CVE-2023-29622

Purchase Order Management v1.0 was discovered to contain a SQL injection vulnerability via the password parameter at /purchaseorder/admin/login.php...

MAL-2025-29622 Malicious code in prettier-config-data-ui (npm)

The package prettier-config-data-ui was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2022-29622

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute...

CVE-2023-29622

creationtimestamp| type| source ---|---|--- 2023-04-14 07:30:40+00:00| seen| https://t.me/cibsecurity/62108...

CVE-2023-29622

Purchase Order Management v1.0 was discovered to contain a SQL injection vulnerability via the password parameter at /purchaseorder/admin/login.php...

CVE-2023-29622

Purchase Order Management v1.0 was discovered to contain a SQL injection vulnerability via the password parameter at /purchaseorder/admin/login.php...

CVE-2023-29622

CVE-2023-29622 affects Purchase Order Management v1.0 via a SQL injection in /purchase_order/admin/login.php using the password parameter. Affected software/component: Purchase Order Management v1.0. Root cause: insufficient input sanitization leading to arbitrary SQL execution. Impact per source...

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring instances may be vulnerable to code injection due to CVE-2022-29622

Summary Node.js module formidable is used internally by IBM App Connect Enterprise Certified Container DesignerAuthoring operands. This bulletin provides patch information to address the reported vulnerability CVE-2022-29622 in Node.js module formidable. Vulnerability Details CVEID: CVE-2022-2962...

CVE-2021-29622 affecting package prometheus for versions less than 2.36.0-2

CVE-2021-29622 affecting package prometheus for versions less than 2.36.0-2. An upgraded version of the package is available that resolves this issue...

Exploit for Unrestricted Upload of File with Dangerous Type in Formidable_Project Formidable

CVE-2022–29622: Invulnerability Analysis This codebase was...

CVE-2022-29622

creationtimestamp| type| source ---|---|--- 2022-05-16 18:26:36+00:00| seen| https://t.me/cibsecurity/42743 2022-06-06 13:06:58+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2442 2024-04-23 19:14:34+00:00| seen| https://t.me/arpsyndicate/4766...

CVE-2022-29622

An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases in which uploading arbitrary files is the desired behavior. Also, there are...

CVE-2022-29622

CVE-2022-29622 affects the Node.js Formidable module (v3.1.4) via an arbitrary file upload vulnerability caused by improper validation of file extensions, enabling a crafted filename to execute code on vulnerable systems. Public details describe that some parties dispute the severity or validity ...

CVE-2022-29622

An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases in which uploading arbitrary files is the desired behavior. Also, there are...

CVE-2020-29622

creationtimestamp| type| source ---|---|--- 2021-10-19 18:33:11+00:00| seen| https://t.me/cibsecurity/30780...

CVE-2020-29622

CVE-2020-29622 describes a race condition in macOS Catalina’s kernel that can be triggered by mounting a maliciously crafted NFS network share, potentially allowing arbitrary code execution with system privileges. Apple fixed this via Security Update 2021-005 Catalina (kernel fix described in the...

Apple Mac OS X Security Update (HT212805)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : SUSE Manager Client Tools (openSUSE-SU-2021:1162-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1162-1 advisory. - Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning...

openSUSE: Security Advisory for golang-github-prometheus-prometheus (openSUSE-SU-2021:2664-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE 15 Security Update : SUSE Manager Client Tools (openSUSE-SU-2021:2675-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2675-1 advisory. - Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning...