• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-434

CVE-2022-44401

February 23, 2023 by godfreyd94

Online Tours & Travels Management System v1.0 contains an arbitrary file upload vulnerability via /tour/admin/file.php.

CVE-2022-44289

February 23, 2023 by godfreyd94

Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.

CVE-2022-44036

February 23, 2023 by godfreyd94

** DISPUTED ** In b2evolution 7.2.5, if configured with admins_can_manipulate_sensitive_files, arbitrary file upload is allowed for admins, leading to command execution. NOTE: the vendor’s position is that this is “very obviously a feature not an issue and if you don’t like that feature it is very obvious how to disable it.”

CVE-2022-44048

February 23, 2023 by godfreyd94

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0.

CVE-2022-44049

February 23, 2023 by godfreyd94

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0.

CVE-2022-44050

February 23, 2023 by godfreyd94

The d8s-networking for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-json package. The affected version of d8s-htm is 0.1.0.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 158
  • Go to page 159
  • Go to page 160
  • Go to page 161
  • Go to page 162
  • Interim pages omitted …
  • Go to page 224
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE