-	-	-
203076	eXtreme Feedback Panel Plugin Tooltip cross site scripting [CVE-2022-34790]	low	🔒	-	-	-
203075	Matrix Reloaded Plugin cross-site request forgery [CVE-2022-34789]	low	🔒	-	-	-
203074	Matrix Reloaded Plugin Tooltip cross site scripting [CVE-2022-34788]	low	🔒	-	-	-
203073	Project Inheritance Plugin Tooltip cross site scripting [CVE-2022-34787]	low	🔒	-	-	-
203072	Rich Text Publisher Plugin HTML Message cross site scripting	low	🔒	-	-	-
203071	build-metrics Plugin Build Description cross site scripting [CVE-2022-34784]	low	🔒	-	-	-
203070	JetBrains Hub Untrusted Source access control [CVE-2022-34894]	medium	🔒	-	-	-
203069	vim heap-based overflow [CVE-2022-2264]	medium	🔒	-	-	-
203068	Plot Plugin cross site scripting [CVE-2022-34783]	low	🔒	-	-	-
203067	XebiaLabs XL Release Plugin cross-site request forgery [CVE-2022-34780]	low	🔒	-	-	-
203066	TestNG Results Plugin Exception Message cross site scripting	low	🔒	-	-	-
203065	GitLab Plugin Description cross site scripting [CVE-2022-34777]	low	🔒	-	-	-
203064	microweber cross site scripting [CVE-2022-2280]	low	🔒	-	-	-
203063	Recipe Plugin XML Parser xml external entity reference [CVE-2022-34793]	low	🔒	-	-	-
203062	Urtracker Premium Batch Add cross site scripting [CVE-2022-33043]	low	🔒	-	-	-
203061	Ping Identity PingID Local Java Service authentication bypass	medium	🔒	-	-	-
203060	Ping Identity PingID Offline Security Key denial of service [CVE-2022-23717]	low	🔒	-	-	-
203059	Failed Job Deactivator Plugin HTTP Endpoint authorization [CVE-2022-34818]	medium	🔒	-	-	-
203058	Request Rename Or Delete Plugin HTTP Endpoint authorization [CVE-2022-34814]	medium	🔒	-	-	-
203057	XPath Configuration Viewer Plugin XPath Expression authorization	medium	🔒	-	-	-
203056	XPath Configuration Viewer Plugin authorization [CVE-2022-34811]	medium	🔒	-	-	-
203055	RQM Plugin ID authorization [CVE-2022-34810]	low	🔒	-	-	-
203054	RQM Plugin Configuration File credentials storage [CVE-2022-34809]	low	🔒	-	-	-
203053	Elasticsearch Query Plugin Configuration File credentials storage	low	🔒	-	-	-
203052	Jigomerge Plugin Controller File credentials storage [CVE-2022-34806]	low	🔒	-	-	-
203051	Skype Notifier Plugin Configuration File credentials storage	low	🔒	-	-	-
203050	OpsGenie Plugin Configuration File config.xml credentials storage	low	🔒	-	-	-
203049	RocketChat Notifier Plugin Configuration File credentials storage	low	🔒	-	-	-
203048	Build Notifications Plugin Configuration File credentials storage	low	🔒	-	-	-
203047	Deployment Dashboard Plugin Configuration File credentials storage	low	🔒	-	-	-
203046	Deployment Dashboard Plugin HTTP Endpoint authorization [CVE-2022-34798]	medium	🔒	-	-	-
203045	Deployment Dashboard Plugin ID authorization [CVE-2022-34796]	low	🔒	-	-	-
203044	Recipe Plugin HTTP Request authorization [CVE-2022-34794]	medium	🔒	-	-	-
203043	build-metrics Plugin HTTP Request Endpoint authorization [CVE-2022-34785]	low	🔒	-	-	-
203042	requests-plugin Permissions authorization [CVE-2022-34782]	low	🔒	-	-	-
203041	bfabiszewski Libmobi null pointer dereference [CVE-2022-2279]	low	🔒	-	-	-
203040	OpenSSL RSA Private Key rsaz_exp_x2.c ossl_rsaz_mod_exp_avx512_x2 memory corruption	high	🔒	-	-	-
203039	XebiaLabs XL Release Plugin authorization [CVE-2022-34781]	medium	🔒	-	-	-
203038	XebiaLabs XL Release Plugin authorization [CVE-2022-34779]	low	🔒	-	-	-
203037	Oxen Session PIN improper authentication [CVE-2022-1955]	medium	🔒	-	-	-
203036	Ember.js innerHTML cross site scripting	low	🔒	-	-	-
203035	Ampere Altra/AltraMax UEFI authorization [CVE-2022-32295]	low	🔒	-	-	-
203034	TP-Link Archer C50 HTTP Request fillobjbystr stack-based overflow	medium	🔒	-	-	-
203033	Open Policy Agent AST Parser compile.go denial of service	low	🔒	-	-	-
203032	Ping Identity PingID Registry insufficiently protected credentials	medium	🔒	-	-	-
203031	vim out-of-bounds [CVE-2022-2257]	medium	🔒	-	-	-
203030	ManageIQ Awesome Spawn os command injection [CVE-2014-0156]	medium	🔒	-	-	-
203029	Red Hat Openshift node-utils watchman.pid permission assignment	medium	🔒	-	-	-
203028	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203027	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203026	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203025	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203024	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203023	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203022	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203021	Robustel R1510 API web_server os command injection	medium	🔒	-	-	-
203020	Robustel R1510 Clish art2 debug code [CVE-2022-32585]	medium	🔒	-	-	-
203019	Robustel R1510 API web_server denial of service	low	🔒	-	-	-
203018	Openshift Origin Server temp file [CVE-2013-4561]	medium	🔒	-	-	-
203017	MyAdmin Personal Center access control [CVE-2021-37791]	medium	🔒	-	-	-
203016	deep.assign code injection [CVE-2021-40663]	medium	🔒	-	-	-
203015	OpsGenie Plugin Configuration Form sensitive information in executable	low	🔒	-	-	-
203014	Build Notifications Plugin Configuration Form sensitive information in executable	low	🔒	-	-	-
203013	Asus DSL-N14U-B1 list Parameter cross site scripting [CVE-2022-32988]	low	🔒	-	-	-
203012	Automox Agent Installation Package File access control [CVE-2022-27904]	medium	🔒	-	-	-
203011	Ping Identity PingID RSA authentication bypass [CVE-2021-41995]	low	🔒	-	-	-
203010	Parse Server Server LiveQuery Parser information disclosure [CVE-2022-31112]	low	🔒	-	-	-
203009	gps-sdr-sim Command Line Parameter buffer overflow [CVE-2021-37778]	medium	🔒	-	-	-
203008	Xiaongmai HI3518_50H10L_S39 macGuarder/dvrHelper backdoor [CVE-2021-41506]	medium	🔒	-	-	-
203007	HPE Network Virtualization Plugin Configuration File credentials storage	low	🔒	-	-	-
203006	Ping Identity PingID authentication bypass [CVE-2022-23720]	low	🔒	-	-	-
203005	Ping Identity PingID Privilege Escalation [CVE-2022-23718]	medium	🔒	-	-	-
203004	ESPCMS P8 ESPCMS_Templates fetch_filename Privilege Escalation	medium	🔒	-	-	-
203003	swfupload Plugin injection [CVE-2013-4144]	medium	🔒	-	-	-
203002	opensearch-ruby YAML YAML.load deserialization	medium	🔒	-	-	-
203001	Exemys RME1 Web Interface improper authentication [CVE-2022-2197]	high	🔒	-	-	-
203000	viaviwebtech Android EBook App api.php sql injection	medium	🔒	-	-	-
202999	IBM Spectrum Protect Client cleartext storage [CVE-2022-22478]	low	🔒	-	-	-
202998	IBM Spectrum Protect Server excessive authentication [CVE-2022-22496]	low	🔒	-	-	-
202997	LibTIFF tiffcrop divide by zero [CVE-2022-2058]	low	🔒	-	-	-
202996	LibTIFF tiffcrop divide by zero [CVE-2022-2057]	low	🔒	-	-	-
202995	LibTIFF tiffcrop divide by zero [CVE-2022-2056]	low	🔒	-	-	-
202994	IBM CloudPak for Multicloud Monitoring Privileged Mode Privilege Escalation	low	🔒	-	-	-
202993	Linux Kernel nft_set_desc_concat_parse buffer overflow	medium	🔒	-	-	-
202992	Linux Kernel KVM Module emulate.c x86_emulate_insn null pointer dereference	low	🔒	-	-	-
202991	Cisco Spark Plugin Configuration File credentials storage [CVE-2022-34808]	low	🔒	-	-	-
202990	Nucleus CMS unrestricted upload [CVE-2021-37770]	medium	🔒	-	-	-
202989	IBM Spectrum Protect Client dsmcad/dsmc/dsmcsvc denial of service	low	🔒	-	-	-
202988	IBM Sterling B2B Integrator Standard Edition information disclosure	low	🔒	-	-	-
202987	IBM Spectrum Protect Operations Center HTTP Request information disclosure	low	🔒	-	-	-
202986	IBM Spectrum Protect excessive authentication [CVE-2022-22487]	low	🔒	-	-	-
202985	IBM Spectrum Protect Plus Container Backup and Restore Role Based Access Control access control	medium	🔒	-	-	-
202984	EyesOfNetwork Options Configuration sendmail Privilege Escalation	medium	🔒	-	-	-
202983	Atlassian Jira Server/Jira Data Center Mobile Plugin server-side request forgery	medium	🔒	-	-	-
202982	Online Hotel Booking System Room edit_room_cat.php sql injection	medium	🔒	-	-	-
202981	Online Hotel Booking System Room edit_all_room.php sql injection	medium	🔒	-	-	-
202980	Omron SYSMAC CS1 signature verification [CVE-2022-31206]	medium	🔒	-	-	-
202979	Omron SYSMAC CS1 data authenticity [CVE-2022-31207]	low	🔒	-	-	-
202978	Omron SYSMAC CS1 CP1W-CIF41 Ethernet Option Board credentials storage	low	🔒	-	-	-
202977	Omron SYSMAC CS1 cleartext transmission [CVE-2022-31204]	low	🔒	-	-	-
202976	Das U-Boot i2c md Command do_i2c_md stack-based overflow	medium	🔒	-	-	-
202975	Edimax IC-3140W hard-coded credentials [CVE-2021-40597]	medium	🔒	-	-	-
202974	Joy Wolf E-Bike Key Fob Request denial of service [CVE-2022-30467]	low	🔒	-	-	-
202973	Backdoor.Win32.EvilGoat.b Service Port 13014 hard-coded credentials	medium	🔒	-	-	-
202972	Backdoor.Win32.Cafeini.b Service Port 51966 hard-coded credentials	medium	🔒	-	-	-
202971	Backdoor.Win32.Coredoor.10.a Service Port 21000 improper authentication	medium	🔒	-	-	-
202970	grav code injection [CVE-2022-2073]	medium	🔒	-	-	-
202969	Enalean Tuleap MyDocmanSearch Widget cross site scripting [CVE-2022-31063]	low	🔒	-	-	-
202968	Enalean Tuleap Tracker Report sql injection [CVE-2022-31058]	medium	🔒	-	-	-
202967	Enalean Tuleap Project information disclosure [CVE-2022-31032]	low	🔒	-	-	-
202966	RSSHub resource consumption [CVE-2022-31110]	low	🔒	-	-	-
202965	oretnom23 Online Railway Reservation System sql injection [CVE-2022-33061]	medium	🔒	-	-	-
202964	oretnom23 Online Railway Reservation System sql injection [CVE-2022-33060]	medium	🔒	-	-	-
202963	oretnom23 Online Railway Reservation System sql injection [CVE-2022-33059]	medium	🔒	-	-	-
202962	oretnom23 Online Railway Reservation System sql injection [CVE-2022-33058]	medium	🔒	-	-	-
202961	oretnom23 Online Railway Reservation System sql injection [CVE-2022-33057]	medium	🔒	-	-	-
202960	microweber redirect [CVE-2022-2252]	medium	🔒	-	-	-
202959	IBM Security Guardium Web UI cross site scripting [CVE-2021-39074]	low	🔒	-	-	-
202958	oretnom23 Online Railway Reservation System view_details.php sql injection	medium	🔒	-	-	-
202957	Microsoft Edge Remote Code Execution [CVE-2022-33639]	medium	🔒	-	-	-
202956	Microsoft Edge Remote Code Execution [CVE-2022-33638]	medium	🔒	-	-	-
202955	Microsoft Edge Remote Code Execution [CVE-2022-30192]	medium	🔒	-	-	-
202954	MetaMask BIP39 Mnemonic information disclosure [CVE-2022-32969]	low	🔒	-	-	-
202953	ApiFest OAuth 2.0 Server URI redirect [CVE-2020-26877]	low	🔒	-	-	-
202952	XLPD unquoted search path [CVE-2022-33035]	medium	🔒	-	-	-
202951	NoMachine permission [CVE-2022-34043]	medium	🔒	-	-	-
202950	Embarcadero Dev-CPP EXE File uncontrolled search path [CVE-2022-33037]	low	🔒	-	-	-
202949	Embarcadero Dev-CPP EXE File uncontrolled search path [CVE-2022-33036]	low	🔒	-	-	-
202948	CVA6 Multiplication Unit permission [CVE-2022-33023]	medium	🔒	-	-	-
202947	CVA6 memory corruption [CVE-2022-33021]	medium	🔒	-	-	-
202946	ThinkPHP AbstractCache.php deserialization	medium	🔒	-	-	-
202945	Textpattern CMS txplib_misc.php missing secure attribute [CVE-2021-40642]	low	🔒	-	-	-
202944	SilverStripe Framework cwp-core Module cross site scripting [CVE-2022-25238]	low	🔒	-	-	-
202943	Marval MSM 2FA cross-site request forgery [CVE-2022-31886]	low	🔒	-	-	-
202942	Admidio cross site scripting [CVE-2022-23896]	low	🔒	-	-	-
202941	SilverStripe Framework XMLHttpRequest cross site scripting [CVE-2022-28803]	low	🔒	-	-	-
202940	SilverStripe Assets cross site scripting [CVE-2022-29858]	low	🔒	-	-	-
202939	wuzhicms cross site scripting [CVE-2020-19897]	low	🔒	-	-	-
202938	dompdf server-side request forgery [CVE-2022-0085]	low	🔒	-	-	-
202937	SourceCodester Zoo Management System register_visitor cross site scripting	low	🔒	-	-	-
202936	Nagios XI Login redirect [CVE-2022-29272]	low	🔒	-	-	-
202935	Nagios XI Downtime permission [CVE-2022-29271]	low	🔒	-	-	-
202934	Nagios XI Email Address access control [CVE-2022-29270]	medium	🔒	-	-	-
202933	Nagios XI Schedule Report injection [CVE-2022-29269]	low	🔒	-	-	-
202932	Marval MSM Administrator Password access control [CVE-2022-31887]	medium	🔒	-	-	-
202931	Marval MSM API Key access control [CVE-2022-31884]	medium	🔒	-	-	-
202930	SilverStripe Framework session fixiation [CVE-2022-24444]	medium	🔒	-	-	-
202929	Marval MSM VBScript os command injection [CVE-2022-31885]	medium	🔒	-	-	-
202928	Marval MSM API Key resource injection [CVE-2022-31883]	low	🔒	-	-	-
202927	vim null pointer dereference [CVE-2022-2231]	low	🔒	-	-	-
202926	zephyrproject-rtos le_ecred_conn_req stack-based overflow	medium	🔒	-	-	-
202925	zephyrproject-rtos CONNECT_IND unknown vulnerability	low	🔒	-	-	-
202924	zephyrproject-rtos CONNECT_IND divide by zero	low	🔒	-	-	-
202923	zephyrproject-rtos LL_FEATURE_REQ assertion	low	🔒	-	-	-
202922	zephyrproject-rtos LL_CONNECTION_PARAM_REQ assertion	medium	🔒	-	-	-
202921	GLPI information disclosure [CVE-2022-31068]	low	🔒	-	-	-
202920	GLPI Login Page sql injection [CVE-2022-31061]	medium	🔒	-	-	-
202919	Cloudflare WARP Client Installation link following [CVE-2022-2145]	medium	🔒	-	-	-
202918	Dahua IPC-HDBW2XXX/IPC-HFW2XXX/ASI7XXXX ONVIF authentication replay	medium	🔒	-	-	-
202917	Dahua IPC-HDBW2XXX/IPC-HFW2XXX/ASI7XXXX Header injection [CVE-2022-30562]	medium	🔒	-	-	-
202916	Dahua IPC-HDBW2XXX/IPC-HFW2XXX/ASI7XXXX Request Packet authentication replay	medium	🔒	-	-	-
202915	Dahua IPC-HDBW2XXX/IPC-HFW2XXX/ASI7XXXX Packet denial of service	low	🔒	-	-	-
202914	Yokogawa STARDOM FCN Controller/STARDOM FCJ Controller hard-coded credentials	high	🔒	-	-	-
202913	Yokogawa STARDOM FCN Controller/STARDOM FCJ Controller cleartext transmission	low	🔒	-	-	-
202912	DCMTK dcmqrdb memory leak [CVE-2021-41690]	low	🔒	-	-	-
202911	DCMTK dcmqrdb heap-based overflow [CVE-2021-41689]	low	🔒	-	-	-
202910	DCMTK dcmqrdb double free [CVE-2021-41688]	low	🔒	-	-	-
202909	DCMTK Parser memory leak [CVE-2021-41687]	low	🔒	-	-	-
202908	GPAC MP4Box filter_pid.c gf_filter_pid_get_packet denial of service	low	🔒	-	-	-
202907	Bento4 Ap4Descriptor.h Action denial of service	low	🔒	-	-	-
202906	GPAC MP4Box GetHintFormat denial of service	low	🔒	-	-	-
202905	GPAC MP4Box gf_hinter_track_finalize denial of service	low	🔒	-	-	-
202904	GPAC MP4Box schm_box_size denial of service	low	🔒	-	-	-
202903	ILIAS Email Verification integrity check [CVE-2022-31266]	medium	🔒	-	-	-
202902	SilverStripe Framework XML Document xml2array denial of service	low	🔒	-	-	-
202901	zephyrproject-rtos le_ecred_conn_req uninitialized resource	low	🔒	-	-	-
202900	Apache Shiro RegexRequestMatcher authorization [CVE-2022-32532]	medium	🔒	-	-	-
202899	miniCMS post-edit.php file inclusion	medium	🔒	-	-	-
202898	GPAC gf_bs_write_data denial of service	low	🔒	-	-	-
202897	PackageKit Transaction Interface timing discrepancy [CVE-2022-0987]	low	🔒	-	-	-
202896	Dell EMC PowerScale OneFS risky encryption [CVE-2022-31230]	low	🔒	-	-	-
202895	Mermaid Background Image injection [CVE-2022-31108]	low	🔒	-	-	-
202894	GLPI Assistance form sql injection [CVE-2022-31056]	medium	🔒	-	-	-
202893	XPDF object.cc Copy stack-based overflow	medium	🔒	-	-	-
202892	Douzone NeoRS ActiveX Module origin validation [CVE-2022-23763]	high	🔒	-	-	-
202891	MediaWiki Lemma Length denial of service [CVE-2022-34750]	low	🔒	-	-	-
202890	Yokogawa CENTUM CAMS information disclosure [CVE-2022-30707]	low	🔒	-	-	-
202889	ECShop information disclosure [CVE-2021-41460]	low	🔒	-	-	-
202888	Synapse URL Preview recursion [CVE-2022-31052]	low	🔒	-	-	-
202887	Dell EMC PowerScale OneFS information exposure [CVE-2022-31229]	low	🔒	-	-	-
202886	Clever underscore.deep deepFromFlat prototype pollution	medium	🔒	-	-	-
202885	piwigo LocalFiles Editor command injection [CVE-2021-40553]	medium	🔒	-	-	-
202884	HPE NonStop DSM/NonStop SCM information disclosure [CVE-2022-28621]	low	🔒	-	-	-
202883	ruby-mysql external reference [CVE-2021-3779]	low	🔒	-	-	-
202882	ionicabizau parse-path authorization [CVE-2022-0624]	medium	🔒	-	-	-
202881	LightCMS PDF File cross site scripting [CVE-2022-33009]	low	🔒	-	-	-
202880	Delta Electronics DIAEnergie Settings Module cross site scripting	low	🔒	-	-	-
202879	Apache Tika Incomplete Fix StandardsExtractingContentHandler incorrect regex	low	🔒	-	-	-
202878	lettersanitizer CSS Rule unusual condition [CVE-2022-31103]	low	🔒	-	-	-
202877	PrestaShop blockwishlist sql injection [CVE-2022-31101]	medium	🔒	-	-	-
202876	rulex Expression Parser assertion [CVE-2022-31100]	medium	🔒	-	-	-
202875	rulex Expression Parser recursion [CVE-2022-31099]	medium	🔒	-	-	-
202874	ScratchTools Recently Viewed Project cross site scripting [CVE-2022-31094]	low	🔒	-	-	-
202873	LDAP Account Manager Login injection [CVE-2022-31088]	medium	🔒	-	-	-
202872	KubeEdge CSI Driver Controller null pointer dereference [CVE-2022-31077]	low	🔒	-	-	-
202871	BigBlueButton Private Chat cross site scripting [CVE-2022-31064]	low	🔒	-	-	-
202870	BigBlueButton Greenlight Room Setting privileges management [CVE-2022-31039]	medium	🔒	-	-	-
202869	GPAC MP4Box filter.c filter_parse_dyn_args denial of service	low	🔒	-	-	-
202868	Wasmtime calculation [CVE-2022-31104]	low	🔒	-	-	-
202867	Halo CMS upload unrestricted upload	medium	🔒	-	-	-
202866	NextAuth.js URL unusual condition [CVE-2022-31093]	low	🔒	-	-	-
202865	KubeEdge CloudCore null pointer dereference [CVE-2022-31076]	low	🔒	-	-	-
202864	Shopware cross site scripting [CVE-2022-31057]	low	🔒	-	-	-
202863	TRENDnet TEW-751DR/TEW-752DRU genacgi_main stack-based overflow	medium	🔒	-	-	-
202862	Halo CMS Template server-side request forgery [CVE-2022-32995]	medium	🔒	-	-	-
202861	D-Link DIR-645 __ajax_explorer.sgi command injection	medium	🔒	-	-	-
202860	Parse Server Invalid File Request return value [CVE-2022-31089]	low	🔒	-	-	-
202859	LDAP Account Manager argument injection [CVE-2022-31084]	medium	🔒	-	-	-
202858	BigBlueButton Private Chat cross site scripting [CVE-2022-31065]	low	🔒	-	-	-
202857	Argo CD symlink [CVE-2022-31036]	medium	🔒	-	-	-
202856	Discourse Invite permissions [CVE-2022-31096]	low	🔒	-	-	-
202855	Weave GitOps log file [CVE-2022-31098]	low	🔒	-	-	-
202854	glpi-inventory-plugin Package Deployment Task deploypackage.public.php sql injection	low	🔒	-	-	-
202853	Benjamin Balet Jorani Users.php cross-site request forgery	low	🔒	-	-	-
202852	Benjamin Balet Jorani Leaves.php cross site scripting	low	🔒	-	-	-
202851	GUnet Open eClass Platform index.php pathname traversal	low	🔒	-	-	-
202850	Guzzle Redirect information disclosure [CVE-2022-31091]	low	🔒	-	-	-
202849	Guzzle Curl information disclosure [CVE-2022-31090]	low	🔒	-	-	-
202848	Benjamin Balet Jorani Leaves.php sql injection	medium	🔒	-	-	-
202847	LDAP Account Manager injection [CVE-2022-31087]	medium	🔒	-	-	-
202846	LDAP Account Manager pdf injection	medium	🔒	-	-	-
202845	HTTP::Daemon request smuggling [CVE-2022-31081]	medium	🔒	-	-	-
202844	Pimcore sql injection [CVE-2022-31092]	medium	🔒	-	-	-
202843	LDAP Account Manager PHP OpenSSL Extension missing encryption	low	🔒	-	-	-
202842	Ruckus Wireless ZoneDirector cross site scripting [CVE-2020-21161]	low	🔒	-	-	-
202841	Hikvision Hybrid SAN Web Module cross site scripting [CVE-2022-28172]	low	🔒	-	-	-
202840	Argo CD UI cross site scripting [CVE-2022-31035]	low	🔒	-	-	-
202839	Hikvision Hybrid SAN Web Module os command injection [CVE-2022-28171]	medium	🔒	-	-	-
202838	Brocade SANnav Base64 Encoding log file [CVE-2022-28168]	low	🔒	-	-	-
202837	Brocade SANnav Switch Password asyncjobscheduler-manager.log server log file	low	🔒	-	-	-
202836	Brocade SANnav SSL Server hard-coded key [CVE-2022-28166]	low	🔒	-	-	-
202835	Apache SystemDS readExternal resource consumption	low	🔒	-	-	-
202834	Axiomatic Bento4 Ap4Array.h AP4_Array denial of service	low	🔒	-	-	-
202833	vim out-of-bounds write [CVE-2022-2210]	medium	🔒	-	-	-
202832	Elcomplus SmartICS Parameter cross site scripting [CVE-2022-2140]	low	🔒	-	-	-
202831	Elcomplus SmartICS Filename path traversal [CVE-2022-2106]	low	🔒	-	-	-
202830	Elcomplus SmartICS Process access control [CVE-2022-2088]	low	🔒	-	-	-
202829	Argo CD SSO Login random values [CVE-2022-31034]	low	🔒	-	-	-
202828	Devolutions Remote Desktop Manager My Account Settings information disclosure	low	🔒	-	-	-
202827	MindSpore Initialization Split divide by zero	low	🔒	-	-	-
202826	MindSpore Derivation Shape divide by zero [CVE-2021-33653]	low	🔒	-	-	-
202825	MindSpore Reduce divide by zero	low	🔒	-	-	-
202824	MindSpore DepthwiseConv2D divide by zero	low	🔒	-	-	-
202823	MindSpore Inference Shape SparseToDense out-of-bounds	low	🔒	-	-	-
202822	MindSpore Inference Shape heap-based overflow [CVE-2021-33649]	medium	🔒	-	-	-
202821	MindSpore Inference Shape Gather heap-based overflow	medium	🔒	-	-	-
202820	MindSpore Inference Shape out-of-bounds write [CVE-2021-33647]	medium	🔒	-	-	-
202819	HPE StoreOnce Software SSH Server key management [CVE-2022-28622]	low	🔒	-	-	-
202818	ionicabizau parse-url cross site scripting [CVE-2022-2218]	low	🔒	-	-	-
202817	ionicabizau parse-url server-side request forgery [CVE-2022-2216]	medium	🔒	-	-	-
202816	vim null pointer dereference [CVE-2022-2208]	low	🔒	-	-	-
202815	vim heap-based overflow [CVE-2022-2207]	medium	🔒	-	-	-
202814	scniro-validator Invalid Email incorrect regex [CVE-2021-40901]	low	🔒	-	-	-
202813	regexfn Email incorrect regex [CVE-2021-40900]	low	🔒	-	-	-
202812	ionicabizau parse-url cross site scripting [CVE-2022-2217]	low	🔒	-	-	-
202811	ionicabizau parse-url information disclosure [CVE-2022-0722]	low	🔒	-	-	-
202810	repo-git-downloader Git Repository incorrect regex [CVE-2021-40899]	low	🔒	-	-	-
202809	scaffold-helper Invalid File incorrect regex [CVE-2021-40898]	low	🔒	-	-	-
202808	split-html-to-chars HTML incorrect regex [CVE-2021-40897]	low	🔒	-	-	-
202807	that-value Invalid Email incorrect regex [CVE-2021-40896]	low	🔒	-	-	-
202806	todo-regex TODO Statement incorrect regex [CVE-2021-40895]	low	🔒	-	-	-
202805	Clean-Contact Plugin Setting cross-site request forgery [CVE-2022-1914]	low	🔒	-	-	-
202804	Add Post URL Plugin Setting cross-site request forgery [CVE-2022-1913]	low	🔒	-	-	-
202803	WP Sentry Plugin Setting cross-site request forgery [CVE-2022-1844]	low	🔒	-	-	-
202802	OpenBook Book Data Plugin Setting cross-site request forgery	low	🔒	-	-	-
202801	Site Offline or Coming Soon Plugin Setting cross-site request forgery	low	🔒	-	-	-
202800	Brizy Plugin cross site scripting [CVE-2022-2041]	low	🔒	-	-	-
202799	Brizy Plugin URL cross site scripting [CVE-2022-2040]	low	🔒	-	-	-
202798	Malware Scanner Plugin Setting cross site scripting [CVE-2022-1995]	low	🔒	-	-	-
202797	Nested Pages Plugin Setting cross site scripting [CVE-2022-1990]	low	🔒	-	-	-
202796	NextCellent Gallery Plugin Image Setting cross site scripting	low	🔒	-	-	-
202795	Easy SVG Support Plugin cross site scripting [CVE-2022-1964]	low	🔒	-	-	-
202794	MyCSS Plugin Setting cross-site request forgery [CVE-2022-1960]	low	🔒	-	-	-
202793	Pricing Tables Plugin cross site scripting [CVE-2022-1904]	low	🔒	-	-	-
202792	Cimy Header Image Rotator Plugin Setting cross-site request forgery	low	🔒	-	-	-
202791	Rotating Posts Plugin Setting cross-site request forgery [CVE-2022-1847]	low	🔒	-	-	-
202790	Tiny Contact Form Plugin Setting cross-site request forgery [CVE-2022-1846]	low	🔒	-	-	-
202789	WP Post Styling Plugin cross-site request forgery [CVE-2022-1845]	low	🔒	-	-	-
202788	MailPress Plugin Setting cross-site request forgery [CVE-2022-1843]	low	🔒	-	-	-
202787	Popups, Welcome Bar, Optins and Lead Generation Plugin Campaign cross site scripting	low	🔒	-	-	-
202786	Supsystic Social Share Buttons Plugin Admin Page cross-site request forgery	low	🔒	-	-	-
202785	My Private Site Plugin Settings cross-site request forgery [CVE-2022-1627]	low	🔒	-	-	-
202784	New User Approve Plugin Invitation Code cross-site request forgery	low	🔒	-	-	-
202783	HTML2WP Plugin Setting cross-site request forgery [CVE-2022-1573]	low	🔒	-	-	-
202782	HTML2WP Plugin AJAX Action cross-site request forgery [CVE-2022-1572]	low	🔒	-	-	-
202781	Grid Gallery Plugin Image Field cross site scripting [CVE-2022-1327]	low	🔒	-	-	-
202780	Contact Form Plugin Custom Text Field cross site scripting [CVE-2022-1326]	low	🔒	-	-	-
202779	Florist One Flower Delivery Plugin Setting cross site scripting	low	🔒	-	-	-
202778	Mihdan No External Links Plugin Setting cross site scripting	low	🔒	-	-	-
202777	Security Firewall, Malware Scanner, Secure Login and Backup Plugin cross site scripting	low	🔒	-	-	-
202776	Login using WordPress Users Plugin Setting cross site scripting	low	🔒	-	-	-
202775	Backup, Restore and Migrate WordPress Sites with the XCloner Plugin Setting cross-site request forgery	low	🔒	-	-	-
202774	Import Export All WordPress Images, Users & Post Types Plugin HTTP Request server-side request forgery	medium	🔒	-	-	-
202773	ARMember Plugin AJAX Action authorization [CVE-2022-1903]	medium	🔒	-	-	-
202772	Active Products Tables for WooCommerce AJAX Action cross site scripting	low	🔒	-	-	-
202771	Ultimate WooCommerce CSV Importer Plugin cross site scripting	low	🔒	-	-	-
202770	Limit Login Attempts Plugin Setting cross site scripting [CVE-2022-1029]	low	🔒	-	-	-
202769	Product Configurator for WooCommerce Plugin AJAX Action unlink path traversal	medium	🔒	-	-	-
202768	Google Authenticator Plugin Setting cross-site request forgery	low	🔒	-	-	-
202767	Login With OTP Over SMS, Email, WhatsApp and Google Authenticator Plugin Setting cross site scripting	low	🔒	-	-	-
202766	miniOrange Google Authenticator Plugin cross site scripting [CVE-2022-1321]	low	🔒	-	-	-
202765	HTML2WP Plugin File Import cross-site request forgery [CVE-2022-1574]	low	🔒	-	-	-
202764	NAVER Whale Browser Mobile App Incognito Mode access control	medium	🔒	-	-	-
202763	L2Blocker Setup Screen improper authentication [CVE-2022-33202]	medium	🔒	-	-	-
202762	vim out-of-bounds [CVE-2022-2206]	medium	🔒	-	-	-
202761	web2py URL redirect [CVE-2022-33146]	medium	🔒	-	-	-
202760	SourceCodester Library Management System bookdetails.php sql injection	medium	🔒	-	-	-
202759	SourceCodester Library Management System cross site scripting	low	🔒	-	-	-
202758	SourceCodester Library Management System /card/index.php unrestricted upload	medium	🔒	-	-	-
202757	Linux Kernel virtio_rpmsg_bus.c rpmsg_probe double free	medium	🔒	-	-	-
202756	Linux Kernel virtio_rpmsg_bus.c rpmsg_virtio_add_ctrl_dev double free	medium	🔒	-	-	-
202755	Galaxkey Mail Client cross site scripting [CVE-2020-27509]	low	🔒	-	-	-
202754	MediaWiki RSS Extension cross site scripting [CVE-2022-34491]	low	🔒	-	-	-
202753	Raytion cross site scripting [CVE-2022-29931]	low	🔒	-	-	-
202752	Argo CD resource consumption [CVE-2022-31016]	low	🔒	-	-	-
202751	wire-webapp mentions cross site scripting [CVE-2022-29168]	low	🔒	-	-	-
202750	Zulip API Event expression is always true [CVE-2022-31017]	low	🔒	-	-	-
202749	Espressif Bluetooth Mesh SDK out-of-bounds write [CVE-2022-24893]	medium	🔒	-	-	-
202748	Ruijie RG-EG350 alarmService.php get_alarmAction sql injection	medium	🔒	-	-	-
202747	miniCMS DAT File cross-site request forgery [CVE-2022-33121]	low	🔒	-	-	-
202746	EyouCMS Login Page cross site scripting [CVE-2022-33122]	low	🔒	-	-	-
202745	BigBlueButton Private Message cross site scripting [CVE-2022-27238]	low	🔒	-	-	-
202744	SysAid Okta SSO xml external entity reference [CVE-2022-23170]	low	🔒	-	-	-
202743	deep-get-set Incomplete Fix CVE-2020-7715 deep code injection	medium	🔒	-	-	-
202742	Dradis Professional Edition Password Reset Token password recovery	medium	🔒	-	-	-
202741	Telesoft VitalPBX Backup System access control [CVE-2022-29330]	medium	🔒	-	-	-
202740	Dell Wyse Management Suite saveGroupConfigurations Page cross site scripting	low	🔒	-	-	-
202739	Online Student Rate System access control [CVE-2021-39409]	medium	🔒	-	-	-
202738	GNOME GIMP XCF File gimp_layer_invalidate_boundary denial of service	low	🔒	-	-	-
202737	OFFIS DCMTK DICOM File null pointer dereference [CVE-2022-2121]	low	🔒	-	-	-
202736	Illumina Local Run Manager path traversal [CVE-2022-1518]	medium	🔒	-	-	-
202735	Broadcom Symantec Messaging Gateway Active Directory information disclosure	low	🔒	-	-	-
202734	Thales Safenet Authentication Client Lock File symlink [CVE-2021-42056]	medium	🔒	-	-	-
202733	EagleGet Downloader luminati_net_updater_win_eagleget_com privileges management	medium	🔒	-	-	-
202732	Concrete cross site scripting [CVE-2022-30120]	low	🔒	-	-	-
202731	Concrete view cross site scripting	low	🔒	-	-	-
202730	Concrete [GUID] cross site scripting	low	🔒	-	-	-
202729	underscore-99xp deepValueSearch incorrect regex	low	🔒	-	-	-
202728	Dell WMS Device API path traversal [CVE-2022-29097]	low	🔒	-	-	-
202727	validate-data Mail incorrect regex [CVE-2021-40893]	low	🔒	-	-	-
202726	Secheron SEPCOS behavioral workflow [CVE-2022-2105]	medium	🔒	-	-	-
202725	Secheron SEPCOS FTP Server access control [CVE-2022-2103]	medium	🔒	-	-	-
202724	Illumina Local Run Manager TLS Encryption cleartext transmission	low	🔒	-	-	-
202723	Illumina Local Run Manager improper authorization [CVE-2022-1521]	medium	🔒	-	-	-
202722	Illumina Local Run Manager unrestricted upload [CVE-2022-1519]	high	🔒	-	-	-
202721	validate-color RGB String incorrect regex [CVE-2021-40892]	low	🔒	-	-	-
202720	HPE Version Control Repository Manager Installer Privilege Escalation	medium	🔒	-	-	-
202719	Texercise backdoor [CVE-2022-34066]	medium	🔒	-	-	-
202718	Rondolu-YT-Concate backdoor [CVE-2022-34065]	medium	🔒	-	-	-
202717	Zibal backdoor [CVE-2022-34064]	medium	🔒	-	-	-
202716	Catly-Translate backdoor [CVE-2022-34061]	medium	🔒	-	-	-
202715	Togglee backdoor [CVE-2022-34060]	medium	🔒	-	-	-
202714	Sixfab-Tool Request backdoor [CVE-2022-34059]	medium	🔒	-	-	-
202713	Scoptrial Request Package backdoor [CVE-2022-34057]	medium	🔒	-	-	-
202712	Watertools Request backdoor [CVE-2022-34056]	medium	🔒	-	-	-
202711	drxhello Request Package backdoor [CVE-2022-34055]	medium	🔒	-	-	-
202710	Perdido Request Package backdoor [CVE-2022-34054]	medium	🔒	-	-	-
202709	DR-Web-Engine Request Package backdoor [CVE-2022-34053]	medium	🔒	-	-	-
202708	Beginner Request Package backdoor [CVE-2022-33004]	medium	🔒	-	-	-
202707	watools Request Package backdoor [CVE-2022-33003]	medium	🔒	-	-	-
202706	KGExplore Request Package backdoor [CVE-2022-33002]	medium	🔒	-	-	-
202705	AAmiles Request Package backdoor [CVE-2022-33001]	medium	🔒	-	-	-
202704	ML-Scanner Request Package backdoor [CVE-2022-33000]	medium	🔒	-	-	-
202703	cloudlabeling Request Package backdoor [CVE-2022-32999]	medium	🔒	-	-	-
202702	cryptoasset-data-downloader Request Package backdoor [CVE-2022-32998]	medium	🔒	-	-	-
202701	django-navbar-client Request Package backdoor [CVE-2022-32996]	medium	🔒	-	-	-
202700	Meridian Utility Software information disclosure [CVE-2022-29578]	low	🔒	-	-	-
202699	OFFIS DCMTK DICOM File path traversal [CVE-2022-2120]	low	🔒	-	-	-
202698	OFFIS DCMTK DICOM File path traversal [CVE-2022-2119]	medium	🔒	-	-	-
202697	Secheron SEPCOS SSH Service weak password [CVE-2022-1668]	medium	🔒	-	-	-
