CVE List - 2022 / April
Showing 801 - 900 of 2039 CVEs for April 2022 (Page 9 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-27165 | 2022-04-12 | CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Plugin_manager_setstatus |
| CVE-2022-28032 | 2022-04-12 | AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php |
| CVE-2022-28033 | 2022-04-12 | Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_uploads.php |
| CVE-2022-28034 | 2022-04-12 | AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php |
| CVE-2022-28035 | 2022-04-12 | Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php |
| CVE-2022-28036 | 2022-04-12 | AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php |
| CVE-2022-21803 | 2022-04-12 | Prototype Pollution |
| CVE-2021-31805 | 2022-04-12 | Forced OGNL evaluation, when evaluated on raw not validated user input in tag attributes, may lead to RCE. |
| CVE-2022-27472 | 2022-04-12 | SQL injection vulnerability in Topics Counting feature of Roothub 2.6.0... |
| CVE-2022-27473 | 2022-04-12 | SQL injection vulnerability in Topics Searching feature of Roothub 2.6.0... |
| CVE-2021-42255 | 2022-04-12 | AppGuard Enterprise before 6.7.100.1 creates a Temporary File in a... |
| CVE-2021-36914 | 2022-04-12 | WordPress CalderaWP License Manager plugin <= 1.2.11 - Cross-Site Request Forgery (CSRF) vulnerability leading to Reflected Cross-Site Scripting (XSS) |
| CVE-2022-26107 | 2022-04-12 | When a user opens a manipulated Jupiter Tesselation (.jt, JTReader.x3d)... |
| CVE-2022-27667 | 2022-04-12 | Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management... |
| CVE-2022-26109 | 2022-04-12 | When a user opens a manipulated Portable Document Format (.pdf,... |
| CVE-2022-26105 | 2022-04-12 | SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30,... |
| CVE-2022-26108 | 2022-04-12 | When a user opens a manipulated Picture Exchange (.pcx, 2d.x3d)... |
| CVE-2022-26106 | 2022-04-12 | When a user opens a manipulated Computer Graphics Metafile (.cgm,... |
| CVE-2022-27655 | 2022-04-12 | When a user opens a manipulated Universal 3D (.u3d, 3difr.x3d)... |
| CVE-2022-22541 | 2022-04-12 | SAP BusinessObjects Business Intelligence Platform - versions 420, 430, may... |
| CVE-2022-27670 | 2022-04-12 | SAP SQL Anywhere - version 17.0, allows an authenticated attacker... |
| CVE-2022-27654 | 2022-04-12 | When a user opens a manipulated Photoshop Document (.psd, 2d.x3d)... |
| CVE-2022-28213 | 2022-04-12 | When a user access SOAP Web services in SAP BusinessObjects... |
| CVE-2022-28216 | 2022-04-12 | SAP BusinessObjects Business Intelligence Platform (BI Workspace) - version 420,... |
| CVE-2022-28770 | 2022-04-12 | Due to insufficient input validation, SAPUI5 library(vbm) - versions 750,... |
| CVE-2022-27657 | 2022-04-12 | A highly privileged remote attacker, can gain unauthorized access to... |
| CVE-2022-28773 | 2022-04-12 | Due to an uncontrolled recursion in SAP Web Dispatcher and... |
| CVE-2022-27669 | 2022-04-12 | An unauthenticated user can use functions of XML Data Archiving... |
| CVE-2022-27671 | 2022-04-12 | A CSRF token visible in the URL may possibly lead... |
| CVE-2022-28772 | 2022-04-12 | By overlong input values an attacker may force overwrite of... |
| CVE-2022-28215 | 2022-04-12 | SAP NetWeaver ABAP Server and ABAP Platform - versions 740,... |
| CVE-2022-28795 | 2022-04-12 | A vulnerability within the Avira Password Manager Browser Extensions provided... |
| CVE-2021-41004 | 2022-04-12 | A remote vulnerability was discovered in Aruba Instant On 1930... |
| CVE-2021-41005 | 2022-04-12 | A remote vulnerability was discovered in Aruba Instant On 1930... |
| CVE-2022-23702 | 2022-04-12 | A potential security vulnerability has been identified in HPE Superdome... |
| CVE-2022-23703 | 2022-04-12 | A security vulnerability has been identified in HPE Nimble Storage... |
| CVE-2021-0694 | 2022-04-12 | In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for... |
| CVE-2021-0707 | 2022-04-12 | In dma_buf_release of dma-buf.c, there is a possible memory corruption... |
| CVE-2021-39794 | 2022-04-12 | In broadcastPortInfo of AdbService.java, there is a possible way for... |
| CVE-2021-39796 | 2022-04-12 | In HarmfulAppWarningActivity of HarmfulAppWarningActivity.java, there is a possible way to... |
| CVE-2021-39797 | 2022-04-12 | In several functions of of LauncherApps.java, there is a possible... |
| CVE-2021-39798 | 2022-04-12 | In Bitmap_createFromParcel of Bitmap.cpp, there is a possible arbitrary code... |
| CVE-2021-39799 | 2022-04-12 | In AttributionSource of AttributionSource.java, there is a possible permission bypass... |
| CVE-2021-39800 | 2022-04-12 | In ion_ioctl of ion-ioctl.c, there is a possible way to... |
| CVE-2021-39801 | 2022-04-12 | In ion_ioctl of ion-ioctl.c, there is a possible use after... |
| CVE-2021-39802 | 2022-04-12 | In change_pte_range of mprotect.c , there is a possible way... |
| CVE-2021-39803 | 2022-04-12 | In ~Impl of C2AllocatorIon.cpp, there is a possible out of... |
