CVE List - 2022 / September
Showing 1501 - 1600 of 2148 CVEs for September 2022 (Page 16 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-41228 | 2022-09-21 | A missing permission check in Jenkins NS-ND Integration Performance Publisher... |
| CVE-2022-41229 | 2022-09-21 | Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.134 and earlier does... |
| CVE-2022-41230 | 2022-09-21 | Jenkins Build-Publisher Plugin 1.22 and earlier does not perform a... |
| CVE-2022-41231 | 2022-09-21 | Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers with Item/Configure... |
| CVE-2022-41232 | 2022-09-21 | A cross-site request forgery (CSRF) vulnerability in Jenkins Build-Publisher Plugin... |
| CVE-2022-41233 | 2022-09-21 | Jenkins Rundeck Plugin 3.6.11 and earlier does not perform Run/Artifacts... |
| CVE-2022-41234 | 2022-09-21 | Jenkins Rundeck Plugin 3.6.11 and earlier does not protect access... |
| CVE-2022-41235 | 2022-09-21 | Jenkins WildFly Deployer Plugin 1.0.2 and earlier implements functionality that... |
| CVE-2022-41236 | 2022-09-21 | A cross-site request forgery (CSRF) vulnerability in Jenkins Security Inspector... |
| CVE-2022-41237 | 2022-09-21 | Jenkins DotCi Plugin 2.40.00 and earlier does not configure its... |
| CVE-2022-41238 | 2022-09-21 | A missing permission check in Jenkins DotCi Plugin 2.40.00 and... |
| CVE-2022-41239 | 2022-09-21 | Jenkins DotCi Plugin 2.40.00 and earlier does not escape the... |
| CVE-2022-41240 | 2022-09-21 | Jenkins Walti Plugin 1.0.1 and earlier does not escape the... |
| CVE-2022-41241 | 2022-09-21 | Jenkins RQM Plugin 2.8 and earlier does not configure its... |
| CVE-2022-41242 | 2022-09-21 | A missing permission check in Jenkins extreme-feedback Plugin 1.7 and... |
| CVE-2022-41243 | 2022-09-21 | Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname... |
| CVE-2022-41244 | 2022-09-21 | Jenkins View26 Test-Reporting Plugin 1.0.7 and earlier does not perform... |
| CVE-2022-41245 | 2022-09-21 | A cross-site request forgery (CSRF) vulnerability in Jenkins Worksoft Execution... |
| CVE-2022-41246 | 2022-09-21 | A missing permission check in Jenkins Worksoft Execution Manager Plugin... |
| CVE-2022-41247 | 2022-09-21 | Jenkins BigPanda Notifier Plugin 1.4.0 and earlier stores the BigPanda... |
| CVE-2022-41248 | 2022-09-21 | Jenkins BigPanda Notifier Plugin 1.4.0 and earlier does not mask... |
| CVE-2022-41249 | 2022-09-21 | A cross-site request forgery (CSRF) vulnerability in Jenkins SCM HttpClient... |
| CVE-2022-41250 | 2022-09-21 | A missing permission check in Jenkins SCM HttpClient Plugin 1.5... |
| CVE-2022-41251 | 2022-09-21 | A missing permission check in Jenkins Apprenda Plugin 2.2.0 and... |
| CVE-2022-41252 | 2022-09-21 | Missing permission checks in Jenkins CONS3RT Plugin 1.0.0 and earlier... |
| CVE-2022-41253 | 2022-09-21 | A cross-site request forgery (CSRF) vulnerability in Jenkins CONS3RT Plugin... |
| CVE-2022-41254 | 2022-09-21 | Missing permission checks in Jenkins CONS3RT Plugin 1.0.0 and earlier... |
| CVE-2022-41255 | 2022-09-21 | Jenkins CONS3RT Plugin 1.0.0 and earlier stores Cons3rt API token... |
| CVE-2022-40616 | 2022-09-21 | IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, and 7.6.1.3 could allow... |
| CVE-2022-37027 | 2022-09-21 | Ahsay AhsayCBS 9.1.4.0 allows an authenticated system user to inject... |
| CVE-2022-3251 | 2022-09-21 | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in ikus060/minarca |
| CVE-2022-3250 | 2022-09-21 | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in ikus060/rdiffweb |
| CVE-2022-40026 | 2022-09-21 | SourceCodester Simple Task Managing System v1.0 was discovered to contain... |
| CVE-2022-40027 | 2022-09-21 | SourceCodester Simple Task Managing System v1.0 was discovered to contain... |
| CVE-2022-40028 | 2022-09-21 | SourceCodester Simple Task Managing System v1.0 was discovered to contain... |
| CVE-2022-40029 | 2022-09-21 | SourceCodester Simple Task Managing System v1.0 was discovered to contain... |
| CVE-2022-40030 | 2022-09-21 | SourceCodester Simple Task Managing System v1.0 was discovered to contain... |
| CVE-2022-31679 | 2022-09-21 | Applications that allow HTTP PATCH access to resources exposed by... |
| CVE-2022-30577 | 2022-09-21 | TIBCO EBX Stored XSS vulnerability |
| CVE-2022-30578 | 2022-09-21 | TIBCO EBX Add-ons Stored XSS vulnerability |
| CVE-2022-35621 | 2022-09-21 | Access control vulnerability in Evoh NFT EvohClaimable contract with sha256... |
| CVE-2022-29799 | 2022-09-21 | A vulnerability was found in networkd-dispatcher. This flaw exists because... |
| CVE-2022-29800 | 2022-09-21 | A time-of-check-time-of-use (TOCTOU) race condition vulnerability was found in networkd-dispatcher.... |
| CVE-2022-23948 | 2022-09-21 | A flaw was found in Keylime before 6.3.0. The logic... |
| CVE-2021-43310 | 2022-09-21 | A vulnerability in Keylime before 6.3.0 allows an attacker to... |
| CVE-2022-23949 | 2022-09-21 | In Keylime before 6.3.0, unsanitized UUIDs can be passed by... |
| CVE-2022-23950 | 2022-09-21 | In Keylime before 6.3.0, Revocation Notifier uses a fixed /tmp... |
| CVE-2022-23951 | 2022-09-21 | In Keylime before 6.3.0, quote responses from the agent can... |
| CVE-2022-23952 | 2022-09-21 | In Keylime before 6.3.0, current keylime installer installs the keylime.conf... |
| CVE-2022-3252 | 2022-09-21 | Improper detection of complete HTTP body decompression SwiftNIO Extras provides... |
| CVE-2022-40219 | 2022-09-21 | WordPress FavIcon Switcher plugin <= 1.2.11 - Cross-Site Request Forgery (CSRF) vulnerability |
| CVE-2022-36386 | 2022-09-21 | WordPress Import any XML or CSV File to WordPress plugin <= 3.6.7 - Authenticated Arbitrary Code Execution vulnerability |
| CVE-2022-36390 | 2022-09-21 | WordPress Event Calendar – Calendar plugin <= 1.4.6 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability |
| CVE-2022-36383 | 2022-09-21 | WordPress Word Search Puzzles game plugin <= 2.0.1 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities |
| CVE-2022-36365 | 2022-09-21 | WordPress WHA Crossword plugin <= 1.1.10 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities |
| CVE-2022-38073 | 2022-09-21 | WordPress Awesome Support plugin <= 6.0.7 - Multiple Authenticated Persistent XSS (Additional Interested Parties) |
| CVE-2022-40217 | 2022-09-21 | WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Edit/Upload vulnerability |
| CVE-2022-3233 | 2022-09-21 | Cross-Site Request Forgery (CSRF) in ikus060/rdiffweb |
| CVE-2022-28802 | 2022-09-21 | Code by Zapier before 2022-08-17 allowed intra-account privilege escalation that... |
| CVE-2022-35895 | 2022-09-21 | An issue was discovered in Insyde InsydeH2O with kernel 5.0... |
| CVE-2022-39224 | 2022-09-21 | Arbitrary shell execution when extracting or listing files contained in a malicious rpm. |
| CVE-2022-28979 | 2022-09-21 | Liferay Portal v7.1.0 through v7.4.2 and Liferay DXP 7.1 before... |
| CVE-2022-35896 | 2022-09-21 | An issue SMM memory leak vulnerability in SMM driver (SMRAM... |
| CVE-2022-39975 | 2022-09-21 | The Layout module in Liferay Portal v7.3.3 through v7.4.3.34, and... |
| CVE-2022-28978 | 2022-09-21 | Stored cross-site scripting (XSS) vulnerability in the Site module's user... |
| CVE-2022-28982 | 2022-09-21 | A cross-site scripting (XSS) vulnerability in Liferay Portal v7.3.3 through... |
| CVE-2022-1941 | 2022-09-22 | Out of Memory issue in ProtocolBuffers for cpp and python |
| CVE-2022-38398 | 2022-09-22 | Server-Side Request Forgery Information Disclosure Vulnerability |
| CVE-2022-38648 | 2022-09-22 | PDFTranscoder does not block external resources |
| CVE-2022-40146 | 2022-09-22 | Jar url should be blocked by DefaultScriptSecurity |
| CVE-2022-3256 | 2022-09-22 | Use After Free in vim/vim |
| CVE-2022-36062 | 2022-09-22 | Grafana folders admin only permission privilege escalation |
| CVE-2022-40186 | 2022-09-22 | An issue was discovered in HashiCorp Vault and Vault Enterprise... |
| CVE-2022-28977 | 2022-09-22 | HtmlUtil.escapeRedirect in Liferay Portal 7.3.1 through 7.4.2, and Liferay DXP... |
| CVE-2022-28981 | 2022-09-22 | Path traversal vulnerability in the Hypermedia REST APIs module in... |
| CVE-2022-28980 | 2022-09-22 | Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal v7.4.3.4 and... |
| CVE-2022-38512 | 2022-09-22 | The Translation module in Liferay Portal v7.4.3.12 through v7.4.3.36, and... |
| CVE-2022-39197 | 2022-09-22 | An XSS (Cross Site Scripting) vulnerability was found in HelpSystems... |
| CVE-2022-40705 | 2022-09-22 | Apache SOAP: XML External Entity Injection (XXE) allows unauthenticated users to read arbitrary files via HTTP |
| CVE-2022-2266 | 2022-09-22 | Reflected XSS University Library Automation System |
| CVE-2022-3268 | 2022-09-22 | Weak Password Requirements in ikus060/minarca |
| CVE-2022-3267 | 2022-09-22 | Cross-Site Request Forgery (CSRF) in ikus060/rdiffweb |
| CVE-2022-40443 | 2022-09-22 | An absolute path traversal vulnerability in ZZCMS 2022 allows attackers... |
| CVE-2022-40444 | 2022-09-22 | ZZCMS 2022 was discovered to contain a full path disclosure... |
| CVE-2022-40446 | 2022-09-22 | ZZCMS 2022 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-40447 | 2022-09-22 | ZZCMS 2022 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-35408 | 2022-09-22 | An issue was discovered in Insyde InsydeH2O with kernel 5.0... |
| CVE-2022-40932 | 2022-09-22 | In Zoo Management System v1.0, there is an arbitrary file... |
| CVE-2022-40933 | 2022-09-22 | Online Pet Shop We App v1.0 by oretnom23 is vulnerable... |
| CVE-2022-40934 | 2022-09-22 | Online Pet Shop We App v1.0 is vulnerable to SQL... |
| CVE-2022-40935 | 2022-09-22 | Online Pet Shop We App v1.0 is vulnerable to SQL... |
| CVE-2021-39190 | 2022-09-22 | SCCM plugin for GLPI vulnerable to Exposure of Sensitive Information to an Unauthorized Actor |
| CVE-2022-35021 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a global buffer... |
| CVE-2022-35022 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |
| CVE-2022-35023 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |
| CVE-2022-35024 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |
| CVE-2022-35025 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |
| CVE-2022-35026 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |
| CVE-2022-35027 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |
| CVE-2022-35028 | 2022-09-22 | OTFCC commit 617837b was discovered to contain a segmentation violation... |