Vulnerability Summary for the Week of February 20, 2023

Released
Feb 27, 2023
Document ID
SB23-058

The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores.

Vulnerabilities are based on the Common Vulnerabilities and Exposures (CVE) vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High: vulnerabilities with a CVSS base score of 7.0–10.0
  • Medium: vulnerabilities with a CVSS base score of 4.0–6.9
  • Low: vulnerabilities with a CVSS base score of 0.0–3.9

Entries may include additional information provided by organizations and efforts sponsored by CISA. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletin is compiled from external, open-source reports and is not a direct result of CISA analysis. 

Vulnerability Severity:

 The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.

Vulnerabilities are based on the Common Vulnerabilities and Exposures (CVE) vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High: vulnerabilities with a CVSS base score of 7.0–10.0
  • Medium: vulnerabilities with a CVSS base score of 4.0–6.9
  • Low: vulnerabilities with a CVSS base score of 0.0–3.9

Entries may include additional information provided by organizations and efforts sponsored by CISA. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletin is compiled from external, open-source reports and is not a direct result of CISA analysis. 

Please share your thoughts.
We recently updated our anonymous Product Feedback; we'd welcome your feedback.

High Vulnerabilities

Primary
Vendor -- Product		DescriptionPublishedCVSS ScoreSource & Patch Info
simple_task_managing_system_project -- simple_task_managing_systemSQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' and 'password' parameters, allows attackers to execute arbitrary code and gain sensitive information.2023-02-179.8CVE-2022-40032
MISC
MISC
MISC
luckyframe -- luckyframewebLuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/UserMapper.xml.2023-02-179.8CVE-2023-24219
MISC
luckyframe -- luckyframewebLuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/RoleMapper.xml.2023-02-179.8CVE-2023-24220
MISC
luckyframe -- luckyframewebLuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/DeptMapper.xml.2023-02-179.8CVE-2023-24221
MISC
froxlor -- froxlorCode Injection in GitHub repository froxlor/froxlor prior to 2.0.11.2023-02-178.8CVE-2023-0877
CONFIRM
MISC
realtimelogic -- fuguhubReal Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution (RCE) vulnerability via the component /FuguHub/cmsdocs/.2023-02-178.8CVE-2023-24078
MISC
infoblox -- bloxone_endpointInfoblox BloxOne Endpoint for Windows through 2.2.7 allows DLL injection that can result in local privilege escalation.2023-02-177.8CVE-2022-32972
MISC
MISC
adobe -- photoshopPhotoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-21574
MISC
adobe -- photoshopPhotoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-21575
MISC
adobe -- photoshopPhotoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-21576
MISC
adobe -- framemaker_2020FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-21619
MISC
adobe -- framemaker_2020FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-21621
MISC
adobe -- framemaker_2020FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-21622
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22226
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22227
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22228
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22229
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22230
MISC
adobe -- premiere_rushAdobe Premiere Rush version 2.6 (and earlier) is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22234
MISC
adobe -- animateAdobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22236
MISC
adobe -- after_effectsAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22237
MISC
adobe -- after_effectsAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22238
MISC
adobe -- after_effectsAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22239
MISC
adobe -- animateAdobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22243
MISC
adobe -- premiere_rushAdobe Premiere Rush version 2.6 (and earlier) is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22244
MISC
adobe -- animateAdobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-177.8CVE-2023-22246
MISC
ibm -- db2IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is vulnerable to information Disclosure due to improper privilege management when a specially crafted table access is used. IBM X-Force ID: 241671.2023-02-177.5CVE-2022-43927
MISC
MISC
ibm -- db2IBM Db2 for Linux, UNIX and Windows 11.1 and 11.5 may be vulnerable to a Denial of Service when executing a specially crafted 'Load' command. IBM X-Force ID: 241676.2023-02-177.5CVE-2022-43929
MISC
MISC

Back to top

 

Medium Vulnerabilities

Primary
Vendor -- Product		DescriptionPublishedCVSS ScoreSource & Patch Info
ibm -- security_verify_accessIBM Security Verify Access 10.0.0.0, 10.0.1.0, 10.0.2.0, 10.0.3.0, and10.0.4.0 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM X-Force ID: 233576.2023-02-176.5CVE-2022-36775
MISC
MISC
nuxt -- nuxtCross-site Scripting (XSS) - Generic in GitHub repository nuxt/framework prior to 3.2.1.2023-02-176.1CVE-2023-0878
MISC
CONFIRM
dell -- secure_connect_gatewayDell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information.2023-02-175.9CVE-2023-23695
MISC
adobe -- photoshopPhotoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-21577
MISC
adobe -- photoshopPhotoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-21578
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-21583
MISC
adobe -- framemaker_2020FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-21584
MISC
adobe -- indesignAdobe InDesign versions ID18.1 (and earlier) and ID17.4 (and earlier) are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-21593
MISC
adobe -- framemaker_2020FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-21620
MISC
adobe -- bridgeAdobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-22231
MISC
adobe -- after_effectsAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.2023-02-175.5CVE-2023-22233
MISC
ibm -- infosphere_information_serverIBM InfoSphere Information Server 11.7 could allow a local user to obtain sensitive information from a log files. IBM X-Force ID: 246463.2023-02-175.5CVE-2023-24964
MISC
MISC
btcpayserver -- btcpay_serverCross-site Scripting (XSS) - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.12.2023-02-175.4CVE-2023-0879
CONFIRM
MISC
adobe -- connectAdobe Connect versions 11.4.5 (and earlier), 12.1.5 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to impact the integrity of a minor feature. Exploitation of this issue does not require user interaction.2023-02-175.3CVE-2023-22232
MISC
phpmyfaq -- phpmyfaqMisinterpretation of Input in GitHub repository thorsten/phpmyfaq prior to 3.1.11.2023-02-174.3CVE-2023-0880
MISC
CONFIRM

Back to top

 

Low Vulnerabilities

Primary
Vendor -- Product		DescriptionPublishedCVSS ScoreSource & Patch Info
There were no low vulnerabilities recorded this week.

Back to top

 

Severity Not Yet Assigned

Primary
Vendor -- Product		DescriptionPublishedCVSS ScoreSource & Patch Info
wordpress -- wordpress
 		A vulnerability was found in madgicweb BuddyStream Plugin up to 3.2.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file ShareBox.php. The manipulation of the argument content/link/shares leads to cross site scripting. The attack can be launched remotely. Upgrading to version 3.2.8 is able to address this issue. The name of the patch is 7d5b9a89a27711aad76fd55ab4cc4185b545a1d0. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-221479.2023-02-19not yet calculatedCVE-2012-10007
MISC
MISC
MISC
MISC
oneapp -- oneapp
 		A vulnerability, which was classified as critical, has been found in uakfdotb oneapp. This issue affects some unknown processing. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The name of the patch is 5413ac804f1b09f9decc46a6c37b08352c49669c. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-221483.2023-02-20not yet calculatedCVE-2012-10008
MISC
MISC
MISC
oclc_research -- oaicat
 		A vulnerability was found in OCLC-Research OAICat 1.5.61. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The attack may be initiated remotely. Upgrading to version 1.5.62 is able to address this issue. The name of the patch is 6cc65501869fa663bcd24a70b63f41f5cfe6b3e1. It is recommended to upgrade the affected component. The identifier VDB-221489 was assigned to this vulnerability.2023-02-20not yet calculatedCVE-2013-10019
MISC
MISC
MISC
MISC
MISC
java -- xmlbuilder
 		A vulnerability was found in java-xmlbuilder up to 1.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to xml external entity reference. Upgrading to version 1.2 is able to address this issue. The name of the patch is e6fddca201790abab4f2c274341c0bb8835c3e73. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-221480.2023-02-19not yet calculatedCVE-2014-125087
MISC
MISC
MISC
MISC
MISC
silk -- silk
 		A vulnerability was found in qt-users-jp silk 0.0.1. It has been declared as problematic. This vulnerability affects unknown code of the file contents/root/examples/header.qml. The manipulation of the argument model.key/model.value leads to cross site scripting. The attack can be initiated remotely. The name of the patch is bbc5d6eeea800025ef29edda3fd3c57836239eae. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-221488.2023-02-20not yet calculatedCVE-2014-125088
MISC
MISC
MISC
cention -- -chatserver
 		A vulnerability was found in cention-chatserver 3.8.0-rc1. It has been declared as problematic. Affected by this vulnerability is the function _formatBody of the file lib/InternalChatProtocol.fe. The manipulation of the argument body leads to cross site scripting. The attack can be launched remotely. Upgrading to version 3.9 is able to address this issue. The name of the patch is c4c0258bbd18f6915f97f91d5fee625384096a26. It is recommended to upgrade the affected component. The identifier VDB-221497 was assigned to this vulnerability.2023-02-21not yet calculatedCVE-2014-125089
MISC
MISC
MISC
MISC
nrel -- api_umbrella_web
 		A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 0.8.0 is able to address this issue. The name of the patch is f53a9fb87e10c457f0f3dd4f2af24d3b2f21b3ca. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-221487.2023-02-20not yet calculatedCVE-2015-10080
MISC
MISC
MISC
MISC
submitbymailplugin -- submitbymailplugin
 		A vulnerability was found in arnoldle submitByMailPlugin 1.0b2.9 and classified as problematic. This issue affects some unknown processing of the file edit_list.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. Upgrading to version 1.0b2.9a is able to address this issue. The name of the patch is a739f680a1623d22f52ff1371e86ca472e63756f. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-221495.2023-02-20not yet calculatedCVE-2015-10081
MISC
MISC
MISC
libplist -- libplist
 		A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plist_from_xml of the file src/xplist.c of the component XML Handler. The manipulation leads to xml external entity reference. The name of the patch is c086cb139af7c82845f6d565e636073ff4b37440. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-221499.2023-02-21not yet calculatedCVE-2015-10082
MISC
MISC
MISC
harrystech -- dinosaur_rails
 		A vulnerability has been found in harrystech Dynosaur-Rails and classified as critical. Affected by this vulnerability is the function basic_auth of the file app/controllers/application_controller.rb. The manipulation leads to improper authentication. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The name of the patch is 04b223813f0e336aab50bff140d0f5889c31dbec. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-221503.2023-02-21not yet calculatedCVE-2015-10083
MISC
MISC
MISC
MISC
irontec -- klear_library_chloe
 		A vulnerability was found in irontec klear-library chloe and classified as critical. Affected by this issue is the function _prepareWhere of the file Controller/Rest/BaseController.php. The manipulation leads to sql injection. Upgrading to version marla is able to address this issue. The name of the patch is b25262de52fdaffde2a4434fc2a84408b304fbc5. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-221504.2023-02-21not yet calculatedCVE-2015-10084
MISC
MISC
MISC
MISC
gopistolet -- gopistolet
 		A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The name of the patch is b91aa4674d460993765884e8463c70e6d886bc90. It is recommended to apply a patch to fix this issue. VDB-221506 is the identifier assigned to this vulnerability.2023-02-21not yet calculatedCVE-2015-10085
MISC
MISC
MISC
MISC
shadow -- shadow
 		A vulnerability was found in doomsider shadow. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. Attacking locally is a requirement. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The name of the patch is 3332c5ba9ec3014ddc74e2147190a050eee97bc0. It is recommended to apply a patch to fix this issue. VDB-221478 is the identifier assigned to this vulnerability.2023-02-19not yet calculatedCVE-2016-15024
MISC
MISC
MISC
generator-hottowel -- generator-hottowel
 		A vulnerability, which was classified as problematic, was found in generator-hottowel 0.0.11. Affected is an unknown function of the file app/templates/src/server/_app.js of the component 404 Error Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The name of the patch is c17092fd4103143a9ddab93c8983ace8bf174396. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-221484.2023-02-20not yet calculatedCVE-2016-15025
MISC
MISC
MISC
MISC
dd_plist -- dd_plist
 		A vulnerability was found in 3breadt dd-plist 1.17 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to xml external entity reference. An attack has to be approached locally. Upgrading to version 1.18 is able to address this issue. The name of the patch is 8c954e8d9f6f6863729e50105a8abf3f87fff74c. It is recommended to upgrade the affected component. VDB-221486 is the identifier assigned to this vulnerability.2023-02-20not yet calculatedCVE-2016-15026
MISC
MISC
MISC
MISC
MISC
wordpress -- wordpress
