CVE-2026-22567

creationtimestamp| type| source ---|---|--- 2026-02-23 17:55:33+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfk7x42lh62s 2026-02-26 19:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfruxlj6w723...

CVE-2026-22567

Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios...

CVE-2026-22567

CVE-2026-22567 concerns ZIA Admin UI input validation. The issue allows an authenticated administrator to trigger backend functions via specific input fields in limited scenarios due to improper input validation. Reported CVSS 3.1 base score 7.6 (HIGH) with NETWORK attack vector, HIGH privileges ...

CVE-2024-22567

File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do...

CVE-2025-22567

creationtimestamp| type| source ---|---|--- 2025-01-13 14:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfmwedkq4h2f 2025-01-13 16:14:15+00:00| seen| https://t.me/cvedetector/15143 2025-01-13 16:16:52+00:00| seen|...

CVE-2025-22567

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in trustist TRUSTist REVIEWer trustist-reviewer allows Reflected XSS.This issue affects TRUSTist REVIEWer: from n/a through = 2.0...

CVE-2025-22567 WordPress TRUSTist REVIEWer Plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in trustist TRUSTist REVIEWer trustist-reviewer allows Reflected XSS.This issue affects TRUSTist REVIEWer: from n/a through = 2.0...

CVE-2025-22567

The CVE-2025-22567 entry maps to a Reflected XSS in TRUSTist REVIEWer (trustist-reviewer). The Red Hat entry confirms the vulnerability exists in TRUSTist REVIEWer up to version 2.0 and labels it as improper neutralization of input during web page generation, enabling cross-site scripting. No det...

CVE-2025-22567 WordPress TRUSTist REVIEWer Plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in trustist TRUSTist REVIEWer allows Reflected XSS.This issue affects TRUSTist REVIEWer: from n/a through 2.0...

CVE-2024-22567

creationtimestamp| type| source ---|---|--- 2024-02-05 21:31:20+00:00| seen| https://t.me/ctinow/179516 2024-02-14 23:16:35+00:00| seen| https://t.me/ctinow/185106 2024-02-29 11:27:00+00:00| seen| https://t.me/ctinow/196520 2024-03-28 15:27:46+00:00| published-proof-of-concept|...

CVE-2024-22567

Summary (CVE-2024-22567): A file-upload vulnerability in MCMS 5.3.5 allows an attacker to upload arbitrary files via a crafted POST to /ms/file/upload.do. The issue is documented across multiple sources (Red Hat, Veracode, GitHub advisory, OSV and others) and is rated with high impact (confidenti...

CVE-2024-22567

File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do...

CVE-2023-37289

It is identified a vulnerability of Unrestricted Upload of File with Dangerous Type in the file uploading function in InfoDoc Document On-line Submission and Approval System, which allows an unauthenticated remote attacker can exploit this vulnerability without logging system to upload and run...

CVE-2023-37289

It is identified a vulnerability of Unrestricted Upload of File with Dangerous Type in the file uploading function in InfoDoc Document On-line Submission and Approval System, which allows an unauthenticated remote attacker can exploit this vulnerability without logging system to upload and run...

Design/Logic Flaw

It is identified a vulnerability of Unrestricted Upload of File with Dangerous Type in the file uploading function in InfoDoc Document On-line Submission and Approval System, which allows an unauthenticated remote attacker can exploit this vulnerability without logging system to upload and run...

CVE-2023-37289

This CVE (CVE-2023-37289) affects InfoDoc Document On-line Submission and Approval System (versions 22547, 22567) and concerns an Unrestricted Upload of File with Dangerous Type in the file uploading function. The root cause is a permissive file upload mechanism that allows an unauthenticated rem...

PT-2023-25886 · Unknown · Infodoc Document On-Line Submission/Approval System

Name of the Vulnerable Software and Affected Versions: InfoDoc Document On-line Submission and Approval System versions 22547, 22567 Description: The issue is related to an Unrestricted Upload of File with Dangerous Type in the file uploading function. This allows an unauthenticated remote attack...

CVE-2022-22567

Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware...

CVE-2022-22567

CVE-2022-22567 affects Dell Client Commercial (and Consumer) platforms and is caused by insufficient verification of data authenticity, enabling an authenticated attacker to install modified BIOS firmware. The connected records confirm the vulnerability targets Dell client platforms and involve B...

CVE-2021-22567

creationtimestamp| type| source ---|---|--- 2022-01-05 14:40:40+00:00| seen| https://t.me/cibsecurity/34973 2025-04-21 14:01:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12645...