| CVE-2021-39804 | 2022-04-12 | In reinit of HeifDecoderImpl.cpp, there is a possible crash due... |
| CVE-2021-39805 | 2022-04-12 | In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of... |
| CVE-2021-39807 | 2022-04-12 | In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to... |
| CVE-2021-39808 | 2022-04-12 | In createNotificationChannelGroup of PreferencesHelper.java, there is a possible way for... |
| CVE-2021-39809 | 2022-04-12 | In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of... |
| CVE-2022-21168 | 2022-04-12 | ICSA-22-090-03 Fuji Electric Alpha5 |
| CVE-2022-21214 | 2022-04-12 | ICSA-22-090-03 Fuji Electric Alpha5 |
| CVE-2022-21228 | 2022-04-12 | ICSA-22-090-03 Fuji Electric Alpha5 |
| CVE-2022-24383 | 2022-04-12 | ICSA-22-090-03 Fuji Electric Alpha5 |
| CVE-2021-39812 | 2022-04-12 | In TBD of TBD, there is a possible out of... |
| CVE-2022-21202 | 2022-04-12 | ICSA-22-090-03 Fuji Electric Alpha5 |
| CVE-2021-39814 | 2022-04-12 | In ppmp_validate_wsm of drm_fw.c, there is a possible out of... |
| CVE-2022-21155 | 2022-04-12 | Fernhill SCADA Uncontrolled Resource Consumption |
| CVE-2022-27139 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-27260 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload component... |
| CVE-2022-27261 | 2022-04-12 | An arbitrary file write vulnerability in Express-FileUpload v1.3.1 allows attackers... |
| CVE-2022-27262 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-27263 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-27952 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-28397 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-24812 | 2022-04-12 | FGAC API Key privilege escalation in Grafana |
| CVE-2022-24842 | 2022-04-12 | Improper Privilege Management in MinIO |
| CVE-2021-28544 | 2022-04-12 | Apache Subversion SVN authz protected copyfrom paths regression |
| CVE-2022-24070 | 2022-04-12 | Apache Subversion mod_dav_svn is vulnerable to memory corruption |
| CVE-2022-22549 | 2022-04-12 | Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Validation. A... |
| CVE-2022-22550 | 2022-04-12 | Dell PowerScale OneFS, versions 8.2.2 and above, contain a password... |
| CVE-2022-22559 | 2022-04-12 | Dell PowerScale OneFS, version 9.3.0, contains a use of a... |
| CVE-2022-22560 | 2022-04-12 | Dell EMC PowerScale OneFS 8.1.x - 9.1.x contain hard coded... |
| CVE-2022-22561 | 2022-04-12 | Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contain an improper restriction of... |
| CVE-2022-22562 | 2022-04-12 | Dell PowerScale OneFS, versions 8.2.0-9.3.0, contain a improper handling of... |
| CVE-2022-22565 | 2022-04-12 | Dell PowerScale OneFS, versions 9.0.0-9.3.0, contain an improper authorization of... |
| CVE-2022-23159 | 2022-04-12 | Dell PowerScale OneFS, 8.2.2 - 9.3.0.x, contain a missing release... |
| CVE-2022-23160 | 2022-04-12 | Dell PowerScale OneFS, versions 8.2.0-9.3.0, contains an Improper Handling of... |
| CVE-2022-23161 | 2022-04-12 | Dell PowerScale OneFS versions 8.2.x - 9.3.0.x contain a denial-of-service... |
| CVE-2022-23163 | 2022-04-12 | Dell PowerScale OneFS, 8.2,x, 9.1.0.x, 9.2.1.x, and 9.3.0.x contain a... |
| CVE-2022-24411 | 2022-04-12 | Dell PowerScale OneFS 8.2.2 and above contain an elevation of... |
| CVE-2022-24412 | 2022-04-12 | Dell EMC PowerScale OneFS 8.2.x - 9.3.0.x contain an improper... |
| CVE-2022-24413 | 2022-04-12 | Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-to-time-of-use vulnerability. A... |
| CVE-2022-24767 | 2022-04-12 | GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when... |
| CVE-2022-0915 | 2022-04-12 | Logitech Sync desktop application prior to 2.4.574 - TOCTOU during installation leads to privelege escalation |
| CVE-2022-27376 | 2022-04-12 | MariaDB Server v10.6.5 and below was discovered to contain an... |
| CVE-2022-27377 | 2022-04-12 | MariaDB Server v10.6.3 and below was discovered to contain an... |
| CVE-2022-27378 | 2022-04-12 | An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7... |
| CVE-2022-27379 | 2022-04-12 | An issue in the component Arg_comparator::compare_real_fixed of MariaDB Server v10.6.2... |
| CVE-2022-27380 | 2022-04-12 | An issue in the component my_decimal::operator= of MariaDB Server v10.6.3... |
| CVE-2022-27381 | 2022-04-12 | An issue in the component Field::set_default of MariaDB Server v10.6... |
| CVE-2022-27382 | 2022-04-12 | MariaDB Server v10.7 and below was discovered to contain a... |
| CVE-2022-27383 | 2022-04-12 | MariaDB Server v10.6 and below was discovered to contain an... |
| CVE-2022-27384 | 2022-04-12 | An issue in the component Item_subselect::init_expr_cache_tracker of MariaDB Server v10.6... |
| CVE-2022-27385 | 2022-04-12 | An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7... |
| CVE-2022-27386 | 2022-04-12 | MariaDB Server v10.7 and below was discovered to contain a... |
| CVE-2022-27387 | 2022-04-12 | MariaDB Server v10.7 and below was discovered to contain a... |
| CVE-2022-29037 | 2022-04-12 | Jenkins CVS Plugin 2.19 and earlier does not escape the... |