Lucene search
K

18 matches found

Circl
Circl
added 2025/08/03 11:11 a.m.5 views

CVE-2023-22497

creationtimestamp| type| source ---|---|--- 2025-08-03 11:11:27+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/46406...

9.1CVSS7.6AI score0.0068EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2025/06/18 12:0 a.m.16 views

idm:DL1 security update

bind-dyndb-ldap 11.6-6 - Fix rpminspect warnings Resolves: RHEL-22497 custodia ipa 4.9.13-18.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.13-18 - Set krbCanonicalName admin@REALM on the admin user Resolves: RHEL-89895 4.9.13-17 - kdb: keeep ipadbgetconnection from...

9.1CVSS7.1AI score0.01827EPSS
Exploits1
Circl
Circl
added 2025/03/27 4:27 p.m.9 views

CVE-2025-22497

creationtimestamp| type| source ---|---|--- 2025-03-27 16:27:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9140...

6.5CVSS8.7AI score0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 3:31 p.m.17 views

CVE-2025-22497 WordPress Simple Google Calendar Outlook Events Block Widget plugin <= 2.5.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bramwaas Simple Google Calendar Outlook Events Block Widget simple-google-icalendar-widget allows Stored XSS.This issue affects Simple Google Calendar Outlook Events Block Widget: from n/a through ...

6.5CVSS0.00193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/27 3:31 p.m.7 views

CVE-2025-22497 WordPress Simple Google Calendar Outlook Events Block Widget plugin <= 2.5.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bramwaas Simple Google Calendar Outlook Events Block Widget simple-google-icalendar-widget allows Stored XSS.This issue affects Simple Google Calendar Outlook Events Block Widget: from n/a through ...

6.5CVSS8.6AI score0.00193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-22497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. Each Netdata Agent has an automatically generated MACHINE GUID. It...

9.1CVSS7.3AI score0.0068EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/18 2:5 a.m.60 views

Security Bulletin: IBM Aspera Faspex is vulnerable to exposing data improperly (CVE-2022-22497)

Summary IBM Aspera Faspex may be vulnerable to exposing data improperly CVE-2022-22497 due to an incorrectly computed security token. Vulnerability Details CVEID:CVE-2022-2497 DESCRIPTION: GitLab Community Edition and GitLab Enterprise Edition could allow a remote authenticated attacker to obtain...

8.5CVSS7.1AI score0.01105EPSS
Exploits0Affected Software1
Circl
Circl
added 2024/01/23 8:27 p.m.7 views

CVE-2024-22497

creationtimestamp| type| source ---|---|--- 2024-01-23 20:27:04+00:00| seen| https://t.me/ctinow/172277 2024-02-17 12:11:42+00:00| seen| https://t.me/ctinow/186886...

6.1CVSS6AI score0.00435EPSS
Exploits1References2
CVE
CVE
added 2024/01/23 12:0 a.m.223 views

CVE-2024-22497

CVE-2024-22497 : A cross-site scripting (XSS) vulnerability affects JFinalcms 5.0.0, arising from handling of the password parameter in the /admin/login route. Exploitation via crafted URLs may allow an attacker to run arbitrary code. Multiple feeds (NVD, Red Hat, Veracode, OSV, GHSA, CNNVD, CVE ...

6.1CVSS6.1AI score0.00435EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/14 1:2 a.m.7 views

CVE-2023-22497 Netdata is vulnerable to improper authentication

Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. Each Netdata Agent has an automatically generated MACHINE GUID. It is generated when the agent first starts and it is saved to disk, so that it will persist across restarts and reboots. Anyone who has...

6.5CVSS8AI score0.0068EPSS
Exploits1References2
CVE
CVE
added 2023/01/14 1:2 a.m.104 views

CVE-2023-22497

Netdata CVE-2023-22497 concerns a streaming configuration flaw where a valid MACHINE_GUID could be used as an API key in stream.conf, allowing non-trusted users to access parent/child Netdata Agents. Affects Netdata agents that expose streaming functionality; attacker could leverage this to acces...

9.1CVSS7.7AI score0.0068EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2022/05/25 2:42 a.m.10 views

CVE-2022-22497

creationtimestamp| type| source ---|---|--- 2022-05-25 02:42:26+00:00| seen| https://t.me/cibsecurity/43308...

7.5CVSS7.3AI score0.01105EPSS
Exploits0References1
OSV
OSV
added 2022/05/24 10:15 p.m.4 views

CVE-2022-22497

IBM Aspera Faspex 4.4.1 and 5.0.0 could allow unauthorized access due to an incorrectly computed security token. IBM X-Force ID: 226951...

7.5CVSS5.8AI score0.01105EPSS
Exploits0References2
NVD
NVD
added 2021/04/12 9:15 p.m.16 views

CVE-2021-22497

Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue...

7.2CVSS0.00761EPSS
Exploits0References1
OSV
OSV
added 2021/04/12 9:15 p.m.5 views

CVE-2021-22497

Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue...

7.2CVSS5.8AI score0.00761EPSS
Exploits0References1
CVE
CVE
added 2021/04/12 8:53 p.m.56 views

CVE-2021-22497

CVE-2021-22497 affects Advanced Authentication versions prior to 6.3 SP4 . The underlying issue is an improper session management that can lead to a potential broken authentication . According to the provided metrics, the CVSS v3.1 base score is 7.2 (HIGH) with a network attack vector and low att...

7.2CVSS5.6AI score0.00761EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/04/12 8:53 p.m.16 views

CVE-2021-22497 Advanced Authentication Improper Session Management

Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue...

3.8CVSS7.3AI score0.00761EPSS
Exploits0References1
Circl
Circl
added 2021/04/09 6:15 p.m.6 views

CVE-2021-22497

creationtimestamp| type| source ---|---|--- 2021-04-09 18:15:04+00:00| seen| https://t.me/cKure/4761...

7.2CVSS7AI score0.00761EPSS
Exploits0References1
Rows per page
Query Builder