 		A vulnerability was found in meta4creations Post Duplicator Plugin 2.18. It has been classified as problematic. Affected is the function mtphr_post_duplicator_notice of the file includes/notices.php. The manipulation of the argument post-duplicated leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 2.19 is able to address this issue. The name of the patch is ca67c05e490c0cf93a1e9b2d93bfeff3dd96f594. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-221496.2023-02-20not yet calculatedCVE-2016-15027
MISC
MISC
MISC
MISC
instedd -- pollit
 		A vulnerability was found in InSTEDD Pollit 2.3.1. It has been rated as critical. This issue affects the function TourController of the file app/controllers/tour_controller.rb. The manipulation leads to an unknown weakness. The attack may be initiated remotely. Upgrading to version 2.3.2 is able to address this issue. The name of the patch is 6ef04f8b5972d5f16f8b86f8b53f62fac68d5498. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-221507.2023-02-21not yet calculatedCVE-2017-20179
MISC
MISC
MISC
MISC
rtcwcoop -- rtcwcoop
 		A vulnerability has been found in rtcwcoop 1.0.2 and classified as problematic. Affected by this vulnerability is the function AICast_ScriptLoad of the file code/game/ai_cast_script.c of the component Team Command Handler. The manipulation leads to denial of service. The name of the patch is f2cd18bc2e1cbca8c4b78bee9c392272bd5f42ac. It is recommended to apply a patch to fix this issue. The identifier VDB-221485 was assigned to this vulnerability.2023-02-20not yet calculatedCVE-2019-25104
MISC
MISC
MISC
MISC
wordpress -- wordpress
 		The Spectra WordPress plugin before 1.15.0 does not sanitize user input as it reaches its style HTML attribute, allowing contributors to conduct stored XSS attacks via the plugin's Gutenberg blocks.2023-02-21not yet calculatedCVE-2020-36656
MISC
vivo -- frame_service
 		The framework service handles pendingIntent incorrectly, allowing a malicious application with certain privileges to perform privileged actions.2023-02-17not yet calculatedCVE-2021-26277
CONFIRM
hyperkit --hyperkit
 		HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, `virtio.c` has is a call to `vc_cfgread` that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denial of service. This issue is fixed in commit df0e46c7dbfd81a957d85e449ba41b52f6f7beb4.2023-02-17not yet calculatedCVE-2021-32843
MISC
MISC
CONFIRM
hyperkit --hyperkit
 		HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, ` vi_pci_write` has is a call to `vc_cfgwrite` that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denial of service. This issue is fixed in commit 451558fe8aaa8b24e02e34106e3bb9fe41d7ad13.2023-02-17not yet calculatedCVE-2021-32844
MISC
MISC
CONFIRM
hyperkit --hyperkit
 		HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, the implementation of `qnotify` at `pci_vtrnd_notify` fails to check the return value of `vq_getchain`. This leads to `struct iovec iov;` being uninitialized and used to read memory in `len = (int) read(sc->vrsc_fd, iov.iov_base, iov.iov_len);` when an attacker is able to make `vq_getchain` fail. This issue may lead to a guest crashing the host causing a denial of service and, under certain circumstance, memory corruption. This issue is fixed in commit 41272a980197917df8e58ff90642d14dec8fe948.2023-02-17not yet calculatedCVE-2021-32845
MISC
MISC
CONFIRM
hyperkit --hyperkit
 		HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107, function `pci_vtsock_proc_tx` in `virtio-sock` can lead to to uninitialized memory use. In this situation, there is a check for the return value to be less or equal to `VTSOCK_MAXSEGS`, but that check is not sufficient because the function can return `-1` if it finds an error it cannot recover from. Moreover, the negative return value will be used by `iovec_pull` in a while condition that can further lead to more corruption because the function is not designed to handle a negative `iov_len`. This issue may lead to a guest crashing the host causing a denial of service and, under certain circumstance, memory corruption. This issue is fixed in commit af5eba2360a7351c08dfd9767d9be863a50ebaba.2023-02-17not yet calculatedCVE-2021-32846
MISC
MISC
CONFIRM
hyperkit --hyperkit
 		HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior, a malicious guest can trigger a vulnerability in the host by abusing the disk driver that may lead to the disclosure of the host memory into the virtualized guest. This issue is fixed in commit cf60095a4d8c3cb2e182a14415467afd356e982f.2023-02-20not yet calculatedCVE-2021-32847
CONFIRM
MISC
MISC
octobox -- octobox
 		Octobox is software for managing GitHub notifications. Prior to pull request (PR) 2807, a user of the system can provide a specifically crafted search query string that will trigger a ReDoS vulnerability. This issue is fixed in PR 2807.2023-02-20not yet calculatedCVE-2021-32848
MISC
MISC
CONFIRM
jquery -- jquery_minicolors
 		jQuery MiniColors is a color picker built on jQuery. Prior to version 2.3.6, jQuery MiniColors is prone to cross-site scripting when handling untrusted color names. This issue is patched in version 2.3.6.2023-02-20not yet calculatedCVE-2021-32850
MISC
MISC
CONFIRM
mind-elixir -- mind-elixir
 		Mind-elixir is a free, open source mind map core. Prior to version 0.18.1, mind-elixir is prone to cross-site scripting when handling untrusted menus. This issue is patched in version 0.18.12023-02-20not yet calculatedCVE-2021-32851
MISC
MISC
CONFIRM
countly -- countly-server
 		Countly, a product analytics solution, is vulnerable to cross-site scripting prior to version 21.11 of the community edition. The victim must follow a malicious link or be redirected there from malicious web site. The attacker must have an account or be able to create one. This issue is patched in version 21.11.2023-02-20not yet calculatedCVE-2021-32852
MISC
MISC
MISC
CONFIRM
erxes -- erxes
 		Erxes, an experience operating system (XOS) with a set of plugins, is vulnerable to cross-site scripting in versions 0.22.3 and prior. This results in client-side code execution. The victim must follow a malicious link or be redirected there from malicious web site. There are no known patches.2023-02-20not yet calculatedCVE-2021-32853
MISC
MISC
CONFIRM
angularjs -- angularjs
 		textAngular is a text editor for Angular.js. Version 1.5.16 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. There are no known patches.2023-02-21not yet calculatedCVE-2021-32854
CONFIRM
markdown_editor -- markdown_editor
 		Vditor is a browser-side Markdown editor. Versions prior to 3.8.7 are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. Version 3.8.7 contains a patch for this issue.2023-02-21not yet calculatedCVE-2021-32855
CONFIRM
MISC
CONFIRM
microweber -- microweber
 		Microweber is a drag and drop website builder and content management system. Versions 1.2.12 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. A fix was attempted in versions 1.2.9 and 1.2.12, but it is incomplete.2023-02-21not yet calculatedCVE-2021-32856
CONFIRM
MISC
cockpit -- cockpit
 		Cockpit is a content management system that allows addition of content management functionality to any site. In versions 0.12.2 and prior, bad HTML sanitization in `htmleditor.js` may lead to cross-site scripting (XSS) issues. There are no known patches for this issue.2023-02-21not yet calculatedCVE-2021-32857
CONFIRM
MISC
MISC
esdoc -- esdoc
