CVE List - 2022 / December
Showing 2301 - 2356 of 2356 CVEs for December 2022 (Page 24 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-47118 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47119 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47120 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47121 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47122 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47123 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47124 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47125 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47126 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47127 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-47128 | 2022-12-30 | Tenda A15 V15.13.07.13 was discovered to contain a stack overflow... |
| CVE-2022-48194 | 2022-12-30 | TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers... |
| CVE-2022-48196 | 2022-12-30 | Certain NETGEAR devices are affected by a buffer overflow by... |
| CVE-2022-4863 | 2022-12-30 | Improper Handling of Insufficient Permissions or Privileges in usememos/memos |
| CVE-2022-4864 | 2022-12-30 | Argument Injection in froxlor/froxlor |
| CVE-2022-38203 | 2022-12-30 | The allowedProxyHosts property is not fully honored in ArcGIS Enterprise (10.8.1 and 10.7.1 only) |
| CVE-2022-38204 | 2022-12-30 | Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only) |
| CVE-2022-38205 | 2022-12-30 | Portal for ArcGIS has a directory traversal vulnerability (10.9.1, 10.8.1 and 10.7.1 only) |
| CVE-2022-38206 | 2022-12-30 | Reflected XSS vulnerability in Portal for ArcGIS (10.9.1, 10.8.1 and 10.7.1 only) |
| CVE-2022-38207 | 2022-12-30 | Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only) |
| CVE-2022-38208 | 2022-12-30 | Unvalidated redirect in Portal for ArcGIS |
| CVE-2022-38209 | 2022-12-30 | Reflected XSS vulnerability in Portal for ArcGIS |
| CVE-2022-38210 | 2022-12-30 | HTML injection in accountswitcher-callback.html (10.9.1, 10.8.1 and 10.7.1 only) |
| CVE-2022-38211 | 2022-12-30 | Server Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.9.1, 10.8.1 and 10.7.1 only) |
| CVE-2022-38212 | 2022-12-30 | Server Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only) |
| CVE-2022-4855 | 2022-12-30 | SourceCodester Lead Management System login.php sql injection |
| CVE-2022-4856 | 2022-12-30 | Modbus Tools Modbus Slave mbs File mbslave.exe buffer overflow |
| CVE-2022-4857 | 2022-12-30 | Modbus Tools Modbus Poll mbp File mbpoll.exe buffer overflow |
| CVE-2022-43396 | 2022-12-30 | Apache Kylin: Command injection by Useless configuration |
| CVE-2022-44621 | 2022-12-30 | Apache Kylin: Command injection by Diagnosis Controller |
| CVE-2018-25059 | 2022-12-30 | pastebinit server.go pasteHandler path traversal |
| CVE-2020-36637 | 2022-12-30 | Chris92de AdminServ adminserv.php cross site scripting |
| CVE-2020-36638 | 2022-12-30 | Chris92de AdminServ adminserv.php cross site scripting |
| CVE-2022-4858 | 2022-12-30 | Insertion of Sensitive Information into Log File |
| CVE-2017-20151 | 2022-12-30 | iText RUPS XfaFile.java xml external entity reference |
| CVE-2022-4859 | 2022-12-30 | Joget User Profile Menu UserProfileMenu.java submitForm cross site scripting |
| CVE-2017-20152 | 2022-12-30 | aerouk imageserve File viewer.php path traversal |
| CVE-2017-20153 | 2022-12-30 | aerouk imageserve cross site scripting |
| CVE-2018-25060 | 2022-12-30 | Macaron csrf csrf.go missing secure attribute |
| CVE-2022-4860 | 2022-12-30 | KBase Metrics methods_upload_user_stats.py upload_user_data sql injection |
| CVE-2022-4861 | 2022-12-30 | Incorrect Implementation of Authentication Algorithm |
| CVE-2017-20154 | 2022-12-30 | ghostlander Phoenixcoin main.cpp accept denial of service |
| CVE-2017-20155 | 2022-12-30 | Sterc Google Analytics Dashboard for MODX Internal Search widget.analytics.tpl cross site scripting |
| CVE-2022-48195 | 2022-12-31 | An issue was discovered in Mellium mellium.im/sasl before 0.3.1. When... |
| CVE-2022-4865 | 2022-12-31 | Cross-site Scripting (XSS) - Stored in usememos/memos |
| CVE-2022-4866 | 2022-12-31 | Cross-site Scripting (XSS) - Stored in usememos/memos |
| CVE-2022-4867 | 2022-12-31 | Cross-Site Request Forgery (CSRF) in froxlor/froxlor |
| CVE-2022-4868 | 2022-12-31 | Improper Authorization in froxlor/froxlor |
| CVE-2017-20156 | 2022-12-31 | Exciting Printer Argument prepare_page.rb command injection |
| CVE-2017-20157 | 2022-12-31 | Ariadne Component Library Url.php server-side request forgery |
| CVE-2017-20158 | 2022-12-31 | vova07 Yii2 FileAPI Widget UploadAction.php run cross site scripting |
| CVE-2017-20159 | 2022-12-31 | rf Keynote rumble.rb cross site scripting |
| CVE-2014-125027 | 2022-12-31 | Yuna Scatari TBDev usersearch.php get_user_icons cross site scripting |
| CVE-2014-125028 | 2022-12-31 | valtech IDP Test Client main.py cross-site request forgery |
| CVE-2017-20160 | 2022-12-31 | flitto express-param fetchParams.js parameter pollution |
| CVE-2018-25061 | 2022-12-31 | rgb2hex redos |