Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Known Security Vulnerabilities - November

cve
cve

CVE-2022-30852

Known v1.3.1 was discovered to contain an Insecure Direct Object Reference (IDOR).

4.3CVSS

4.7AI Score

0.001EPSS

2022-07-08 12:15 PM
53
7
cve
cve

CVE-2022-31290

A cross-site scripting (XSS) vulnerability in Known v1.2.2+2020061101 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Your Name text field.

5.4CVSS

5.1AI Score

0.001EPSS

2022-07-08 12:15 PM
65
5
cve
cve

CVE-2022-32115

An issue in the isSVG() function of Known v1.2.2+2020061101 allows attackers to execute arbitrary code via a crafted SVG file.

6.1CVSS

6.6AI Score

0.001EPSS

2022-07-08 12:15 PM
59
3
cve
cve

CVE-2022-33011

Known v1.3.1+2020120201 was discovered to allow attackers to perform an account takeover via a host header injection attack.

8.8CVSS

8.8AI Score

0.004EPSS

2022-07-08 12:15 PM
59
8