202696	Secheron SEPCOS Web Application insufficiently protected credentials	low	🔒	-	-	-
202695	Illumina Local Run Manager unrestricted upload [CVE-2022-1517]	high	🔒	-	-	-
202694	Concrete CMS ZIP File cleartext transmission [CVE-2022-21829]	low	🔒	-	-	-
202693	RootInteractive Request Package backdoor [CVE-2022-32997]	medium	🔒	-	-	-
202692	Secheron SEPCOS Apache privileges management [CVE-2022-2104]	medium	🔒	-	-	-
202691	HPE Cray Legacy Shasta System Solutions improper authentication	medium	🔒	-	-	-
202690	CRuby/JRuby SanitizerThere cross site scripting	low	🔒	-	-	-
202689	User Photo Plugin unrestricted upload [CVE-2013-1916]	medium	🔒	-	-	-
202688	pyesasky backdoor [CVE-2022-30885]	medium	🔒	-	-	-
202687	IBM Jazz Team Server server-side request forgery [CVE-2021-20421]	medium	🔒	-	-	-
202686	Online Student Rate System index.php cross site scripting	low	🔒	-	-	-
202685	IBM Jazz Team Server information disclosure [CVE-2021-20551]	low	🔒	-	-	-
202684	IBM Jazz Team Server server-side request forgery [CVE-2021-20544]	medium	🔒	-	-	-
202683	Trojan-Mailfinder.Win32.VB.p permission	medium	🔒	-	-	-
202682	Backdoor.Win32.Shark.btu permission	medium	🔒	-	-	-
202681	Backdoor.Win32.InfecDoor.17.c permission	medium	🔒	-	-	-
202680	Yashma Ransomware Builder permission	medium	🔒	-	-	-
202679	IBM Robotic Process Automation Access Token information disclosure	low	🔒	-	-	-
202678	IBM Cognos Analytics Cloud Storage Page information disclosure	low	🔒	-	-	-
202677	Secheron SEPCOS PHP Script behavioral workflow [CVE-2022-1667]	low	🔒	-	-	-
202676	OpenCart filemanager.php path traversal	medium	🔒	-	-	-
202675	MantisBT SVG Document file_download.php cross site scripting	low	🔒	-	-	-
202674	IBM Robotic Process Automation Web UI cross site scripting [CVE-2022-22502]	low	🔒	-	-	-
202673	IBM Planning Analytics/Cognos Analytics Web UI cross site scripting	low	🔒	-	-	-
202672	IBM Jazz Team Server Web UI cross site scripting [CVE-2021-38871]	low	🔒	-	-	-
202671	Concrete upload path traversal	medium	🔒	-	-	-
202670	IBM CICS TX Standard/CICS TX Advanced Request os command injection	high	🔒	-	-	-
202669	IBM Cognos Analytics unrestricted upload [CVE-2021-38945]	medium	🔒	-	-	-
202668	IBM Jazz Team Server cookie httponly flag [CVE-2021-38879]	low	🔒	-	-	-
202667	IBM Jazz Team Server clickjacking [CVE-2021-29865]	low	🔒	-	-	-
202666	IBM Jazz Team Server cross site scripting [CVE-2021-20543]	low	🔒	-	-	-
202665	IBM Jazz Team Server cookie httponly flag [CVE-2021-20355]	low	🔒	-	-	-
202664	Secheron SEPCOS File Upload behavioral workflow [CVE-2022-2102]	medium	🔒	-	-	-
202663	IBM DB2 SQL Statement denial of service [CVE-2022-22389]	low	🔒	-	-	-
202662	IBM DB2 Table information disclosure [CVE-2022-22390]	low	🔒	-	-	-
202661	Cisco ASA ASDM Image data authenticity [CVE-2022-20829]	medium	🔒	-	-	-
202660	Cisco ASA FirePOWER Module undefined parameters [CVE-2022-20828]	medium	🔒	-	-	-
202659	Schneider Electric Geo SCADA Mobile exposure of resource [CVE-2022-32530]	medium	🔒	-	-	-
202658	MELAG FTP Server Configuration File cleartext storage in a file or on disk	low	🔒	-	-	-
202657	MELAG FTP Server FTP Configuration File access control [CVE-2021-41637]	medium	🔒	-	-	-
202656	MELAG FTP Server information disclosure [CVE-2021-41634]	low	🔒	-	-	-
202655	MELAG FTP Server improper authentication [CVE-2021-41638]	medium	🔒	-	-	-
202654	MELAG FTP Server CWD Command access control [CVE-2021-41636]	medium	🔒	-	-	-
202653	MELAG FTP Server unnecessary privileges [CVE-2021-41635]	medium	🔒	-	-	-
202652	CODESYS Products exceptional condition [CVE-2022-1965]	low	🔒	-	-	-
202651	CODESYS PLCWinNT and Runtime Toolkit 32 Password Protection insecure default initialization of resource	high	🔒	-	-	-
202650	CODESYS Gateway Server TCP Client Connection resource consumption	low	🔒	-	-	-
202649	CODESYS Gateway Server partial string comparison [CVE-2022-31802]	low	🔒	-	-	-
202648	CODESYS Products File Download/File Upload file access [CVE-2022-32143]	medium	🔒	-	-	-
202647	CODESYS Products Local File out-of-range pointer offset [CVE-2022-32142]	medium	🔒	-	-	-
202646	CODESYS Products Request buffer over-read [CVE-2022-32141]	medium	🔒	-	-	-
202645	CODESYS Products buffer overflow [CVE-2022-32140]	medium	🔒	-	-	-
202644	CODESYS Products out-of-bounds [CVE-2022-32139]	medium	🔒	-	-	-
202643	CODESYS Products Request unexpected sign extension [CVE-2022-32138]	medium	🔒	-	-	-
202642	CODESYS Products Request heap-based overflow [CVE-2022-32137]	medium	🔒	-	-	-
202641	EMCO Products uninitialized pointer [CVE-2022-32136]	medium	🔒	-	-	-
202640	CODESYS Development System unprotected transport of credentials	low	🔒	-	-	-
202639	CODESYS Gateway Server Request allocation of resources [CVE-2022-31804]	medium	🔒	-	-	-
202638	Jenkins vRealize Orchestrator Plugin HTTP POST Request cross-site request forgery	low	🔒	-	-	-
202637	ThreadFix Plugin cross-site request forgery [CVE-2022-34209]	low	🔒	-	-	-
202636	Beaker Builder Plugin cross-site request forgery [CVE-2022-34207]	low	🔒	-	-	-
202635	Jianliao Notification Plugin HTTP POST Request cross-site request forgery	low	🔒	-	-	-
202634	EasyQA Plugin cross-site request forgery [CVE-2022-34203]	low	🔒	-	-	-
202633	Convertigo Mobile Platform Plugin cross-site request forgery	low	🔒	-	-	-
202632	Stash Branch Parameter Plugin cross site scripting [CVE-2022-34198]	low	🔒	-	-	-
202631	Sauce OnDemand Plugin cross site scripting [CVE-2022-34197]	low	🔒	-	-	-
202630	REST List Parameter Plugin cross site scripting [CVE-2022-34196]	low	🔒	-	-	-
202629	Repository Connector Plugin Maven Repository Artifact cross site scripting	low	🔒	-	-	-
202628	Readonly Parameter Plugin cross site scripting [CVE-2022-34194]	low	🔒	-	-	-
202627	Package Version Plugin cross site scripting [CVE-2022-34193]	low	🔒	-	-	-
202626	ontrack Plugin cross site scripting [CVE-2022-34192]	low	🔒	-	-	-
202625	NS-ND Integration Performance Publisher Plugin NetStorm Test cross site scripting	low	🔒	-	-	-
202624	Maven Metadata Plugin for Jenkins CI Server List Maven Artifact Versions cross site scripting	low	🔒	-	-	-
202623	Image Tag Parameter Plugin cross site scripting [CVE-2022-34189]	low	🔒	-	-	-
202622	Hidden Parameter Plugin cross site scripting [CVE-2022-34188]	low	🔒	-	-	-
202621	Filesystem List Parameter Plugin File System Object cross site scripting	low	🔒	-	-	-
202620	Dynamic Extended Choice Parameter Plugin Moded Extended Choice cross site scripting	low	🔒	-	-	-
202619	Date Parameter Plugin cross site scripting [CVE-2022-34185]	low	🔒	-	-	-
202618	CRX Content Package Deployer Plugin CRX Content Package Choice cross site scripting	low	🔒	-	-	-
202617	Agent Server Parameter Plugin cross site scripting [CVE-2022-34183]	low	🔒	-	-	-
202616	Nested View Plugin Search Parameter cross site scripting [CVE-2022-34182]	low	🔒	-	-	-
202615	Embeddable Build Status Plugin Query Parameter cross site scripting	low	🔒	-	-	-
202614	JUnit Plugin Test Result cross site scripting [CVE-2022-34176]	low	🔒	-	-	-
202613	Simple Bakery Shop Management cross site scripting [CVE-2022-32987]	low	🔒	-	-	-
202612	Jenkins Build Button cross site scripting [CVE-2022-34173]	low	🔒	-	-	-
202611	Jenkins Symbol-based Icons cross site scripting [CVE-2022-34172]	low	🔒	-	-	-
202610	Jenkins SVG Icon cross site scripting [CVE-2022-34171]	low	🔒	-	-	-
202609	Jenkins Help Icon cross site scripting [CVE-2022-34170]	low	🔒	-	-	-
202608	FlatPress Blog Content cross site scripting [CVE-2021-41432]	low	🔒	-	-	-
202607	Dell BIOS SMM input validation [CVE-2022-26864]	medium	🔒	-	-	-
202606	Dell BIOS SMM input validation [CVE-2022-26863]	medium	🔒	-	-	-
202605	Dell BIOS SMM input validation [CVE-2022-26862]	medium	🔒	-	-	-
202604	Squash TM Publisher Plugin Configuration File credentials storage	low	🔒	-	-	-
202603	vRealize Orchestrator Plugin HTTP POST Request authorization	medium	🔒	-	-	-
202602	ThreadFix Plugin URL authorization [CVE-2022-34210]	medium	🔒	-	-	-
202601	Beaker Builder Plugin URL authorization [CVE-2022-34208]	medium	🔒	-	-	-
202600	Jianliao Notification Plugin HTTP POST Request authorization	medium	🔒	-	-	-
202599	EasyQA Plugin HTTP Server authorization [CVE-2022-34204]	medium	🔒	-	-	-
202598	EasyQA Plugin Configuration File credentials storage [CVE-2022-34202]	low	🔒	-	-	-
202597	Convertigo Mobile Platform Plugin URL authorization [CVE-2022-34201]	medium	🔒	-	-	-
202596	Convertigo Mobile Platform Plugin Job config.xml credentials storage	low	🔒	-	-	-
202595	SourceCodester Prison Management System view_prison.php sql injection	medium	🔒	-	-	-
202594	SourceCodester Prison Management System manage_inmate.php sql injection	medium	🔒	-	-	-
202593	SourceCodester Prison Management System manage_record.php sql injection	medium	🔒	-	-	-
202592	SourceCodester Prison Management System manage_prison.php sql injection	medium	🔒	-	-	-
202591	SourceCodester Prison Management System manage_privilege.php sql injection	medium	🔒	-	-	-
202590	SourceCodester Prison Management System manage_user.php sql injection	medium	🔒	-	-	-
202589	SourceCodester Prison Management System view_crime.php sql injection	medium	🔒	-	-	-
202588	SourceCodester Prison Management System manage_cell.php sql injection	medium	🔒	-	-	-
202587	SourceCodester Prison Management System view_visit.php sql injection	medium	🔒	-	-	-
202586	SourceCodester Prison Management System manage_visit.php sql injection	medium	🔒	-	-	-
202585	SourceCodester Prison Management System manage_crime.php sql injection	medium	🔒	-	-	-
202584	SourceCodester Prison Management System view_inmate.php sql injection	medium	🔒	-	-	-
202583	SourceCodester Prison Management System view_cell.php sql injection	medium	🔒	-	-	-
202582	SourceCodester Prison Management System manage_action.php sql injection	medium	🔒	-	-	-
202581	SourceCodester Prison Management System view_action.php sql injection	medium	🔒	-	-	-
202580	xUnit Plugin Agent-to-Controller Message protection mechanism	medium	🔒	-	-	-
202579	Embeddable Build Status Plugin HTTP Endpoint authorization [CVE-2022-34180]	medium	🔒	-	-	-
202578	Embeddable Build Status Plugin Query Parameter path traversal	medium	🔒	-	-	-
202577	Pipeline Input Step Plugin Archive File path traversal [CVE-2022-34177]	medium	🔒	-	-	-
202576	Jfinal CMS Publish Blog Module cross site scripting [CVE-2022-33113]	low	🔒	-	-	-
202575	74cmsSE show cross site scripting	low	🔒	-	-	-
202574	74cmsSE nature cross site scripting	low	🔒	-	-	-
202573	74cmsSE trade cross site scripting	low	🔒	-	-	-
202572	74cmsSE im cross site scripting	low	🔒	-	-	-
202571	74cmsSE total cross site scripting	low	🔒	-	-	-
202570	Company 74cmsSE company cross site scripting	low	🔒	-	-	-
202569	74cmsSE job cross site scripting	low	🔒	-	-	-
202568	74cmsSE cross site scripting [CVE-2022-32124]	low	🔒	-	-	-
202567	vim out-of-bounds [CVE-2022-2183]	medium	🔒	-	-	-
202566	vim heap-based overflow [CVE-2022-2182]	medium	🔒	-	-	-
202565	tinyexr DecodePixelData heap-based overflow	medium	🔒	-	-	-
202564	libdwarf dwarf_global_formref_b heap-based overflow	medium	🔒	-	-	-
202563	OpenAM NT Auth Module Privilege Escalation [CVE-2022-34298]	low	🔒	-	-	-
202562	Zalando Skipper Request access control [CVE-2022-34296]	medium	🔒	-	-	-
202561	totd Mesg ID random values [CVE-2022-34295]	low	🔒	-	-	-
202560	Jenkins Fragment protection mechanism [CVE-2022-34175]	low	🔒	-	-	-
202559	OneBlog permission [CVE-2022-34012]	medium	🔒	-	-	-
202558	Diffy diff Tool Privilege Escalation [CVE-2022-33127]	low	🔒	-	-	-
202557	Ethereum Solidity SMTEncoder.cpp indexOrMemberAssignment assertion	low	🔒	-	-	-
202556	HarfBuzz hb-ot-shape-fallback.cc denial of service	low	🔒	-	-	-
202555	LibreDWG decode.c decode_preR13_entities assertion	low	🔒	-	-	-
202554	Bosch PRA-ES8P2S Web Server privileges management [CVE-2022-32536]	medium	🔒	-	-	-
202553	Bosch PRA-ES8P2S Diagnostics Web Interface os command injection	medium	🔒	-	-	-
202552	IdeaTMS sql injection [CVE-2022-31787]	medium	🔒	-	-	-
202551	Algo IP Zone Paging Adapter Web Request fm-data.lua pathname traversal	medium	🔒	-	-	-
202550	Cloudflare Warp unquoted search path [CVE-2022-2147]	medium	🔒	-	-	-
202549	Google Go Non-zero Flag Parameter Faccessat Privilege Escalation	low	🔒	-	-	-
202548	VMware Spring Data MongoDB SpEL Expression injection [CVE-2022-22980]	medium	🔒	-	-	-
202547	LaikeTui Menu Management sql injection [CVE-2021-40956]	medium	🔒	-	-	-
202546	LaikeTui Background Administrator List sql injection [CVE-2021-40955]	medium	🔒	-	-	-
202545	LaikeTui unrestricted upload [CVE-2021-40954]	medium	🔒	-	-	-
202544	OneBlog Link Module server-side request forgery [CVE-2022-34013]	medium	🔒	-	-	-
202543	OneBlog server-side request forgery [CVE-2022-34011]	medium	🔒	-	-	-
202542	Jfinal CMS list sql injection	medium	🔒	-	-	-
202541	74cmsSE campus_job sql injection	medium	🔒	-	-	-
202540	74cmsSE index sql injection	medium	🔒	-	-	-
202539	74cmsSE resumelist sql injection	medium	🔒	-	-	-
202538	74cmsSE map sql injection	medium	🔒	-	-	-
202537	74cmsSE resume_list sql injection	medium	🔒	-	-	-
202536	74cmsSE index sql injection	medium	🔒	-	-	-
202535	Docebo Community Edition unrestricted upload [CVE-2022-31362]	medium	🔒	-	-	-
202534	Docebo Community Edition sql injection [CVE-2022-31361]	medium	🔒	-	-	-
202533	SaltStack Salt PAM Auth improper authorization [CVE-2022-22967]	medium	🔒	-	-	-
202532	Jenkins Login Form timing discrepancy [CVE-2022-34174]	low	🔒	-	-	-
202531	aiohttp IPv6 URL denial of service [CVE-2022-33124]	low	🔒	-	-	-
202530	Redis streamGetEdgeID memory leak	low	🔒	-	-	-
202529	Protobuf-c protobuf-c.c parse_tag_and_wiretype denial of service	low	🔒	-	-	-
202528	Lrzip lrzip.c get_magic denial of service	low	🔒	-	-	-
202527	LibreDWG decode_r2007.c copy_bytes stack-based overflow	medium	🔒	-	-	-
202526	LibreDWG dwg.c dwg_read_file double free	medium	🔒	-	-	-
202525	LibreDWG decode_r11.c decode_preR13_section_hdr heap-based overflow	medium	🔒	-	-	-
202524	LibreDWG decode.c dwg_add_object heap-based overflow	medium	🔒	-	-	-
202523	LibreDWG dwg.c dwg_add_handleref use after free	medium	🔒	-	-	-
202522	LibreDWG bits.c bit_calc_CRC heap-based overflow	medium	🔒	-	-	-
202521	LibreDWG decode_r11.c decode_preR13_section use after free	medium	🔒	-	-	-
202520	Pure Storage Purity FA/Purity FB Management Interface hard-coded credentials	medium	🔒	-	-	-
202519	Bosch PRA-ES8P2S Web Server unnecessary privileges [CVE-2022-32535]	low	🔒	-	-	-
202518	S&D Smarthome improper authentication [CVE-2021-26638]	medium	🔒	-	-	-
202517	SiHAS SGW-300/ACM-300/GCM-300 Firmware improper authentication	high	🔒	-	-	-
202516	MaxBoard sql injection [CVE-2021-26636]	medium	🔒	-	-	-
202515	Pure Storage Purity FA/Purity FB Restricted Shell access control	medium	🔒	-	-	-
202514	jenaye PMB index.php cross site scripting	low	🔒	-	-	-
202513	Pure Storage Purity FA/Purity FB Restricted Shell access control	medium	🔒	-	-	-
202512	SourceCodester School File Management System Update Account Form student_profile.php cross site scripting	low	🔒	-	-	-
202511	SourceCodester School File Management System Update Account Form student_profile.php cross site scripting	low	🔒	-	-	-
202510	vim buffer overflow [CVE-2022-2175]	medium	🔒	-	-	-
202509	wire-ios Accent Color assertion [CVE-2022-31009]	low	🔒	-	-	-
202508	Apache Tomcat Form Authentication Example cross site scripting	low	🔒	-	-	-
202507	Google Chrome URL Format Remote Code Execution [CVE-2022-2165]	medium	🔒	-	-	-
202506	Google Chrome Extensions API Privilege Escalation [CVE-2022-2164]	low	🔒	-	-	-
202505	Google Chrome Cast UI/Toolbar use after free [CVE-2022-2163]	medium	🔒	-	-	-
202504	Google Chrome File System API protection mechanism [CVE-2022-2162]	low	🔒	-	-	-
202503	Google Chrome WebApp Provider use after free [CVE-2022-2161]	medium	🔒	-	-	-
202502	Google Chrome protection mechanism [CVE-2022-2160]	low	🔒	-	-	-
202501	Google Chrome V8 type confusion [CVE-2022-2158]	medium	🔒	-	-	-
202500	Google Chrome Interest Groups use after free [CVE-2022-2157]	medium	🔒	-	-	-
202499	Google Chrome Base use after free [CVE-2022-2156]	medium	🔒	-	-	-
202498	openlibrary cross site scripting [CVE-2022-32159]	low	🔒	-	-	-
202497	openlibrary cross site scripting [CVE-2022-23081]	low	🔒	-	-	-
202496	directus Media Upload server-side request forgery [CVE-2022-23080]	medium	🔒	-	-	-
202495	Apache Sling Commons Log/Sling API neutralization for logs [CVE-2022-32549]	medium	🔒	-	-	-
202494	Cisco Adaptive Security Device Manager log file [CVE-2022-20651]	low	🔒	-	-	-
202493	microweber cross site scripting [CVE-2022-2174]	low	🔒	-	-	-
202492	habitica Login Page cross site scripting [CVE-2022-23077]	low	🔒	-	-	-
202491	motor-admin Password Reset escape output [CVE-2022-23079]	medium	🔒	-	-	-
202490	habitica Login Page redirect [CVE-2022-23078]	low	🔒	-	-	-
202489	SUSE Manager Server spacewalk-java resource consumption [CVE-2022-21952]	low	🔒	-	-	-
202488	SUSE Manager Server spacewalk-java information exposure [CVE-2022-31248]	low	🔒	-	-	-
202487	Frappe ERPNext Profile cross site scripting [CVE-2022-23057]	low	🔒	-	-	-
202486	Frappe ERPNext My Settings Page cross site scripting [CVE-2022-23058]	low	🔒	-	-	-
202485	Frappe ERPNext Patient History Page cross site scripting [CVE-2022-23056]	low	🔒	-	-	-
202484	Frappe ERPNext Chat Room authorization [CVE-2022-23055]	medium	🔒	-	-	-
202483	Unioncms Default Setting cross site scripting [CVE-2022-25585]	low	🔒	-	-	-
202482	NukeViet cross site scripting [CVE-2022-30874]	low	🔒	-	-	-
202481	IdeaLMS cross site scripting [CVE-2022-31786]	low	🔒	-	-	-
202480	Webkul krayin cross site scripting [CVE-2021-41924]	low	🔒	-	-	-
202479	UserTakeOver Search information disclosure [CVE-2022-31478]	low	🔒	-	-	-
202478	OBDA Mastro xml entity expansion [CVE-2021-40511]	low	🔒	-	-	-
202477	Qlik Sense GeoAnalytics server-side request forgery [CVE-2021-36761]	medium	🔒	-	-	-
202476	Comodo Antivirus Quarantine access control [CVE-2022-34008]	medium	🔒	-	-	-
202475	Tenable Nessus PowerShell cmdlet Check access control [CVE-2022-32973]	medium	🔒	-	-	-
202474	iSpyConnect iSpy URL improper authentication [CVE-2022-29775]	medium	🔒	-	-	-
202473	iSpyConnect iSpy path traversal [CVE-2022-29774]	medium	🔒	-	-	-
202472	Quectel RG502Q-EA os command injection [CVE-2022-26147]	medium	🔒	-	-	-
202471	Hyland Onbase Application Server/OnBase Connect information disclosure	low	🔒	-	-	-
202470	Atlas VPN Named Pipe access control [CVE-2022-23171]	medium	🔒	-	-	-
202469	VMware Spring Cloud Function Function Catalog allocation of resources	low	🔒	-	-	-
202468	discourse-chat Chat Message Lookup Endpoint information disclosure	low	🔒	-	-	-
202467	OBDA Mastro DTD xml external entity reference [CVE-2021-40510]	low	🔒	-	-	-
202466	Devolutions Remote Desktop Manager Entry Attachment path traversal	medium	🔒	-	-	-
202465	oretnom23 Online Railway Reservation System sql injection [CVE-2022-33049]	medium	🔒	-	-	-
202464	Tenable Nessus Compliance Audit File information disclosure [CVE-2022-32974]	low	🔒	-	-	-
202463	Autodesk Navisworks PDF File Parser null pointer dereference	low	🔒	-	-	-
202462	Autodesk AutoCAD PDFTron buffer overflow [CVE-2022-27871]	medium	🔒	-	-	-
202461	Autodesk AutoCAD TGA File Parser buffer overflow [CVE-2022-27870]	medium	🔒	-	-	-
202460	Autodesk AutoCAD CAT File use after free [CVE-2022-27868]	medium	🔒	-	-	-
202459	Autodesk AutoCAD JT File use after free [CVE-2022-27867]	medium	🔒	-	-	-
202458	Red Hat AMQ Broker Operator default permission [CVE-2022-1833]	medium	🔒	-	-	-
202457	ABB REX640 PCL1/REX640 PCL2/REX640 PCL3 User Database File permission assignment	medium	🔒	-	-	-
202456	Autodesk AutoCAD TIFF File Parser buffer overflow [CVE-2022-27869]	medium	🔒	-	-	-
202455	IBM IBM QRadar WinCollect Agent information disclosure [CVE-2021-39006]	low	🔒	-	-	-
202454	OpenSSL Incomplete Fix CVE-2022-1292 c_rehash os command injection	medium	🔒	-	-	-
202453	oretnom23 Online Railway Reservation System manage_schedule.php sql injection	medium	🔒	-	-	-
202452	oretnom23 Online Railway Reservation System manage_train.php sql injection	medium	🔒	-	-	-
202451	oretnom23 Online Railway Reservation System view_details.php sql injection	medium	🔒	-	-	-
202450	Red Hat Enterprise Linux Kernel hard-coded key [CVE-2022-1665]	high	🔒	-	-	-
202449	Maccms10 cross site scripting [CVE-2022-31303]	low	🔒	-	-	-
202448	maccms8 cross site scripting [CVE-2022-31302]	low	🔒	-	-	-
202447	Siemens SIMATIC WinCC OA improper authentication [CVE-2022-33139]	medium	🔒	-	-	-
202446	Nginx NJS njs_vmcode.c njs_vmcode_interpreter Privilege Escalation	low	🔒	-	-	-
202445	Nginx NJS njs_string.c njs_string_offset Privilege Escalation	low	🔒	-	-	-
202444	Nginx NJS njs_array.c njs_array_convert_to_slow_array Privilege Escalation	low	🔒	-	-	-
202443	NUUO Network Video Recorder NVRsolo login.php cross site scripting	low	🔒	-	-	-
202442	Contec SolarView Compact 1.php unrestricted upload	medium	🔒	-	-	-
202441	Contec SolarView Compact Solar_AiConf.php cross site scripting	low	🔒	-	-	-
202440	Recipes cross site scripting [CVE-2022-23074]	low	🔒	-	-	-
202439	Recipes Clipboard cross site scripting [CVE-2022-23073]	low	🔒	-	-	-
202438	Recipes Add to Cart cross site scripting [CVE-2022-23072]	low	🔒	-	-	-
202437	Phoenix Contact Product data authenticity [CVE-2022-31801]	high	🔒	-	-	-
202436	Phoenix Contact Product data authenticity [CVE-2022-31800]	high	🔒	-	-	-
202435	GLPI Inventory Plugin System Files index.php path traversal	medium	🔒	-	-	-
202434	polonel trudesk unrestricted upload [CVE-2022-2128]	medium	🔒	-	-	-
202433	inventree resource consumption [CVE-2022-2134]	low	🔒	-	-	-
202432	JerryScript ecma-helpers.c ecma_get_lex_env_type stack-based overflow	medium	🔒	-	-	-
202431	JerryScript ecma-helpers-string.c ecma_compare_ecma_non_direct_strings use after free	medium	🔒	-	-	-
202430	Knot Resolver Filter dns rebinding [CVE-2022-32983]	low	🔒	-	-	-
202429	vim grab_file_name buffer overflow	medium	🔒	-	-	-
202428	IBM Curam Social Program Management session expiration [CVE-2022-22318]	medium	🔒	-	-	-
202427	IBM Robotic Process Automation Web Service Configuration information disclosure	low	🔒	-	-	-
202426	Mahara thumb.php permission	low	🔒	-	-	-
202425	IBM Curam Social Program Management session expiration [CVE-2022-22317]	medium	🔒	-	-	-
202424	Fujitsu ETERNUS CentricStor CS8000 grel.php grel_finfo os command injection	medium	🔒	-	-	-
202423	Fujitsu ETERNUS CentricStor CS8000 POST Parameter hw_view.php requestTempFile os command injection	medium	🔒	-	-	-
202422	microweber cross site scripting [CVE-2022-2130]	low	🔒	-	-	-
202421	McAfee Consumer Product Removal Tool uncontrolled search path	medium	🔒	-	-	-
202420	McAfee Consumer Product Removal Tool Configuration File permission	medium	🔒	-	-	-
202419	Mautic Web Tracking cross site scripting [CVE-2022-25772]	low	🔒	-	-	-
202418	Amazon Einzeltitellinks Plugin Setting cross-site request forgery	low	🔒	-	-	-
202417	Multi-Page Toolkit Plugin Setting cross-site request forgery	low	🔒	-	-	-
202416	Colorlib Coming Soon & Maintenance Mode Plugin Setting cross site scripting	low	🔒	-	-	-
202415	WP Zillow Review Slider Plugin Setting cross site scripting [CVE-2022-1915]	low	🔒	-	-	-
202414	underConstruction Plugin Display a custom page using your own HTML cross site scripting	low	🔒	-	-	-
202413	underConstruction Plugin cross-site request forgery [CVE-2022-1895]	low	🔒	-	-	-
202412	Newsletter Plugin Setting cross site scripting [CVE-2022-1889]	low	🔒	-	-	-
202411	CaPa Protect Plugin Setting cross-site request forgery [CVE-2022-1832]	low	🔒	-	-	-
202410	WPlite Plugin Setting cross-site request forgery [CVE-2022-1831]	low	🔒	-	-	-
202409	PDF24 Articles to PDF Plugin cross-site request forgery [CVE-2022-1828]	low	🔒	-	-	-
202408	PDF24 Article To PDF Plugin cross-site request forgery [CVE-2022-1827]	low	🔒	-	-	-
202407	Cross-Linker Plugin cross-site request forgery [CVE-2022-1826]	low	🔒	-	-	-
202406	Custom Share Buttons with Floating Sidebar Plugin cross site scripting	low	🔒	-	-	-
202405	WP-EMail Plugin cross-site request forgery [CVE-2022-1630]	low	🔒	-	-	-
202404	Seamless Donations Plugin Setting cross-site request forgery	low	🔒	-	-	-
202403	Mail Subscribe List Plugin cross-site request forgery [CVE-2022-1603]	low	🔒	-	-	-
202402	Post Grid, Slider & Carousel Ultimate Plugin cross site scripting	low	🔒	-	-	-
202401	PrintFriendly Print, PDF, Email Plugin Custom Button Text Setting cross site scripting	low	🔒	-	-	-
202400	Ocean Extra Plugin cross site scripting [CVE-2021-25104]	low	🔒	-	-	-
202399	XML Sitemaps Plugin Debug Page cross site scripting [CVE-2021-25088]	low	🔒	-	-	-
202398	Events Made Easy Plugin sql injection [CVE-2022-1905]	medium	🔒	-	-	-
202397	Very Simple Contact Form Plugin Hidden Input Field improper authentication	medium	🔒	-	-	-

ID	Title	VulDB	CVSS	Secunia	XForce	Nessus
202396	Better Find and Replace Plugin sql injection [CVE-2022-1472]	medium	🔒	-	-	-
202395	Inline Google Maps Plugin Setting cross-site request forgery	low	🔒	-	-	-
202394	Bestwebsoft Rating Plugin resource consumption [CVE-2021-25121]	low	🔒	-	-	-
202393	Cisco Catalyst 2940 Error Page cross site scripting [CVE-2022-31734]	low	🔒	-	-	-
202392	Allow svg Files Plugin unrestricted upload [CVE-2022-1939]	medium	🔒	-	-	-
202391	WP-EMail Plugin access control [CVE-2022-1614]	medium	🔒	-	-	-
202390	Realtek USB Driver API buffer overflow [CVE-2022-21742]	medium	🔒	-	-	-
202389	Asus Control Center sql injection [CVE-2022-26669]	medium	🔒	-	-	-
202388	NHI Health Care Card Web Service heap-based overflow [CVE-2021-45918]	medium	🔒	-	-	-
202387	Asus Control Center API access control [CVE-2022-26668]	medium	🔒	-	-	-
202386	polonel trudesk API incorrect privileged apis [CVE-2022-2023]	medium	🔒	-	-	-
202385	libjxl low_memory_render_pipeline.cc Init assertion	low	🔒	-	-	-
202384	vim out-of-bounds write [CVE-2022-2129]	medium	🔒	-	-	-
202383	vim out-of-bounds [CVE-2022-2126]	low	🔒	-	-	-
202382	vim heap-based overflow [CVE-2022-2125]	medium	🔒	-	-	-
202381	South River Technologies TitanFTP NextGen Microsoft SQL Express hard-coded password	low	🔒	-	-	-
202380	South River Technologies TitanFTP NextGen Microsoft SQL Express access control	medium	🔒	-	-	-
202379	Recipes Import server-side request forgery [CVE-2022-23071]	medium	🔒	-	-	-
202378	vim buffer overflow [CVE-2022-2124]	medium	🔒	-	-	-
202377	got Package Unix Socket access control [CVE-2022-33987]	medium	🔒	-	-	-
202376	libjpeg-turbo PPM Reader rdppm.c get_word_rgb_row heap-based overflow	medium	🔒	-	-	-
202375	python-ldap LDAP Schema Parser incorrect regex [CVE-2021-46823]	medium	🔒	-	-	-
202374	Linux Kernel Concurrency floppy.c raw_cmd_ioctl use after free	medium	🔒	-	-	-
202373	Trendnet IP-110wn scheprofile.cgi cross site scripting	low	🔒	-	-	-
202372	Trendnet IP-110wn general.cgi cross site scripting	low	🔒	-	-	-
202371	Asus RT-N53 apply.cgi command injection	medium	🔒	-	-	-
202370	querymen Incomplete Fix CVE-2020-7600 handler code injection	medium	🔒	-	-	-
202369	Argo Events API GitArtifactReader.Read pathname traversal	medium	🔒	-	-	-
202368	pg-native Addon denial of service [CVE-2022-25852]	low	🔒	-	-	-
202367	mout Incomplete Fix CVE-2020-7792 deepFill denial of service	low	🔒	-	-	-
202366	fast-string-search out-of-bounds [CVE-2022-25872]	low	🔒	-	-	-
202365	discordjs opus denial of service [CVE-2022-25345]	low	🔒	-	-	-
202364	fast-string-search V8 denial of service [CVE-2022-22138]	low	🔒	-	-	-
202363	Netgear WNAP320 Cookie recreate.php access control	low	🔒	-	-	-
202362	Oracle Cloud Services information disclosure [CVE-2022-21503]	low	🔒	-	-	-
202361	oretnom23 Rescue Dispatch Management System sql injection [CVE-2022-31941]	medium	🔒	-	-	-
202360	Blynk -Library Network Request BlynkConsole.h stack-based overflow	medium	🔒	-	-	-
202359	Bachmann Visutec Atvise License Registration cleartext transmission	low	🔒	-	-	-
202358	Anker Eufy Homebase mips_collector use after free	medium	🔒	-	-	-
202357	Parse Server Apple Game Center Auth Adapter improper authentication	medium	🔒	-	-	-
202356	u5cms Default Home Page cross site scripting [CVE-2022-32442]	low	🔒	-	-	-
202355	Proietti Planet Time Enterprise Privilege Escalation [CVE-2022-30422]	medium	🔒	-	-	-
202354	IBM Robotic Process Automation Control Center UI information disclosure	low	🔒	-	-	-
202353	u5cms loginsave.php redirect	medium	🔒	-	-	-
202352	IBM Spectrum Protect Operations Center Sign-on excessive authentication	low	🔒	-	-	-
202351	Electrum file URL paymentrequest.py Privilege Escalation	low	🔒	-	-	-
202350	Anselal Antminer Monitor Flask Server backdoor [CVE-2021-40903]	medium	🔒	-	-	-
202349	janobe Online Ordering System sql injection [CVE-2022-31357]	medium	🔒	-	-	-
202348	janobe Online Ordering System sql injection [CVE-2022-31356]	medium	🔒	-	-	-
202347	janobe Online Ordering System sql injection [CVE-2022-31355]	medium	🔒	-	-	-
202346	inventree cross site scripting [CVE-2022-2113]	low	🔒	-	-	-
202345	ASG Zena Cross Platform Server Enterprise Edition cross site scripting	low	🔒	-	-	-
202344	Grafana UI access control [CVE-2022-32276] [Disputed]	medium	🔒	-	-	-
202343	ASG Zena Cross Platform Server Enterprise Edition xml external entity reference	low	🔒	-	-	-
202342	inventree csv injection [CVE-2022-2112]	low	🔒	-	-	-
202341	inventree unrestricted upload [CVE-2022-2111]	medium	🔒	-	-	-
202340	ASG Zena Cross Platform Server Enterprise Edition Cookie missing encryption	low	🔒	-	-	-
202339	OMPL LazyPRM.cpp memory leak	low	🔒	-	-	-
202338	Mitel MiVoice Business/MiVoice Business Express Management Interface buffer overflow	medium	🔒	-	-	-
202337	Checkmk permission [CVE-2022-33912]	medium	🔒	-	-	-
202336	Amazon AWS Apache Log4j Hotpatch Package race condition [CVE-2022-33915]	medium	🔒	-	-	-
202335	VoIPmonitor Web GUI api.php sql injection	medium	🔒	-	-	-
202334	zzcms ztliuyan_sendmail.php sql injection	medium	🔒	-	-	-
202333	zzcms Cookie dl_sendsms.php sql injection	medium	🔒	-	-	-
202332	zzcms deluser.php sql injection	medium	🔒	-	-	-
202331	zzcms dls_download.php sql injection	medium	🔒	-	-	-
202330	zzcms dls_print.php sql injection	medium	🔒	-	-	-
202329	zzcms showbad.php sql injection	medium	🔒	-	-	-
202328	zzcms dl_sendmail.php sql injection	medium	🔒	-	-	-
202327	zzcms Cookie dl_sendmail.php sql injection	medium	🔒	-	-	-
202326	SourceCodester Online Discussion Forum Site view_post.php sql injection	medium	🔒	-	-	-
202325	Joplin Desktop App cross site scripting [CVE-2021-33295]	low	🔒	-	-	-
202324	TRENDnet TEW-831DR Web Interface cross-site request forgery [CVE-2022-30327]	low	🔒	-	-	-
202323	TRENDnet TEW-831DR Web Interface basic.config cross site scripting	low	🔒	-	-	-
202322	Broadcom CA Automic Automation Agent Privilege Escalation [CVE-2022-33753]	medium	🔒	-	-	-
202321	Haraj User Upgrade Form cross site scripting [CVE-2022-31299]	low	🔒	-	-	-
202320	TRENDnet TEW-831DR Web Interface os command injection [CVE-2022-30329]	medium	🔒	-	-	-
