CVE-2026-22557

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in the UniFi Network Application to access files on the underlying system that could be manipulated to access an underlying account...

CVE-2026-22557

CVE-2026-22557 affects UniFi Network Application. A pre-auth path traversal in the guest portal (URL pattern /guest/s/{site}/login) allows an unauthenticated attacker to cause a resource loader to read files from the underlying system (e.g., WEB-INF/web.xml) due to unvalidated input. An exploit P...

CVE-2026-22557

creationtimestamp| type| source ---|---|--- 2026-03-18 22:22:01+00:00| seen| https://bsky.app/profile/intcyberdigest.bsky.social/post/3mhejkrgswx2r 2026-03-19 00:20:06+00:00| seen| https://social.tchncs.de/users/gborn/statuses/116252973855800040 2026-03-19 16:20:22+00:00| seen|...

CVE-2021-22557

SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173...

CVE-2025-22557 WordPress News Publisher Autopilot plugin <= 2.1.4 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in cdowp News Publisher Autopilot wpm-news-api allows Cross Site Request Forgery.This issue affects News Publisher Autopilot: from n/a through = 2.1.4...

CVE-2025-22557

CVE-2025-22557 affects News Publisher Autopilot. A CSRF vulnerability can lead to stored XSS; impact described as Cross-Site Forgery to Stored Cross-Site Scripting. Affected versions are up to 2.1.4 (from n/a through 2.1.4). The entry cites ongoing risk with Unpatched status in related feeds. No ...

CVE-2025-22557 WordPress News Publisher Autopilot plugin <= 2.1.4 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in WPMagic News Publisher Autopilot allows Cross Site Request Forgery.This issue affects News Publisher Autopilot: from n/a through 2.1.4...

CVE-2022-22557

creationtimestamp| type| source ---|---|--- 2022-06-03 00:25:55+00:00| seen| https://t.me/cibsecurity/43780...

CVE-2022-22557

Dell PowerStore X & T appliances (PowerStore) are affected by CVE-2022-22557, with vulnerable components involving plain-text password storage in versions 2.0.0.x and 2.0.1.x. The issue enables a locally authenticated attacker to disclose certain user credentials, who may use exposed credentials ...

Google SLO-Generator 2.0.0 - Code Execution Vulnerability

Exploit Title: Google SLO-Generator 2.0.0 - Code Execution Exploit Author: Kiran Ghimire Software Link: https://github.com/google/slo-generator/releases Version: = 2.0.0 Tested on: Linux CVE: CVE-2021-22557 Introduction: Is a tool to compute and export Service Level Objectives SLOs, Error Budgets...

CVE-2021-22557

creationtimestamp| type| source ---|---|--- 2021-10-04 14:18:29+00:00| published-proof-of-concept| https://t.me/cibsecurity/29853 2021-10-07 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/50385...

CVE-2021-22557

SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173...

CVE-2021-22557

SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173...

CVE-2021-22557

CVE-2021-22557 affects Google’s SLO Generator. The issue arises from loading YAML files in the SLO Generator in a way that, with crafted formatting, can lead to code execution within the tool’s context. Public references and exploits (e.g., Exploit-DB entry for Google SLO-Generator 2.0.0) corrobo...

CVE-2021-22557 Code execution in SLO Generator via YAML Payload

SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173...

Fedora Update for nbd FEDORA-2013-22557

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...