Lucene search
K

5 matches found

Circl
Circl
added 2022/08/29 10:34 p.m.5 views

CVE-2022-2034

creationtimestamp| type| source ---|---|--- 2022-08-29 22:34:24+00:00| seen| https://t.me/cibsecurity/49001...

5.3CVSS6AI score0.01868EPSS
Exploits2References1
OSV
OSV
added 2022/08/29 6:15 p.m.5 views

CVE-2022-2034

The Sensei LMS WordPress plugin before 4.5.0 does not have proper permissions set in one of its REST endpoint, allowing unauthenticated users to access private messages sent to teachers...

5.3CVSS6.7AI score
Exploits0References2
Cvelist
Cvelist
added 2022/08/29 2:40 p.m.23 views

CVE-2022-2034 Sensei LMS < 4.5.0 - Unauthenticated Private Messages Disclosure via Rest API

The Sensei LMS WordPress plugin before 4.5.0 does not have proper permissions set in one of its REST endpoint, allowing unauthenticated users to access private messages sent to teachers...

5.5AI score0.01868EPSS
Exploits2References2
CVE
CVE
added 2022/08/29 2:40 p.m.153 views

CVE-2022-2034

The CVE-2022-2034 issue affects the WordPress Sensei LMS plugin prior to 4.5.0. The root cause is improper permissions on a REST endpoint, allowing unauthenticated users to access private messages sent to teachers. The vulnerability results in an information disclosure risk, with no authenticatio...

5.3CVSS5.2AI score0.01868EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2022/07/13 6:27 p.m.63 views

CVE-2022-20234

CVE-2022-20234 affects Android 12L in the Car/AAOS context where the NotificationAccessConfirmationActivity is exported. An unprivileged app can supply a malicious component name while presenting a benign package title (e.g., Settings) to persuade users to grant notification access to the malicio...

7.5CVSS7.3AI score0.00309EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder