Lucene search
K

5 matches found

Circl
Circl
added 2022/07/01 7:23 p.m.7 views

CVE-2022-24108

creationtimestamp| type| source ---|---|--- 2022-07-01 19:23:44+00:00| seen| https://t.me/cibsecurity/42836...

9.8CVSS8.7AI score0.32961EPSS
Exploits3References1
CVE
CVE
added 2022/05/17 3:55 p.m.72 views

CVE-2022-24108

The CVE-2022-24108 entry concerns Skyoftech So Listing Tabs module version 2.2.0 for OpenCart. A remote attacker can inject a PHP-serialized object via the module’s setting parameter, which leads to deserialization of untrusted data. This can enable arbitrary file writes on the server, DoS, and r...

9.8CVSS9.8AI score0.32961EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2022/05/17 3:55 p.m.23 views

CVE-2022-24108

The Skyoftech So Listing Tabs module 2.2.0 for OpenCart allows a remote attacker to inject a serialized PHP object via the setting parameter, potentially resulting in the ability to write to files on the server, cause DoS, and achieve remote code execution because of deserialization of untrusted...

10AI score0.32961EPSS
Exploits3References4
0day.today
0day.today
added 2022/05/17 12:0 a.m.257 views

OpenCart So Listing Tabs 2.2.0 Unsafe Deserialization Vulnerability

Affected Versions: Version 2.2.0 is affected, and prior versions are likely affected too. - Vulnerabilities Description: Vulnerable component is switching to another tab. To exploit vulnerability, an attacker may send a POST request with application/x-www-form-urlencoded content-type to AJAX...

9.8CVSS0.32961EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/05/17 12:0 a.m.280 views

OpenCart So Listing Tabs 2.2.0 Unsafe Deserialization

Affected Versions: Version 2.2.0 is affected, and prior versions are likely affected too. - Vulnerabilities Description: Vulnerable component is switching to another tab. To exploit vulnerability, an attacker may send a POST request with application/x-www-form-urlencoded content-type to AJAX...

9.7AI score0.32961EPSS
Exploits3
Rows per page
Query Builder