CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6573 matches found

Cvelist•added 2022/07/25 1:43 p.m.•16 views

CVE-2022-2523 Cross-site Scripting (XSS) - Reflected in beancount/fava

Cross-site Scripting XSS - Reflected in GitHub repository beancount/fava prior to 1.22.2...

8CVSS6.2AI score0.00674EPSS

Exploits1References2

OSV•added 2022/07/25 1:43 p.m.•14 views

CVE-2022-2523 Cross-site Scripting (XSS) - Reflected in beancount/fava

Cross-site Scripting XSS - Reflected in GitHub repository beancount/fava prior to 1.22.2...

8CVSS7.4AI score0.00674EPSS

Exploits1References4

Debian CVE•added 2022/07/25 1:43 p.m.•36 views

CVE-2022-2523

Cross-site Scripting XSS - Reflected in GitHub repository beancount/fava prior to 1.22.2...

8CVSS6.6AI score0.00674EPSS

Exploits1

OSV•added 2022/07/25 12:0 a.m.•4 views

CVE-2022-2522 Heap-based Buffer Overflow in vim/vim

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061...

7.8CVSS7.9AI score0.0054EPSS

Exploits1References7

Debian CVE•added 2022/07/25 12:0 a.m.•31 views

CVE-2022-2522

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061...

7.8CVSS8.1AI score0.0054EPSS

Exploits1

ATTACKERKB•added 2022/07/22 3:15 p.m.•3 views

CVE-2022-2470

Cross-site Scripting XSS - Reflected in GitHub repository microweber/microweber prior to 1.2.21...

6.5CVSS6.6AI score0.00758EPSS

Exploits1References3

Cvelist•added 2022/07/22 2:24 p.m.•21 views

CVE-2022-2470 Cross-site Scripting (XSS) - Reflected in microweber/microweber

Cross-site Scripting XSS - Reflected in GitHub repository microweber/microweber prior to 1.2.21...

6.5CVSS6.2AI score0.00758EPSS

Exploits1References2

OSV•added 2022/07/22 2:24 p.m.•22 views

CVE-2022-2470 Cross-site Scripting (XSS) - Reflected in microweber/microweber

Cross-site Scripting XSS - Reflected in GitHub repository microweber/microweber prior to 1.2.21...

6.5CVSS6.7AI score0.00758EPSS

Exploits1References4

NVD•added 2022/07/22 4:15 a.m.•21 views

CVE-2022-2494

Cross-site Scripting XSS - Stored in GitHub repository openemr/openemr prior to 7.0.0...

6.3CVSS0.00518EPSS

Exploits1References2

Prion•added 2022/07/22 4:15 a.m.•12 views

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository openemr/openemr prior to 7.0.0...

4.9CVSS5.3AI score0.00518EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/07/22 3:48 a.m.•26 views

CVE-2022-2495 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.2.21...

6.8CVSS5.2AI score0.00537EPSS

Exploits1References2

CVE•added 2022/07/22 3:48 a.m.•86 views

CVE-2022-2495

Microweber (GitHub: microweber/microweber) is affected by a stored Cross-site Scripting (XSS) vulnerability arising in versions prior to 1.2.21. The issue stems from how SVG uploads are handled, allowing stored XSS when users upload SVG files. Multiple sources (CVE-2022-2495 records, CNVD-2022-54...

6.8CVSS5AI score0.00537EPSS

Exploits1References2Affected Software1

EUVD•added 2022/07/22 3:48 a.m.•3 views

EUVD-2022-34753

Cross-site Scripting XSS - Stored in GitHub repository openemr/openemr prior to 7.0.0...

6.3CVSS5.9AI score0.00518EPSS

Exploits1References2

Cvelist•added 2022/07/22 3:47 a.m.•12 views

CVE-2022-2493 Data Access from Outside Expected Data Manager Component in openemr/openemr

Data Access from Outside Expected Data Manager Component in GitHub repository openemr/openemr prior to 7.0.0...

8.3CVSS8.3AI score0.00883EPSS

Exploits2References2

CVE•added 2022/07/22 3:47 a.m.•68 views

CVE-2022-2493

CVE-2022-2493 affects OpenEMR prior to 7.0.0, where a missing functional-level access control allows non-privileged users to access administrator modules, enabling data access outside the expected Data Manager boundary. Reports and CVSS data confirm a HIGH-severity impact with confidentiality and...

8.3CVSS8.1AI score0.00883EPSS

Exploits2References2Affected Software1

Tenable Nessus•added 2022/07/21 12:0 a.m.•47 views

Amazon Linux 2 : vim (ALAS-2022-1829)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1829 advisory. Use after free in appendcommand in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote...

7.8CVSS7.3AI score0.02615EPSS

Exploits34References71

NVD•added 2022/07/19 2:15 p.m.•14 views

CVE-2022-2453

Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV...

7.8CVSS0.00353EPSS

Exploits1References2