CVE List - 2022 / April
Showing 901 - 1000 of 2039 CVEs for April 2022 (Page 10 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-29038 | 2022-04-12 | Jenkins Extended Choice Parameter Plugin 346.vd87693c5a_86c and earlier does not... |
| CVE-2022-29039 | 2022-04-12 | Jenkins Gerrit Trigger Plugin 2.35.2 and earlier does not escape... |
| CVE-2022-29040 | 2022-04-12 | Jenkins Git Parameter Plugin 0.9.15 and earlier does not escape... |
| CVE-2022-29041 | 2022-04-12 | Jenkins Jira Plugin 3.7 and earlier, except 3.6.1, does not... |
| CVE-2022-29042 | 2022-04-12 | Jenkins Job Generator Plugin 1.22 and earlier does not escape... |
| CVE-2022-29043 | 2022-04-12 | Jenkins Mask Passwords Plugin 3.0 and earlier does not escape... |
| CVE-2022-29044 | 2022-04-12 | Jenkins Node and Label parameter Plugin 1.10.3 and earlier does... |
| CVE-2022-29046 | 2022-04-12 | Jenkins Subversion Plugin 2.15.3 and earlier does not escape the... |
| CVE-2022-29047 | 2022-04-12 | Jenkins Pipeline: Shared Groovy Libraries Plugin 564.ve62a_4eb_b_e039 and earlier, except... |
| CVE-2022-29048 | 2022-04-12 | A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Plugin... |
| CVE-2022-29050 | 2022-04-12 | A cross-site request forgery (CSRF) vulnerability in Jenkins Publish Over... |
| CVE-2022-29051 | 2022-04-12 | Missing permission checks in Jenkins Publish Over FTP Plugin 1.16... |
| CVE-2022-29052 | 2022-04-12 | Jenkins Google Compute Engine Plugin 4.3.8 and earlier stores private... |
| CVE-2022-27419 | 2022-04-12 | rtl_433 21.12 was discovered to contain a stack overflow in... |
| CVE-2022-1330 | 2022-04-12 | stored xss due to unsantized anchor url in alvarotrigo/fullpage.js |
| CVE-2021-44520 | 2022-04-12 | In Citrix XenMobile Server through 10.12 RP9, there is an... |
| CVE-2022-26151 | 2022-04-12 | Citrix XenMobile Server 10.12 through RP11, 10.13 through RP7, and... |
| CVE-2022-26589 | 2022-04-12 | A Cross-Site Request Forgery (CSRF) in Pluck CMS v4.7.15 allows... |
| CVE-2015-20107 | 2022-04-13 | In Python (aka CPython) up to 3.10.8, the mailcap module... |
| CVE-2022-25795 | 2022-04-13 | A Memory Corruption Vulnerability in Autodesk TrueView 2022 and 2021... |
| CVE-2022-25797 | 2022-04-13 | A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021,... |
| CVE-2022-22956 | 2022-04-13 | VMware Workspace ONE Access has two authentication bypass vulnerabilities (CVE-2022-22955... |
| CVE-2022-22957 | 2022-04-13 | VMware Workspace ONE Access, Identity Manager and vRealize Automation contain... |
| CVE-2022-22960 | 2022-04-13 | VMware Workspace ONE Access, Identity Manager and vRealize Automation contain... |
| CVE-2022-22279 | 2022-04-13 | A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote... |
| CVE-2022-29156 | 2022-04-13 | drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double... |
| CVE-2022-1339 | 2022-04-13 | SQL injection in ElementController.php in pimcore/pimcore |
| CVE-2022-27475 | 2022-04-13 | Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows attackers... |
| CVE-2020-29653 | 2022-04-13 | Froxlor through 0.10.22 does not perform validation on user input... |
| CVE-2022-24308 | 2022-04-13 | Automox Agent prior to version 37 on Windows and Linux... |
| CVE-2021-43742 | 2022-04-13 | CMSimple 5.4 is vulnerable to Cross Site Scripting (XSS) via... |
