CVE-2022-22284

Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication...

CVE-2020-22284

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

CVE-2025-22284

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in enituretechnology LTL Freight Quotes – Unishippers Edition ltl-freight-quotes-unishippers-edition allows Reflected XSS.This issue affects LTL Freight Quotes – Unishippers Edition: from n/a through ...

CVE-2025-22284

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in enituretechnology LTL Freight Quotes – Unishippers Edition ltl-freight-quotes-unishippers-edition allows Reflected XSS.This issue affects LTL Freight Quotes – Unishippers Edition: from n/a through ...

CVE-2025-22284 WordPress LTL Freight Quotes – Unishippers Edition plugin <= 2.5.8 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in enituretechnology LTL Freight Quotes – Unishippers Edition ltl-freight-quotes-unishippers-edition allows Reflected XSS.This issue affects LTL Freight Quotes – Unishippers Edition: from n/a through ...

CVE-2025-22284

CVE-2025-22284: Reflected XSS in WordPress plugin LTL Freight Quotes – Unishippers Edition (enituretechnology) up to version 2.5.8. Root cause: improper input neutralization during web page generation. Affects the plugin on WordPress sites; impact includes potential leakage or manipulation of use...

CVE-2024-22284

Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects Asgaros Forum: from n/a through 2.7.2...

CVE-2024-22284

creationtimestamp| type| source ---|---|--- 2024-01-24 13:26:10+00:00| seen| https://t.me/ctinow/172740 2024-01-28 13:37:59+00:00| seen| https://t.me/arpsyndicate/3295 2024-02-17 21:51:48+00:00| seen| https://t.me/ctinow/187056...

CVE-2024-22284

CVE-2024-22284 affects Asgaros Forum (WordPress plugin) up to version 2.7.2. It is a deserialization of untrusted data (PHP Object Injection) vulnerability that is unauthenticated and network-exploitable. Patch: upgrade to 2.8.0. Exploit details in the provided documents are not described beyond ...

CVE-2024-22284 WordPress Asgaros Forum Plugin <= 2.7.2 is vulnerable to PHP Object Injection

Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects Asgaros Forum: from n/a through 2.7.2...

WordPress Asgaros Forum Plugin <= 2.7.2 is vulnerable to PHP Object Injection

Software Asgaros Forum Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.8.0 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-22284 Patch priority High CVSS severity High 8.7 Developer Claim ownership PSID 25fc365d9e34 Credits Le Ngoc Anh Required privilege...

CVE-2023-22284

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

CVE-2021-22284 SECURITY - OPC Server for AC 800M - Remote Code Execution Vulnerability

Incorrect Permission Assignment for Critical Resource vulnerability in OPC Server for AC 800M allows an attacker to execute arbitrary code in the node running the AC800M OPC Server...

CVE-2021-22284

Summary of CVE-2021-22284 (ABB OPC Server for AC 800M) Affected product: ABB OPC Server for AC 800M (versions in 5.x/6.x range affected; see advisories). Vulnerability: Incorrect Permission Assignment for Critical Resource, enabling an authenticated remote user with low privileges to insert and e...

CVE-2022-22284

CVE-2022-22284 describes an improper authentication vulnerability in Samsung Internet prior to version 16.0.2.19, enabling an attacker with local access to bypass the secret mode password authentication. Affected product is Samsung Internet (mobile browser); root cause is bypassing the secret mod...

CVE-2020-22284

creationtimestamp| type| source ---|---|--- 2021-07-23 00:36:51+00:00| seen| https://t.me/cibsecurity/26426...

CVE-2020-22284

The CVE-2020-22284 entry affects lwIP (Free Software Foundation) in git head and v2.1.2, where a buffer overflow in the zepif_linkoutput() function can be triggered by a crafted 6LoWPAN packet. This vulnerability could allow an attacker to access sensitive information as described in the NVD entr...

CVE-2018-6941

A /shell?cmd= CSRF issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with XSS...

CVE-2018-6941

A /shell?cmd= CSRF issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with XSS...

NAT32 2.2 Build 22284 - Cross-Site Request Forgery

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/NAT32-REMOTE-COMMAND-EXECUTION-CSRF-CVE-2018-6941.txt + ISR: Apparition Security -- D1rty0tis Vendor: ============= www.nat32.com Product: =========== NAT32 Build 22284 NAT32® is a...