CVE List - 2022 / April
Showing 1401 - 1500 of 2039 CVEs for April 2022 (Page 15 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-0737 | 2022-04-18 | Text Hover < 4.2 - Admin+ Stored Cross-Site Scripting |
| CVE-2022-0765 | 2022-04-18 | Loco Translate < 2.6.1 - Authenticated Stored Cross-Site Scripting |
| CVE-2022-0780 | 2022-04-18 | SearchIQ < 3.9 - Unauthenticated Stored XSS |
| CVE-2022-0785 | 2022-04-18 | Daily Prayer Time < 2022.03.01 - Unauthenticated SQLi |
| CVE-2022-0879 | 2022-04-18 | Caldera Forms < 1.9.7 - Reflected Cross-Site Scripting |
| CVE-2022-0994 | 2022-04-18 | Hummingbird < 3.3.2 - Admin+ Stored Cross-Site Scripting |
| CVE-2022-1001 | 2022-04-18 | WP Downgrade < 1.2.3 - Admin+ Stored Cross-Site Scripting |
| CVE-2022-1020 | 2022-04-18 | Woo Product Table < 3.1.2 - Unauthenticated Arbitrary Function Call |
| CVE-2022-1037 | 2022-04-18 | EXMAGE < 1.0.7 - Admin+ Blind SSRF |
| CVE-2022-1054 | 2022-04-18 | RSVP and Event Management < 2.7.8 - Unauthenticated Entries Export |
| CVE-2022-1063 | 2022-04-18 | Thank Me Later <= 3.3.4 - Admin+ Stored Cross-Site Scripting |
| CVE-2022-1088 | 2022-04-18 | Page Security & Membership <= 1.5.15 - Admin+ Stored Cross-Site Scripting |
| CVE-2022-1090 | 2022-04-18 | Good & Bad Comments <= 1.0.0 - Admin+ Stored Cross-Site Scripting |
| CVE-2022-1091 | 2022-04-18 | Safe SVG < 1.9.10 - SVG Sanitisation Bypass |
| CVE-2022-1112 | 2022-04-18 | Autolinks <= 1.0.1 - Stored Cross-Site Scripting via CSRF |
| CVE-2022-24863 | 2022-04-18 | Denial of service in http-swagger |
| CVE-2022-29457 | 2022-04-18 | Zoho ManageEngine ADSelfService Plus before 6121, ADAuditPlus 7060, Exchange Reporter... |
| CVE-2022-24841 | 2022-04-18 | Improper Authorization in github.com/fleetdm/fleet |
| CVE-2022-29153 | 2022-04-19 | HashiCorp Consul and Consul Enterprise up to 1.9.16, 1.10.9, and... |
| CVE-2022-1329 | 2022-04-19 | Elementor Website Builder 3.6.0 - 3.6.2 - Missing Authorization to Remote Code Execution |
| CVE-2022-28108 | 2022-04-19 | Selenium Server (Grid) before 4 allows CSRF because it permits... |
| CVE-2022-1065 | 2022-04-19 | Multi Factor Authentication Bypass in various versions of Abacus ERP |
| CVE-2022-0645 | 2022-04-19 | Open redirect vulnerability via endpoint authorize_and_redirect/?redirect= in posthog/posthog |
| CVE-2021-43129 | 2022-04-19 | A bypass exists for Desire2Learn/D2L Brightspace’s “Disable Right Click” option... |
| CVE-2022-27927 | 2022-04-19 | A SQL injection vulnerability exists in Microfinance Management System 1.0... |
| CVE-2021-41570 | 2022-04-19 | Veritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup... |
| CVE-2022-26593 | 2022-04-19 | Cross-site scripting (XSS) vulnerability in the Asset module's asset categories... |
| CVE-2022-26595 | 2022-04-19 | Liferay Portal 7.3.7, 7.4.0, and 7.4.1, and Liferay DXP 7.2... |
| CVE-2022-29315 | 2022-04-19 | Invicti Acunetix before 14 allows CSV injection via the Description... |
| CVE-2021-44519 | 2022-04-19 | In Citrix XenMobile Server through 10.12 RP9, there is an... |
| CVE-2021-39033 | 2022-04-19 | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and... |
| CVE-2021-39072 | 2022-04-19 | IBM Security Guardium 11.3 could allow a remote attacker to... |
| CVE-2021-39076 | 2022-04-19 | IBM Security Guardium 10.5 and 11.3 uses weaker than expected... |
| CVE-2021-39078 | 2022-04-19 | IBM Security Guardium 10.5 stores user credentials in plain clear... |
| CVE-2022-25648 | 2022-04-19 | Command Injection |
| CVE-2022-27055 | 2022-04-19 | ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When... |
| CVE-2022-27104 | 2022-04-19 | An Unauthenticated time-based blind SQL injection vulnerability exists in Forma... |
| CVE-2022-24825 | 2022-04-19 | Smokescreen SSRF via deny list bypass |
| CVE-2022-27862 | 2022-04-19 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 - Arbitrary File Upload leading to RCE |
| CVE-2022-27863 | 2022-04-19 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 - Sensitive Data Exposure vulnerability |
| CVE-2022-1385 | 2022-04-19 | Invitation Email is resent as a Reminder after invalidating pending email invites |
| CVE-2022-1384 | 2022-04-19 | Authorized users are allowed to install old plugin versions from the Marketplace |
| CVE-2021-26627 | 2022-04-19 | EDrhyme QCP 200W Information Exposure Vulnerability |
| CVE-2021-26625 | 2022-04-19 | tobesoft Nexacro arbitrary file download vulnerability |
| CVE-2021-26626 | 2022-04-19 | tobesoft XPLATFORM Arbitrary file execution Vulnerability |
| CVE-2022-25788 | 2022-04-19 | A maliciously crafted JT file in Autodesk AutoCAD 2022 may... |
| CVE-2022-27527 | 2022-04-19 | A Memory Corruption vulnerability may lead to code execution through... |
