CVE List - 2022 / February
Showing 1001 - 1100 of 1942 CVEs for February 2022 (Page 11 of 20)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-0176 | 2022-02-14 | PowerPack Lite for Beaver Builder < 1.2.9.3 - Reflected Cross-Site Scripting |
| CVE-2022-0188 | 2022-02-14 | Coming Soon & Maintenance Plugin by NiteoThemes < 4.0.19 - Unauthenticated Arbitrary CSS Update |
| CVE-2022-0190 | 2022-02-14 | Ad Invalid Click Protector (AICP) < 1.2.6 - Authenticated SQL Injection |
| CVE-2022-0193 | 2022-02-14 | Complianz - GDPR/CCPA Cookie Consent < 6.0.0 - Reflected Cross-Site Scripting |
| CVE-2022-0200 | 2022-02-14 | Themify Portfolio Post < 1.1.7 - Reflected Cross-Site Scripting |
| CVE-2022-0201 | 2022-02-14 | Permalink Manager < 2.2.15 - Reflected Cross-Site Scripting |
| CVE-2022-0206 | 2022-02-14 | NewStatPress < 1.3.6 - Reflected Cross-Site Scripting |
| CVE-2022-0208 | 2022-02-14 | MapPress Maps for WordPress < 2.73.4 - Reflected Cross-Site scripting |
| CVE-2022-0212 | 2022-02-14 | SpiderCalendar <= 1.5.65 - Reflected Cross-Site Scripting |
| CVE-2022-0214 | 2022-02-14 | Popup | Custom Popup Builder < 1.3.1 - Unauthenticated Denial of Service |
| CVE-2021-45421 | 2022-02-14 | Emerson Dixell XWEB-500 products are affected by information disclosure via... |
| CVE-2021-45420 | 2022-02-14 | Emerson Dixell XWEB-500 products are affected by arbitrary file write... |
| CVE-2022-24686 | 2022-02-14 | HashiCorp Nomad and Nomad Enterprise 0.3.0 through 1.0.17, 1.1.11, and... |
| CVE-2021-46371 | 2022-02-14 | antd-admin 5.5.0 is affected by an incorrect access control vulnerability.... |
| CVE-2021-45392 | 2022-02-14 | A Buffer Overflow vulnerability exists in Tenda Router AX12 V22.03.01.21_CN... |
| CVE-2022-22854 | 2022-02-14 | An access control issue in hprms/admin/?page=user/list of Hospital Patient Record... |
| CVE-2021-39079 | 2022-02-14 | IBM Cognos Analytics Mobile for Android applications prior to version... |
| CVE-2021-39080 | 2022-02-14 | Due to weak obfuscation, IBM Cognos Analytics Mobile for Android... |
| CVE-2022-23367 | 2022-02-14 | Fulusso v1.1 was discovered to contain a DOM-based cross-site scripting... |
| CVE-2021-45347 | 2022-02-14 | An Incorrect Access Control vulnerability exists in zzcms 8.2, which... |
| CVE-2022-25150 | 2022-02-14 | In Malwarebytes Binisoft Windows Firewall Control before 6.8.1.0, programs executed... |
| CVE-2022-0579 | 2022-02-14 | Missing Authorization in snipe/snipe-it |
| CVE-2022-24988 | 2022-02-14 | In galois_2p8 before 0.1.2, PrimitivePolynomialField::new has an off-by-one buffer overflow... |
| CVE-2021-45348 | 2022-02-14 | An Arbitrary File Deletion vulnerability exists in SourceCodester Attendance Management... |
| CVE-2021-43106 | 2022-02-14 | A Header Injection vulnerability exists in Compass Plus TranzWare Online... |
| CVE-2019-16864 | 2022-02-14 | CompleteFTPService.exe in the server in EnterpriseDT CompleteFTP before 12.1.4 allows... |
| CVE-2019-25057 | 2022-02-14 | In Corda before 4.1, the meaning of serialized data can... |
| CVE-2021-45310 | 2022-02-14 | Sangoma Technologies Corporation Switchvox Version 102409 is affected by an... |
| CVE-2022-22295 | 2022-02-14 | Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-23335 | 2022-02-14 | Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-23336 | 2022-02-14 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-23337 | 2022-02-14 | DedeCMS v5.7.87 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-23902 | 2022-02-14 | Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-24206 | 2022-02-14 | Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-23637 | 2022-02-14 | Stored Cross-Site-Scripting (XSS) in Markdown Editor |
| CVE-2022-23389 | 2022-02-14 | PublicCMS v4.0 was discovered to contain a remote code execution... |
| CVE-2022-23390 | 2022-02-14 | An issue in the getType function of BBS Forum v5.3... |
| CVE-2022-23391 | 2022-02-14 | A cross-site scripting (XSS) vulnerability in Pybbs v6.0 allows attackers... |
| CVE-2022-23410 | 2022-02-14 | AXIS IP Utility before 4.18.0 allows for remote code execution... |
| CVE-2021-4201 | 2022-02-14 | Pre-authentication session hijacking |
| CVE-2022-24704 | 2022-02-14 | Buffer Overflow via Crafted IPv6 Addr Attribute Type Client Request in Accel-PPP v1.12 |
| CVE-2022-24705 | 2022-02-14 | Buffer Overflow via Crafted Ipv6 Prefix Attribute Type Client Request in accel-ppp v1.12 |
| CVE-2022-23992 | 2022-02-14 | XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases... |
| CVE-2022-23638 | 2022-02-14 | Cross-site Scripting in svg-sanitizer |
| CVE-2021-45005 | 2022-02-14 | Artifex MuJS v1.1.3 was discovered to contain a heap buffer... |
| CVE-2021-46461 | 2022-02-14 | njs through 0.7.0, used in NGINX, was discovered to contain... |
| CVE-2021-46462 | 2022-02-14 | njs through 0.7.1, used in NGINX, was discovered to contain... |
| CVE-2022-25139 | 2022-02-14 | njs through 0.7.0, used in NGINX, was discovered to contain... |
| CVE-2021-46463 | 2022-02-14 | njs through 0.7.1, used in NGINX, was discovered to contain... |
| CVE-2022-0580 | 2022-02-14 | Incorrect Authorization in librenms/librenms |
| CVE-2022-21818 | 2022-02-14 | NVIDIA License System contains a vulnerability in the installation scripts... |
| CVE-2021-44960 | 2022-02-15 | In SVGPP SVG++ library 1.3.0, the XMLDocument::getRoot function in the... |
| CVE-2022-0596 | 2022-02-15 | Improper Validation of Specified Quantity in Input in microweber/microweber |
| CVE-2022-25175 | 2022-02-15 | Jenkins Pipeline: Multibranch Plugin 706.vd43c65dec013 and earlier uses the same... |
| CVE-2022-25179 | 2022-02-15 | Jenkins Pipeline: Multibranch Plugin 706.vd43c65dec013 and earlier follows symbolic links... |
| CVE-2022-21698 | 2022-02-15 | Uncontrolled Resource Consumption in promhttp |
| CVE-2022-24227 | 2022-02-15 | A cross-site scripting (XSS) vulnerability in BoltWire v7.10 and v... |
| CVE-2021-43952 | 2022-02-15 | Affected versions of Atlassian Jira Server and Data Center allow... |
| CVE-2021-43953 | 2022-02-15 | Affected versions of Atlassian Jira Server and Data Center allow... |
| CVE-2021-43950 | 2022-02-15 | Affected versions of Atlassian Jira Service Management Server and Data... |
| CVE-2021-43940 | 2022-02-15 | Affected versions of Atlassian Confluence Server and Data Center allow... |
| CVE-2021-43941 | 2022-02-15 | Affected versions of Atlassian Jira Server and Data Center allow... |
| CVE-2021-43948 | 2022-02-15 | Affected versions of Atlassian Jira Service Management Server and Data... |
| CVE-2022-0587 | 2022-02-15 | Improper Authorization in librenms/librenms |
| CVE-2022-0588 | 2022-02-15 | Missing Authorization in librenms/librenms |
| CVE-2022-0589 | 2022-02-15 | Cross-site Scripting (XSS) - Stored in librenms/librenms |
| CVE-2021-46557 | 2022-02-15 | Vicidial 2.14-783a was discovered to contain a cross-site scripting (XSS)... |
| CVE-2021-46558 | 2022-02-15 | Multiple cross-site scripting (XSS) vulnerabilities in the Add User module... |