202319	TRENDnet TEW-831DR Web Interface password recovery [CVE-2022-30328]	medium	🔒	-	-	-
202318	JForum jforum.page cross-site request forgery	low	🔒	-	-	-
202317	ImageMagick property.c memory corruption	medium	🔒	-	-	-
202316	ImageMagick pcl.c integer overflow	low	🔒	-	-	-
202315	Imagemagick psd.c integer overflow	low	🔒	-	-	-
202314	Adaware Protect permission [CVE-2022-31464]	medium	🔒	-	-	-
202313	Haraj Post Ads cross site scripting [CVE-2022-31301]	low	🔒	-	-	-
202312	Ghostscript null pointer dereference [CVE-2022-2085]	low	🔒	-	-	-
202311	Nokia VitalSuite SPM sql injection [CVE-2021-41487]	medium	🔒	-	-	-
202310	Broadcom CA Automic Automation AutomationEngine entropy [CVE-2022-33756]	medium	🔒	-	-	-
202309	Broadcom CA Automic Automation Agent information disclosure [CVE-2022-33755]	low	🔒	-	-	-
202308	Broadcom CA Automic Automation Agent input validation [CVE-2022-33754]	medium	🔒	-	-	-
202307	Broadcom CA Automic Automation Agent input validation [CVE-2022-33752]	medium	🔒	-	-	-
202306	Broadcom CA Automic Automation Agent buffer overflow [CVE-2022-33751]	medium	🔒	-	-	-
202305	Broadcom CA Automic Automation Agent improper authentication	medium	🔒	-	-	-
202304	Broadcom CA Clarity XML Parser information disclosure [CVE-2022-33739]	low	🔒	-	-	-
202303	TRENDnet TEW-831DR Wi-Fi hard-coded key [CVE-2022-30325]	low	🔒	-	-	-
202302	D-Link DIR-850L WPA Handshake authentication bypass [CVE-2018-18907]	medium	🔒	-	-	-
202301	SourceCodester Online Discussion Forum Site delete_post denial of service	low	🔒	-	-	-
202300	PowerJob save Privilege Escalation	medium	🔒	-	-	-
202299	WeBank FATE Training hetero_decision_tree_guest.py sync_tree information disclosure	low	🔒	-	-	-
202298	SourceCodester Online Discussion Forum Site User Account save_users Remote Code Execution	medium	🔒	-	-	-
202297	OPC Foundation OPC UA .NET Standard Message memory allocation	low	🔒	-	-	-
202296	OPC Foundation OPC UA .NET Standard Request resource consumption	low	🔒	-	-	-
202295	OPC Foundation OPC UA .NET Standard Message resource consumption	low	🔒	-	-	-
202294	IObit IOTransfer Airserv Remote Code Execution [CVE-2022-24562]	medium	🔒	-	-	-
202293	Adobe InCopy when parsing out-of-bounds [CVE-2022-30651]	low	🔒	-	-	-
202292	Saturday Drive Ninja Forms Contact Form Plugin cross site scripting	low	🔒	-	-	-
202291	Adobe Animate out-of-bounds write [CVE-2022-30664]	medium	🔒	-	-	-
202290	Adobe InCopy use after free [CVE-2022-30657]	medium	🔒	-	-	-
202289	Adobe InCopy out-of-bounds write [CVE-2022-30656]	medium	🔒	-	-	-
202288	Adobe InCopy use after free [CVE-2022-30655]	medium	🔒	-	-	-
202287	Adobe InCopy heap-based overflow [CVE-2022-30654]	medium	🔒	-	-	-
202286	Adobe InCopy out-of-bounds write [CVE-2022-30653]	medium	🔒	-	-	-
202285	Adobe InCopy out-of-bounds write [CVE-2022-30652]	medium	🔒	-	-	-
202284	Adobe InCopy heap-based overflow [CVE-2022-30650]	medium	🔒	-	-	-
202283	webTareas editfolder.php cross site scripting	low	🔒	-	-	-
202282	webTareas editproject.php cross site scripting	low	🔒	-	-	-
202281	Victor CMS admin_edit_comment.php sql injection	medium	🔒	-	-	-
202280	XOS-Shop categories.php denial of service	low	🔒	-	-	-
202279	XOS-Shop manufacturers.php denial of service	low	🔒	-	-	-
202278	Zoo Management System cross site scripting [CVE-2022-31914]	low	🔒	-	-	-
202277	Haraj ads Comment Section cross site scripting [CVE-2022-31298]	low	🔒	-	-	-
202276	Synaptics Fingerprint Driver synaTEE.signed.dll heap-based overflow	low	🔒	-	-	-
202275	Haraj DM Section cross site scripting [CVE-2022-31300]	low	🔒	-	-	-
202274	GENIVI dlt-daemon TCP Packet dlt_config_file_parser.c double free	medium	🔒	-	-	-
202273	Adobe RoboHelp Server improper authorization [CVE-2022-30670]	medium	🔒	-	-	-
202272	Tenda ONT GPON AC1200 Ping command injection [CVE-2022-30023]	medium	🔒	-	-	-
202271	MaianAffiliate Admin Panel cross site scripting [CVE-2021-41420]	low	🔒	-	-	-
202270	OPC Foundation OPC UA .NET Standard improper authentication [CVE-2022-29865]	medium	🔒	-	-	-
202269	OPC Foundation OPC UA .NET Standard Message infinite loop [CVE-2022-29862]	low	🔒	-	-	-
202268	Autodesk 3ds Max TIFF File Parser buffer overflow [CVE-2022-27532]	medium	🔒	-	-	-
202267	Xiaomi Lamp 1 POST Request authentication replay [CVE-2022-31277]	medium	🔒	-	-	-
202266	Autodesk 3ds Max TIF File Parser buffer overflow [CVE-2022-27531]	medium	🔒	-	-	-
202265	VMware HCX information disclosure [CVE-2022-22953]	low	🔒	-	-	-
202264	Wiris MathType path traversal [CVE-2022-31372]	medium	🔒	-	-	-
202263	Adobe InDesign out-of-bounds write [CVE-2022-30665]	medium	🔒	-	-	-
202262	Adobe InDesign out-of-bounds write [CVE-2022-30663]	medium	🔒	-	-	-
202261	Adobe InDesign out-of-bounds write [CVE-2022-30662]	medium	🔒	-	-	-
202260	Adobe InDesign heap-based overflow [CVE-2022-30661]	medium	🔒	-	-	-
202259	Adobe InDesign out-of-bounds write [CVE-2022-30660]	medium	🔒	-	-	-
202258	Adobe InDesign out-of-bounds write [CVE-2022-30659]	medium	🔒	-	-	-
202257	Adobe InDesign heap-based overflow [CVE-2022-30658]	medium	🔒	-	-	-
202256	Mercury MIPC451 POST Request Privilege Escalation [CVE-2022-31849]	medium	🔒	-	-	-
202255	Online Tutor Portal Site Master.php cross site scripting	low	🔒	-	-	-
202254	oretnom23 Online Fire Reporting System Master.php cross site scripting	low	🔒	-	-	-
202253	Student Registration and Fee Payment System student.php sql injection	medium	🔒	-	-	-
202252	Online Discussion Forum Site cross site scripting [CVE-2022-31913]	low	🔒	-	-	-
202251	Online Tutor Portal Site sql injection [CVE-2022-31912]	medium	🔒	-	-	-
202250	Directory Management System add-directory.php sql injection	medium	🔒	-	-	-
202249	Directory Management System view-directory.php sql injection	medium	🔒	-	-	-
202248	Directory Management System search-dirctory.php sql injection	medium	🔒	-	-	-
202247	Apple Swift JSON Document type conversion [CVE-2022-1642]	low	🔒	-	-	-
202246	MaianAffiliate Admin Panel code injection [CVE-2021-41421]	medium	🔒	-	-	-
202245	Online Discussion Forum Site sql injection [CVE-2022-31911]	medium	🔒	-	-	-
202244	Wuzhicms index.php sql injection	medium	🔒	-	-	-
202243	KIE Drools KieModuleMarshaller.java Validator xml external entity reference	low	🔒	-	-	-
202242	GPAC MP4Box error.c stack-based overflow	low	🔒	-	-	-
202241	kromitgmbh titra weak password [CVE-2022-2098]	medium	🔒	-	-	-
202240	flatCore-CMS Privilege Escalation [CVE-2021-41402]	medium	🔒	-	-	-
202239	PHP Parametrized Query uninitialized pointer [CVE-2022-31625]	medium	🔒	-	-	-
202238	PHP pdo_mysql buffer overflow [CVE-2022-31626]	medium	🔒	-	-	-
202237	Adobe InDesign buffer overflow [CVE-2021-42732]	medium	🔒	-	-	-
202236	Adobe InDesign buffer overflow [CVE-2021-40727]	medium	🔒	-	-	-
202235	Devolutions Remote Desktop Manager Password Mask information disclosure	low	🔒	-	-	-
202234	Private Messages Plugin Message cross-site request forgery [CVE-2022-29441]	low	🔒	-	-	-
202233	Promotion Slider Plugin cross site scripting [CVE-2022-29440]	low	🔒	-	-	-
202232	NextCode Image Slider Plugin cross-site request forgery [CVE-2022-29439]	low	🔒	-	-	-
202231	NextCode Image Slider Plugin cross site scripting [CVE-2022-29438]	low	🔒	-	-	-
202230	NextCode Image Slider Plugin cross-site request forgery [CVE-2022-29437]	low	🔒	-	-	-
202229	Messages cross site scripting [CVE-2022-29442]	low	🔒	-	-	-
202228	Adobe InDesign TIFF File buffer overflow [CVE-2021-39820]	medium	🔒	-	-	-
202227	API KEY for Google Maps Plugin Key Update cross-site request forgery	low	🔒	-	-	-
202226	PHPCMS cross site scripting [CVE-2021-40910]	low	🔒	-	-	-
202225	Advisto PEEL Shopping utilisateurs.php sql injection	medium	🔒	-	-	-
202224	Monstra PHP unrestricted upload [CVE-2021-40940]	medium	🔒	-	-	-
202223	flatCore-CMS server-side request forgery [CVE-2021-41403]	medium	🔒	-	-	-
202222	subscription-manager main.js cross site scripting	low	🔒	-	-	-
202221	Octopoller Gem default permission [CVE-2022-31071]	medium	🔒	-	-	-
202220	Google Android nanopb Local Privilege Escalation [CVE-2022-20203]	low	🔒	-	-	-
202219	Yandex Browser temp file [CVE-2022-28226]	medium	🔒	-	-	-
202218	Yandex Browser Installation File symlink [CVE-2022-28225]	medium	🔒	-	-	-
202217	Intel CPU denial of service [CVE-2022-21180]	medium	🔒	-	-	-
202216	Yandex Browser Installation File symlink [CVE-2021-25261]	medium	🔒	-	-	-
202215	Fuji Electric V-Server/V-Server Lite Image File out-of-bounds	medium	🔒	-	-	-
202214	Fuji Electric V-SFT Simulator Module out-of-bounds [CVE-2022-30546]	medium	🔒	-	-	-
202213	Fuji Electric V-SFT Simulator Module out-of-bounds write [CVE-2022-30538]	medium	🔒	-	-	-
202212	Zoom On-Premise Meeting Connector MMR Waiting Room permission	low	🔒	-	-	-
202211	Zoom Client for Meetings/Rooms for Conference Room Opener Installer injection	medium	🔒	-	-	-
202210	Johnson Controls Metasys ADS/Metasys ADX/Metasys OAS MUI Graphics Web Interface cross site scripting	low	🔒	-	-	-
202209	Johnson Controls Metasys ADS/Metasys ADX/Metasys OAS Web Interface cross site scripting	low	🔒	-	-	-
202208	Johnson Controls Metasys ADS/Metasys ADX/Metasys OAS password recovery	medium	🔒	-	-	-
202207	AriaNg access control [CVE-2021-41418]	medium	🔒	-	-	-
202206	NestJS Proxy Cookie information disclosure [CVE-2022-31070]	low	🔒	-	-	-
202205	NestJS Proxy information disclosure [CVE-2022-31069]	low	🔒	-	-	-
202204	Modern Events Calendar Lite cross site scripting [CVE-2022-30533]	low	🔒	-	-	-
202203	AgileBits 1Password Apps/Integrations information disclosure	low	🔒	-	-	-
202202	Rundeck Key Storage Converter Plugin insufficiently protected credentials	low	🔒	-	-	-
202201	Intel CPU Power Management Throttling information exposure [CVE-2022-24436]	low	🔒	-	-	-
202200	AMD Athlon/Ryzen/EPYC Power Frequency Scaling information exposure	low	🔒	-	-	-
202199	ABB Drive Composer File System privileges management [CVE-2022-31219]	medium	🔒	-	-	-
202198	ABB Drive Composer File System privileges management [CVE-2022-31218]	medium	🔒	-	-	-
202197	ABB Drive Composer File System privileges management [CVE-2022-31217]	medium	🔒	-	-	-
202196	ABB Drive Composer File System privileges management [CVE-2022-31216]	medium	🔒	-	-	-
202195	ABB Mint WorkBench Installer privileges management [CVE-2022-26057]	medium	🔒	-	-	-
202194	Mitsubishi Electric MELSEC-Q Packet denial of service [CVE-2022-24946]	medium	🔒	-	-	-
202193	Adobe Lightroom Classic Installer temp file [CVE-2021-40776]	medium	🔒	-	-	-
202192	Xakuro XO Slider Plugin cross site scripting [CVE-2022-32280]	low	🔒	-	-	-
202191	Export All URLs Plugin cross site scripting [CVE-2022-29452]	low	🔒	-	-	-
202190	Muneeb Custom Popup Builder Plugin cross site scripting [CVE-2022-28612]	low	🔒	-	-	-
202189	Supsystic Photo Gallery Plugin Setting cross-site request forgery	low	🔒	-	-	-
202188	Admin Management Xtended Plugin cross-site request forgery [CVE-2022-29450]	low	🔒	-	-	-
202187	Nicdark Hotel Booking Plugin cross site scripting [CVE-2022-29443]	low	🔒	-	-	-
202186	Adobe Illustrator out-of-bounds write [CVE-2022-30649]	medium	🔒	-	-	-
202185	Adobe Illustrator use after free [CVE-2022-30648]	medium	🔒	-	-	-
202184	Adobe Illustrator use after free [CVE-2022-30647]	medium	🔒	-	-	-
202183	Adobe Bridge use after free [CVE-2022-28849]	medium	🔒	-	-	-
202182	Adobe Bridge out-of-bounds write [CVE-2022-28848]	medium	🔒	-	-	-
202181	Adobe Bridge out-of-bounds write [CVE-2022-28847]	medium	🔒	-	-	-
202180	Adobe Bridge out-of-bounds write [CVE-2022-28846]	medium	🔒	-	-	-
202179	Adobe Bridge out-of-bounds write [CVE-2022-28845]	medium	🔒	-	-	-
202178	Adobe Bridge out-of-bounds write [CVE-2022-28844]	medium	🔒	-	-	-
202177	Adobe Bridge out-of-bounds write [CVE-2022-28843]	medium	🔒	-	-	-
202176	Adobe Bridge use after free [CVE-2022-28842]	medium	🔒	-	-	-
202175	Adobe Bridge out-of-bounds write [CVE-2022-28841]	medium	🔒	-	-	-
202174	Adobe Bridge out-of-bounds write [CVE-2022-28840]	medium	🔒	-	-	-
202173	Adobe Bridge out-of-bounds write [CVE-2022-28839]	medium	🔒	-	-	-
202172	Adobe After Effects buffer overflow [CVE-2021-43755]	medium	🔒	-	-	-
202171	Adobe Photoshop buffer overflow [CVE-2021-42735]	medium	🔒	-	-	-
202170	Adobe Media Encoder buffer overflow [CVE-2021-43756]	medium	🔒	-	-	-
202169	Adobe Prelude buffer overflow [CVE-2021-43754]	medium	🔒	-	-	-
202168	Octokit Gem default permission [CVE-2022-31072]	low	🔒	-	-	-
202167	Adobe Illustrator out-of-bounds [CVE-2022-30669]	low	🔒	-	-	-
202166	Adobe Illustrator out-of-bounds [CVE-2022-30668]	low	🔒	-	-	-
202165	Adobe Illustrator out-of-bounds [CVE-2022-30667]	low	🔒	-	-	-
202164	Adobe Illustrator out-of-bounds [CVE-2022-30666]	low	🔒	-	-	-
202163	Adobe Bridge out-of-bounds [CVE-2022-28850]	low	🔒	-	-	-
202162	REDCap Project edit_project_settings.php cross site scripting	low	🔒	-	-	-
202161	REDCap messenger_ajax.php cross site scripting	low	🔒	-	-	-
202160	itsourcecode School Management System get_subject_routing.php sql injection	medium	🔒	-	-	-
202159	itsourcecode School Management System get_exam.php sql injection	medium	🔒	-	-	-
202158	itsourcecode School Management System get_subject.php sql injection	medium	🔒	-	-	-
202157	itsourcecode School Management System get_teacher.php sql injection	medium	🔒	-	-	-
202156	itsourcecode School Management System get_classroom.php sql injection	medium	🔒	-	-	-
202155	itsourcecode School Management System get_grade.php sql injection	medium	🔒	-	-	-
202154	itsourcecode School Management System get_admin_profile.php sql injection	medium	🔒	-	-	-
202153	itsourcecode School Management System get_student_subject.php sql injection	medium	🔒	-	-	-
202152	itsourcecode School Management System get_parents_profile.php sql injection	medium	🔒	-	-	-
202151	itsourcecode School Management System get_teacher_profile.php sql injection	medium	🔒	-	-	-
202150	itsourcecode School Management System get_exam_timetable.php sql injection	medium	🔒	-	-	-
202149	itsourcecode School Management System get_events.php sql injection	medium	🔒	-	-	-
202148	itsourcecode School Management System get_timetable.php sql injection	medium	🔒	-	-	-
202147	itsourcecode School Management System all_teacher.php Privilege Escalation	medium	🔒	-	-	-
202146	Cisco Secure Email and Web Manager Web-based Management Interface improper authentication	high	🔒	-	-	-
202145	Cisco Identity Services Engine Login Page improper authentication	medium	🔒	-	-	-
202144	Cisco RV110W/RV130/RV130W/RV215W Web-based Management Interface stack-based overflow	high	🔒	-	-	-
202143	Cisco Identity Services Engine Web-based Management Interface privileges assignment	low	🔒	-	-	-
202142	Cisco AppDynamics Controller Web-based Management Interface improper authorization	medium	🔒	-	-	-
202141	Cisco Unified IP Phone Unified Communications Manager weak prng	low	🔒	-	-	-
202140	Cisco Secure Email and Web Manager Web Management Interface information disclosure	low	🔒	-	-	-
202139	Splunk Enterprise Forwarder Bundle access control [CVE-2022-32158]	medium	🔒	-	-	-
202138	Splunk Enterprise Forwarder Bundle missing authentication [CVE-2022-32157]	medium	🔒	-	-	-
202137	Splunk Enterprise/Cloud Platform Universal Forwarder server.conf Local Privilege Escalation	low	🔒	-	-	-
202136	Splunk Enterprise Dashboard unknown vulnerability [CVE-2022-32154]	medium	🔒	-	-	-
202135	Splunk Enterprise/Cloud Platform Splunk-to-Splunk certificate validation	medium	🔒	-	-	-
202134	Splunk Enterprise/Cloud Platform Splunk-to-Splunk certificate validation	medium	🔒	-	-	-
