Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
storage project storage vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2022-30123
A sequence injection vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 which could allow is a possible shell escape in the Lint and CommonLogger components of Rack.
Rack Project Rack
Debian Debian Linux 11.0
9.8
CVSSv3
CVE-2022-41912
The crewjam/saml go library prior to version 0.4.9 is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements. This issue has been corrected in version 0.4.9. There are no workarounds other than upgrading to a fixed version.
Saml Project Saml
6.5
CVSSv3
CVE-2022-45914
The ESL (Electronic Shelf Label) protocol, as implemented by (for example) the OV80e934802 RF transceiver on the ETAG-2130-V4.3 20190629 board, does not use authentication, which allows malicious users to change label values via 433 MHz RF signals, as demonstrated by disrupting t...
Electronic Shelf Label Protocol Project Electronic Shelf Label Protocol -
6.5
CVSSv3
CVE-2022-29832
Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated malicious user to disclose sensitive informa...
Mitsubishielectric Gx Works3
7.5
CVSSv3
CVE-2022-29826
Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control Setting(GX Works3 related software) versions from 1.000A to 1.042U allows a remote unauthenticated malicious user to disclose sensitive info...
Mitsubishielectric Gx Works3
5.4
CVSSv3
CVE-2022-43117
Sourcecodester Password Storage Application in PHP/OOP and MySQL 1.0 exists to contain multiple cross-site scripting (XSS) vulnerabilities via the Name, Username, Description and Site Feature parameters.
Password Storage Application Project Password Storage Application 1.0
1 Github repository
6.1
CVSSv3
CVE-2022-43142
A cross-site scripting (XSS) vulnerability in the add-fee.php component of Password Storage Application v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter.
Password Storage Application Project Password Storage Application 1.0
7.2
CVSSv3
CVE-2022-43229
Simple Cold Storage Management System v1.0 exists to contain a SQL injection vulnerability via the id parameter at /bookings/update_status.php.
Simple Cold Storage Management System Project Simple Cold Storage Managment System 1.0
7.2
CVSSv3
CVE-2022-43230
Simple Cold Storage Management System v1.0 exists to contain a SQL injection vulnerability via the id parameter at /admin/?page=bookings/view_details.
Simple Cold Storage Management System Project Simple Cold Storage Managment System 1.0
5.4
CVSSv3
CVE-2022-42993
Password Storage Application v1.0 exists to contain a cross-site scripting (XSS) vulnerability via the Setup page.
Password Storage Application Project Password Storage Application 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »