CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AlpineLinux•added 2022/08/15 12:0 a.m.•50 views

CVE-2022-2817

Use After Free in GitHub repository vim/vim prior to 9.0.0213...

7.8CVSS7.8AI score0.00498EPSS

Cvelist•added 2022/08/15 12:0 a.m.•20 views

CVE-2022-2816 Out-of-bounds Read in vim/vim

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212...

7.8CVSS7.9AI score0.00513EPSS

Exploits1References4

Debian CVE•added 2022/08/15 12:0 a.m.•36 views

CVE-2022-2816

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212...

7.8CVSS7.6AI score0.00513EPSS

Debian CVE•added 2022/08/15 12:0 a.m.•22 views

CVE-2022-2819

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0211...

7.8CVSS8AI score0.00536EPSS

Veracode•added 2022/08/12 7:12 a.m.•32 views

Out-of-bounds Write

vim:sid is vulnerable to denial of service. The vulnerability exists due to an out-of-bounds write in GitHub repository...

7.8CVSS7.4AI score0.01516EPSS

Exploits1References15Affected Software1

CVE•added 2022/08/11 10:45 a.m.•75 views

CVE-2022-2777

CVE-2022-2777 is a stored XSS in Microweber (microweber/microweber) prior to v1.3.1. The vulnerability affects the title parameter in the body of POST requests when creating/editing a category, allowing injection that is stored and rendered to other users. Multiple sources (NVD, OSV, CVE lists, a...

6.6CVSS5.4AI score0.00393EPSS

Cvelist•added 2022/08/11 10:45 a.m.•31 views

CVE-2022-2777 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.1...

6.6CVSS5.5AI score0.00393EPSS

Veracode•added 2022/08/11 3:52 a.m.•22 views

Denial Of Service (DoS)

vim is vulnerable to denial of service. It is possible to cause heap-based buffer overflow in GitHub repository which allows an attacker to crash the application by providing malicious input...

7.8CVSS7.7AI score0.0054EPSS

Exploits1References6Affected Software1

Prion•added 2022/08/10 4:15 p.m.•13 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF in GitHub repository kareadita/kavita prior to 0.5.4.1...

4CVSS6.5AI score0.02298EPSS

Cvelist•added 2022/08/10 3:15 p.m.•22 views

CVE-2022-2756 Server-Side Request Forgery (SSRF) in kareadita/kavita

Server-Side Request Forgery SSRF in GitHub repository kareadita/kavita prior to 0.5.4.1...

7.1CVSS6.7AI score0.02298EPSS

Tenable Nessus•added 2022/08/10 12:0 a.m.•44 views

Oracle Linux 9 : vim (ELSA-2022-5942)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-5942 advisory. - CVE-2022-1785 vim: Out-of-bounds Write - CVE-2022-1897 vim: out-of-bounds write in vimregsubboth in regexp.c Tenable has extracted the preceding...

7.8CVSS7.6AI score0.01601EPSS

Exploits3References4

NVD•added 2022/08/09 12:15 p.m.•18 views

CVE-2022-2731

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1...

6.1CVSS0.00461EPSS

NVD•added 2022/08/09 12:15 p.m.•26 views

CVE-2022-2733

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1...

9.6CVSS0.95839EPSS

Prion•added 2022/08/09 12:15 p.m.•10 views

Authorization

Missing Authorization in GitHub repository openemr/openemr prior to 7.0.0.1...

6.5CVSS8.3AI score0.00703EPSS

Prion•added 2022/08/09 12:15 p.m.•16 views

Authorization

Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1...

4CVSS6.5AI score0.00641EPSS

CVE•added 2022/08/09 12:6 p.m.•70 views

CVE-2022-2732

CVE-2022-2732 affects OpenEMR repository openemr/openemr prior to 7.0.0.1 due to Missing Authorization and improper privilege checks. The issue enables unauthorized users to create and edit amendments via interface/patient_file/summary/add_edit_amendments.php, compromising integrity and privacy a...

8.3CVSS8AI score0.00703EPSS

OSV•added 2022/08/09 12:5 p.m.•19 views

CVE-2022-2733 Cross-site Scripting (XSS) - Reflected in openemr/openemr

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1...

9.6CVSS8.4AI score0.95839EPSS

Exploits1References4

NVD•added 2022/08/08 3:15 p.m.•12 views

CVE-2022-2713

Insufficient Session Expiration in GitHub repository cockpit-hq/cockpit prior to 2.2.0...

9.8CVSS0.00956EPSS