CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2022/03/22 7:55 a.m.•104 views

CVE-2022-1034

CVE-2022-1034 affects ShowDoc

9.1CVSS7.1AI score0.01458EPSS

OSV•added 2022/03/22 7:55 a.m.•18 views

CVE-2022-1034 There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in star7th/showdoc

There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in GitHub repository star7th/showdoc prior to 2.10.4...

9.1CVSS8.1AI score0.01458EPSS

Cvelist•added 2022/03/22 12:0 a.m.•36 views

CVE-2022-24764 Stack buffer overflow in pjproject

PJSIP is a free and open source multimedia communication library written in C. Versions 2.12 and prior contain a stack buffer overflow vulnerability that affects PJSUA2 users or users that call the API pjmediasdpprint, pjmediasdpmediaprint. Applications that do not use PJSUA2 and do not directly...

7.5CVSS9AI score0.02284EPSS

Exploits0References7

NVD•added 2022/03/21 7:15 p.m.•14 views

CVE-2022-0514

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS0.00942EPSS

Prion•added 2022/03/21 7:15 p.m.•6 views

Design/Logic Flaw

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

4CVSS6.5AI score0.00942EPSS

Cvelist•added 2022/03/21 6:50 p.m.•26 views

CVE-2022-0515 Cross-Site Request Forgery (CSRF) in crater-invoice/crater

Cross-Site Request Forgery CSRF in GitHub repository crater-invoice/crater prior to 6.0.4...

4.3CVSS5.1AI score0.00422EPSS

Cvelist•added 2022/03/21 6:50 p.m.•23 views

CVE-2022-0514 Business Logic Errors in crater-invoice/crater

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS6.7AI score0.00942EPSS

CVE•added 2022/03/21 6:50 p.m.•79 views

CVE-2022-0514

CVE-2022-0514 affects crater-invoice/crater prior to 6.0.5. The issue is a business logic flaw in Crater’s settings handling that lets an attacker alter the currency by tampering a parameter in the API request (e.g., /api/v1/company/settings with currency set to 1 and changing it to 2). The impac...

6.5CVSS6.5AI score0.00942EPSS

OSV•added 2022/03/21 6:50 p.m.•22 views

CVE-2022-0514 Business Logic Errors in crater-invoice/crater

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS6.7AI score0.00942EPSS

OSV•added 2022/03/21 10:45 a.m.•21 views

CVE-2022-0415 Remote Command Execution in uploading repository file in gogs/gogs

Remote Command Execution in uploading repository file in GitHub repository gogs/gogs prior to 0.12.6...

9.9CVSS9.2AI score0.65237EPSS

Cvelist•added 2022/03/21 12:0 a.m.•20 views

CVE-2022-1035 Segmentation Fault caused by MP4Box -lsr in gpac/gpac

Segmentation Fault caused by MP4Box -lsr in GitHub repository gpac/gpac prior to 2.1.0-DEV...

2.9CVSS6.7AI score0.00808EPSS

Exploits1References3

OSV•added 2022/03/21 12:0 a.m.•18 views

CVE-2022-1035 Segmentation Fault caused by MP4Box -lsr in gpac/gpac

Segmentation Fault caused by MP4Box -lsr in GitHub repository gpac/gpac prior to 2.1.0-DEV...

2.9CVSS6.8AI score0.00808EPSS

Exploits1References5

Cvelist•added 2022/03/19 7:35 a.m.•15 views

CVE-2022-0991 Insufficient Session Expiration in admidio/admidio

Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.1.9...

8.2CVSS7.1AI score0.00997EPSS

Github Security Blog•added 2022/03/18 12:1 a.m.•46 views

Prototype Pollution in Sails.js

Sails.js = 1.5.2 is vulnerable to Prototype Pollution via controller/load-action-modules.js, function loadActionModules. A patch is available in the master branch of Sails.js's GItHub repository...

9.8CVSS3.4AI score0.01799EPSS

Exploits1References6Affected Software1

NVD•added 2022/03/17 11:15 a.m.•18 views

CVE-2022-1000

Path Traversal in GitHub repository prasathmani/tinyfilemanager prior to 2.4.7...

9.8CVSS0.01864EPSS

Prion•added 2022/03/17 11:15 a.m.•17 views

Path traversal

Path Traversal in GitHub repository prasathmani/tinyfilemanager prior to 2.4.7...

7.5CVSS9.5AI score0.01864EPSS

OSV•added 2022/03/17 10:30 a.m.•25 views

CVE-2022-1000 Path Traversal in prasathmani/tinyfilemanager

Path Traversal in GitHub repository prasathmani/tinyfilemanager prior to 2.4.7...

8.8CVSS9AI score0.01864EPSS

CVE•added 2022/03/17 10:30 a.m.•94 views

CVE-2022-1000

CVE-2022-1000 describes a path traversal vulnerability in the web-based Tiny File Manager project (prasathmani/tinyfilemanager) prior to version 2.4.7. According to connected sources, the flaw stems from how file uploads are handled when a file with the same name already exists: the code alters t...

9.8CVSS9.3AI score0.01864EPSS