| CVE-2022-23384 | 2022-02-15 | YzmCMS v6.3 is affected by Cross Site Request Forgery (CSRF)... |
| CVE-2022-23317 | 2022-02-15 | CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request... |
| CVE-2021-43734 | 2022-02-15 | kkFileview v4.0.0 has arbitrary file read through a directory traversal... |
| CVE-2021-41552 | 2022-02-15 | CommScope SURFboard SBG6950AC2 9.1.103AA23 devices allow Command Injection. |
| CVE-2021-42712 | 2022-02-15 | Splashtop Streamer through 3.4.8.3 creates a Temporary File in a... |
| CVE-2022-0597 | 2022-02-15 | Open Redirect in microweber/microweber |
| CVE-2022-24586 | 2022-02-15 | A stored cross-site scripting (XSS) vulnerability in the component /core/admin/categories.php... |
| CVE-2022-24684 | 2022-02-15 | HashiCorp Nomad and Nomad Enterprise 0.9.0 through 1.0.16, 1.1.11, and... |
| CVE-2022-24585 | 2022-02-15 | A stored cross-site scripting (XSS) vulnerability in the component /core/admin/comment.php... |
| CVE-2022-24226 | 2022-02-15 | Hospital Management System v4.0 was discovered to contain a blind... |
| CVE-2022-24588 | 2022-02-15 | Flatpress v1.2.1 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2022-24587 | 2022-02-15 | A stored cross-site scripting (XSS) vulnerability in the component core/admin/medias.php... |
| CVE-2022-23604 | 2022-02-15 | Privilege escalation in Defender |
| CVE-2022-24590 | 2022-02-15 | A stored cross-site scripting (XSS) vulnerability in the Add Link... |
| CVE-2022-25173 | 2022-02-15 | Jenkins Pipeline: Groovy Plugin 2648.va9433432b33c and earlier uses the same... |
| CVE-2022-25174 | 2022-02-15 | Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1 and earlier uses... |
| CVE-2022-25176 | 2022-02-15 | Jenkins Pipeline: Groovy Plugin 2648.va9433432b33c and earlier follows symbolic links... |
| CVE-2022-25177 | 2022-02-15 | Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1 and earlier follows... |
| CVE-2022-25178 | 2022-02-15 | Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1 and earlier does... |
| CVE-2022-25180 | 2022-02-15 | Jenkins Pipeline: Groovy Plugin 2648.va9433432b33c and earlier includes password parameters... |
| CVE-2022-25181 | 2022-02-15 | A sandbox bypass vulnerability in Jenkins Pipeline: Shared Groovy Libraries... |
| CVE-2022-25182 | 2022-02-15 | A sandbox bypass vulnerability in Jenkins Pipeline: Shared Groovy Libraries... |
| CVE-2022-25183 | 2022-02-15 | Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1 and earlier uses... |
| CVE-2022-25184 | 2022-02-15 | Jenkins Pipeline: Build Step Plugin 2.15 and earlier reveals password... |
| CVE-2022-25185 | 2022-02-15 | Jenkins Generic Webhook Trigger Plugin 1.81 and earlier does not... |
| CVE-2022-25186 | 2022-02-15 | Jenkins HashiCorp Vault Plugin 3.8.0 and earlier implements functionality that... |
| CVE-2022-25187 | 2022-02-15 | Jenkins Support Core Plugin 2.79 and earlier does not redact... |
| CVE-2022-25188 | 2022-02-15 | Jenkins Fortify Plugin 20.2.34 and earlier does not sanitize the... |
| CVE-2022-25189 | 2022-02-15 | Jenkins Custom Checkbox Parameter Plugin 1.1 and earlier does not... |
| CVE-2022-25190 | 2022-02-15 | A missing permission check in Jenkins Conjur Secrets Plugin 1.0.11... |
| CVE-2022-25191 | 2022-02-15 | Jenkins Agent Server Parameter Plugin 1.0 and earlier does not... |
| CVE-2022-25192 | 2022-02-15 | A cross-site request forgery (CSRF) vulnerability in Jenkins Snow Commander... |