CVE List - 2022 / March
Showing 1701 - 1800 of 2065 CVEs for March 2022 (Page 18 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-44124 | 2022-03-28 | Hiby Music Hiby OS R3 Pro 1.5 and 1.6 is... |
| CVE-2019-6834 | 2022-03-28 | A CWE-502: Deserialization of Untrusted Data vulnerability exists which could... |
| CVE-2021-22794 | 2022-03-28 | A CWE-22 Improper Limitation of a Pathname to a Restricted... |
| CVE-2021-22795 | 2022-03-28 | A CWE-78 Improper Neutralization of Special Elements used in an... |
| CVE-2021-22797 | 2022-03-28 | A CWE-22: Improper Limitation of a Pathname to a Restricted... |
| CVE-2022-0221 | 2022-03-28 | A CWE-611: Improper Restriction of XML External Entity Reference vulnerability... |
| CVE-2021-24746 | 2022-03-28 | Sassy Social Share < 3.3.40 - Reflected Cross-Site Scripting |
| CVE-2021-24962 | 2022-03-28 | WordPress File Upload < 4.16.3 - Contributor+ Path Traversal to RCE |
| CVE-2021-24978 | 2022-03-28 | OSMapper <= 2.1.5 - Unauthenticated Arbitrary Post Deletion |
| CVE-2021-25012 | 2022-03-28 | Pz-LinkCard <= 2.4.4.4 - Reflected Cross-Site Scripting |
| CVE-2021-25064 | 2022-03-28 | Wow Countdowns <= 3.1.2 - Admin+ SQLi |
| CVE-2021-25068 | 2022-03-28 | Sync WooCommerce Product feed to Google Shopping <= 1.2.4 - Admin+ SQLi |
| CVE-2021-25070 | 2022-03-28 | WP Block and Stop Bad Bots < 6.88 - Unauthenticated SQLi |
| CVE-2021-25071 | 2022-03-28 | Akismet Privacy Policies <= 2.0.1 - Reflected Cross-Site Scripting |
| CVE-2022-0388 | 2022-03-28 | Interactive Medical Drawing of Human Body < 2.6 - Admin+ Stored XSS |
| CVE-2022-0397 | 2022-03-28 | WPC Smart Wishlist for WooCommerce < 2.9.4 - Reflected Cross-Site Scripting |
| CVE-2022-0450 | 2022-03-28 | Menu Image, Icons made easy < 3.0.8 - Subscriber+ Stored Cross-Site Scripting |
| CVE-2022-0479 | 2022-03-28 | Popup Builder < 4.1.1 - SQL Injection to Reflected Cross-Site Scripting |
| CVE-2022-0493 | 2022-03-28 | String Locator < 2.5.0 - Admin+ Arbitrary File Read |
| CVE-2022-0499 | 2022-03-28 | Sermon Browser <= 0.45.22 - Arbitrary File Upload via CSRF |
| CVE-2022-0595 | 2022-03-28 | Drag and Drop Multiple File Upload - Contact Form 7 < 1.3.6.3 - Unauthenticated Stored XSS |
| CVE-2022-0599 | 2022-03-28 | Mapping Multiple URLs Redirect Same Page <= 5.8 - Reflected Cross-Site Scripting |
| CVE-2022-0600 | 2022-03-28 | Conference Scheduler < 2.4.3 - Reflected Cross-Site Scripting |
| CVE-2022-0619 | 2022-03-28 | Database Peek <= 1.2 - Reflected Cross-Site Scripting |
| CVE-2022-0620 | 2022-03-28 | Delete Old Orders <= 0.2 - Reflected Cross-Site Scripting |
| CVE-2022-0621 | 2022-03-28 | dTabs <= 1.4 - Reflected Cross-Site Scripting |
| CVE-2022-0641 | 2022-03-28 | Popup Like box < 3.6.1 - Reflected Cross-Site Scripting |
| CVE-2022-0643 | 2022-03-28 | Bank Mellat <= 1.3.7 - Reflected Cross-Site Scripting |
| CVE-2022-0647 | 2022-03-28 | Bulk Creator <= 1.0.1 - Reflected Cross-Site Scripting |
| CVE-2022-0679 | 2022-03-28 | Narnoo Distributor <= 2.5.1 - Unauthenticated LFI to Arbitrary File Read / RCE |
| CVE-2022-0680 | 2022-03-28 | Plezi < 1.0.3 - Unauthenticated Stored XSS |
| CVE-2022-0720 | 2022-03-28 | Amelia < 1.0.47 - Customer+ Arbitrary Appointments Update and Sensitive Data Disclosure |
| CVE-2022-0770 | 2022-03-28 | Translate WordPress with GTranslate < 2.9.9 - CSRF to Account Takeover |
