CVE-2022-2016

Cross-site Scripting XSS - Reflected in GitHub repository neorazorx/facturascripts prior to 2022.1...

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. The following produc...

PT-2024-1755 · Adobe · Framemaker Publishing Server

Name of the Vulnerable Software and Affected Versions: Adobe FrameMaker Publishing Server versions 2022.1 and earlier Description: The issue is related to an Improper Authentication vulnerability in the Adobe FrameMaker Publishing Server. This vulnerability could allow a remote attacker to bypass...

CVE-2023-25839

There is SQL injection vulnerability in Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 that may allow a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is...

CVE-2023-25839 BUG-000157278 – ArcGIS Insights has a security vulnerability - desktop

There is SQL injection vulnerability in Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 that may allow a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is...

PT-2023-20345 · Esri · Esri Arcgis Insights Desktop

Name of the Vulnerable Software and Affected Versions: Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 Description: The issue allows a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input...

PT-2023-20344 · Esri · Esri Arcgis Insights

Name of the Vulnerable Software and Affected Versions: Esri ArcGIS Insights version 2022.1 for ArcGIS Enterprise Description: The issue allows a remote, authorized attacker to execute arbitrary SQL commands against the back-end database due to a SQL injection vulnerability. The effort required to...

OPC Labs QuickOPC 代码问题漏洞

OPC Labs QuickOPC is an OPC toolkit from OPC Labs, Inc. A code issue vulnerability exists in OPC Labs QuickOPC version 2022.1 that stems from a lack of proper validation of user-supplied data, which could lead to deserialization of untrusted data and could be exploited by an attacker to execute...

PT-2023-12890 · Intel · Intel Oneapi Dpc++/C++ Compiler +1

Name of the Vulnerable Software and Affected Versions: IntelR oneAPI DPC++/C++ Compiler versions prior to 2022.1 IntelR oneAPI Toolkits versions prior to 2022.2 Description: The issue is related to insufficient visual distinction of homoglyphs presented to the user, which may allow an...

ConnectWise Automate 安全漏洞

ConnectWise Automate is a cloud-based, local IT automation solution from ConnectWise USA. The product supports content management, file sharing, IT asset tracking and management, and more. A security vulnerability exists in ConnectWise Automate version 2022.1 that stems from...

FreshTomato 缓冲区错误漏洞

FreshTomato is a Linux-based open source firmware from FreshTomato Open Source. The firmware provides a variety of features for Broadcom-based routers. An input validation error vulnerability exists in FreshTomato version 2022.1, which stems from a specially crafted HTTP request that could lead t...

FreshTomato 缓冲区错误漏洞

FreshTomato is a Linux-based open source firmware from FreshTomato Open Source. The firmware provides a variety of features for Broadcom-based routers. An input validation error vulnerability exists in FreshTomato version 2022.1, which stems from a specially crafted HTTP request that could lead t...