20 matches found
CVE-2022-42218
Open Source SACCO Management System v1.0 vulnerable to SQL Injection via /saccoshield/manageloan.php...
AgileBits 1Password Auth Bypass (CVE-2024-42218) (macOS)
The version of AgileBits 1Password installed on the remote macOS or Mac OS X host is prior to 8.10.38. It is, therefore, affected by an authentication bypass vulnerability that allows local attackers to exfiltrate vault items by bypassing macOS-specific security mechanisms. Note that Nessus has n...
CVE-2024-42218
creationtimestamp| type| source ---|---|--- 2024-08-07 00:13:48+00:00| seen| https://t.me/cvedetector/2643 2024-08-10 21:41:30+00:00| seen| https://t.me/HackingInsights/9238 2024-08-11 18:35:03+00:00| seen| Telegram/pQVZZeEzZfGiAFwRw3mVANYQUfwf9un35kDc93HUP3y6RrSQ...
PT-2023-16031 · Synology · Synology Diskstation Manager
Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions 6.2.4-25556-7 and earlier, 7.0.1-42218-6 and earlier Synology DiskStation Manager DSM version 7.1-42660 and earlier Description: The issue allows remote authenticated users with administrator privileg...
CVE-2022-42218
creationtimestamp| type| source ---|---|--- 2022-10-19 02:14:29+00:00| seen| https://t.me/cibsecurity/51740 2025-05-13 14:30:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16120...
CVE-2022-42218
Open Source SACCO Management System v1.0 is affected by a SQL Injection vulnerability in /sacco_shield/manage_loan.php. The CVE-2022-42218 entry shows a high-severity issue (CVSS v3.1: 7.2) with Network attack vector, Low attack complexity, requiring HIGH privileges and no user interaction, impac...
CVE-2022-42218
Open Source SACCO Management System v1.0 vulnerable to SQL Injection via /saccoshield/manageloan.php...
PT-2022-18521 · Synology · Synology Diskstation Manager
Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 7.0.1-42218-3 Description: The issue is related to improper neutralization of special elements used in an OS command, also known as 'OS Command Injection'. This allows remote authenticated...
DEBIAN-CVE-2021-42218
OMPL v1.5.2 contains a memory leak in VFRRT.cpp...
CVE-2021-42218
CVE-2021-42218 applies to OMPL v1.5.2, with a memory leak in VFRRT.cpp. The connected sources consistently describe a memory leak in this file/version; no further details on root cause, affected subcomponents beyond VFRRT.cpp, exploitation, or fixes are provided in the documents. As a result, rem...
CVE-2021-42218
OMPL v1.5.2 contains a memory leak in VFRRT.cpp...
CVE-2022-22679
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in support service management in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote authenticated users to write arbitrary files via unspecified vectors...
PT-2022-15626 · Synology · Synology Diskstation Manager
Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 7.0.1-42218-2 Description: The issue allows remote attackers to obtain sensitive information via unspecified vectors, resulting in the exposure of sensitive information to unauthorized actors...
PT-2022-15624 · Synology · Synology Diskstation Manager
Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 7.0.1-42218-2 Description: The issue is related to an improper limitation of a pathname to a restricted directory, also known as 'Path Traversal'. This allows remote authenticated users to...
PT-2022-11936 · Synology · Synology Diskstation Manager
Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 7.0.1-42218-2 Description: The issue is related to improper neutralization of special elements used in an SQL command, also known as SQL Injection, in the Security Management functionality...
PT-2022-11935 · Synology · Synology Diskstation Manager
Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 7.0.1-42218-2 Description: The issue is related to improper neutralization of special elements used in an SQL command, also known as SQL Injection, in the Log Management functionality. This...
CVE-2022-22680
Exposure of sensitive information to an unauthorized actor vulnerability in Web Server in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote attackers to obtain sensitive information via unspecified vectors...
CVE-2021-43925
Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Log Management functionality in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote attackers to inject SQL commands via unspecified vectors...
CVE-2021-43926
Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Log Management functionality in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote attackers to inject SQL commands via unspecified vectors...
CVE-2022-22679
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in support service management in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote authenticated users to write arbitrary files via unspecified vectors...