CVE-2021-22522

Reflected Cross-Site Scripting vulnerability in Micro Focus Verastream Host Integrator, affecting version version 7.8 Update 1 and earlier versions. The vulnerability could allow disclosure of confidential data...

CVE-2026-22522

creationtimestamp| type| source ---|---|--- 2026-01-08 18:14:37+00:00| seen| Telegram/xdg-QJnKsEB5s0EtEmLYsUys2VdWT9q-ssTNcLXUNMHZxI 2026-01-08 18:36:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbwmryfflk22 2026-01-09 09:18:02+00:00| seen|...

CVE-2026-22522

Missing Authorization vulnerability in Munir Kamal Block Slider block-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Block Slider: from n/a through = 2.2.3...

CVE-2025-22522

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in roya khosravi SingSong singsong allows Stored XSS.This issue affects SingSong: from n/a through = 1.2...

CVE-2025-22522

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in roya khosravi SingSong singsong allows Stored XSS.This issue affects SingSong: from n/a through = 1.2...

CVE-2025-22522 WordPress SingSong plugin <= 1.2 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in roya khosravi SingSong singsong allows Stored XSS.This issue affects SingSong: from n/a through = 1.2...

CVE-2025-22522 WordPress SingSong plugin <= 1.2 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in roya khosravi SingSong singsong allows Stored XSS.This issue affects SingSong: from n/a through = 1.2...

CVE-2025-22522

CVE-2025-22522 affects the WordPress SingSong plugin. The vulnerability is a Stored XSS caused by improper input handling during web page generation (stored cross-site scripting). Affected range is SingSong: from n/a through 1.2, per the CVE description. The connected Red Hat/Wordfence entries co...

CVE-2024-5242 TP-Link Omada ER605 Stack-based Buffer Overflow Remote Code Execution Vulnerability

TP-Link Omada ER605 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this vulnerability. However,...

CVE-2023-22522

CVE-2023-22522 is an RCE flaw in Atlassian Confluence Data Center and Server caused by a template injection vulnerability that lets an authenticated (including anonymous) attacker inject unsafe input into a Confluence page. Affected versions include Confluence Data Center/Server releases prior to...

RCE in Confluence Data Center and Server - CVE-2023-22522

h2. Summary of Vulnerability This Template Injection vulnerability allows an authenticated attacker, including one with anonymous access, to inject unsafe user input into a Confluence page. Using this approach, an attacker is able to achieve RCE on an affected instance. Confluence Data Center and...

CVE-2022-22522 Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device...

CVE-2022-22522 Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device...

CVE-2022-22522

CVE-2022-22522 affects Carlo Gavazzi UWP3.0 and CPY Car Park Server 2.8.3, where a remote, unauthenticated attacker could exploit hard-coded credentials to gain full access to the device. The vulnerability is described as trust/credential management issues enabling authentication bypass and full ...

CVE-2022-22522

creationtimestamp| type| source ---|---|--- 2022-09-27 19:26:31+00:00| seen| https://t.me/truesecator/3479 2022-09-28 09:09:47+00:00| seen| https://t.me/icscert/615 2022-09-28 18:34:14+00:00| seen| https://t.me/cibsecurity/50585...

CVE-2021-22522

creationtimestamp| type| source ---|---|--- 2021-07-22 16:36:24+00:00| seen| https://t.me/cibsecurity/26376...

CVE-2021-22522

Reflected Cross-Site Scripting vulnerability in Micro Focus Verastream Host Integrator, affecting version version 7.8 Update 1 and earlier versions. The vulnerability could allow disclosure of confidential data...

CVE-2021-22522

CVE-2021-22522 is a Reflected Cross-Site Scripting vulnerability reported in Micro Focus Verastream Host Integrator affecting versions 7.8 Update 1 and earlier . The issue could allow disclosure of confidential data. The connected sources confirm the basic vulnerability class and affected product...