• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2022-36197

February 23, 2023 by godfreyd94

BigTree CMS 4.4.16 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted PDF file.

CVE-2022-36203

February 23, 2023 by godfreyd94

Doctor’s Appointment System 1.0 is vulnerable to Cross Site Scripting (XSS) via the admin panel. In addition, it leads to takeover the administrator account by stealing the cookie via XSS.

CVE-2022-36223

February 23, 2023 by godfreyd94

In Emby Server 4.6.7.0, the playlist name field is vulnerable to XSS stored where it is possible to steal the administrator access token and flip or steal the media server administrator account.

CVE-2022-36251

February 23, 2023 by godfreyd94

Clinic’s Patient Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via patients.php.

CVE-2022-36254

February 23, 2023 by godfreyd94

Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote attackers to inject arbitrary web script or HTML via multiple parameters such as “fullname”.

CVE-2022-36266

February 23, 2023 by godfreyd94

In Airspan AirSpot 5410 version 0.3.4.1-4 and under there exists a stored XSS vulnerability. As the binary file /home/www/cgi-bin/login.cgi does not check if the user is authenticated, a malicious actor can craft a specific request on the login.cgi endpoint that contains a base32 encoded XSS payload that will be accepted and stored. A successful attack will results in the injection of malicious scripts into the user settings page.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 1877
  • Go to page 1878
  • Go to page 1879
  • Go to page 1880
  • Go to page 1881
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE