• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-94

CVE-2022-2014

February 23, 2023 by

Code Injection in GitHub repository jgraph/drawio prior to 19.0.2.

CVE-2022-1517

February 23, 2023 by

LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, software, or access sensitive data on the affected produc. An attacker could also exploit this vulnerability to access APIs not intended for general use and interact through the network.

CVE-2022-1159

February 23, 2023 by

Rockwell Automation Studio 5000 Logix Designer (all versions) are vulnerable when an attacker who achieves administrator access on a workstation running Studio 5000 Logix Designer could inject controller code undetectable to a user.

CVE-2022-0885

February 23, 2023 by

The Member Hero WordPress plugin through 1.0.9 lacks authorization checks, and does not validate the a request parameter in an AJAX action, allowing unauthenticated users to call arbitrary PHP functions with no arguments.

CVE-2022-0895

February 23, 2023 by

Static Code Injection in GitHub repository microweber/microweber prior to 1.3.

CVE-2022-0896

February 23, 2023 by

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 219
  • Go to page 220
  • Go to page 221
  • Go to page 222
  • Go to page 223
  • Interim pages omitted …
  • Go to page 225
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE