📄 Bloomberg Memray Cross Site Scripting

Bloomberg Memray prior to versions 1.19.2 rendered the command line of the tracked process directly into generated HTML reports without escaping, allowing for cross site scripting attacks. CVE-2026-32722 Bloomberg Memray’s Stored XSS via Unescaped Command-Line Metadata Intro I found this issue...

arlbench (=0.1.3), backend-ai-appproxy-coordinator (>=25.13.0 <=26.4.4rc6) +3 more potentially affected by CVE-2026-32722 via memray (>=1.12.0 <=1.17.2)

memray PYPI version =1.12.0, =25.13.0, =25.13.0, =26.2.0, =26.4.4rc6 - feluda-image-vec-rep-resnet =0.1.0 Source cves: CVE-2026-32722 Source advisory: SNYK:PYTHON-MEMRAY-15763582...

arlbench (=0.1.3), backend-ai-appproxy-coordinator (>=25.13.0 <=26.4.4rc6) +3 more potentially affected by CVE-2026-32722 via memray (>=1.12.0 <=1.17.2)

memray PYPI version =1.12.0, =25.13.0, =25.13.0, =26.2.0, =26.4.4rc6 - feluda-image-vec-rep-resnet =0.1.0 Source cves: CVE-2026-32722 Source advisory: OSV:GHSA-R5PR-887V-M2W9...

CVE-2026-32722

creationtimestamp| type| source ---|---|--- 2026-03-13 22:01:26+00:00| published-proof-of-concept| https://github.com/bloomberg/memray/security/advisories/GHSA-r5pr-887v-m2w9 2026-03-20 09:00:06+00:00| seen| https://bsky.app/profile/concisecyber.bsky.social/post/3mhi5onwafp26...

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally...

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally...

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally...

CVE-2025-32722 Windows Storage Port Driver Information Disclosure Vulnerability

...

CVE-2025-32722

creationtimestamp| type| source ---|---|--- 2025-06-10 15:24:53+00:00| seen| https://www.thezdi.com/blog/2025/6/10/the-june-2025-security-update-review...

CVE-2021-32722

GlobalNewFiles is a mediawiki extension. Versions prior to 48be7adb70568e20e961ea1cb70904454a671b1d are affected by an uncontrolled resource consumption vulnerability. A large amount of page moves within a short space of time could overwhelm Database servers due to improper handling of load...

Linux Distros Unpatched Vulnerability : CVE-2023-32722

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The zabbix/src/libs/zbxjson module is vulnerable to a buffer overflow when parsing JSON files via zbxjsonopen. CVE-2023-32722 Note that Nessus relies on the...

CVE-2024-32722

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Coupon & Discount Code Reveal Button allows Stored XSS.This issue affects Coupon & Discount Code Reveal Button: from n/a through 1.2.5...

CVE-2024-32722

CVE-2024-32722 is a Stored XSS in the Coupon & Discount Code Reveal Button WordPress plugin, affecting versions from n/a through 1.2.5. CVSSv3.1 base score 5.9 (MEDIUM); impact is limited to confidentiality, integrity, and availability. Connected sources confirm the issue and affected range but d...

CVE-2023-32722

CVE-2023-32722 corresponds to a buffer overflow in the zabbix zbxjson module when parsing JSON via zbx_json_open. Reports from multiple sources confirm the issue affects Zabbix components and can lead to memory corruption, with Debian security advisories listing it among tracked CVEs for zabbix o...

CVE-2023-32722 Stack-buffer Overflow in library module zbxjson

The zabbix/src/libs/zbxjson module is vulnerable to a buffer overflow when parsing JSON files via zbxjsonopen...

CVE-2022-32722

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2022. Notes: none...

CVE-2021-32722

creationtimestamp| type| source ---|---|--- 2021-06-29 00:28:01+00:00| seen| https://t.me/cibsecurity/25764...

CVE-2021-32722

CVE-2021-32722 affects the MediaWiki extension GlobalNewFiles . Versions prior to 48be7adb70568e20e961ea1cb70904454a671b1d are vulnerable to an uncontrolled resource consumption vulnerability: a high volume of page moves in a short time can overwhelm the database server due to improper load balan...

CVE-2021-32722 Uncontrolled Resource Consumption in GlobalNewFiles

GlobalNewFiles is a mediawiki extension. Versions prior to 48be7adb70568e20e961ea1cb70904454a671b1d are affected by an uncontrolled resource consumption vulnerability. A large amount of page moves within a short space of time could overwhelm Database servers due to improper handling of load...

CVE-2021-32722

GlobalNewFiles is a mediawiki extension. Versions prior to 48be7adb70568e20e961ea1cb70904454a671b1d are affected by an uncontrolled resource consumption vulnerability. A large amount of page moves within a short space of time could overwhelm Database servers due to improper handling of load...