CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2022/09/16 10:15 p.m.•9 views

CVE-2022-35194

TestLink v1.9.20 was discovered to contain a stored cross-site scripting XSS vulnerability via /lib/inventory/inventoryView.php...

5.4CVSS0.00509EPSS

Prion•added 2022/09/16 10:15 p.m.•14 views

Cross site scripting

TestLink v1.9.20 was discovered to contain a stored cross-site scripting XSS vulnerability via /lib/inventory/inventoryView.php...

4.9CVSS5.3AI score0.00509EPSS

Cvelist•added 2022/09/16 8:30 p.m.•13 views

CVE-2022-35194

TestLink v1.9.20 was discovered to contain a stored cross-site scripting XSS vulnerability via /lib/inventory/inventoryView.php...

5.5AI score0.00509EPSS

CVE•added 2022/09/16 8:30 p.m.•41 views

CVE-2022-35194

CVE-2022-35194 affects TestLink v1.9.20, where a stored cross-site scripting (XSS) vulnerability exists in the API endpoint /lib/inventory/inventoryView.php . The Red Hat and PT Security entries corroborate the vulnerability and indicate an update to a newer TestLink version containing a fix as t...

5.4CVSS5.3AI score0.00509EPSS

OSV•added 2022/09/16 4:15 p.m.•3 views

CVE-2022-35195

TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...

7.2CVSS5.8AI score0.01053EPSS

OSV•added 2022/09/16 4:15 p.m.•1 views

CVE-2022-35193

TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php...

7.2CVSS5.8AI score0.00931EPSS

ATTACKERKB•added 2022/09/16 4:15 p.m.•1 views

CVE-2022-35195

TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...

7.2CVSS5.8AI score0.01053EPSS

ATTACKERKB•added 2022/09/16 4:15 p.m.•1 views

CVE-2022-35193

TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php...

7.2CVSS5.8AI score0.00931EPSS

NVD•added 2022/09/16 4:15 p.m.•8 views

CVE-2022-35193

TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php...

7.2CVSS0.00931EPSS

NVD•added 2022/09/16 4:15 p.m.•8 views

CVE-2022-35195

TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...

7.2CVSS0.01053EPSS

Prion•added 2022/09/16 4:15 p.m.•18 views

Improper access control

TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...

5.8CVSS7AI score0.01053EPSS

Prion•added 2022/09/16 4:15 p.m.•17 views

Sql injection

TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php...

5.8CVSS7.2AI score0.00931EPSS

Cvelist•added 2022/09/16 3:59 p.m.•13 views

CVE-2022-35193

TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php...

7.5AI score0.00931EPSS

CVE•added 2022/09/16 3:59 p.m.•52 views

CVE-2022-35193

CVE-2022-35193 affects TestLink v1.9.20 with a SQL injection vulnerability in /lib/execute/execNavigator.php. The issue stems from improper input handling in the navigation execution endpoint, enabling an attacker to manipulate backend SQL queries. According to the connected documents, this vulne...

7.2CVSS7.2AI score0.00931EPSS

Cvelist•added 2022/09/16 3:36 p.m.•15 views

CVE-2022-35195

TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...

7.2AI score0.01053EPSS

CVE•added 2022/09/16 3:36 p.m.•44 views

CVE-2022-35195

CVE-2022-35195 affects TestLink 1.9.20 Raijin. The vulnerability is a broken access control in /lib/attachments/attachmentdownload.php, leading to unauthorized disclosure/modification/denial of service as indicated by the CVSSv3.1 base metrics (7.2, HIGH; AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H). Con...

7.2CVSS7AI score0.01053EPSS

CNNVD•added 2022/09/16 12:0 a.m.•3 views

TestLink 跨站脚本漏洞

TestLink is a set of open source software used by TestLink team to manage software testing process and provide statistical analysis. A security vulnerability exists in TestLink v1.9.20, which originates from a security issue in /lib/inventory/inventoryView.php...

5.4CVSS5.8AI score0.00509EPSS

CNNVD•added 2022/09/16 12:0 a.m.•3 views

TestLink SQL注入漏洞

TestLink is a set of open source software for managing software testing process and providing statistical analysis by TestLink team. A SQL injection vulnerability exists in TestLink v1.9.20, which originates from a SQL injection contained in /lib/execute/execNavigator.php...

7.2CVSS7.3AI score0.00931EPSS

CNNVD•added 2022/09/16 12:0 a.m.•2 views

TestLink 安全漏洞

TestLink is a suite of open source software from the TestLink team for managing the software testing process and providing statistical analysis. A security vulnerability exists in TestLink version v1.9.20, which stems from /lib/attachments/attachmentdownload.php containing an incorrect access...

7.2CVSS7.1AI score0.01053EPSS