Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6573 matches found

NVD
NVDadded 2022/03/11 12:15 a.m.25 views

CVE-2022-0820

Cross-site Scripting XSS - Stored in GitHub repository orchardcms/orchardcore prior to 1.3.0...

6.1CVSS0.00728EPSS
Exploits1References2
Prion
Prionadded 2022/03/11 12:15 a.m.15 views

Authorization

Improper Authorization in GitHub repository orchardcms/orchardcore prior to 1.3.0...

4CVSS6.5AI score0.00728EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2022/03/11 12:15 a.m.15 views

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository orchardcms/orchardcore prior to 1.3.0...

4.3CVSS6AI score0.00728EPSS
Exploits1References2Affected Software1
AlpineLinux
AlpineLinuxadded 2022/03/11 12:0 a.m.63 views

CVE-2022-0871

Missing Authorization in GitHub repository gogs/gogs prior to 0.12.5...

9.1CVSS8.8AI score0.01416EPSS
Exploits1
Cvelist
Cvelistadded 2022/03/11 12:0 a.m.32 views

CVE-2022-0871 Missing Authorization in gogs/gogs

Missing Authorization in GitHub repository gogs/gogs prior to 0.12.5...

8.2CVSS9.5AI score0.01416EPSS
Exploits1References2
OSV
OSVadded 2022/03/11 12:0 a.m.16 views

CVE-2022-0932 Missing Authorization in saleor/saleor

Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2...

6.5CVSS6.6AI score0.00994EPSS
Exploits1References4
CVE
CVEadded 2022/03/10 11:40 p.m.109 views

CVE-2022-0821

CVE-2022-0821 affects Orchard Core (orchardcore) prior to version 1.3.0. The issue is described as improper authorization in the GitHub repository orchardcms/orchardcore, enabling a low-privilege user to create roles (as shown by Huntr/Red Hat and CNVD records). This implies a privilege/authoriza...

7.1CVSS6.5AI score0.00728EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2022/03/10 3:15 p.m.5 views

CVE-2022-0905

Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4...

7.1CVSS0.00833EPSS
Exploits1References2
Prion
Prionadded 2022/03/10 3:15 p.m.9 views

Authorization

Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4...

5.5CVSS6.8AI score0.00833EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2022/03/10 2:55 p.m.24 views

CVE-2022-0906 Unrestricted file upload leads to stored XSS in microweber/microweber

Unrestricted file upload leads to stored XSS in GitHub repository microweber/microweber prior to 1.1.12...

4.3CVSS4.5AI score0.00613EPSS
Exploits1References4
CVE
CVEadded 2022/03/10 2:55 p.m.109 views

CVE-2022-0906

CVE-2022-0906 concerns Microweber (GitHub microweber/microweber). The connected sources indicate an unrestricted file upload that can lead to a stored cross-site scripting (XSS) vulnerability in versions prior to 1.1.12. The issue is reported across multiple feeds (NVD, Red Hat, OSV, CNVD, CVE li...

4.8CVSS4.5AI score0.00613EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2022/03/10 11:15 a.m.17 views

Code injection

Static Code Injection in GitHub repository microweber/microweber prior to 1.3...

7.5CVSS9.8AI score0.01688EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/03/10 11:10 a.m.34 views

CVE-2022-0895 Static Code Injection in microweber/microweber

Static Code Injection in GitHub repository microweber/microweber prior to 1.3...

7.7CVSS10AI score0.01688EPSS
Exploits1References2
Prion
Prionadded 2022/03/10 1:15 a.m.13 views

Null pointer dereference

NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2...

7.1CVSS5.4AI score0.00814EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/03/10 1:10 a.m.23 views

CVE-2022-0890 NULL Pointer Dereference in mruby/mruby

NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2...

5.5CVSS5.7AI score0.00814EPSS
Exploits1References2
CVE
CVEadded 2022/03/10 1:10 a.m.143 views

CVE-2022-0890

CVE-2022-0890: NULL pointer dereference in the mruby/mruby project prior to 3.2. Affected component is the mruby interpreter. Root cause is a NULL pointer dereference, leading to availability impact as described by CVSS (local, low attack complexity, user interaction required). The entry indicate...

7.1CVSS5.6AI score0.00814EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blogadded 2022/03/10 12:0 a.m.23 views

Improper Neutralization of Special Elements Used in a Template Engine in microweber

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3...

8.8CVSS2.8AI score0.01388EPSS
Exploits1References4Affected Software1
RubySec
RubySecadded 2022/03/10 12:0 a.m.19 views

NULL Pointer Dereference in mruby/mruby

NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2...

7.1CVSS6.9AI score0.00814EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2022/03/10 12:0 a.m.24 views

CVE-2022-0905 Missing Authorization in go-gitea/gitea

Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4...

6.5CVSS7.1AI score0.00833EPSS
Exploits1References2
Prion
Prionadded 2022/03/09 12:15 p.m.15 views

Input validation

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3...

6.8CVSS8.7AI score0.01388EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder