Lista CVE 2022/1xxx

CVE nel gruppo: 1xxx

CVE-2022-1021 (N/A)

CVE-2022-1022 (Insecure Storage of Sensitive Information in chatwoot/chatwoot)

CVE-2022-1023 (Cross-site Scripting (XSS) – Stored in chatwoot/chatwoot)

CVE-2022-1024 (Podcast Importer SecondLine < 1.3.8 - Admin+ SQLi)

CVE-2022-1025 (N/A)

CVE-2022-1026 (N/A)

CVE-2022-1027 (Kyocera Net View Address Book Exposure)

CVE-2022-1028 (Page Restriction WordPress < 1.2.7 - Admin+ Stored Cross-Site Scripting)

CVE-2022-1029 (WordPress Security < 4.2.1 - Admin+ Stored Cross-Site Scripting)

CVE-2022-1030 (Limit Login Attempts < 4.0.72 - Admin+ Stored Cross-Site Scripting)

CVE-2022-1031 (N/A)

CVE-2022-1032 (Use After Free in op_is_set_bp in radareorg/radare2)

CVE-2022-1033 (Insecure deserialization of not validated module file in crater-invoice/crater)

CVE-2022-1034 (Unrestricted Upload of File with Dangerous Type in crater-invoice/crater)

CVE-2022-1035 (There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in star7th/showdoc)

CVE-2022-1036 (Segmentation Fault caused by MP4Box -lsr in gpac/gpac)

CVE-2022-1037 (Able to create an account with long password leads to memory corruption / Integer Overflow in microweber/microweber)

CVE-2022-1038 (EXMAGE < 1.0.7 - Admin+ Blind SSRF)

CVE-2022-1039 (N/A)

CVE-2022-1040 (ICSA-22-104-03 Red Lion DA50N)

CVE-2022-1041 (N/A)

CVE-2022-1042 (Out-of-bound write vulnerability in the Bluetooth mesh core stack can be triggered during provisioning)

CVE-2022-1043 (Out-of-bound write vulnerability in the Bluetooth mesh core stack can be triggered during provisioning)

CVE-2022-1044 (N/A)

CVE-2022-1045 (Sensitive Data Exposure Due To Insecure Storage Of Profile Image in polonel/trudesk)

CVE-2022-1046 (Stored XSS viva .svg file upload in polonel/trudesk)

CVE-2022-1047 (Visual Form Builder < 3.0.7 - Admin+ Stored Cross-Site Scripting)

CVE-2022-1048 (Themify – Post Type Builder Search Addon < 1.4.0 - Reflected Cross-Site Scripting)

CVE-2022-1049 (N/A)

CVE-2022-1050 (N/A)

CVE-2022-1051 (N/A)

CVE-2022-1052 (WPQA < 5.2 - Subscriber+ Stored Cross-Site Scripting via Profile fields)

CVE-2022-1053 (Heap Buffer Overflow in iterate_chained_fixups in radareorg/radare2)

CVE-2022-1054 (N/A)

CVE-2022-1055 (RSVP and Event Management < 2.7.8 - Unauthenticated Entries Export)

CVE-2022-1056 (Use after Free in tc_new_tfilter allowing for privilege escalation in Linux Kernel)

CVE-2022-1057 (N/A)

CVE-2022-1058 (Pricing Deals for WooCommerce <= 2.0.2.02 - Unauthenticated SQLi)

CVE-2022-1059 (Open Redirect on login in go-gitea/gitea)

CVE-2022-1061 (CROSS-SITE SCRIPTING CWE-79)