202133	Splunk Enterprise Command-Line Interface certificate validation	medium	🔒	-	-	-
202132	Splunk Enterprise/Cloud Platform httplib/urllib certificate validation	medium	🔒	-	-	-
202131	YoudianCMS ApiAction.class.php sql injection [CVE-2022-32301]	medium	🔒	-	-	-
202130	YoudianCMS MailAction.class.php sql injection [CVE-2022-32300]	medium	🔒	-	-	-
202129	YoudianCMS SiteAction.class.php sql injection [CVE-2022-32299]	medium	🔒	-	-	-
202128	kkcms vlist.php sql injection	medium	🔒	-	-	-
202127	Web Based Quiz System welcome.php sql injection	medium	🔒	-	-	-
202126	SourceCodester Theme Park Ticketing System edit_ticket.php sql injection	medium	🔒	-	-	-
202125	IBM Financial Transaction Manager for Digital Payments for Multi-Platform sql injection	medium	🔒	-	-	-
202124	Online Tours and Travels Management System tax.php sql injection	medium	🔒	-	-	-
202123	IBM AIX/VIOS lpd denial of service [CVE-2022-22444]	low	🔒	-	-	-
202122	Google Android DevicePolicyManagerService.java permission	medium	🔒	-	-	-
202121	Google Android GattServiceConfig.java permission	medium	🔒	-	-	-
202120	Google Android InstalldNativeService.cpp getAppSize out-of-bounds	low	🔒	-	-	-
202119	Google Android Keystore Library denial of service [CVE-2022-20195]	low	🔒	-	-	-
202118	Google Android ChooseLockGeneric.java onCreate permission	medium	🔒	-	-	-
202117	Google Android PermissionUsageHelper.java getUniqueUsagesWithLabels permission	medium	🔒	-	-	-
202116	Google Android WindowManagerService.java grantEmbeddedWindowFocus permission	medium	🔒	-	-	-
202115	Google Android nfa_dm_main.cc nfa_dm_check_set_config out-of-bounds write	medium	🔒	-	-	-
202114	Google Android AvatarPhotoController.java Local Privilege Escalation	low	🔒	-	-	-
202113	Google Android label_backends_android.c closef double free	low	🔒	-	-	-
202112	Google Android cppbor_parse.cpp parseRecursively out-of-bounds	low	🔒	-	-	-
202111	Google Android NotificationManagerService.java setPackageOrComponentEnabled information disclosure	low	🔒	-	-	-
202110	Google Android FileUtil.java isFileUri information disclosure	low	🔒	-	-	-
202109	Google Android DevicePolicyManagerService.java registerRemoteBugreportReceivers permission	medium	🔒	-	-	-
202108	Google Android Hotspot State SoftApManager.java updateApState information disclosure	low	🔒	-	-	-
202107	Google Android NFC Stack llcp_dlc.cc llcp_dlc_proc_connect_pdu out-of-bounds	low	🔒	-	-	-
202106	Google Android Parcel.java recycle permission	medium	🔒	-	-	-
202105	Google Android gallery3d/Photos information disclosure [CVE-2022-20196]	low	🔒	-	-	-
202104	Google Android use after free [CVE-2022-20185]	medium	🔒	-	-	-
202103	Google Android faceauth_hypx.c hypx_create_blob_dmabuf out-of-bounds write	medium	🔒	-	-	-
202102	Google Android A ioctl_dpm_qos_update out-of-bounds write	medium	🔒	-	-	-
202101	Google Android Kernel Base Driver out-of-bounds write [CVE-2022-20166]	medium	🔒	-	-	-
202100	Google Android ipu-core-jqs-msg-transport.c ipu_core_jqs_msg_transport_kernel_write_sync use after free	medium	🔒	-	-	-
202099	Google Android sock.c lock_sock_nested use after free	medium	🔒	-	-	-
202098	Google Android rcu_segcblist.c rcu_cblist_dequeue use after free	medium	🔒	-	-	-
202097	Google Android TitanM Chip out-of-bounds write [CVE-2022-20152]	medium	🔒	-	-	-
202096	Google Android Kernel use after free [CVE-2022-20148]	medium	🔒	-	-	-
202095	Google Android ZenModeHelper.java addAutomaticZenRule resource consumption	low	🔒	-	-	-
202094	Google Android igmp.c ip_check_mc_rcu use after free	medium	🔒	-	-	-
202093	Google Android Kernel Privilege Escalation [CVE-2022-20191]	low	🔒	-	-	-
202092	Google Android Kernel Privilege Escalation [CVE-2022-20190]	low	🔒	-	-	-
202091	Google Android Kernel Privilege Escalation [CVE-2022-20188]	low	🔒	-	-	-
202090	Google Android Kernel Privilege Escalation [CVE-2022-20184]	low	🔒	-	-	-
202089	Google Android Kernel Privilege Escalation [CVE-2022-20181]	low	🔒	-	-	-
202088	Google Android Kernel Privilege Escalation [CVE-2022-20179]	low	🔒	-	-	-
202087	Google Android Kernel Privilege Escalation [CVE-2022-20177]	low	🔒	-	-	-
202086	Google Android Kernel Privilege Escalation [CVE-2022-20175]	low	🔒	-	-	-
202085	Google Android Kernel Privilege Escalation [CVE-2022-20173]	low	🔒	-	-	-
202084	Google Android Kernel Privilege Escalation [CVE-2022-20171]	low	🔒	-	-	-
202083	Google Android Kernel Privilege Escalation [CVE-2022-20170]	low	🔒	-	-	-
202082	Google Android Kernel Privilege Escalation [CVE-2022-20169]	low	🔒	-	-	-
202081	Google Android Kernel Privilege Escalation [CVE-2022-20168]	low	🔒	-	-	-
202080	Google Android Kernel Privilege Escalation [CVE-2022-20167]	low	🔒	-	-	-
202079	Google Android Kernel Privilege Escalation [CVE-2022-20164]	low	🔒	-	-	-
202078	Google Android Kernel Privilege Escalation [CVE-2022-20160]	low	🔒	-	-	-
202077	Google Android Kernel Privilege Escalation [CVE-2022-20151]	low	🔒	-	-	-
202076	Google Android Kernel Privilege Escalation [CVE-2022-20149]	low	🔒	-	-	-
202075	Google Android Vpn.java startLegacyVpnPrivileged downgrade	low	🔒	-	-	-
202074	Google Android gatt_sr.cc read_multi_rsp out-of-bounds write	medium	🔒	-	-	-
202073	Google Android Titan-M Source param_find_digests_internal out-of-bounds write	medium	🔒	-	-	-
202072	Google Android pixel_loader.c handle_ramdump information disclosure	low	🔒	-	-	-
202071	Google Android sjtag-driver.c auth_store information disclosure	low	🔒	-	-	-
202070	Google Android mach-gs101.c exynos_secEnv_init out-of-bounds	low	🔒	-	-	-
202069	Google Android asn1.c asn1_parse out-of-bounds	low	🔒	-	-	-
202068	Google Android asn1.c asn1_p256_int out-of-bounds	low	🔒	-	-	-
202067	Google Android asn1_common.c asn1_ec_pkey_parse out-of-bounds	low	🔒	-	-	-
202066	Google Android GraphicBuffer.cpp unflatten input validation	medium	🔒	-	-	-
202065	Google Android FileUploadServiceImpl.java uploadFile information disclosure	low	🔒	-	-	-
202064	Google Android GeofenceHardwareRequestParcelable.java createFromParcel Local Privilege Escalation	low	🔒	-	-	-
202063	Google Android NAS Message denial of service [CVE-2022-20210]	low	🔒	-	-	-
202062	Google Android hme_utils.c hme_add_new_node_to_a_sorted_array out-of-bounds	low	🔒	-	-	-
202061	Google Android ih264_resi_trans_quant_sse42.c ih264_resi_trans_quant_4x4_sse42 out-of-bounds	low	🔒	-	-	-
202060	DynamicWebLab Team Manager Plugin cross site scripting [CVE-2022-29406]	low	🔒	-	-	-
202059	Nicdark Travel Management Plugin cross site scripting [CVE-2022-27859]	low	🔒	-	-	-
202058	Phil Baker Age Gate Plugin cross site scripting [CVE-2021-36901]	low	🔒	-	-	-
202057	Apache Hadoop path traversal [CVE-2021-33036]	medium	🔒	-	-	-
202056	Apache NiFi/NiFi Registry ShellUserGroupProvider os command injection	medium	🔒	-	-	-
202055	Google Android ShannonRcsService.java onbind information disclosure	low	🔒	-	-	-
202054	Google Android mali_kbase_mem_linux.c kbase_mem_alias input validation	medium	🔒	-	-	-
202053	Google Android GBoard sandbox [CVE-2022-20125]	medium	🔒	-	-	-
202052	Google Android WiFi Settings NetworkProviderSettings.java onCreateContextMenu permission	medium	🔒	-	-	-
202051	Google Android Phone Number CallSubjectDialog.java readArguments input validation	medium	🔒	-	-	-
202050	Google Android PhoneAccountRegistrar.java registerPhoneAccount denial of service	low	🔒	-	-	-
202049	Google Android DeletePackageHelper.java deletePackageX permission	medium	🔒	-	-	-
202048	Google Android WindowManager improper restriction of rendered ui layers	low	🔒	-	-	-
202047	David Brackeen ok-file-formats ok_jpg_convert_YCbCr_to_RGB buffer overflow	medium	🔒	-	-	-
202046	Google Android GateKeeperResponse.java writeToParcel Local Privilege Escalation	low	🔒	-	-	-
202045	Google Android AdapterService.java setDiscoverableTimeout permission	medium	🔒	-	-	-
202044	Google Android Bluetooth Discovery Mode AdapterService.java setScanMode permission	medium	🔒	-	-	-
202043	Google Android USB HID File hid-lg.c lg_probe out-of-bounds	low	🔒	-	-	-
202042	Google Android nci_hrcv.cc nci_proc_rf_management_ntf out-of-bounds	low	🔒	-	-	-
202041	Google Android tpdec_lib.cpp transportDec_OutOfBandConfig heap-based overflow	medium	🔒	-	-	-
202040	Google Android ce_t4t.cc ce_t4t_data_cback out-of-bounds write	medium	🔒	-	-	-
202039	Google Android phNxpExtns_MifareStd.cpp phNciNfc_RecvMfResp out-of-bounds	low	🔒	-	-	-
202038	Citrix ADM License Service resource control [CVE-2022-27512]	low	🔒	-	-	-
202037	Citrix ADM Admin Password access control [CVE-2022-27511]	medium	🔒	-	-	-
202036	PotPlayer out-of-bounds write [CVE-2021-40212]	medium	🔒	-	-	-
202035	SourceCodester Bank Management System cross site scripting [CVE-2022-2087]	low	🔒	-	-	-
202034	SourceCodester Bank Management System login.php sql injection	medium	🔒	-	-	-
202033	Nokia G-2425G-A Device Management Page cross site scripting [CVE-2022-30903]	low	🔒	-	-	-
202032	SourceCodester Tourism Management System cross-site request forgery	low	🔒	-	-	-
202031	Siemens Mendix SAML Module Error Message cross site scripting	low	🔒	-	-	-
202030	Siemens Teamcenter Active Workspace Web Interface cross site scripting	low	🔒	-	-	-
202029	Siemens Xpedition Designer access control [CVE-2022-31465]	medium	🔒	-	-	-
202028	oretnom23 Product Show Room Site sql injection [CVE-2022-32355]	medium	🔒	-	-	-
202027	oretnom23 Product Show Room Site sql injection [CVE-2022-32354]	medium	🔒	-	-	-
202026	oretnom23 Product Show Room Site sql injection [CVE-2022-32367]	medium	🔒	-	-	-
202025	oretnom23 Product Show Room Site sql injection [CVE-2022-32364]	medium	🔒	-	-	-
202024	SAP ERP SHAAM Program VQ23 authorization	medium	🔒	-	-	-
202023	WAVLINK WN579 X3 POST Request ExportAllSettings.sh information disclosure	low	🔒	-	-	-
202022	WAVLINK WN535 G3 live_mfg.shtml exec cmd information disclosure	low	🔒	-	-	-
202021	WAVLINK WN535 G3 live_check.shtml exec cmd information disclosure	low	🔒	-	-	-
202020	WAVLINK AERIAL X 1200M POST adm.cgi Privilege Escalation	low	🔒	-	-	-
202019	WAVLINK AERIAL X 1200M live_check.shtml exec cmd information disclosure	low	🔒	-	-	-
202018	WAVLINK AERIAL X 1200M live_mfg.shtml exec cmd information disclosure	low	🔒	-	-	-
202017	Siemens EN100 Ethernet Module HTTP Packet txtrace memory corruption	low	🔒	-	-	-
202016	Siemens SICAM GridEdge Essential ARM missing authentication [CVE-2022-30230]	medium	🔒	-	-	-
202015	Siemens SICAM GridEdge Essential ARM missing authentication [CVE-2022-30229]	medium	🔒	-	-	-
202014	Siemens SINEMA Remote Connect Server Error Message cross site scripting	low	🔒	-	-	-
202013	Siemens Spectrum Power 4 Shared HIS hard-coded credentials [CVE-2022-26476]	medium	🔒	-	-	-
202012	Qualcomm Snapdragon Auto BT HFP-UNIT Profile memory corruption	high	🔒	-	-	-
202011	Qualcomm Snapdragon Auto Multimedia Driver memory corruption	medium	🔒	-	-	-
202010	Qualcomm Snapdragon Compute Internal Cache memory corruption	medium	🔒	-	-	-
202009	Qualcomm Snapdragon Auto Video memory corruption [CVE-2022-22087]	medium	🔒	-	-	-
202008	Qualcomm Snapdragon Auto 3gp Clip memory corruption [CVE-2022-22086]	medium	🔒	-	-	-
202007	Qualcomm Snapdragon Auto Video memory corruption [CVE-2022-22085]	medium	🔒	-	-	-
202006	Qualcomm Snapdragon Auto qcp Audio File memory corruption [CVE-2022-22084]	medium	🔒	-	-	-
202005	Qualcomm Snapdragon Auto APE Header memory corruption [CVE-2022-22083]	medium	🔒	-	-	-
202004	Qualcomm Snapdragon Auto DSF Header Parser memory corruption	medium	🔒	-	-	-
202003	Qualcomm Snapdragon Auto NDP Application Information buffer overflow	medium	🔒	-	-	-
202002	Qualcomm Snapdragon Auto IOCTL use after free [CVE-2022-22071]	medium	🔒	-	-	-
202001	Qualcomm Snapdragon Auto WLAN Host out-of-bounds [CVE-2022-22065]	medium	🔒	-	-	-
202000	Qualcomm Snapdragon Auto Frame buffer overflow [CVE-2022-22064]	medium	🔒	-	-	-
201999	Qualcomm Snapdragon Auto Graphics Fence use after free [CVE-2022-22057]	medium	🔒	-	-	-
201998	Textpattern Body cross site scripting [CVE-2021-40658]	low	🔒	-	-	-
201997	Software AG Connx missing secure attribute [CVE-2021-40650]	low	🔒	-	-	-
201996	Software AG Connx cookie httponly flag [CVE-2021-40649]	medium	🔒	-	-	-
201995	thinkcmf Background User Management Group permission [CVE-2021-40616]	medium	🔒	-	-	-
201994	Qualcomm Snapdragon Auto Graphics Support Layer use after free	medium	🔒	-	-	-
201993	Qualcomm Snapdragon Compute BT Controller memory corruption [CVE-2021-35129]	medium	🔒	-	-	-
201992	Qualcomm Snapdragon Auto DSP Service memory corruption [CVE-2021-35126]	medium	🔒	-	-	-
201991	Qualcomm Snapdragon Connectivity/Snapdragon Industrial IOT GATT Multi Notification buffer overflow	medium	🔒	-	-	-
201990	Qualcomm Snapdragon Compute Array Index use after free [CVE-2021-35121]	medium	🔒	-	-	-
201989	Qualcomm Snapdragon Compute Export use after free [CVE-2021-35120]	medium	🔒	-	-	-
201988	Qualcomm Snapdragon Auto FIPS Event out-of-bounds [CVE-2021-35119]	low	🔒	-	-	-
201987	Qualcomm Snapdragon Auto Camera Driver out-of-bounds write [CVE-2021-35118]	medium	🔒	-	-	-
201986	Qualcomm Snapdragon Auto APK Local Privilege Escalation [CVE-2021-35116]	medium	🔒	-	-	-
201985	Qualcomm Snapdragon Auto Backend Driver initialization [CVE-2021-35114]	medium	🔒	-	-	-
201984	Qualcomm Snapdragon Auto access control [CVE-2021-35112]	medium	🔒	-	-	-
201983	Qualcomm Snapdragon Connectivity, Snapdragon Mobile Tag ID race condition	medium	🔒	-	-	-
201982	Qualcomm Snapdragon Auto FLAC Audio Clip buffer overflow [CVE-2021-35104]	high	🔒	-	-	-
201981	Qualcomm Snapdragon Auto EFS buffer overflow [CVE-2021-35102]	medium	🔒	-	-	-
201980	Qualcomm Snapdragon Auto Virtual GICR Control assertion [CVE-2021-35101]	low	🔒	-	-	-
201979	Qualcomm Snapdragon Auto Id3 Tag Parser buffer overflow [CVE-2021-35100]	medium	🔒	-	-	-
201978	Qualcomm Snapdragon Auto PCM Routing memory corruption [CVE-2021-35098]	medium	🔒	-	-	-
201977	Qualcomm Snapdragon Auto DLM denial of service [CVE-2021-35096]	medium	🔒	-	-	-
201976	Qualcomm Snapdragon Connectivity/Snapdragon Mobile Message Queue race condition	medium	🔒	-	-	-
201975	Qualcomm Snapdragon Auto HLOS improper authorization [CVE-2021-35094]	medium	🔒	-	-	-
201974	Qualcomm Snapdragon Auto IOCTL Request memory corruption [CVE-2021-35092]	medium	🔒	-	-	-
201973	Qualcomm Snapdragon Connectivity/Snapdragon Mobile Page Fault out-of-bounds	medium	🔒	-	-	-
201972	Qualcomm Snapdragon Auto Hypervisor toctou [CVE-2021-35090]	medium	🔒	-	-	-
201971	Qualcomm Snapdragon Industrial IOT/Snapdragon Mobile System Information Message null pointer dereference	medium	🔒	-	-	-
201970	Qualcomm Snapdragon Auto NR System Information Message buffer overflow	medium	🔒	-	-	-
201969	Qualcomm Snapdragon Auto Management Frame Rx buffer overflow	medium	🔒	-	-	-
201968	Qualcomm Snapdragon Auto DIAG Event out-of-bounds [CVE-2021-35084]	low	🔒	-	-	-
201967	Qualcomm Snapdragon Auto Certificate Chain out-of-bounds [CVE-2021-35083]	medium	🔒	-	-	-
201966	Qualcomm Snapdragon Industrial IOT RRC Security Mode Command Packet integrity check	high	🔒	-	-	-
201965	Qualcomm Snapdragon Auto SSID Length buffer overflow [CVE-2021-35081]	high	🔒	-	-	-
201964	Qualcomm Snapdragon Auto Server Certificate Parser memory leak	medium	🔒	-	-	-
201963	Qualcomm Snapdragon Auto RRC Connection null pointer dereference	medium	🔒	-	-	-
201962	Qualcomm Snapdragon Auto Rank Restriction Field assertion [CVE-2021-35073]	medium	🔒	-	-	-