| CVE-2022-0784 | 2022-03-28 | Title Experiments Free < 9.0.1 - Unauthenticated SQLi |
| CVE-2022-0787 | 2022-03-28 | Limit Login Attempts (Spam Protection) < 5.1 - Unauthenticated SQLi |
| CVE-2022-0818 | 2022-03-28 | Coupon Affiliates < 4.16.4.5 - Unauthenticated Stored XSS |
| CVE-2022-0833 | 2022-03-28 | Church Admin < 3.4.135 - Unauthenticated Plugin's Backup Disclosure |
| CVE-2022-0846 | 2022-03-28 | SpeakOut! Email Petitions < 2.14.15.1 - Unauthenticated SQLi |
| CVE-2015-10002 | 2022-03-28 | Kiddoware Kids Place Home Button Protection denial of service |
| CVE-2022-26980 | 2022-03-28 | Teampass 2.1.26 allows reflected XSS via the index.php PATH_INFO. |
| CVE-2018-25030 | 2022-03-28 | Mirmay Secure Private Browser / File Manager Auto Lock improper authentication |
| CVE-2022-27658 | 2022-03-28 | Under certain conditions, SAP Innovation management - version 2.0, allows... |
| CVE-2022-0735 | 2022-03-28 | An issue has been discovered in GitLab CE/EE affecting all... |
| CVE-2022-0549 | 2022-03-28 | An issue has been discovered in GitLab CE/EE affecting all... |
| CVE-2022-0371 | 2022-03-28 | An issue has been discovered in GitLab CE/EE affecting all... |
| CVE-2022-0751 | 2022-03-28 | Inaccurate display of Snippet files containing special characters in all... |
| CVE-2022-0738 | 2022-03-28 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2022-0427 | 2022-03-28 | Missing sanitization of HTML attributes in Jupyter notebooks in all... |
| CVE-2022-0123 | 2022-03-28 | An issue has been discovered affecting GitLab versions prior to... |
| CVE-2022-0249 | 2022-03-28 | A vulnerability was discovered in GitLab starting with version 12.... |
| CVE-2022-0344 | 2022-03-28 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2022-0488 | 2022-03-28 | An issue has been discovered in GitLab CE/EE affecting all... |
| CVE-2021-39876 | 2022-03-28 | In all versions of GitLab CE/EE since version 11.3, the... |
| CVE-2022-0136 | 2022-03-28 | A vulnerability was discovered in GitLab versions 10.5 to 14.5.4,... |
| CVE-2022-0283 | 2022-03-28 | An issue has been discovered affecting GitLab versions prior to... |
| CVE-2021-4191 | 2022-03-28 | An issue has been discovered in GitLab CE/EE affecting versions... |
| CVE-2003-5001 | 2022-03-28 | ISS BlackICE PC Protection Cross Site Scripting Detection privileges management |
| CVE-2003-5002 | 2022-03-28 | ISS BlackICE PC Protection Update cleartext transmission |
| CVE-2003-5003 | 2022-03-28 | ISS BlackICE PC Protection Update cross site scriting |
| CVE-2005-10001 | 2022-03-28 | Netegrity SiteMinder Login smpwservicescgi.exe redirect |
| CVE-2008-10001 | 2022-03-28 | Pro2col Stingray FTS cross site scriting |
| CVE-2010-10001 | 2022-03-28 | Shemes GrabIt NZB Date Parser denial of service |
| CVE-2017-20011 | 2022-03-28 | WEKA INTEREST Security Scanner HTTP denial of service |
| CVE-2017-20012 | 2022-03-28 | WEKA INTEREST Security Scanner Stresstest Scheme denial of service |
| CVE-2017-20013 | 2022-03-28 | WEKA INTEREST Security Scanner Stresstest Configuration denial of service |
| CVE-2017-20014 | 2022-03-28 | WEKA INTEREST Security Scanner Webspider denial of service |
| CVE-2017-20015 | 2022-03-28 | WEKA INTEREST Security Scanner LAN Viewer denial of service |
| CVE-2017-20016 | 2022-03-28 | WEKA INTEREST Security Scanner Portscan memory allocation |
| CVE-2022-26278 | 2022-03-28 | Tenda AC9 v15.03.2.21_cn was discovered to contain a stack overflow... |
| CVE-2021-43097 | 2022-03-28 | A Server-side Template Injection (SSTI) vulnerability exists in bbs 5.3... |
| CVE-2021-43098 | 2022-03-28 | A File Upload vulnerability exists in bbs v5.3 via QuestionManageAction.java... |
| CVE-2021-43099 | 2022-03-28 | An Archive Extraction (AKA "Zip Slip) vulnerability exists in bbs... |
| CVE-2021-43100 | 2022-03-28 | A File Upload vulnerability exists in bbs 5.3 is via... |
| CVE-2021-43101 | 2022-03-28 | A File Upload vulnerability exists in bbs 5.3 is via... |
| CVE-2021-43102 | 2022-03-28 | A File Upload vulnerability exists in bbs 5.3 is via... |
| CVE-2021-43103 | 2022-03-28 | A File Upload vulnerability exists in bbs 5.3 is via... |
| CVE-2022-26280 | 2022-03-28 | Libarchive v3.6.0 was discovered to contain an out-of-bounds read via... |
| CVE-2022-24789 | 2022-03-28 | Deserialization of untrusted data in C1 CMS. |
| CVE-2022-26291 | 2022-03-28 | lrzip v0.641 was discovered to contain a multiple concurrency use-after-free... |
| CVE-2021-43105 | 2022-03-28 | A vulnerability in the bailiwick checking function in Technitium DNS... |
| CVE-2022-26639 | 2022-03-28 | TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via... |
| CVE-2022-26640 | 2022-03-28 | TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via... |
| CVE-2022-26641 | 2022-03-28 | TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via... |
| CVE-2022-26642 | 2022-03-28 | TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via... |
| CVE-2022-26296 | 2022-03-28 | BOOM: The Berkeley Out-of-Order RISC-V Processor commit d77c2c3 was discovered... |
| CVE-2022-1050 | 2022-03-29 | A flaw was found in the QEMU implementation of VMWare's... |
| CVE-2022-22934 | 2022-03-29 | An issue was discovered in SaltStack Salt in versions before... |
| CVE-2022-25521 | 2022-03-29 | NUUO v03.11.00 was discovered to contain access control issue. |
| CVE-2022-22935 | 2022-03-29 | An issue was discovered in SaltStack Salt in versions before... |
| CVE-2022-22936 | 2022-03-29 | An issue was discovered in SaltStack Salt in versions before... |
| CVE-2022-22941 | 2022-03-29 | An issue was discovered in SaltStack Salt in versions before... |
| CVE-2022-0331 | 2022-03-29 | An information disclosure vulnerability in Webadmin allows an unauthenticated remote... |
| CVE-2022-26269 | 2022-03-29 | Suzuki Connect v1.0.15 allows attackers to tamper with displayed messages... |
| CVE-2021-45866 | 2022-03-29 | A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester... |
| CVE-2021-45865 | 2022-03-29 | A File Upload vulnerability exists in Sourcecodester Student Attendance Manageent... |
| CVE-2021-44581 | 2022-03-29 | An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via... |
| CVE-2022-25420 | 2022-03-29 | NTT Resonant Incorporated goo blog App Web Application 1.0 is... |
| CVE-2022-24956 | 2022-03-29 | An issue was discovered in Shopware B2B-Suite through 4.4.1. The... |
| CVE-2022-24957 | 2022-03-29 | DHC Vision eQMS through 5.4.8.322 has Persistent XSS due to... |
| CVE-2022-23937 | 2022-03-29 | In Wind River VxWorks 6.9 and 7, a specific crafted... |