CVE-2022-40921 DedeCMS V5.7.99 had an arbitrary file upload vulnerability.
A hacker could exploit this weakness to upload arbitrary files, conduct a XXE attack, conduct a XSS attack, or obtain sensitive information. Furthermore, it was
CVE-2022-40943 Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via bwdate-report-ds.php file.
SQL Injection occurs when a hacker injects malicious SQL code into a database to manipulate or access data that should be protected. The most serious
CVE-2022-40942 Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time.
An attacker can exploit this vulnerability to execute arbitrary code in the context of the application. This attack can be accomplished by crafting a malicious
CVE-2022-28853 InDesign versions 16.4.2 and earlier are affected by a out-of-bounds write vulnerability that could lead to arbitrary code execution.
Creative Cloud and subscription users who had installed InDesign versions 16.4.2 or 17.3 are advised to immediately update to the latest version
CVE-2022-37138 The LMS 1.0 is vulnerable to SQL Injection at the login page, which allows attackers to log in as Administrator as username form.
To inject SQL Injection, attacker can send request with SQL statement in the ‘INPUT>’ tag. An attacker can send the following injection request to
Episode
00:00:00
00:00:00