201961	Qualcomm Snapdragon Auto Diag Command buffer overflow [CVE-2021-35072]	medium	🔒	-	-	-
201960	FileCloud NTFS access control [CVE-2022-1958]	medium	🔒	-	-	-
201959	Qualcomm Snapdragon Auto buffer overflow [CVE-2021-35071]	medium	🔒	-	-	-
201958	Qualcomm Snapdragon Auto MBN Header memory corruption [CVE-2021-30350]	medium	🔒	-	-	-
201957	Qualcomm Snapdragon Auto AC Database memory corruption [CVE-2021-30349]	medium	🔒	-	-	-
201956	Qualcomm Snapdragon Auto RRC Command Packet integrity check [CVE-2021-30347]	high	🔒	-	-	-
201955	Qualcomm Snapdragon Auto LTE Security Mode Command denial of service	medium	🔒	-	-	-
201954	Qualcomm Snapdragon Auto RRC Command Packet integrity check [CVE-2021-30343]	high	🔒	-	-	-
201953	Qualcomm Snapdragon Auto RRC Command Packet integrity check [CVE-2021-30342]	high	🔒	-	-	-
201952	Qualcomm Snapdragon Auto DSM Packet memory corruption [CVE-2021-30341]	high	🔒	-	-	-
201951	Qualcomm Snapdragon Auto SA Mode assertion [CVE-2021-30340]	medium	🔒	-	-	-
201950	Qualcomm Snapdragon Connectivity PRNG buffer overflow [CVE-2021-30339]	medium	🔒	-	-	-
201949	Qualcomm Snapdragon Auto DRM File Status use after free [CVE-2021-30334]	medium	🔒	-	-	-
201948	Qualcomm Snapdragon Mobile Sahara Protocol buffer overflow [CVE-2021-30327]	medium	🔒	-	-	-
201947	Qualcomm Snapdragon Auto Local Privilege Escalation [CVE-2021-30281]	medium	🔒	-	-	-
201946	EdgeX Foundry API Endpoint config information disclosure	low	🔒	-	-	-
201945	Discourse Event Name cross site scripting [CVE-2022-31059]	low	🔒	-	-	-
201944	Jupyter Server REST API information disclosure [CVE-2022-29241]	low	🔒	-	-	-
201943	SAP Adaptive Server Enterprise privileges management [CVE-2022-31594]	medium	🔒	-	-	-
201942	Siemens Mendix SAML Module xml external entity reference [CVE-2022-32285]	low	🔒	-	-	-
201941	SAP Financial Consolidation authorization [CVE-2022-31595]	medium	🔒	-	-	-
201940	Jupyter Notebook direct request [CVE-2022-29238]	low	🔒	-	-	-
201939	Oracle Linux UEK File Descriptor access control [CVE-2022-21504]	medium	🔒	-	-	-
201938	Couchbase Server HTTP Request information exposure [CVE-2022-32559]	low	🔒	-	-	-
201937	Palantir Foundry Multipass resource consumption [CVE-2022-27889]	low	🔒	-	-	-
201936	Siemens SINEMA Remote Connect Server UMC access control [CVE-2022-32260]	medium	🔒	-	-	-
201935	Siemens SINEMA Remote Connect Server Test Scripts information disclosure	low	🔒	-	-	-
201934	Siemens SINEMA Remote Connect Server Web Service access control	medium	🔒	-	-	-
201933	Siemens SICAM GridEdge Essential ARM inadequate encryption [CVE-2022-30231]	low	🔒	-	-	-
201932	Siemens SINEMA Remote Connect Server HTTP Response information exposure	low	🔒	-	-	-
201931	Siemens SINEMA Remote Connect Server HTTP Security Header clickjacking	low	🔒	-	-	-
201930	Siemens SINEMA Remote Connect Server HTTP Security Header security check	medium	🔒	-	-	-
201929	Qualcomm Snapdragon Auto Kernel Event information disclosure	low	🔒	-	-	-
201928	giflib GIF File gif2rgb.c resource consumption	low	🔒	-	-	-
201927	Siemens SCALANCE OSPF integrity check [CVE-2021-37182]	medium	🔒	-	-	-
201926	Qualcomm Snapdragon Industrial IOT SMMU information disclosure	low	🔒	-	-	-
201925	Qualcomm Snapdragon Compute Telephony Service API information disclosure	low	🔒	-	-	-
201924	SAP PowerDesigner Proxy unquoted search path [CVE-2022-31590]	medium	🔒	-	-	-
201923	SAP 3D Visual Enterprise Viewer SVG File denial of service [CVE-2022-32243]	low	🔒	-	-	-
201922	SAP 3D Visual Enterprise Viewer Radiance Picture File denial of service	low	🔒	-	-	-
201921	SAP 3D Visual Enterprise Viewer PDF Document denial of service	low	🔒	-	-	-
201920	SAP 3D Visual Enterprise Viewer JT File denial of service [CVE-2022-32240]	low	🔒	-	-	-
201919	SAP 3D Visual Enterprise Viewer JPEG2000 File denial of service	low	🔒	-	-	-
201918	SAP 3D Visual Enterprise Viewer EPS File denial of service [CVE-2022-32238]	low	🔒	-	-	-
201917	SAP 3D Visual Enterprise Viewer CGM File CgmCore.dll denial of service	low	🔒	-	-	-
201916	SAP 3D Visual Enterprise Viewer denial of service [CVE-2022-32236]	low	🔒	-	-	-
201915	Discourse Banner Topic Data information disclosure [CVE-2022-31060]	low	🔒	-	-	-
201914	SAP 3D Visual Enterprise Viewer TeighaTranslator.exe denial of service	low	🔒	-	-	-
201913	Couchbase Server Diagnostic Endpoint access control [CVE-2022-32561]	medium	🔒	-	-	-
201912	Couchbase Server TLS Server improper authentication [CVE-2022-32557]	medium	🔒	-	-	-
201911	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201910	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201909	Sonatype Nexus Repository Manager OSS Admin Panel access control	medium	🔒	-	-	-
201908	TYPO3 Form Framework cross site scripting [CVE-2022-31048]	low	🔒	-	-	-
201907	TYPO3 Exception log file [CVE-2022-31047]	low	🔒	-	-	-
201906	SAP NetWeaver Developer Studio log4j deserialization [CVE-2022-29615]	low	🔒	-	-	-
201905	Employee Leaves Management System myprofile.php cross-site request forgery	low	🔒	-	-	-
201904	SAP NetWeaver Application Server ABAP startservice sapuxuserchk privileges management	low	🔒	-	-	-
201903	oretnom23 Product Show Room Site view_category.php sql injection	medium	🔒	-	-	-
201902	oretnom23 Product Show Room Site manage_category.php sql injection	medium	🔒	-	-	-
201901	oretnom23 Product Show Room Site sql injection [CVE-2022-32359]	medium	🔒	-	-	-
201900	oretnom23 Product Show Room Site sql injection [CVE-2022-32358]	medium	🔒	-	-	-
201899	oretnom23 Product Show Room Site manage_field_order.php sql injection	medium	🔒	-	-	-
201898	TYPO3 Backend User Interface session expiration [CVE-2022-31050]	medium	🔒	-	-	-
201897	TYPO3 Email cross site scripting [CVE-2022-31049]	low	🔒	-	-	-
201896	TYPO3 Export information disclosure [CVE-2022-31046]	low	🔒	-	-	-
201895	oretnom23 Product Show Room Site view_field.php sql injection	medium	🔒	-	-	-
201894	oretnom23 Product Show Room Site manage_field.php sql injection	medium	🔒	-	-	-
201893	SAP NetWeaver Development Infrastructure Design Time Repository cross site scripting	low	🔒	-	-	-
201892	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201891	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201890	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201889	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201888	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201887	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201886	oretnom23 Hospitals Patient Records Management System view_room.php sql injection	medium	🔒	-	-	-
201885	oretnom23 Hospitals Patient Records Management System manage_room.php sql injection	medium	🔒	-	-	-
201884	oretnom23 Hospitals Patient Records Management System sql injection	medium	🔒	-	-	-
201883	oretnom23 Hospitals Patient Records Management System manage_room_type.php sql injection	medium	🔒	-	-	-
201882	oretnom23 Hospitals Patient Records Management System view_room_type.php sql injection	medium	🔒	-	-	-
201881	oretnom23 Hospitals Patient Records Management System view_doctor.php sql injection	medium	🔒	-	-	-
201880	oretnom23 Hospitals Patient Records Management System manage_doctor.php sql injection	medium	🔒	-	-	-
201879	oretnom23 Hospitals Patient Records Management System manage_patient.php sql injection	medium	🔒	-	-	-
201878	oretnom23 Fast Food Ordering System manage_menu.php sql injection	medium	🔒	-	-	-
201877	oretnom23 Fast Food Ordering System manage_category.php sql injection	medium	🔒	-	-	-
201876	oretnom23 Fast Food Ordering System receipt.php sql injection	medium	🔒	-	-	-
201875	oretnom23 Fast Food Ordering System sql injection [CVE-2022-32332]	medium	🔒	-	-	-
201874	oretnom23 Fast Food Ordering System view_category.php sql injection	medium	🔒	-	-	-
201873	oretnom23 Fast Food Ordering System sql injection [CVE-2022-32330]	medium	🔒	-	-	-
201872	oretnom23 Fast Food Ordering System denial of service [CVE-2022-32328]	low	🔒	-	-	-
201871	ITOP ajax.render.php cross site scripting	low	🔒	-	-	-
201870	SAP NetWeaver/ABAP Platform Route saprouttab authorization	medium	🔒	-	-	-
201869	SAP NetWeaver/ABAP Platform/SAP Host Agent sapcontrol server-side request forgery	medium	🔒	-	-	-
201868	Kreado Kreasfero unrestricted upload [CVE-2021-42675]	medium	🔒	-	-	-
201867	Microsoft Windows SMB denial of service [CVE-2022-32230]	medium	🔒	-	-	-
201866	Microsoft AV1 Video Extension Remote Code Execution [CVE-2022-30193]	medium	🔒	-	-	-
201865	Microsoft Windows Autopilot Device Management/Enrollment Client information disclosure	low	🔒	-	-	-
201864	Microsoft HEVC Video Extensions Remote Code Execution [CVE-2022-30188]	medium	🔒	-	-	-
201863	Microsoft .NET/Visual Studio information disclosure [CVE-2022-30184]	low	🔒	-	-	-
201862	Microsoft RTOS GUIX information disclosure [CVE-2022-30180]	low	🔒	-	-	-
201861	Microsoft RTOS GUIX Remote Code Execution [CVE-2022-30179]	medium	🔒	-	-	-
201860	Microsoft RTOS GUIX Remote Code Execution [CVE-2022-30178]	medium	🔒	-	-	-
201859	Microsoft Azure RTOS GUIX Local Privilege Escalation [CVE-2022-30177]	medium	🔒	-	-	-
201858	Microsoft Office Remote Code Execution [CVE-2022-30174]	medium	🔒	-	-	-
201857	Microsoft Excel Remote Code Execution [CVE-2022-30173]	medium	🔒	-	-	-
201856	Microsoft SharePoint Server/Office information disclosure [CVE-2022-30172]	low	🔒	-	-	-
201855	Microsoft SharePoint Server/Office information disclosure [CVE-2022-30171]	low	🔒	-	-	-
201854	Microsoft Microsoft Photos Remote Code Execution [CVE-2022-30168]	medium	🔒	-	-	-
201853	Microsoft AV1 Video Extension Remote Code Execution [CVE-2022-30167]	medium	🔒	-	-	-
201852	Microsoft Windows Local Security Authority Subsystem Service Privilege Escalation	medium	🔒	-	-	-
201851	Microsoft Windows Kerberos Privilege Escalation [CVE-2022-30165]	medium	🔒	-	-	-
201850	Microsoft Windows Kerberos AppContainer Privilege Escalation	high	🔒	-	-	-
201849	Microsoft Windows Hyper-V Privilege Escalation [CVE-2022-30163]	medium	🔒	-	-	-
201848	Microsoft Windows Kernel information disclosure [CVE-2022-30162]	low	🔒	-	-	-
201847	Microsoft Windows LDAP Remote Code Execution [CVE-2022-30161]	medium	🔒	-	-	-
201846	Microsoft Windows Advanced Local Procedure Call Privilege Escalation	medium	🔒	-	-	-
201845	Microsoft Office information disclosure [CVE-2022-30159]	low	🔒	-	-	-
201844	Microsoft SharePoint Server Privilege Escalation [CVE-2022-30158]	medium	🔒	-	-	-
201843	Microsoft SharePoint Server Privilege Escalation [CVE-2022-30157]	medium	🔒	-	-	-
201842	Microsoft Windows Kernel denial of service [CVE-2022-30155]	medium	🔒	-	-	-
201841	Microsoft Windows File Server Shadow Copy Agent Service Privilege Escalation	low	🔒	-	-	-
201840	Microsoft Windows LDAP Remote Code Execution [CVE-2022-30153]	medium	🔒	-	-	-
201839	Microsoft Windows NAT denial of service [CVE-2022-30152]	medium	🔒	-	-	-
201838	Microsoft Windows Ancillary Function Driver for WinSock Privilege Escalation	medium	🔒	-	-	-
201837	Microsoft Windows Defender Remote Credential Guard Privilege Escalation	medium	🔒	-	-	-
201836	Microsoft Windows LDAP Remote Code Execution [CVE-2022-30149]	medium	🔒	-	-	-
201835	Microsoft Windows Desired State Configuration information disclosure	low	🔒	-	-	-
201834	Microsoft Windows Installer Privilege Escalation [CVE-2022-30147]	medium	🔒	-	-	-
201833	Microsoft Windows LDAP Remote Code Execution [CVE-2022-30146]	medium	🔒	-	-	-
201832	Microsoft Windows Encrypting File System Privilege Escalation	medium	🔒	-	-	-
201831	Microsoft Windows LDAP Remote Code Execution [CVE-2022-30143]	medium	🔒	-	-	-
201830	Microsoft Windows File History Privilege Escalation [CVE-2022-30142]	medium	🔒	-	-	-
201829	Microsoft Windows LDAP Remote Code Execution [CVE-2022-30141]	medium	🔒	-	-	-
201828	Microsoft Windows iSCSI Discovery Service Privilege Escalation	medium	🔒	-	-	-
201827	Microsoft Windows LDAP Privilege Escalation [CVE-2022-30139]	medium	🔒	-	-	-
201826	Microsoft Azure Service Fabric Container Privilege Escalation	medium	🔒	-	-	-
201825	Microsoft Windows Network File System Remote Code Execution [CVE-2022-30136]	high	🔒	-	-	-
201824	Microsoft Windows Media Center Privilege Escalation [CVE-2022-30135]	medium	🔒	-	-	-
201823	Microsoft Windows Container Manager Service Privilege Escalation	medium	🔒	-	-	-
201822	Microsoft Windows Container Isolation FS Filter Driver Privilege Escalation	medium	🔒	-	-	-
201821	Microsoft System Center Operations Manager Privilege Escalation	medium	🔒	-	-	-
201820	Microsoft SQL Server Privilege Escalation [CVE-2022-29143]	medium	🔒	-	-	-
201819	Microsoft HEVC Video Extensions Remote Code Execution [CVE-2022-29119]	medium	🔒	-	-	-
201818	Microsoft HEVC Video Extensions Remote Code Execution [CVE-2022-29111]	medium	🔒	-	-	-
201817	Microsoft Edge Remote Code Execution [CVE-2022-22021]	medium	🔒	-	-	-
201816	Microsoft HEVC Video Extensions Remote Code Execution [CVE-2022-22018]	medium	🔒	-	-	-
201815	Microsoft Windows Device Register Partial Write memory corruption	low	🔒	-	-	-
201814	Microsoft Windows Special Register Buffer Data Sampling information disclosure	low	🔒	-	-	-
201813	Microsoft Windows Shared Buffers Data Sampling information disclosure	low	🔒	-	-	-
201812	Microsoft Windows Shared Buffers Data Read information disclosure	low	🔒	-	-	-
201811	Microsoft Edge ANGLE use after free [CVE-2022-2011]	medium	🔒	-	-	-
201810	Microsoft Edge Compositing out-of-bounds [CVE-2022-2010]	medium	🔒	-	-	-
201809	Microsoft Edge WebGL out-of-bounds [CVE-2022-2008]	medium	🔒	-	-	-
201808	Microsoft Edge WebGPU use after free [CVE-2022-2007]	medium	🔒	-	-	-
201807	Qualcomm Snapdragon Industrial IOT RPM Secure Stream access control	medium	🔒	-	-	-
201806	Qualcomm Snapdragon Industrial IOT RPM Secure Stream access control	medium	🔒	-	-	-
201805	Qualcomm Snapdragon Compute TrustZone Memory Transfer Interface information disclosure	low	🔒	-	-	-
201804	Delight Nashorn Sandbox denial of service [CVE-2021-40660]	low	🔒	-	-	-
201803	TopIDP3000 Topsec Session Cookie excessive authentication [CVE-2022-31273]	low	🔒	-	-	-
201802	Siemens SINEMA Remote Connect Server File Upload command injection	medium	🔒	-	-	-
201801	Siemens SINEMA Remote Connect Server APT Update access control	medium	🔒	-	-	-
201800	Siemens SINEMA Remote Connect Server Endpoint information disclosure	low	🔒	-	-	-
201799	Siemens SINEMA Remote Connect Server Web Service access control	medium	🔒	-	-	-
201798	Siemens SINEMA Remote Connect Server HTTP POST Request log file	low	🔒	-	-	-
201797	Siemens SINEMA Remote Connect Server Update Package data authenticity	medium	🔒	-	-	-
201796	Siemens SINEMA Remote Connect Server missing authentication [CVE-2022-32251]	medium	🔒	-	-	-
201795	Siemens Teamcenter Java EE Server Manager HTML Adaptor hard-coded credentials	medium	🔒	-	-	-
201794	Siemens SICAM GridEdge Essential ARM origin validation [CVE-2022-30228]	medium	🔒	-	-	-
201793	Qualcomm Snapdragon Industrial IOT/Snapdragon Mobile RPM Secure Stream information disclosure	low	🔒	-	-	-
201792	Siemens SINEMA Remote Connect Server OpenSSL Certificate Password access control	medium	🔒	-	-	-
201791	Fast Food Ordering System view_menu.php sql injection	medium	🔒	-	-	-
201790	Piwigo cross site scripting [CVE-2021-40678]	low	🔒	-	-	-
201789	Mobaoku-Auction&Flea Market certificate validation [CVE-2022-29482]	medium	🔒	-	-	-
201788	NocoDB cross site scripting [CVE-2022-2079]	low	🔒	-	-	-
201787	RevoWorks SCVX/Browser/Desktop Macro Remote Code Execution [CVE-2022-27176]	medium	🔒	-	-	-
