CVE List - 2022 / May
Showing 1101 - 1200 of 2161 CVEs for May 2022 (Page 12 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-30391 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2021-22275 | 2022-05-13 | Denial of service vulnerability on Automation Runtime webserver |
| CVE-2022-27247 | 2022-05-13 | onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to... |
| CVE-2022-30387 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-28821 | 2022-05-13 | Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28822 | 2022-05-13 | Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28823 | 2022-05-13 | Adobe FrameMaker Font Parsing Use-After-Free Remote Code Execution Vulnerability |
| CVE-2022-30386 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-28824 | 2022-05-13 | Adobe FrameMaker Font Parsing Use-After-Free Remote Code Execution Vulnerability |
| CVE-2022-28825 | 2022-05-13 | Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28826 | 2022-05-13 | Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28827 | 2022-05-13 | Adobe FrameMaker SVG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28828 | 2022-05-13 | Adobe FrameMaker PDF File Parsing Out-Of-Bounds Write Code Execution Vulnerability |
| CVE-2022-25591 | 2022-05-13 | BlogEngine.NET v3.3.8.0 was discovered to contain an arbitrary file deletion... |
| CVE-2022-28829 | 2022-05-13 | Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28830 | 2022-05-13 | Adobe FrameMaker Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| CVE-2022-30385 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30384 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30381 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to file deletion via... |
| CVE-2022-30404 | 2022-05-13 | College Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30407 | 2022-05-13 | Pharmacy Sales And Inventory System v1.0 is vulnerable to SQL... |
| CVE-2022-30408 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to file... |
| CVE-2022-30417 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL... |
| CVE-2022-30415 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL... |
| CVE-2022-30414 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL... |
| CVE-2021-46785 | 2022-05-13 | The Property module has a vulnerability in permission control.This vulnerability... |
| CVE-2021-46786 | 2022-05-13 | The audio module has a vulnerability in verifying the parameters... |
| CVE-2021-46787 | 2022-05-13 | The AMS module has a vulnerability of improper permission control.Successful... |
| CVE-2021-46788 | 2022-05-13 | Third-party pop-up window coverage vulnerability in the iConnect module.Successful exploitation... |
| CVE-2022-30413 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL... |
| CVE-2021-46789 | 2022-05-13 | Configuration defects in the secure OS module. Successful exploitation of... |
| CVE-2022-22260 | 2022-05-13 | The kernel module has a UAF vulnerability.Successful exploitation of this... |
| CVE-2022-22261 | 2022-05-13 | The HiAIserver has a vulnerability in verifying the validity of... |
| CVE-2022-29789 | 2022-05-13 | The HiAIserver has a vulnerability in verifying the validity of... |
| CVE-2022-29790 | 2022-05-13 | The graphics acceleration service has a vulnerability in multi-thread access... |
| CVE-2022-29791 | 2022-05-13 | The HiAIserver has a vulnerability in verifying the validity of... |
| CVE-2022-29792 | 2022-05-13 | The chip component has a vulnerability of disclosing CPU SNs.Successful... |
| CVE-2022-30412 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL... |
| CVE-2022-29793 | 2022-05-13 | There is a configuration defect in the activation lock of... |
| CVE-2022-29794 | 2022-05-13 | The frame scheduling module has a Use After Free (UAF)... |
| CVE-2022-29795 | 2022-05-13 | The frame scheduling module has a null pointer dereference vulnerability.... |
| CVE-2022-29796 | 2022-05-13 | The HiAIserver has a vulnerability in verifying the validity of... |
| CVE-2022-30411 | 2022-05-13 | Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL... |
| CVE-2022-22252 | 2022-05-13 | The DFX module has a UAF vulnerability.Successful exploitation of this... |
| CVE-2021-27505 | 2022-05-13 | mySCADA myPRO Exposure of Information Through Directory Listing |
| CVE-2021-33005 | 2022-05-13 | mySCADA myPRO Path Traversal |
| CVE-2021-33009 | 2022-05-13 | mySCADA myPRO Unrestricted Upload of File with Dangerous Type |
| CVE-2021-33013 | 2022-05-13 | mySCADA myPRO Improper Access Control |
| CVE-2022-29433 | 2022-05-13 | https://patchstack.com/database/vulnerability/nd-donations/wordpress-donations-plugin-1-8-authenticated-stored-cross-site-scripting-xss-vulnerability |