| CVE-2021-43741 | 2022-04-13 | CMSimple 5.4 is vulnerable to Directory Traversal. The vulnerability exists... |
| CVE-2022-26643 | 2022-04-13 | An issue in EasyIO CPT Graphics v0.8 allows attackers to... |
| CVE-2022-27256 | 2022-04-13 | A PHP Local File inclusion vulnerability in the Redbasic theme... |
| CVE-2022-26144 | 2022-04-13 | An XSS issue was discovered in MantisBT before 2.25.3. Improper... |
| CVE-2022-28052 | 2022-04-13 | Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function store in... |
| CVE-2021-46167 | 2022-04-13 | An access control issue in the authentication module of wizplat... |
| CVE-2021-42136 | 2022-04-13 | A stored Cross-Site Scripting (XSS) vulnerability in the Missing Data... |
| CVE-2022-1280 | 2022-04-13 | A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in... |
| CVE-2022-27847 | 2022-04-13 | WordPress Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Template Import |
| CVE-2022-27846 | 2022-04-13 | WordPress Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Slider Creation / Modification |
| CVE-2022-22959 | 2022-04-13 | VMware Workspace ONE Access, Identity Manager and vRealize Automation contain... |
| CVE-2022-27503 | 2022-04-13 | Cross-site Scripting (XSS) vulnerability in Citrix StoreFront affects version 1912... |
| CVE-2022-22961 | 2022-04-13 | VMware Workspace ONE Access, Identity Manager and vRealize Automation contain... |
| CVE-2022-22955 | 2022-04-13 | VMware Workspace ONE Access has two authentication bypass vulnerabilities (CVE-2022-22955... |
| CVE-2022-22958 | 2022-04-13 | VMware Workspace ONE Access, Identity Manager and vRealize Automation contain... |
| CVE-2022-1337 | 2022-04-13 | OOM DoS in Mattermost image proxy |
| CVE-2022-1333 | 2022-04-13 | A specifically drafted Playbook could trigger large amount of webhook requests leading to Denial of Service |
| CVE-2022-1332 | 2022-04-13 | Restricted custom admin role can bypass the restrictions and view the server logs and server config.json file contents |
| CVE-2022-27506 | 2022-04-13 | Hard-coded credentials allow administrators to access the shell via the... |
| CVE-2022-27505 | 2022-04-13 | Reflected cross site scripting (XSS) |
| CVE-2022-27523 | 2022-04-13 | A buffer over-read can be exploited in Autodesk TrueView 2022... |
| CVE-2022-27524 | 2022-04-13 | An out-of-bounds read can be exploited in Autodesk TrueView 2022... |
| CVE-2022-1344 | 2022-04-13 | Stored XSS due to no sanitization in the filename in causefx/organizr |
| CVE-2022-1346 | 2022-04-13 | Multiple Stored XSS in causefx/organizr |
| CVE-2022-1345 | 2022-04-13 | Stored XSS viva .svg file upload in causefx/organizr |
| CVE-2022-1347 | 2022-04-13 | Stored XSS in the "Username" & "Email" input fields leads to account takeover of Admin & Co-admin users in causefx/organizr |
| CVE-2021-41119 | 2022-04-13 | DoS vulnerabiliity in wire-server json parser |
| CVE-2022-24788 | 2022-04-13 | Buffer overflow in Vyper |
| CVE-2022-0023 | 2022-04-13 | PAN-OS: Denial-of-Service (DoS) Vulnerability in DNS Proxy |
| CVE-2022-27479 | 2022-04-13 | SQL injection vulnerability in chart data API |
| CVE-2022-24816 | 2022-04-13 | Improper Control of Generation of Code in jai-ext |
| CVE-2022-24818 | 2022-04-13 | Unchecked JNDI lookups in GeoTools |
| CVE-2022-24828 | 2022-04-13 | Missing input validation can lead to command execution in composer |