201786	Fuji Electric V-SFT Simulator Module uninitialized pointer [CVE-2022-29925]	medium	🔒	-	-	-
201785	Fuji Electric V-Server/V-Server Lite Image File out-of-bounds write	medium	🔒	-	-	-
201784	Fuji Electric V-SFT Simulator Module use after free [CVE-2022-29522]	medium	🔒	-	-	-
201783	Fuji Electric V-SFT Simulator Module out-of-bounds [CVE-2022-29506]	low	🔒	-	-	-
201782	Fuji Electric V-SFT Simulator Module heap-based overflow [CVE-2022-26302]	medium	🔒	-	-	-
201781	Shirasagi cross site scripting [CVE-2022-29485]	low	🔒	-	-	-
201780	T&D Data Server/Thermo Recorder Data Server pathname traversal	medium	🔒	-	-	-
201779	Apache Flume JMS Source injection [CVE-2022-25167]	medium	🔒	-	-	-
201778	Magicpin SVG File xml external entity reference [CVE-2022-31447]	low	🔒	-	-	-
201777	XFCE Desktop File Privilege Escalation [CVE-2022-32278]	low	🔒	-	-	-
201776	Couchbase Server information disclosure [CVE-2022-32192]	low	🔒	-	-	-
201775	Electron data authenticity [CVE-2022-29257]	medium	🔒	-	-	-
201774	Couchbase Server information disclosure [CVE-2022-32193]	low	🔒	-	-	-
201773	Argo Events HandleRoute Endpoint ioutil.ReadAll resource consumption	low	🔒	-	-	-
201772	Electron exposure of resource [CVE-2022-29247]	low	🔒	-	-	-
201771	Huawei CV81-WDM denial of service [CVE-2022-29798]	low	🔒	-	-	-
201770	Huawei CV81-WDM buffer overflow [CVE-2022-29797]	medium	🔒	-	-	-
201769	Huawei FLMG-10 improper authentication [CVE-2022-22259]	medium	🔒	-	-	-
201768	Invision Power Services Community Suite phar Protocol server-side request forgery	medium	🔒	-	-	-
201767	Couchbase Server Backup Service Log information disclosure [CVE-2022-32565]	low	🔒	-	-	-
201766	Couchbase Server couchbase-cli information disclosure [CVE-2022-32564]	low	🔒	-	-	-
201765	Couchbase Server XDCR Privilege Escalation [CVE-2022-32560]	low	🔒	-	-	-
201764	Couchbase Server Sample Bucket Loader information disclosure	low	🔒	-	-	-
201763	Biscuit signature verification [CVE-2022-31053]	medium	🔒	-	-	-
201762	Powertek PDU HTTP API get_param.cgi permission	medium	🔒	-	-	-
201761	Powertek PDU Web Interface get_param.cgi authorization	medium	🔒	-	-	-
201760	Huawei HarmonyOS Bone Voice ID TA Privilege Escalation [CVE-2021-40036]	medium	🔒	-	-	-
201759	Couchbase Server RBAC permission [CVE-2022-32562]	medium	🔒	-	-	-
201758	Tenda AC18 WriteFacMac Privilege Escalation	medium	🔒	-	-	-
201757	MiniCMS Article post-edit.php cross site scripting	low	🔒	-	-	-
201756	oretnom23 Online Fire Reporting System GET Parameter list.php sql injection	medium	🔒	-	-	-
201755	Church Management System Avatar Image uploads unrestricted upload	medium	🔒	-	-	-
201754	Sourcecodester South Gate Inn Online Reservation System File editImg sql injection	medium	🔒	-	-	-
201753	Elementor Website Builder Plugin cross site scripting [CVE-2022-29455]	low	🔒	-	-	-
201752	flatCore-CMS Create New Page cross site scripting [CVE-2021-40902]	low	🔒	-	-	-
201751	Helpdeskz email-addresses cross site scripting	low	🔒	-	-	-
201750	Helpdeskz custom-fields cross site scripting	low	🔒	-	-	-
201749	neorazorx facturascripts cross site scripting [CVE-2022-2066]	low	🔒	-	-	-
201748	neorazorx facturascripts cross site scripting [CVE-2022-2065]	low	🔒	-	-	-
201747	Jupiter Theme/JupiterX Core Plugin abb_uninstall_template privileges management	medium	🔒	-	-	-
201746	Huawei Smart Phone Secure OS Module information disclosure [CVE-2022-31761]	low	🔒	-	-	-
201745	Huawei HarmonyOS Dialog Box improper restriction of rendered ui layers	medium	🔒	-	-	-
201744	Huawei HarmonyOS Setting Module information disclosure [CVE-2022-31757]	low	🔒	-	-	-
201743	Huawei Smart Phone denial of service [CVE-2022-31754]	low	🔒	-	-	-
201742	Huawei HarmonyOS Wakeup Module format string [CVE-2022-31753]	medium	🔒	-	-	-
201741	Huawei Smart Phone authorization [CVE-2022-31752]	low	🔒	-	-	-
201740	kCTF set-src-ip-ranges access control [CVE-2022-31055]	medium	🔒	-	-	-
201739	Amodat Mobile Application Gateway Admin Panel sql injection [CVE-2022-23169]	medium	🔒	-	-	-
201738	Amodat Mobile Application Gateway Login Panel sql injection [CVE-2022-23168]	medium	🔒	-	-	-
201737	Amodat Mobile Application Gateway GET Request downloadfile.aspx path traversal	low	🔒	-	-	-
201736	Huawei HarmonyOS Secure OS Module denial of service [CVE-2021-46815]	low	🔒	-	-	-
201735	Huawei Smart Phone ChinaDRM Module denial of service [CVE-2021-46813]	low	🔒	-	-	-
201734	Huawei HarmonyOS Multi-Device Interaction unknown vulnerability	low	🔒	-	-	-
201733	Huawei HarmonyOS AMS Module input validation [CVE-2022-31762]	medium	🔒	-	-	-
201732	Huawei HarmonyOS AppLink uninitialized pointer [CVE-2022-31759]	medium	🔒	-	-	-
201731	Huawei HarmonyOS Fingerprint Sensor Module information disclosure	low	🔒	-	-	-
201730	Huawei HarmonyOS Communication Module permissions [CVE-2022-31755]	medium	🔒	-	-	-
201729	NAVER Cloud Explorer privileges management [CVE-2022-24077]	medium	🔒	-	-	-
201728	Huawei HarmonyOS Video Framework out-of-bounds [CVE-2021-46814]	low	🔒	-	-	-
201727	Open Forms File Name Extension Parser unrestricted upload [CVE-2022-31041]	medium	🔒	-	-	-
201726	Open Forms redirect [CVE-2022-31040]	medium	🔒	-	-	-
201725	RosarioSIS sql injection [CVE-2022-2067]	medium	🔒	-	-	-
201724	NocoDB session expiration [CVE-2022-2064]	low	🔒	-	-	-
201723	NocoDB privileges management [CVE-2022-2063]	medium	🔒	-	-	-
201722	NocoDB information disclosure [CVE-2022-2062]	low	🔒	-	-	-
201721	Huawei HarmonyOS Card Production Life Cycle permission [CVE-2021-46811]	low	🔒	-	-	-
201720	Huawei HarmonyOS Kernel Module null pointer dereference [CVE-2022-31763]	low	🔒	-	-	-
201719	Huawei HarmonyOS Kernel Module race condition [CVE-2022-31758]	low	🔒	-	-	-
201718	Huawei HarmonyOS emcom Module denial of service [CVE-2022-31751]	low	🔒	-	-	-
201717	Festo Controller CECC-X-M1 POST Request os command injection	high	🔒	-	-	-
201716	Festo Controller CECC-X-M1 POST Request os command injection	high	🔒	-	-	-
201715	Festo Controller CECC-X-M1 POST Request os command injection	high	🔒	-	-	-
201714	Festo Controller CECC-X-M1 POST Request os command injection	high	🔒	-	-	-
201713	Node.js npm information disclosure [CVE-2022-29244]	low	🔒	-	-	-
201712	hpjansson chafa heap-based overflow [CVE-2022-2061]	medium	🔒	-	-	-
201711	Quick Subscribe Plugin Setting cross-site request forgery [CVE-2022-1792]	low	🔒	-	-	-
201710	Sideblog Plugin Setting cross-site request forgery [CVE-2022-1787]	low	🔒	-	-	-
201709	postTabs Plugin Setting cross-site request forgery [CVE-2022-1781]	low	🔒	-	-	-
201708	LaTeX for Plugin cross-site request forgery [CVE-2022-1780]	low	🔒	-	-	-
201707	WP-chgFontSize Plugin Setting cross-site request forgery [CVE-2022-1764]	low	🔒	-	-	-
201706	Static Page eXtended Plugin Setting cross-site request forgery	low	🔒	-	-	-
201705	RB Internal Links Plugin Setting cross-site request forgery [CVE-2022-1759]	low	🔒	-	-	-
201704	Mobile Browser Color Select Plugin admin_update_data cross-site request forgery	low	🔒	-	-	-
201703	Keep Backup Daily Plugin cross site scripting [CVE-2022-1820]	low	🔒	-	-	-
201702	Sticky Popup Plugin cross site scripting [CVE-2022-1750]	low	🔒	-	-	-
201701	ToolBar to Share Plugin plugin_toolbar_comparte Page cross-site request forgery	low	🔒	-	-	-
201700	Copify Plugin CopifySettings Page cross-site request forgery	low	🔒	-	-	-
201699	Zephyr Project Manager Plugin cross site scripting [CVE-2022-1822]	low	🔒	-	-	-
201698	WP Admin Style Plugin cross site scripting [CVE-2022-1814]	low	🔒	-	-	-
201697	Private Files Plugin cross-site request forgery [CVE-2022-1793]	low	🔒	-	-	-
201696	One Click Plugin Updater Plugin Setting cross-site request forgery	low	🔒	-	-	-
201695	New User Email Set Up Plugin Setting cross-site request forgery	low	🔒	-	-	-
201694	Change Uploaded File Permissions Plugin File Permission cross-site request forgery	low	🔒	-	-	-
201693	Auto Delete Posts Plugin Setting cross-site request forgery [CVE-2022-1779]	low	🔒	-	-	-
201692	WP Athletics Plugin Admin Page cross site scripting [CVE-2022-1773]	low	🔒	-	-	-
201691	Hot Linked Image Cacher Plugin cross-site request forgery [CVE-2022-1765]	low	🔒	-	-	-
201690	Peters Collaboration E-mails Plugin cross-site request forgery	low	🔒	-	-	-
201689	Newsletter Plugin cross site scripting [CVE-2022-1756]	low	🔒	-	-	-
201688	Simple Membership Plugin AJAX Action cross site scripting [CVE-2022-1724]	low	🔒	-	-	-
201687	Appointment Hour Booking Plugin Setting cross site scripting	low	🔒	-	-	-
201686	Latest Tweets Widget Plugin cross-site request forgery [CVE-2022-1624]	low	🔒	-	-	-
201685	Webriti SMTP Mail Plugin Setting cross-site request forgery [CVE-2022-1612]	low	🔒	-	-	-
201684	OnePress Social Locker Plugin cross-site request forgery [CVE-2022-1608]	low	🔒	-	-	-
201683	Email Users Plugin Notification cross-site request forgery [CVE-2022-1605]	low	🔒	-	-	-
201682	MailerLite Plugin cross site scripting [CVE-2022-1604]	low	🔒	-	-	-
201681	HC Custom WP-Admin URL Plugin Setting cross-site request forgery	low	🔒	-	-	-
201680	SAP NetWeaver EP Web Page Composer server-side request forgery	low	🔒	-	-	-
201679	Mitsol Social Post Feed Plugin cross site scripting [CVE-2022-0209]	low	🔒	-	-	-
201678	JupiterX Core Configuration class-condition-manager.php jupiterx_conditional_manager access control	medium	🔒	-	-	-
201677	Jupiter Theme AJAX Action plugin-management.php abb_remove_plugin access control	medium	🔒	-	-	-
201676	Jupiter Theme/JupiterX Theme AJAX Action jupiterx_cp_load_pane_action path traversal	medium	🔒	-	-	-
201675	WPMK Ajax Finder Plugin create-plugin-config.php createplugin_atf_admin_setting_page cross-site request forgery	low	🔒	-	-	-
201674	RSVPMaker Plugin rsvpmaker-email.php sql injection	medium	🔒	-	-	-
201673	Google Tag Manager Plugin frontend.php cross site scripting	low	🔒	-	-	-
201672	WP Athletics Plugin Admin Dashboard cross site scripting [CVE-2022-1549]	low	🔒	-	-	-
201671	Themify Plugin Admin Page cross site scripting [CVE-2022-1532]	low	🔒	-	-	-
201670	Carousel CK Plugin Slide Description cross site scripting [CVE-2022-1336]	low	🔒	-	-	-
201669	Slideshow CK Plugin Description cross site scripting [CVE-2022-1335]	low	🔒	-	-	-
201668	Ultimate Member Plugin User Profile cross site scripting [CVE-2022-1208]	low	🔒	-	-	-
201667	Advanced Admin Search Plugin Admin Page cross site scripting	low	🔒	-	-	-
201666	Adobe Media Encoder M4A File buffer overflow [CVE-2021-46818]	medium	🔒	-	-	-
201665	Adobe Media Encoder M4A File buffer overflow [CVE-2021-46817]	medium	🔒	-	-	-
201664	Adobe Premiere Pro M4A File buffer overflow [CVE-2021-46816]	medium	🔒	-	-	-
201663	Enqueue Anything Plugin AJAX Action remove_asset authorization	low	🔒	-	-	-
201662	Export any WordPress data to XML-CSV Plugin POST Parameter sql injection	medium	🔒	-	-	-
201661	Filr Plugin authorization [CVE-2022-1777]	medium	🔒	-	-	-
201660	iQ Block Country Plugin HTTP Header authorization [CVE-2022-1762]	medium	🔒	-	-	-
201659	Genki Pre-Publish Reminder Plugin cross-site request forgery	low	🔒	-	-	-
201658	HC Custom WP-Admin URL Plugin Secret Login URL information disclosure	low	🔒	-	-	-
201657	Log WP_Mail Plugin Email information disclosure [CVE-2022-1412]	low	🔒	-	-	-
201656	WP-CRM Plugin csv injection [CVE-2022-1202]	medium	🔒	-	-	-
201655	Bestbooks Plugin sql injection [CVE-2022-0827]	medium	🔒	-	-	-
201654	KiviCare Plugin AJAX Action ajax_post sql injection	medium	🔒	-	-	-
201653	Like Button Rating Plugin Email authorization [CVE-2022-0745]	low	🔒	-	-	-
201652	Useful Banner Manager Plugin POST Request cross-site request forgery	low	🔒	-	-	-
201651	Google Places Reviews Plugin Google API Key Setting cross site scripting	low	🔒	-	-	-
201650	JupiterX Theme ajax.php jupiterx_api_ajax_ access control	medium	🔒	-	-	-
201649	Download Manager Plugin shortcode-iframe.php cross site scripting	low	🔒	-	-	-
201648	Member Hero Plugin Request Parameter code injection [CVE-2022-0885]	medium	🔒	-	-	-
201647	WP SVG Icons Plugin Custom Icon Pack code injection [CVE-2022-0863]	medium	🔒	-	-	-
201646	Google Tag Manager Plugin frontend.php cross site scripting	low	🔒	-	-	-
201645	Dolibarr cross site scripting [CVE-2022-2060]	low	🔒	-	-	-
201644	Strapi File Upload cross site scripting [CVE-2022-29894]	low	🔒	-	-	-
201643	WP Statistics Platform Parameter cross site scripting [CVE-2022-27231]	low	🔒	-	-	-
201642	OTRS Request New Password information disclosure [CVE-2022-32741]	low	🔒	-	-	-
201641	OTRS Forwarder information disclosure [CVE-2022-32740]	low	🔒	-	-	-
201640	OTRS System Configuration DisableBanner information disclosure	low	🔒	-	-	-
201639	Easy Blog cross-site request forgery [CVE-2022-27174]	low	🔒	-	-	-
201638	Rakuten Casa HTTP Connection access control [CVE-2022-26834]	medium	🔒	-	-	-
201637	Generex RCCMD pathname traversal [CVE-2022-26041]	low	🔒	-	-	-
201636	Rakuten Casa hard-coded credentials [CVE-2022-29525]	high	🔒	-	-	-
201635	Rakuten Casa improper authentication [CVE-2022-28704]	high	🔒	-	-	-
201634	Apache Hadoop libhdfs heap-based overflow [CVE-2021-37404]	medium	🔒	-	-	-
201633	Octopus Server Script Console access control [CVE-2022-2013]	medium	🔒	-	-	-
201632	nuitka command injection [CVE-2022-2054]	medium	🔒	-	-	-
201631	Deno Deno.symlink	medium	🔒	-	-	-
201630	Nystudio107 SEOmatic Plugin Base64 Encoded URL cross site scripting	low	🔒	-	-	-
201629	Nystudio107 SEOmatic Plugin Template injection [CVE-2021-41749]	medium	🔒	-	-	-
201628	Intelliants Subrion CMS Image cross site scripting [CVE-2021-41502]	low	🔒	-	-	-
201627	ZeroShell kerbynet os command injection	medium	🔒	-	-	-
201626	Lighttpd Header connections.c connection_read_header_more resource consumption	low	🔒	-	-	-
201625	GUnet Open eClass formuser.php cross site scripting	low	🔒	-	-	-
201624	Google Chrome ANGLE use after free [CVE-2022-2011]	medium	🔒	-	-	-
201623	Google Chrome Compositing out-of-bounds [CVE-2022-2010]	medium	🔒	-	-	-
201622	Google Chrome WebGL out-of-bounds [CVE-2022-2008]	medium	🔒	-	-	-
201621	Google Chrome WebGPU use after free [CVE-2022-2007]	medium	🔒	-	-	-
201620	Daylight Studio Fuel CMS 4 cross-site request forgery	low	🔒	-	-	-
201619	gatsby-plugin-mdx gray-matter deserialization [CVE-2022-25863]	medium	🔒	-	-	-
201618	Dell SupportAssist Client Consumer path traversal [CVE-2022-29094]	medium	🔒	-	-	-
201617	Dell SupportAssist Client Consumer path traversal [CVE-2022-29093]	medium	🔒	-	-	-
201616	Dell SupportAssist Client Consumer uncontrolled search path [CVE-2022-29092]	medium	🔒	-	-	-
201615	jpeg-js infinite loop [CVE-2022-25851]	low	🔒	-	-	-
201614	convert-svg-core SVG File code injection [CVE-2022-24429]	medium	🔒	-	-	-
201613	git-promise command injection [CVE-2022-24376]	medium	🔒	-	-	-
201612	convert-svg-core SVG Tag pathname traversal [CVE-2022-24278]	medium	🔒	-	-	-
201611	posix toString resource consumption [CVE-2022-21211]	low	🔒	-	-	-
201610	vim use after free	medium	🔒	-	-	-
201609	Netwave IP Camera Network Configuration kcore information disclosure	low	🔒	-	-	-
201608	Lepin EP-KP001 improper authentication [CVE-2022-29948]	medium	🔒	-	-	-
201607	libjpeg Empty JPEG-LS Scan singlecomponentlsscan.cpp ParseMCU assertion	low	🔒	-	-	-
201606	IdeaLMS sql injection [CVE-2022-31788]	medium	🔒	-	-	-
201605	Dell SupportAssist Client Consumer cross site scripting [CVE-2022-29095]	low	🔒	-	-	-
201604	RealVNC VNC Server Installer Repair access control [CVE-2022-27502]	medium	🔒	-	-	-
201603	Alibaba Fastjson deserialization [CVE-2022-25845]	medium	&