 		esdoc-publish-html-plugin is a plugin for the document maintenance software ESDoc. TheHTML sanitizer in esdoc-publish-html-plugin 1.1.2 and prior can be bypassed which may lead to cross-site scripting (XSS) issues. There are no known patches for this issue.2023-02-21not yet calculatedCVE-2021-32858
CONFIRM
MISC
baremetrics -- baremetrics
 		The Baremetrics date range picker is a solution for selecting both date ranges and single dates from a single calender view. Versions 1.0.14 and prior are prone to cross-site scripting (XSS) when handling untrusted `placeholder` entries. An attacker who is able to influence the field `placeholder` when creating a `Calendar` instance is able to supply arbitrary `html` or `javascript` that will be rendered in the context of a user leading to XSS. There are no known patches for this issue.2023-02-21not yet calculatedCVE-2021-32859
MISC
CONFIRM
jquery -- jquery
 		iziModal is a modal plugin with jQuery. Versions prior to 1.6.1 are vulnerable to cross-site scripting (XSS) when handling untrusted modal titles. An attacker who is able to influence the field `title` when creating a `iziModal` instance is able to supply arbitrary `html` or `javascript` code that will be rendered in the context of a user, potentially leading to `XSS`. Version 1.6.1 contains a patch for this issue2023-02-21not yet calculatedCVE-2021-32860
MISC
MISC
CONFIRM
umbraco -- umbraco_forms
 		File upload vulnerability in Umbraco Forms v.8.7.0 allows unauthenticated attackers to execute arbitrary code via a crafted web.config and asp file.2023-02-24not yet calculatedCVE-2021-33224
MISC
MISC
sourceforge -- freeimage
 		Buffer Overflow vulnerability in Freeimage v3.18.0 allows attacker to cause a denial of service via a crafted JXR file.2023-02-22not yet calculatedCVE-2021-33367
MISC
minicms -- minicms
 		Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request.2023-02-24not yet calculatedCVE-2021-33387
MISC
taocms -- taocms
 		Cross Site Request Forgery (CSRF) vulnerability in taoCMS 3.0.2 allows remote attackers to gain escalated privileges via taocms/admin/admin.php.2023-02-24not yet calculatedCVE-2021-34167
MISC
sourcecodester -- mobile-shop-system-php-mysql
 		SQL injection vulnerability in sourcecodester mobile-shop-system-php-mysql 1.0 allows remote attackers to log in via crafterdstring in the email field of the log in page.2023-02-24not yet calculatedCVE-2021-34248
MISC
MISC
sourcecodester -- online-book-store
 		SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote attackers to view sensitive information via the id paremeter in application URL.2023-02-24not yet calculatedCVE-2021-34249
MISC
MISC
balerocms-src -- balerocms-src
 		File Upload vulnerability in balerocms-src 0.8.3 allows remote attackers to run arbitrary code via rich text editor on /admin/main/mod-blog page.2023-02-24not yet calculatedCVE-2021-35290
MISC
imcat -- imcat
 		Arbitrary File Read vulnerability found in Peacexie ImCat v.5.2 fixed in v.5.4 allows attackers to obtain sensitive information via the filtering_get_contents function.2023-02-24not yet calculatedCVE-2021-35369
MISC
imcat -- imcat
 		An issue found in Peacexie Imcat v5.4 allows attackers to execute arbitrary code via the incomplete filtering function.2023-02-24not yet calculatedCVE-2021-35370
MISC
bg-tek -- coslat_firewall
 		Improper Handling of Parameters vulnerability in BG-TEK COSLAT Firewall allows Remote Code Inclusion.This issue affects COSLAT Firewall: from 5.24.0.R.20180630 before 5.24.0.R.20210727.2023-02-24not yet calculatedCVE-2021-4105
MISC
MISC
nhn -- toast_ui_chart
 		A vulnerability, which was classified as problematic, has been found in NHN TOAST UI Chart 4.1.4. This issue affects some unknown processing of the component Legend Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 4.2.0 is able to address this issue. The name of the patch is 1a3f455d17df379e11b501bb5ba1dd1bcc41d63e. It is recommended to upgrade the affected component. The identifier VDB-221501 was assigned to this vulnerability.2023-02-22not yet calculatedCVE-2021-4325
MISC
MISC
MISC
MISC
MISC
abb -- multiple_products
 		Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.2023-02-24not yet calculatedCVE-2022-1607
MISC
gogs -- gogs
 		OS Command Injection in GitHub repository gogs/gogs prior to 0.12.11.2023-02-25not yet calculatedCVE-2022-2024
CONFIRM
MISC
litedb -- litedb
 		LiteDB is a small, fast and lightweight .NET NoSQL embedded database. Versions prior to 5.0.13 are subject to Deserialization of Untrusted Data. LiteDB uses a special field in JSON documents to cast different types from `BsonDocument` to POCO classes. When instances of an object are not the same of class, `BsonMapper` use a special field `_type` string info with full class name with assembly to be loaded and fit into your model. If your end-user can send to your app a plain JSON string, deserialization can load an unsafe object to fit into your model. This issue is patched in version 5.0.13 with some basic fixes to avoid this, but is not 100% guaranteed when using `Object` type. The next major version will contain an allow-list to select what kind of Assembly can be loaded. Workarounds are detailed in the vendor advisory.2023-02-24not yet calculatedCVE-2022-23535
MISC
MISC
sdd -- sdd-baro
 		Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SDD Computer Software SDD-Baro allows SQL Injection.This issue affects SDD-Baro: before 2.8.432.2023-02-23not yet calculatedCVE-2022-2504
MISC
octopus -- deploy
 		In affected versions of Octopus Deploy it is possible to upload a zipbomb file as a task which results in Denial of Service2023-02-22not yet calculatedCVE-2022-2883
MISC
redmine -- multiple_products
 		pfSense CE through 2.6.0 and pfSense Plus before 22.05 allow XSS in the WebGUI via URL Table Alias URL parameters.2023-02-22not yet calculatedCVE-2022-29273
MISC
MISC
hyperium -- hyper
 		Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software, allowing attackers to perform HTTP2 attacks.2023-02-21not yet calculatedCVE-2022-31394
MISC
CONFIRM
MISC
gnupg -- gnupg
 		GnuPG can be made to spin on a relatively small input by (for example) crafting a public key with thousands of signatures attached, compressed down to just a few KB.2023-02-23not yet calculatedCVE-2022-3219
MISC
MISC
MISC
MISC
MISC
hitachi_energy -- multiple_products
 		A vulnerability exists in the IEC 61850 communication stack that affects multiple Hitachi Energy products. An attacker could exploit the vulnerability by using a specially crafted message sequence, to force the IEC 61850 MMS-server communication stack, to stop accepting new MMS-client connections. Already existing/established client-server connections are not affected. List of affected CPEs: * cpe:2.3:o:hitachienergy:fox61x_tego1:r15b08:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r2a16_3:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r2a16:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1e01:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1d02:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1c07:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1b02:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:gms600:1.3.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.1.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.5.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.6.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.6.0.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.7.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.7.2:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.8.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.0.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.1.0.4:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.1.0.5:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:mms:2.2.3:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:pwc600:1.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:pwc600:1.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:pwc600:1.2:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:reb500:7:*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:reb500:8:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:1.2.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:2.0.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:1.1.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:1.3.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:2.1.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:2.1.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relionSAM600-IO:2.2.1:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relionSAM600-IO:2.2.5:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:2.2.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:2.2.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:rtu500cmu:12.*.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:rtu500cmu:13.*.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:txpert_hub_coretec_4:2.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:txpert_hub_coretec_4:3.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:txpert_hub_coretec_5:3.0:*:*:*:*:*:*:*2023-02-21not yet calculatedCVE-2022-3353
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
linux -- linux_kernel
 		pdf_info 0.5.3 is vulnerable to Command Execution because the Ruby code uses backticks instead of Open3.2023-02-23not yet calculatedCVE-2022-36231
MISC
MISC
MISC
MISC
elastic -- kibana
 		An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL.2023-02-22not yet calculatedCVE-2022-38779
MISC
MISC
visio_globe -- visioweb.js
 		Prototype Pollution in Visioweb.js 1.10.6 allows attackers to execute XSS on the client system.2023-02-20not yet calculatedCVE-2022-3901
MISC
instantdeveloper -- rd3File upload vulnerability in Instantdeveloper RD3 22.0.8500, allows attackers to execute arbitrary code.2023-02-22not yet calculatedCVE-2022-39983
MISC
qvidium_technologies -- amino_a140
 		QVidium Technologies Amino A140 (prior to firmware version 1.0.0-283) was discovered to contain a command injection vulnerability.2023-02-17not yet calculatedCVE-2022-40021
MISC
wordpress -- wordpressCross Site Scripting (XSS) vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code.2023-02-18not yet calculatedCVE-2022-40348
MISC
MISC
MISC
cloudflow -- cloudflow
 		Local File Inclusion vulnerability within Cloudflow allows attackers to retrieve confidential information from the system.2023-02-22not yet calculatedCVE-2022-41216
MISC
MISC
cloudflow -- cloudflowCloudflow contains a unauthenticated file upload vulnerability, which makes it possible for an attacker to upload malicious files to the CLOUDFLOW PROOFSCOPE built-in storage.2023-02-22not yet calculatedCVE-2022-41217
MISC
MISC
tibco -- tibco_ebxThe Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.9.21 and below, versions 6.0.11 and below and TIBCO Product and Service Catalog powered by TIBCO EBX: versions 1.2.0 and below.2023-02-22not yet calculatedCVE-2022-41565
CONFIRM
tibco -- tibco_ebx_add-onsThe server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute stored XSS on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 5.6.0 and below.2023-02-22not yet calculatedCVE-2022-41566
CONFIRM
tibco -- tibco_businessconnect
 		The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a cross-site scripting (XSS) attack on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect: versions 7.3.0 and below.2023-02-22not yet calculatedCVE-2022-41567
CONFIRM
openssl -- opensslA read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate verification despite failure to construct a path to a trusted issuer. The read buffer overrun might result in a crash which could lead to a denial of service attack. In theory it could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext) although we are not aware of any working exploit leading to memory contents disclosure as of the time of release of this advisory. In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.2023-02-24not yet calculatedCVE-2022-4203
MISC
MISC
ibm -- sterling_b2b_integrator_standard_editionIBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.7 and 6.1.0.0 through 6.1.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 238683.2023-02-22not yet calculatedCVE-2022-43578
MISC
MISC
wordpress -- wordpress
 		The Intuitive Custom Post Order WordPress plugin before 3.1.4 does not check for authorization in the update-menu-order ajax action, allowing any logged in user (with roles as low as Subscriber) to update the menu order2023-02-21not yet calculatedCVE-2022-4385
MISC
wordpress -- wordpress
 		The Intuitive Custom Post Order WordPress plugin before 3.1.4 lacks CSRF protection in its update-menu-order ajax action, allowing an attacker to trick any user to change the menu order via a CSRF attack2023-02-21not yet calculatedCVE-2022-4386
MISC
ibm -- spectrum_virtualizeIBM Spectrum Virtualize 8.3, 8.4, and 8.5 could disclose SNMPv3 server credentials to an authenticated user in log files. IBM X-Force ID: 239540.2023-02-22not yet calculatedCVE-2022-43870
MISC
MISC
ibm -- spectrum_virtualizeAn authenticated user can exploit a vulnerability in the IBM Spectrum Virtualize 8.2, 8.3, 8.4, and 8.5 GUI to execute code and escalate their privilege on the system. IBM X-Force ID: 239847.2023-02-22not yet calculatedCVE-2022-43873
MISC
MISC
ibm -- maximo_application_suiteIBM Maximo Application Suite 8.8.0 and 8.9.0 stores potentially sensitive information that could be read by a local user. IBM X-Force ID: 241584.2023-02-24not yet calculatedCVE-2022-43923
MISC
MISC
gnuboard -- gnuboard
 		Gnuboard 5.5.4 and 5.5.5 is vulnerable to Insecure Permissions. An attacker can change password of all users without knowing victim's original password.2023-02-20not yet calculatedCVE-2022-44216
MISC
MISC
MISC
development_il -- ecdhIn Development IL ecdh before 0.2.0, an attacker can send an invalid point (not on the curve) as the public key, and obtain the derived shared secret.2023-02-24not yet calculatedCVE-2022-44310
MISC
undertow--undertowThe undertow client is not checking the server identity presented by the server certificate in https connections. This is a compulsory step (at least it should be performed by default) in https and in http/2. I would add it to any TLS client protocol.2023-02-23not yet calculatedCVE-2022-4492
MISC
MISC
znfit -- home_ improvement_erp management_systemSQL Injection vulnerability in znfit Home improvement ERP management system V50_20220207,v42 allows attackers to execute arbitrary sql commands via the userCode parameter to the wechat applet.2023-02-21not yet calculatedCVE-2022-45564
MISC
