CVE's - CVE Vulnerability

CVE

Vendors

Products

Updated

CVSS v2

CVSS v3

CVE-2022-0087

2022-01-18

N/A

6.1 MEDIUM

keystone is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2022-0086

2022-01-08

N/A

9.8 CRITICAL

uppy is vulnerable to Server-Side Request Forgery (SSRF)

CVE-2022-0085

2022-07-07

N/A

5.3 MEDIUM

Server-Side Request Forgery (SSRF) in GitHub repository dompdf/dompdf prior to 2.0.0.

CVE-2022-0084

2022-09-01

N/A

7.5 HIGH

A flaw was found in XNIO, specifically in the notifyReadClosed method. The issue revealed this method was logging a message to another expected end. This flaw allows an attacker to send flawed requests to a server, possibly causing log contention-related performance concerns or an unwanted disk fill-up.

CVE-2022-0083

2022-01-11

N/A

5.3 MEDIUM

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information

CVE-2022-0080

2022-01-11

N/A

9.8 CRITICAL

mruby is vulnerable to Heap-based Buffer Overflow

CVE-2022-0079

2022-01-10

N/A

5.3 MEDIUM

showdoc is vulnerable to Generation of Error Message Containing Sensitive Information

CVE-2022-0074

2022-12-09

N/A

8.8 HIGH

Untrusted Search Path vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server Container allows Privilege Escalation. This affects versions from 1.6.15 before 1.7.16.1.

CVE-2022-0073

2022-12-09

N/A

8.8 HIGH

Improper Input Validation vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Command Injection. This affects 1.7.0 versions before 1.7.16.1.

CVE-2022-0072

2022-12-09

N/A

5.8 MEDIUM

Directory Traversal vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Path Traversal. This affects versions from 1.5.11 through 1.5.12, from 1.6.5 through 1.6.20.1, from 1.7.0 before 1.7.16.1

« Previous 1 … 11,085 11,086 11,087 11,088 11,089 … 11,258 Next »