Lista CVE 2022/2xxx

CVE nel gruppo: 2xxx

CVE-2022-2046 (N/A)

CVE-2022-2047 (Directorist – Business Directory Plugin < 7.2.3 - Admin+ Arbitrary File Upload)

CVE-2022-2048 (N/A)

CVE-2022-2049 (N/A)

CVE-2022-2050 (N/A)

CVE-2022-2052 (WP Paginate < 2.1.9 - Admin+ Stored Cross-Site Scripting)

CVE-2022-2053 (TRUMPF TruTops default user accounts vulnerability)

CVE-2022-2054 (N/A)

CVE-2022-2056 (Code Injection in nuitka/nuitka)

CVE-2022-2057 (N/A)

CVE-2022-2058 (N/A)

CVE-2022-2059 (N/A)

CVE-2022-2060 (Stored Cross Site-Scripting in Agent Manager)

CVE-2022-2061 (Cross-site Scripting (XSS) – Stored in dolibarr/dolibarr)

CVE-2022-2062 (Heap-based Buffer Overflow in hpjansson/chafa)

CVE-2022-2063 (Generation of Error Message Containing Sensitive Information in nocodb/nocodb)

CVE-2022-2064 (Improper Privilege Management in nocodb/nocodb)

CVE-2022-2065 (Insufficient Session Expiration in nocodb/nocodb)

CVE-2022-2066 (Cross-site Scripting (XSS) – Stored in neorazorx/facturascripts)

CVE-2022-2067 (Cross-site Scripting (XSS) – Reflected in neorazorx/facturascripts)

CVE-2022-2068 ( SQL Injection in francoisjacquet/rosariosis)

CVE-2022-2069 (The c_rehash script allows command injection)

CVE-2022-2070 ( Datalogics APDFL library Heap-based Buffer Overflow)

CVE-2022-2071 (Grandstream GSD3710 Stack-based Buffer Overflow)

CVE-2022-2072 (Name Directory < 1.25.4 - Stored Cross-Site Scripting via CSRF)

CVE-2022-2073 (Name Directory < 1.25.3 - Reflected Cross-Site Scripting)

CVE-2022-2074 ( Code Injection in getgrav/grav)

CVE-2022-2075 (N/A)

CVE-2022-2076 (N/A)

CVE-2022-2077 (N/A)

CVE-2022-2078 (N/A)

CVE-2022-2079 (N/A)

CVE-2022-2080 (Cross-site Scripting (XSS) – Stored in nocodb/nocodb)

CVE-2022-2081 (Sensei LMS < 4.5.2 - Arbitrary Private Message Sending via IDOR)

CVE-2022-2083 (N/A)

CVE-2022-2084 (Simple Single Sign On <= 4.1.0 - Authentication Bypass)

CVE-2022-2085 (sensitive data exposure in cloud-init logs)

CVE-2022-2086 (N/A)

CVE-2022-2087 (SourceCodester Bank Management System login.php sql injection)

CVE-2022-2088 (SourceCodester Bank Management System cross site scripting)

CVE-2022-2089 (Elcomplus SmartICS Access Control)

CVE-2022-2090 (Bold Page Builder < 4.3.3 - Admin+ Stored Cross-Site Scripting)

CVE-2022-2091 (Woo Discount Rules < 2.4.2 - Reflected Cross-Site Scripting)

CVE-2022-2092 (Cache Images < 3.2.1 - Image Upload / Import via CSRF)

CVE-2022-2093 (WooCommerce PDF Invoices & Packing Slips < 2.16.0 - Reflected Cross-Site Scripting)

CVE-2022-2094 (WP Duplicate Page < 1.3 - Admin+ Stored Cross Site Scripting)

CVE-2022-2095 (Yellow Yard Searchbar < 2.8.2 - Reflected Cross-Site Scripting)

CVE-2022-2097 (N/A)

CVE-2022-2098 (AES OCB fails to encrypt some bytes)

CVE-2022-2099 (Weak Password Requirements in kromitgmbh/titra)

CVE-2022-2100 (WooCommerce < 6.6.0 - Admin+ Stored HTML Injection)

CVE-2022-2101 (Page Generator Plugin < 1.6.5 - Admin+ Stored Cross-Site Scripting)

CVE-2022-2102 (N/A)

CVE-2022-2103 (Secheron SEPCOS Control and Protection Relay)

CVE-2022-2104 (Secheron SEPCOS Control and Protection Relay)

CVE-2022-2105 (Secheron SEPCOS Control and Protection Relay)

CVE-2022-2106 (Secheron SEPCOS Control and Protection Relay)

CVE-2022-2107 (Elcomplus SmartICS Path Traversal)

CVE-2022-2108 (ICSA-22-200-01 MiCODUS MV720 GPS tracker Use of Hard-coded Credentials)

CVE-2022-2111 (N/A)