aztech -- wmb250ac_mesh_routersAztech WMB250AC Mesh Routers Firmware Version 016 2020 is vulnerable to PHP Type Juggling in file /var/www/login.php, allows attackers to gain escalated privileges only when specific conditions regarding a given accounts hashed password.2023-02-22not yet calculatedCVE-2022-45599
MISC
aztech -- wmb250ac_mesh_routersAztech WMB250AC Mesh Routers Firmware Version 016 2020 devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administrator privileges by leveraging an existing web portal login.2023-02-22not yet calculatedCVE-2022-45600
MISC
tuition_management_system -- tuition_management_systemSQL Injection Vulnerability in tanujpatra228 Tution Management System (TMS) via the email parameter to processes/student_login.process.php.2023-02-21not yet calculatedCVE-2022-45677
MISC
wordpress -- wordpress
 		The Login Logout Menu WordPress plugin through 1.3.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4622
MISC
tribe29 --checkmkCommand injection in SMS notifications in Tribe29 Checkmk <= 2.1.0p10, Checkmk <= 2.0.0p27, and Checkmk <= 1.6.0p29 allows an attacker with User Management permissions, as well as LDAP administrators in certain scenarios, to perform arbitrary commands within the context of the application's local permissions.2023-02-20not yet calculatedCVE-2022-46303
MISC
ttftool -- ttftoolttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.2023-02-24not yet calculatedCVE-2022-46440
MISC
MISC
packet_storm -- prolink_router_prs1841Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services.2023-02-21not yet calculatedCVE-2022-46637
MISC
MISC
MISC
wordpress -- wordpressThe Markup (JSON-LD) structured in schema.org WordPress plugin through 4.8.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2022-4666
MISC
wordpress -- wordpress
 		The Page Builder: Live Composer WordPress plugin through 1.5.22 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2022-4669
MISC
squaredup -- dashboard_server_scomSquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows open redirection. (The issue was originally found in 5.5.1 GA.)2023-02-23not yet calculatedCVE-2022-46784
MISC
squaredup -- dashboard_server_scomSquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows XSS (issue 1 of 2).2023-02-23not yet calculatedCVE-2022-46785
MISC
squaredup -- dashboard_server_scomSquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows XSS (issue 2 of 2).2023-02-23not yet calculatedCVE-2022-46786
MISC
MISC
tribe29--checkmkPHP code injection in watolib auth.php and hosttags.php in Tribe29's Checkmk <= 2.1.0p10, Checkmk <= 2.0.0p27, and Checkmk <= 1.6.0p29 allows an attacker to inject and execute PHP code which will be executed upon request of the vulnerable component.2023-02-20not yet calculatedCVE-2022-46836
MISC
wordpress -- wordpress
 		The WP Dark Mode WordPress plugin before 4.0.0 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack2023-02-21not yet calculatedCVE-2022-4714
MISC
wordpress -- wordpress
 		The WP Responsive Testimonials Slider And Widget WordPress plugin through 1.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4750
MISC
wordpress -- wordpress
 		The Opening Hours WordPress plugin through 2.3.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4752
MISC
wordpress -- wordpress
 		The Easy Social Box / Page Plugin WordPress plugin through 4.1.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4754
MISC
wordpress -- wordpress
 		The Post Views Count WordPress plugin through 3.0.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4761
MISC
wordpress -- wordpress
 		The Simple File Downloader WordPress plugin through 1.0.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4764
MISC
wordpress -- wordpress
 		The Bootstrap Shortcodes WordPress plugin through 3.4.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4777
MISC
wordpress -- wordpress
 		The Hueman Addons WordPress plugin through 2.3.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4784
MISC
wordpress -- wordpress
 		The Video Sidebar Widgets WordPress plugin through 6.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4785
MISC
wordpress -- wordpress
 		The Video.js WordPress plugin through 4.5.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2022-4786
MISC
tribe29 -- checkmk
 		Livestatus Query Language (LQL) injection in the AuthUser HTTP query header of Tribe29's Checkmk <= 2.1.0p11, Checkmk <= 2.0.0p28, and all versions of Checkmk 1.6.0 (EOL) allows an attacker to perform direct queries to the application's core from localhost.2023-02-20not yet calculatedCVE-2022-47909
MISC
wordpress -- wordpress
 		The Product Slider and Carousel with Category for WooCommerce WordPress plugin before 2.8 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.2023-02-21not yet calculatedCVE-2022-4791
MISC
jspreadsheet -- jspreadsheet
 		The dropdown menu in jspreadsheet before v4.6.0 was discovered to be vulnerable to cross-site scripting (XSS).2023-02-17not yet calculatedCVE-2022-48115
MISC
MISC
sourcecodester -- online_student_admissions_system
 		Online Student Admission System in PHP Free Source Code 1.0 was discovered to contain a SQL injection vulnerability via the username parameter.2023-02-22not yet calculatedCVE-2022-48149
MISC
mongodb -- mongo-csharp-driver
 		Under very specific circumstances (see Required configuration section below), a privileged user is able to cause arbitrary code to be executed which may cause further disruption to services. This is specific to applications written in C#. This affects all MongoDB .NET/C# Driver versions prior to and including v2.18.02023-02-21not yet calculatedCVE-2022-48282
MISC
MISC
tribe29 -- checkmk
 		Expired sessions were not securely terminated in the RestAPI for Tribe29's Checkmk <= 2.1.0p10 and Checkmk <= 2.0.0p28 allowing an attacker to use expired session tokens when communicating with the RestAPI.2023-02-20not yet calculatedCVE-2022-48317
MISC
tribe29 -- checkmk
 		No authorisation controls in the RestAPI documentation for Tribe29's Checkmk <= 2.1.0p13 and Checkmk <= 2.0.0p29 which may lead to unintended information disclosure through automatically generated user specific tags within Rest API documentation.2023-02-20not yet calculatedCVE-2022-48318
MISC
tribe29 -- checkmk
 		Sensitive host secret disclosed in cmk-update-agent.log file in Tribe29's Checkmk <= 2.1.0p13, Checkmk <= 2.0.0p29, and all versions of Checkmk 1.6.0 (EOL) allows an attacker to gain access to the host secret through the unprotected agent updater log file.2023-02-20not yet calculatedCVE-2022-48319
MISC
tribe29 -- checkmk
 		Cross-site Request Forgery (CSRF) in Tribe29's Checkmk <= 2.1.0p17, Checkmk <= 2.0.0p31, and all versions of Checkmk 1.6.0 (EOL) allow an attacker to add new visual elements to multiple pages.2023-02-20not yet calculatedCVE-2022-48320
MISC
tribe29 -- checkmk
 		Limited Server-Side Request Forgery (SSRF) in agent-receiver in Tribe29's Checkmk <= 2.1.0p11 allows an attacker to communicate with local network restricted endpoints by use of the host registration API.2023-02-20not yet calculatedCVE-2022-48321
MISC
misp -- misp
 		app/Controller/Component/IndexFilterComponent.php in MISP before 2.4.167 mishandles ordered_url_params and additional_delimiters.2023-02-20not yet calculatedCVE-2022-48328
MISC
MISC
MISC
misp -- misp
 		MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.2023-02-20not yet calculatedCVE-2022-48329
MISC
