CVE-2022-0928

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.2.12...

CVE-2022-0524

Business Logic Errors in GitHub repository publify/publify prior to 9.2.7...

CVE-2022-0515

Cross-Site Request Forgery CSRF in GitHub repository crater-invoice/crater prior to 6.0.4...

CVE-2022-0245

Cross-Site Request Forgery CSRF in GitHub repository livehelperchat/livehelperchat prior to 2.0...

CVE-2022-0341

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.12...

CVE-2022-0727

Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0...

CVE-2022-0704

Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.4.0...

CVE-2022-0772

Cross-site Scripting XSS - Stored in GitHub repository librenms/librenms prior to 22.2.2...

CVE-2022-0776

Cross-site Scripting XSS - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0...

CVE-2022-0624

Authorization Bypass Through User-Controlled Key in GitHub repository ionicabizau/parse-path prior to 5.0.0...

CVE-2022-0893

Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.4.0...

CVE-2022-0912

Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.2.11...

CVE-2022-0831

Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.3.3...

CVE-2022-0578

Code Injection in GitHub repository publify/publify prior to 9.2.8...

CVE-2022-0219

Improper Restriction of XML External Entity Reference in GitHub repository skylot/jadx prior to 1.3.2...

CVE-2022-0905

Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4...

CVE-2022-0527

Cross-site Scripting XSS - Stored in GitHub repository chatwoot/chatwoot prior to 2.2.0...

CVE-2022-0932

Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2...

CVE-2022-0743

Cross-site Scripting XSS - Stored in GitHub repository getgrav/grav prior to 1.7.31...

CVE-2022-35966

TensorFlow is an open source platform for machine learning. If QuantizedAvgPool is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...