CVE-2022-1244

heap-buffer-overflow in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is capable of inducing denial of service...

CVE-2022-0602

Cross-site Scripting XSS - DOM in GitHub repository tastyigniter/tastyigniter prior to 3.3.0...

CVE-2022-0602

Cross-site Scripting XSS - DOM in GitHub repository tastyigniter/tastyigniter prior to 3.3.0...

CVE-2022-0602 Cross-site Scripting (XSS) - DOM in tastyigniter/tastyigniter

Cross-site Scripting XSS - DOM in GitHub repository tastyigniter/tastyigniter prior to 3.3.0...

CVE-2022-1243

CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository medialize/uri.js prior to 1.19.11...

Cross site scripting

CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository medialize/uri.js prior to 1.19.11...

CVE-2022-1243

CVE-2022-1243 concerns the medialize/uri.js library. The issue, caused by CRHTLF, can lead to invalid protocol extraction and potential cross‑site scripting (XSS) when processing user‑supplied URLs in uri.js prior to version 1.19.11. The vulnerability affects medialize/uri.js used by projects suc...

CVE-2022-1243 CRHTLF can lead to invalid protocol extraction potentially leading to XSS in medialize/uri.js

CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository medialize/uri.js prior to 1.19.11...

CVE-2022-1236

Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0...

CVE-2022-1236 Weak Password Requirements in weseek/growi

Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0...

CVE-2022-1236 Weak Password Requirements in weseek/growi

Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0...

CVE-2022-1235

Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96...

CVE-2022-1235

The CVE-2022-1235 issue affects livehelperchat/livehelperchat prior to version 3.96, where a weak secrethash can be brute-forced. The secrethash consists of 10 hex characters, yielding 16^10 possibilities, enabling offline guessing of the secret (SHA1) and compromising security measures tied to t...

CVE-2022-1213

SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191...

CVE-2022-1213

SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191...

CVE-2022-1212

Use-After-Free in strescape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...

CVE-2022-1212 Use-After-Free in str_escape in mruby/mruby in mruby/mruby

Use-After-Free in strescape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...

CVE-2022-1213 SSRF filter bypass port 80, 433 in livehelperchat/livehelperchat

SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191...

Use-After-Free in str_escape in mruby/mruby in mruby/mruby

Use-After-Free in strescape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...

Design/Logic Flaw

URL Confusion When Scheme Not Supplied in GitHub repository medialize/uri.js prior to 1.19.11...