| CVE-2022-0992 | 2022-04-19 | The SiteGround Security plugin for WordPress is vulnerable to authentication... |
| CVE-2022-28221 | 2022-04-19 | CleanTalk AntiSpam <= 5.173 Reflected XSS |
| CVE-2022-1119 | 2022-04-19 | The Simple File List WordPress plugin is vulnerable to Arbitrary... |
| CVE-2022-1187 | 2022-04-19 | The WordPress WP YouTube Live Plugin is vulnerable to Reflected... |
| CVE-2022-0993 | 2022-04-19 | The SiteGround Security plugin for WordPress is vulnerable to authentication... |
| CVE-2021-4096 | 2022-04-19 | Fancy Product Designer <= 4.7.5 - Cross-Site Request Forgery to Arbitrary File Upload |
| CVE-2022-1186 | 2022-04-19 | The WordPress plugin Be POPIA Compliant exposed sensitive information to... |
| CVE-2022-28222 | 2022-04-19 | CleanTalk AntiSpam <= 5.173 Reflected XSS |
| CVE-2021-23283 | 2022-04-19 | Security issues in Eaton Intelligent Power Protector (IPP) |
| CVE-2022-21404 | 2022-04-19 | Vulnerability in the Helidon product of Oracle Fusion Middleware (component:... |
| CVE-2022-21405 | 2022-04-19 | Vulnerability in the OSS Support Tools product of Oracle Support... |
| CVE-2022-21409 | 2022-04-19 | Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle... |
| CVE-2022-21410 | 2022-04-19 | Vulnerability in the Oracle Database - Enterprise Edition Sharding component... |
| CVE-2022-21411 | 2022-04-19 | Vulnerability in the RDBMS Gateway / Generic ODBC Connectivity component... |
| CVE-2022-21412 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21413 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21414 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21415 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21416 | 2022-04-19 | Vulnerability in the Oracle Solaris product of Oracle Systems (component:... |
| CVE-2022-21417 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21418 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21419 | 2022-04-19 | Vulnerability in the Oracle Business Intelligence Enterprise Edition product of... |
| CVE-2022-21420 | 2022-04-19 | Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware... |
| CVE-2022-21421 | 2022-04-19 | Vulnerability in the Oracle Business Intelligence Enterprise Edition product of... |
| CVE-2022-21422 | 2022-04-19 | Vulnerability in the Oracle Communications Billing and Revenue Management product... |
| CVE-2022-21423 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21424 | 2022-04-19 | Vulnerability in the Oracle Communications Billing and Revenue Management product... |
| CVE-2022-21425 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21426 | 2022-04-19 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition... |
| CVE-2022-21427 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21430 | 2022-04-19 | Vulnerability in the Oracle Communications Billing and Revenue Management product... |
| CVE-2022-21431 | 2022-04-19 | Vulnerability in the Oracle Communications Billing and Revenue Management product... |
| CVE-2022-21434 | 2022-04-19 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition... |
| CVE-2022-21435 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21436 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21437 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21438 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21440 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21441 | 2022-04-19 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2022-21442 | 2022-04-19 | Vulnerability in Oracle GoldenGate (component: OGG Core Library). The supported... |
| CVE-2022-21443 | 2022-04-19 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition... |
| CVE-2022-21444 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21445 | 2022-04-19 | Vulnerability in the Oracle Application Development Framework (ADF) product of... |
| CVE-2022-21446 | 2022-04-19 | Vulnerability in the Oracle Solaris product of Oracle Systems (component:... |
| CVE-2022-21447 | 2022-04-19 | Vulnerability in the PeopleSoft Enterprise CS Academic Advisement product of... |
| CVE-2022-21448 | 2022-04-19 | Vulnerability in the Oracle Business Intelligence Enterprise Edition product of... |
| CVE-2022-21449 | 2022-04-19 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition... |
| CVE-2022-21450 | 2022-04-19 | Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub product of... |
| CVE-2022-21451 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21452 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21453 | 2022-04-19 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2022-21454 | 2022-04-19 | Vulnerability in the MySQL Server product of Oracle MySQL (component:... |
| CVE-2022-21456 | 2022-04-19 | Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft... |