MISC
MISC
gnu -- emacs
 		GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etags.c uses the system C library function in its implementation of the etags program. For example, a victim may use the "etags -u *" command (suggested in the etags documentation) in a situation where the current working directory has contents that depend on untrusted input.2023-02-20not yet calculatedCVE-2022-48337
MISC
DEBIAN
gnu -- emacs
 		An issue was discovered in GNU Emacs through 28.2. In ruby-mode.el, the ruby-find-library-file function has a local command injection vulnerability. The ruby-find-library-file function is an interactive function, and bound to C-c C-f. Inside the function, the external command gem is called through shell-command-to-string, but the feature-name parameters are not escaped. Thus, malicious Ruby source files may cause commands to be executed.2023-02-20not yet calculatedCVE-2022-48338
MISC
DEBIAN
gnu -- emacs
 		An issue was discovered in GNU Emacs through 28.2. htmlfontify.el has a command injection vulnerability. In the hfy-istext-command function, the parameter file and parameter srcdir come from external input, and parameters are not escaped. If a file name or directory name contains shell metacharacters, code may be executed.2023-02-20not yet calculatedCVE-2022-48339
MISC
DEBIAN
gluster -- glusterfs
 		In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-common.c dht_setxattr_mds_cbk use-after-free.2023-02-21not yet calculatedCVE-2022-48340
MISC
thingsboard -- thingsboard
 		ThingsBoard 3.4.1 could allow a remote authenticated attacker to achieve Vertical Privilege Escalation. A Tenant Administrator can obtain System Administrator dashboard access by modifying the scope via the scopes parameter.2023-02-23not yet calculatedCVE-2022-48341
MISC
MISC
jetbrains -- teamcity
 		In JetBrains TeamCity before 2022.10.2 jVMTI was enabled by default on agents.2023-02-23not yet calculatedCVE-2022-48342
MISC
jetbrains -- teamcity
 		In JetBrains TeamCity before 2022.10.2 there was an XSS vulnerability in the user creation process.2023-02-23not yet calculatedCVE-2022-48343
MISC
jetbrains -- teamcity
 		In JetBrains TeamCity before 2022.10.2 there was an XSS vulnerability in the group creation process.2023-02-23not yet calculatedCVE-2022-48344
MISC
sanitize-url -- sanitize-url
 		sanitize-url (aka @braintree/sanitize-url) before 6.0.2 allows XSS via HTML entities.2023-02-24not yet calculatedCVE-2022-48345
MISC
MISC
zoho -- multiple_products
 		Zoho ManageEngine Desktop Central and Desktop Central MSP before 10.1.2137.2 allow directory traversal via computerName to AgentLogUploadServlet. A remote, authenticated attacker could upload arbitrary code that would be executed when Desktop Central is restarted. (The attacker could authenticate by exploiting CVE-2021-44515.)2023-02-25not yet calculatedCVE-2022-48362
MISC
wordpress -- wordpress
 		The BackupBuddy WordPress plugin before 8.8.3 does not sanitise and escape some parameters before outputting them back in various places, leading to Reflected Cross-Site Scripting2023-02-21not yet calculatedCVE-2022-4897
MISC
quarkus -- quarkus
 		If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature.2023-02-23not yet calculatedCVE-2023-0044
MISC
MISC
wordpress -- wordpress
 		The Youzify WordPress plugin before 1.2.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0059
MISC
wordpress -- wordpress
 		The Timed Content WordPress plugin before 2.73 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0067
MISC
weintek -- easybuilder_pro
 		The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.2023-02-22not yet calculatedCVE-2023-0104
MISC
wordpress -- wordpress
 		The ShopLentor WordPress plugin before 2.5.4 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0231
MISC
wordpress -- wordpress
 		The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to track viewed products and user data, which could lead to PHP Object Injection.2023-02-21not yet calculatedCVE-2023-0232
MISC
MISC
wordpress -- wordpress
 		The WP Font Awesome WordPress plugin before 1.7.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embedded, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0271
MISC
wordpress -- wordpress
 		The Real Media Library WordPress plugin before 4.18.29 does not sanitise and escape the created folder names, which could allow users with the role of author and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0285
MISC
wordpress -- wordpress
 		The Loan Comparison WordPress plugin before 1.5.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2023-0366
MISC
wordpress -- wordpress
 		The EmbedSocial WordPress plugin before 1.1.28 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2023-0371
MISC
wordpress -- wordpress
 		The EmbedStories WordPress plugin before 0.7.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2023-0372
MISC
wordpress -- wordpress
 		The Easy Affiliate Links WordPress plugin before 3.7.1 does not validate and escape some of its block options before outputting them back in a page/post where the block is embedded, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0375
MISC
wordpress -- wordpress
 		The Greenshift WordPress plugin before 5.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0378
MISC
wordpress -- wordpress
 		The Easy Digital Downloads WordPress plugin before 3.1.0.5 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0380
MISC
wordpress -- wordpress
 		The Shortcode for Font Awesome WordPress plugin before 1.4.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embedded, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0419
MISC
wordpress -- wordpress
 		The Watu Quiz WordPress plugin before 3.3.8.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.2023-02-21not yet calculatedCVE-2023-0428
MISC
wordpress -- wordpress
 		The Watu Quiz WordPress plugin before 3.3.8.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).2023-02-21not yet calculatedCVE-2023-0429
MISC
wordpress -- wordpress
 		The Loan Comparison WordPress plugin before 1.5.3 does not validate and escape some of its query parameters before outputting them back in a page/post via an embedded shortcode, which could allow an attacker to inject javascript into into the site via a crafted URL.2023-02-21not yet calculatedCVE-2023-0442
MISC
wordpress -- wordpress
 		The WP Private Message WordPress plugin (bundled with the Superio theme as a required plugin) before 1.0.6 does not ensure that private messages to be accessed belong to the user making the requests. This allowing any authenticated users to access private messages belonging to other users by tampering the ID.2023-02-21not yet calculatedCVE-2023-0453
MISC
MISC
quarkus -- quarkusIn RestEasy Reactive implementation of Quarkus the insecure File.createTempFile() is used in the FileBodyHandler class which creates temp files with insecure permissions that could be read by a local user.2023-02-24not yet calculatedCVE-2023-0481
MISC
resteasy -- resteasyIn RESTEasy the insecure File.createTempFile() is used in the DataSourceProvider, FileProvider and Mime4JWorkaround classes which creates temp files with insecure permissions that could be read by a local user.2023-02-17not yet calculatedCVE-2023-0482
MISC
wordpress -- wordpressThe GS Products Slider for WooCommerce WordPress plugin before 1.5.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2023-0492