| CVE-2022-24844 | 2022-04-13 | SQL Injection in github.com/flipped-aurora/gin-vue-admin |
| CVE-2022-24843 | 2022-04-13 | Path Traversal in github.com/flipped-aurora/gin-vue-admin |
| CVE-2022-24845 | 2022-04-13 | Integer bounds error in Vyper |
| CVE-2022-24847 | 2022-04-13 | Improper Input Validation in GeoServer |
| CVE-2021-43154 | 2022-04-13 | Cross Site Scripting (XSS) vulnerability exists in CMS Made Simple... |
| CVE-2022-1328 | 2022-04-14 | Buffer Overflow in uudecoder in Mutt affecting all versions starting... |
| CVE-2022-1350 | 2022-04-14 | GhostPCL gsmchunk.c chunk_free_object memory corruption |
| CVE-2022-1279 | 2022-04-14 | Insecure EBICS messages encryption implementation in ebics-java/ebics-java-client could allow an adjacent attacker to decrypt EBICS payloads |
| CVE-2022-1351 | 2022-04-14 | Stored XSS in Tooltip in pimcore/pimcore |
| CVE-2021-43287 | 2022-04-14 | An issue was discovered in ThoughtWorks GoCD before 21.3.0. The... |
| CVE-2022-26507 | 2022-04-14 | A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in... |
| CVE-2021-43633 | 2022-04-14 | Sourcecodester Messaging Web Application 1.0 is vulnerable to stored XSS.... |
| CVE-2021-43290 | 2022-04-14 | An issue was discovered in ThoughtWorks GoCD before 21.3.0. An... |
| CVE-2021-43289 | 2022-04-14 | An issue was discovered in ThoughtWorks GoCD before 21.3.0. An... |
| CVE-2021-43288 | 2022-04-14 | An issue was discovered in ThoughtWorks GoCD before 21.3.0. An... |
| CVE-2021-43286 | 2022-04-14 | An issue was discovered in ThoughtWorks GoCD before 21.3.0. An... |
| CVE-2022-27444 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27445 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27446 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27447 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27448 | 2022-04-14 | There is an Assertion failure in MariaDB Server v10.9 and... |
| CVE-2022-27449 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27451 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27452 | 2022-04-14 | MariaDB Server v10.9 and below was discovered to contain a... |
| CVE-2022-27455 | 2022-04-14 | MariaDB Server v10.6.3 and below was discovered to contain an... |
| CVE-2022-27456 | 2022-04-14 | MariaDB Server v10.6.3 and below was discovered to contain an... |
| CVE-2022-27457 | 2022-04-14 | MariaDB Server v10.6.3 and below was discovered to contain an... |
| CVE-2022-1256 | 2022-04-14 | Improper Privilege Management in McAfee Agent for Windows |
| CVE-2022-1258 | 2022-04-14 | SQL injection vulnerability in McAfee Agent's ePO extension |
| CVE-2022-1257 | 2022-04-14 | Improper Verification of Cryptographic Signature by McAfee Agent |
| CVE-2021-45228 | 2022-04-14 | An XSS issue was discovered in COINS Construction Cloud 11.12.... |
| CVE-2022-27008 | 2022-04-14 | nginx njs 0.7.2 is vulnerable to Buffer Overflow. Type confused... |
| CVE-2022-27007 | 2022-04-14 | nginx njs 0.7.2 is affected suffers from Use-after-free in njs_function_frame_alloc()... |
| CVE-2021-45227 | 2022-04-14 | An issue was discovered in COINS Construction Cloud 11.12. Due... |
| CVE-2022-25166 | 2022-04-14 | An issue was discovered in Amazon AWS VPN Client 2.0.0.... |
| CVE-2022-25165 | 2022-04-14 | An issue was discovered in Amazon AWS VPN Client 2.0.0.... |