MAL-2025-22339 Malicious code in hedgehog-aroma-swh506-project (npm)

The package hedgehog-aroma-swh506-project was found to contain malicious code...

CVE-2025-22339

creationtimestamp| type| source ---|---|--- 2025-01-07 11:18:11+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jnbo3zi2l 2025-01-07 13:02:14+00:00| seen| https://t.me/cvedetector/14521 2025-01-07 14:55:27+00:00| seen|...

CVE-2025-22339 WordPress Store Commerce theme <= 1.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in athemeart Store Commerce store-commerce allows DOM-Based XSS.This issue affects Store Commerce: from n/a through = 1.2.3...

CVE-2025-22339

CVE-2025-22339 describes a DOM-based XSS in Store Commerce (a ThemeArt Store Commerce component). Affected: Store Commerce Theme (WordPress). Technical detail from provided sources: vulnerability stems from improper neutralization of input during web page generation, enabling DOM-Based XSS. The i...

CVE-2025-22339 WordPress Store Commerce theme <= 1.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in athemeart Store Commerce store-commerce allows DOM-Based XSS.This issue affects Store Commerce: from n/a through = 1.2.3...

CVE-2024-22339 IBM UrbanCode Deploy information disclosure

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 is vulnerable to a sensitive information due to insufficient obfuscation of sensitive values from some log files. IBM X-Force ID: 279979...

CVE-2024-22339

CVE-2024-22339 affects IBM UrbanCode Deploy (UCD) and IBM DevOps Deploy, with the root cause being insufficient obfuscation of sensitive values in some log files, leading to potential sensitive information disclosure. Affected products and versions include: UCD 7.0–7.0.5.20, 7.1–7.1.2.16, 7.2–7.2...

GHSA-626R-CJ47-P49G Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability

Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability

Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

CVE-2024-23119

Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

CVE-2024-23119 Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability

Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

CVE-2024-23119 Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability

Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

CVE-2023-22339

creationtimestamp| type| source ---|---|--- 2023-01-20 07:22:12+00:00| seen| https://t.me/cibsecurity/56741...

CVE-2023-22339

Improper access control vulnerability in CONPROSYS HMI System CHS Ver.3.4.5 and earlier allows a remote unauthenticated attacker to bypass access restriction and obtain the server certificate including the private key of the product...

CVE-2023-22339

CONPROSYS HMI System (CHS) by Contec is affected by CVE-2023-22339 due to improper access control in 3.4.5 and earlier. This vulnerability could let a remote unauthenticated attacker bypass access restrictions and obtain the server certificate, including the private key. Affected versions: 3.4.5 ...

CVE-2022-22339

creationtimestamp| type| source ---|---|--- 2022-04-08 20:16:14+00:00| seen| https://t.me/cibsecurity/40389...

CVE-2022-22339

CVE-2022-22339 concerns IBM Planning Analytics 2.0 and is a server-side request forgery (SSRF) vulnerability. An authenticated attacker could issue unauthorized requests from the affected system, enabling network enumeration or facilitating other attacks. The bulletin indicates the vulnerability ...

CVE-2021-22339

There is a denial of service vulnerability in some versions of ManageOne. In specific scenarios, due to the insufficient verification of the parameter, an attacker may craft some specific parameter. Successful exploit may cause some services abnormal...

CVE-2021-22339

CVE-2021-22339 is a Denial-of-Service vulnerability in Huawei ManageOne . The issue arises from insufficient verification of a parameter, enabling an attacker to craft specific input that may cause some services to behave abnormally. Public references describe the impact (DoS) and Huawei’s respon...