ShopWind Remote Code Execution (CVE-2022-30453)

A remote code execution vulnerability exists in ShopWind. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

WordPress Tatsu Plugin Remote Code Execution (CVE-2021-25094)

A remote code execution vulnerability exists in WordPress Tatsu plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Multiple Websites Distributed Denial of Service

A denial of service vulnerability exists in multiple websites. The vulnerability is due to the placing of the malicious JavaScript code BrownFlood. Successful exploitation of this vulnerability would allow remote attackers to cause denial of service on the affected system...

Google Android Denial Of Service (CVE-2013-4710)

A denial of service vulnerability exists in Google Android. Successful exploitation of this vulnerability would allow remote attackers to cause denial of service on the affected system...

WordPress Documentor Plugin SQL Injection (CVE-2022-0773)

An SQL injection vulnerability exists in WordPress Documentor Plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

Piwigo SQL Injection (CVE-2020-19213)

An SQL injection vulnerability exists in Piwigo. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

VMware Authentication Bypass (CVE-2022-22972)

An authentication bypass vulnerability exists in VMware. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...

Cisco NFVIS Improper Access Control (CVE-2022-20777)

An improper access control vulnerability exists in Cisco NFVIS. Successful exploitation of this vulnerability could allow a remote attacker to compromise the NFVIS host completely...

Naviwebs Navigate CMS Directory Traversal (CVE-2018-17553)

A directory traversal vulnerability exists in Naviwebs Navigate CMS. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

Checkbox Survey Remote Code Execution (CVE-2021-27852)

A remote code execution vulnerability exists in Checkbox Survey. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

IRZ Mobile Router Remote Code Execution (CVE-2022-27226)

A remote code execution vulnerability exists in IRZ Mobile Router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Sophos MR3 Firewall Remote Code Execution (CVE-2022-1040)

A remote code execution vulnerability exists in Sophos MR3 Firewall. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

D-Link DIR-825 OS Command Injection (CVE-2021-46441; CVE-2021-46442)

A command injection vulnerability exists in D-Link DIR-825. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

Apple Multiple Products Type Confusion (CVE-2021-1789)

A type confusion vulnerability exists in multiple Apple products. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Zimbra Collaboration Suite Cross Site Scripting (CVE-2018-6882)

A cross-site scripting vulnerability exists in Zimbra Collaboration Suite. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

WordPress MasterStudy LMS Plugin Privilege Escalation (CVE-2022-0441)

A privilege escalation exists in WordPress MasterStudy LMS plugin. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

MediaWiki Semantic Drilldown SQL Injection (CVE-2022-29904)

An SQL injection vulnerability exists in MediaWiki Semantic Drilldown. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

Zoho Multiple Products Authentication Bypass (CVE-2022-29081)

An authentication bypass vulnerability exists in multiple Zoho products. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

Zyxel USG Command Injection (CVE-2022-30525)

A command injection vulnerability exists in Zyxel USG. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

Gogs File Upload Command Injection (CVE-2022-0415)

A command injection vulnerability exists in Gogs File Upload. Successful exploitation of this vulnerability could result in code execution on the affected system...

Kaseya Unitrends Backup Remote Code Execution (CVE-2017-12478)

A remote code execution vulnerability exists in Kaseya Unitrends Backup. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Microsoft Windows Network File System Remote Code Execution (CVE-2022-26937)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Develar SnakeYAML Entity Expansion (CVE-2017-18640)

An entity expansion vulnerability exists in Develar SnakeYAML. Successful exploitation of this vulnerability would allow remote attackers to cause the affected system to crash or become unresponsive...

Dojo Prototype Pollution (CVE-2021-23450)

A prototype pollution vulnerability exists in Dojo. Successful exploitation of this vulnerability could result in run arbitrary code on the victim machine...

Jenkins Script Security Plugin Remote Code Execution (CVE-2019-1003029)

A remote code execution vulnerability exists in Jenkins Script Security Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

pfSense Remote Code Execution (CVE-2021-41282)

A remote code execution vulnerability exists in pfSense. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

RiteCMS Directory Traversal (CVE-2022-24248)

A directory traversal vulnerability exists in RiteCMS. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

Oracle Java SE Authentication Bypass (CVE-2022-21449)

An authentication bypass vulnerability exists in Oracle Java SE. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...

Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-29104)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Microsoft Remote Desktop Client Remote Code Execution (CVE-2022-22017)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Microsoft Active Directory Domain Services Elevation of Privilege (CVE-2022-26923)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Microsoft Windows Kernel Elevation of Privilege (CVE-2022-29142)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Microsoft Windows ALPC Elevation of Privilege (CVE-2022-23279)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Adobe ColdFusion Cross-site Scripting (APSB22-22: CVE-2022-28818)

A cross-site scripting vulnerability exists in Adobe ColdFusion. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

Microsoft Point-to-Point Tunneling Protocol Remote Code Execution (CVE-2022-23270)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Seowon SLC-130 Router Remote Code Execution

A remote code execution vulnerability exists in Seowon SLC-130 Router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

D-Link DIR-846 Command Injection (CVE-2021-46314; CVE-2021-46315; CVE-2021-46319)

A command injection vulnerability exists in D-Link DIR-846. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

Ubiquiti AirOS Command Injection (CVE-2010-5330)

A command injection vulnerability exists in Ubiquiti AirOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

Kaseya VSA Remote Code Execution (CVE-2018-20753)

A remote code execution vulnerability exists in Kaseya VSA. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Mozilla Firefox Use After Free (CVE-2020-26950)

A use-after-free vulnerability exists in Mozilla Firefox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

WSO2 Multiple Products Remote Code Execution (CVE-2022-29464)

A remote code execution vulnerability exists in WSO2 Multiple Products. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Oracle WebLogic Server Remote Code Execution (CVE-2022-21371)

A remote code execution vulnerability exists in Oracle WebLogic Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

TOTOLink A3000R Command Injection (CVE-2022-25075)

A command injection vulnerability exists in TOTOLink A3000R. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

Cisco Small Business RV Series Routers Denial Of Service (CVE-2022-20699)

A denial of service vulnerability exists in Cisco Small Business RV Series Routers. Successful exploitation of this vulnerability would allow remote attackers to cause denial of service on the affected system...

TOTOLink A3100R Command Injection (CVE-2022-25077)

A command injection vulnerability exists in TOTOLink A3100R. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

RiteCMS Remote Code Execution (CVE-2021-46367)

A remote code execution vulnerability exists in RiteCMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Exim Remote Code Execution (CVE-2010-4345)

A remote code execution vulnerability exists in Exim. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

D-Link DIR-820L Command Injection (CVE-2022-26258)

A command injection vulnerability exists in D-Link DIR-820L. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

TP-LINK WR-886N Multiple Buffer Overflow Vulnerabilities (CVE-2021-44622; CVE-2021-44623; CVE-2021-44625; CVE-2021-44626; CVE-2021-44627; CVE-2021-44628; CVE-2021-44629; CVE-2021-44630; CVE-2021-44631; CVE-2021-44632)

Multiple buffer overflow vulnerabilities exist in TP-LINK WR-886N. Successful exploitation of this vulnerability could result in a denial of service or execution of arbitrary code into the affected system...

Draytek Vigor Command Injection (CVE-2021-43118)

A command injection vulnerability exists in Draytek Vigor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...