| CVE-2022-22325 | 2022-05-13 | IBM MQ (IBM MQ for HPE NonStop 8.1.0) can inadvertently... |
| CVE-2022-22393 | 2022-05-13 | IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with... |
| CVE-2022-1715 | 2022-05-13 | Account Takeover in neorazorx/facturascripts |
| CVE-2022-1701 | 2022-05-13 | SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions uses... |
| CVE-2022-1702 | 2022-05-13 | SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept... |
| CVE-2022-22281 | 2022-05-13 | A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows... |
| CVE-2022-22282 | 2022-05-13 | SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions incorrectly... |
| CVE-2022-25865 | 2022-05-13 | Command Injection |
| CVE-2022-21190 | 2022-05-13 | Prototype Pollution |
| CVE-2022-25862 | 2022-05-13 | Prototype Pollution |
| CVE-2022-24830 | 2022-05-13 | Path Traversal in OpenClinica |
| CVE-2022-24831 | 2022-05-14 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in OpenClinica |
| CVE-2022-1379 | 2022-05-14 | URL Restriction Bypass in plantuml/plantuml |
| CVE-2022-30708 | 2022-05-15 | Webmin through 1.991, when the Authentic theme is used, allows... |
| CVE-2021-41965 | 2022-05-15 | A SQL injection vulnerability exists in ChurchCRM version 2.0.0 to... |
| CVE-2022-28929 | 2022-05-15 | Hospital Management System v1.0 was discovered to contain a SQL... |
| CVE-2022-28936 | 2022-05-15 | FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a... |
| CVE-2022-28937 | 2022-05-15 | FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a... |
| CVE-2022-28930 | 2022-05-15 | ERP-Pro v3.7.5 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-30049 | 2022-05-15 | A Server-Side Request Forgery (SSRF) in Rebuild v2.8.3 allows attackers... |
| CVE-2022-1587 | 2022-05-16 | An out-of-bounds read vulnerability was discovered in the PCRE2 library... |
| CVE-2022-1679 | 2022-05-16 | A use-after-free flaw was found in the Linux kernel’s Atheros... |
| CVE-2022-1720 | 2022-05-16 | Buffer Over-read in function grab_file_name in vim/vim |
| CVE-2022-1725 | 2022-05-16 | NULL Pointer Dereference in vim/vim |
| CVE-2022-29622 | 2022-05-16 | An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers... |
| CVE-2022-30770 | 2022-05-16 | Terminalfour versions 8.3.7, 8.3.x versions prior to version 8.3.8 and... |
| CVE-2022-30781 | 2022-05-16 | Gitea before 1.16.7 does not escape git fetch remote. |
| CVE-2022-1586 | 2022-05-16 | An out-of-bounds read vulnerability was discovered in the PCRE2 library... |
| CVE-2022-30765 | 2022-05-16 | Calibre-Web before 0.6.18 allows user table SQL Injection. |
| CVE-2022-30763 | 2022-05-16 | Janet before 1.22.0 mishandles arrays. |
| CVE-2022-30767 | 2022-05-16 | nfs_lookup_reply in net/nfs.c in Das U-Boot through 2022.04 (and through... |
| CVE-2022-30775 | 2022-05-16 | xpdf 4.04 allocates excessive memory when presented with crafted input.... |
| CVE-2022-30782 | 2022-05-16 | Openmoney API through 2020-06-29 uses the JavaScript Math.random function, which... |
| CVE-2022-29588 | 2022-05-16 | Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password... |
| CVE-2022-29587 | 2022-05-16 | Konica Minolta bizhub MFP devices before 2022-04-14 have an internal... |
| CVE-2022-29586 | 2022-05-16 | Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox... |
| CVE-2022-30011 | 2022-05-16 | In HMS 1.0 when requesting appointment.php through POST, multiple parameters... |
| CVE-2022-30012 | 2022-05-16 | In the POST request of the appointment.php page of HMS... |
| CVE-2022-29017 | 2022-05-16 | Bento4 v1.6.0.0 was discovered to contain a segmentation fault via... |
| CVE-2022-29623 | 2022-05-16 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-29354 | 2022-05-16 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-29353 | 2022-05-16 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-29351 | 2022-05-16 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-30013 | 2022-05-16 | A stored cross-site scripting (XSS) vulnerability in the upload function... |
| CVE-2021-42897 | 2022-05-16 | A remote command execution (RCE) vulnerability was found in FeMiner... |
| CVE-2022-30776 | 2022-05-16 | atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter. |
| CVE-2022-30777 | 2022-05-16 | Parallels H-Sphere 3.6.1713 allows XSS via the index_en.php from parameter. |
| CVE-2021-42870 | 2022-05-16 | ACCEL-PPP 1.12.0 has an out-of-bounds read in post_msg when processing... |
| CVE-2021-25119 | 2022-05-16 | AGIL <= 1.0 - Admin+ Arbitrary File Upload |
| CVE-2022-0867 | 2022-05-16 | ARPrice Lite < 3.6.1 - Unauthenticated SQLi |
| CVE-2022-0873 | 2022-05-16 | Gmedia Photo Gallery < 1.20.0 - Admin+ Stored Cross-Site Scripting |