MISC
wordpress -- wordpress
 		The GS Filterable Portfolio WordPress plugin before 1.6.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0540
MISC
wordpress -- wordpress
 		The GS Books Showcase WordPress plugin before 1.3.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.2023-02-21not yet calculatedCVE-2023-0541
MISC
wordpress -- wordpress
 		The GS Portfolio for Envato WordPress plugin before 1.4.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embedded, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks2023-02-21not yet calculatedCVE-2023-0559
MISC
wordpress -- wordpress
 		The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Administrator role or above to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.2023-02-24not yet calculatedCVE-2023-0585
MISC
MISC
MISC
MISC
MISC
MISC
wordpress -- wordpress
 		The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Contributor+ role to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.2023-02-24not yet calculatedCVE-2023-0586
MISC
MISC
MISC
schneider_electric -- ecostruxure_geo_scadaA CWE-117: Improper Output Neutralization for Logs vulnerability exists that could cause the misinterpretation of log files when malicious packets are sent to the Geo SCADA server's database web port (default 443). Affected products: EcoStruxure Geo SCADA Expert 2019, EcoStruxure Geo SCADA Expert 2020, EcoStruxure Geo SCADA Expert 2021(All Versions prior to October 2022), ClearSCADA (All Versions)2023-02-24not yet calculatedCVE-2023-0595
MISC
linux -- linux_kernel
 		A flaw possibility of memory leak in the Linux kernel cpu_entry_area mapping of X86 CPU data to memory was found in the way user can guess location of exception stack(s) or other important data. A local user could use this flaw to get access to some important data with expected location in memory.2023-02-23not yet calculatedCVE-2023-0597
MISC
ptc -- thingworx_edgeThe affected products are vulnerable to an integer overflow or wraparound, which could allow an attacker to crash the server and remotely execute arbitrary code.2023-02-23not yet calculatedCVE-2023-0754
MISC
ptc -- thingworx_edgeThe affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code.2023-02-23not yet calculatedCVE-2023-0755
MISC
opennms -- opennmsPotential Insertion of Sensitive Information into Jetty Log Files in multiple versions of OpenNMS Meridian and Horizon could allow disclosure of usernames and passwords if the logging level is set to debug.2023-02-23not yet calculatedCVE-2023-0815
MISC
opennms -- opennmsUnauthenticated, stored cross-site scripting in the display of alarm reduction keys in multiple versions of OpenNMS Horizon and Meridian could allow an attacker access to confidential session information.2023-02-22not yet calculatedCVE-2023-0846
MISC
opennms -- opennmsMultiple stored and reflected cross-site scripting vulnerabilities in webapp jsp pages in multiple versions of OpenNMS Meridian and Horizon could allow an attacker access to confidential session information.2023-02-23not yet calculatedCVE-2023-0867
MISC
opennms -- opennmsReflected cross-site scripting in graph results in multiple versions of OpenNMS Meridian and Horizon could allow an attacker access to steal session cookies.2023-02-23not yet calculatedCVE-2023-0868
MISC
opennms -- opennmsCross-site scripting in outage/list.htm in multiple versions of OpenNMS Meridian and Horizon allows an attacker access to confidential session information.2023-02-23not yet calculatedCVE-2023-0869
MISC
pixelfed -- pixelfedExposure of Sensitive Information to an Unauthorized Actor in GitHub repository pixelfed/pixelfed prior to 0.11.4.2023-02-18not yet calculatedCVE-2023-0901
CONFIRM
MISC
sourcecodester -- simple_food_ordering_systemA vulnerability was found in SourceCodester Simple Food Ordering System 1.0. It has been classified as problematic. This affects an unknown part of the file process_order.php. The manipulation of the argument order leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221451.2023-02-18not yet calculatedCVE-2023-0902
MISC
MISC
MISC
sourcecodester -- employee_task_management_systemA vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file edit-task.php. The manipulation of the argument task_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221452.2023-02-18not yet calculatedCVE-2023-0903
MISC
MISC
MISC
sourcecodester -- employee_task_management_systemA vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file task-details.php. The manipulation of the argument task_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221453 was assigned to this vulnerability.2023-02-18not yet calculatedCVE-2023-0904
MISC
MISC
MISC
sourcecodester -- employee_task_management_systemA vulnerability classified as critical has been found in SourceCodester Employee Task Management System 1.0. Affected is an unknown function of the file changePasswordForEmployee.php. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-221454 is the identifier assigned to this vulnerability.2023-02-18not yet calculatedCVE-2023-0905
MISC
MISC
MISC
sourcecodster -- online_pizza_ordering_systemA vulnerability classified as critical was found in SourceCodester Online Pizza Ordering System 1.0. Affected by this vulnerability is the function delete_category of the file ajax.php of the component POST Parameter Handler. The manipulation leads to missing authentication. The attack can be launched remotely. The associated identifier of this vulnerability is VDB-221455.2023-02-18not yet calculatedCVE-2023-0906
MISC
MISC
filseclab -- twister_antivirusA vulnerability, which was classified as problematic, has been found in Filseclab Twister Antivirus 8.17. Affected by this issue is some unknown functionality in the library ffsmon.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221456.2023-02-18not yet calculatedCVE-2023-0907
MISC
MISC
MISC
xoslab -- easy_file_lockerA vulnerability, which was classified as problematic, was found in Xoslab Easy File Locker 2.2.0.184. This affects the function MessageNotifyCallback in the library xlkfs.sys. The manipulation leads to denial of service. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier VDB-221457 was assigned to this vulnerability.2023-02-18not yet calculatedCVE-2023-0908
MISC
MISC
MISC
cxasm -- notepadA vulnerability, which was classified as problematic, was found in cxasm notepad-- 1.22. This affects an unknown part of the component Directory Comparison Handler. The manipulation leads to denial of service. The attack needs to be approached locally. The associated identifier of this vulnerability is VDB-221475.2023-02-18not yet calculatedCVE-2023-0909
MISC
MISC
MISC
sourcecodester -- online_pizza_ordering_systemA vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. This vulnerability affects unknown code of the file view_prod.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The identifier of this vulnerability is VDB-221476.2023-02-18not yet calculatedCVE-2023-0910
MISC
MISC
sourcecodester -- auto_dealer_management_systemA vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. This affects an unknown part of the file /adms/admin/?page=vehicles/view_transaction. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221481 was assigned to this vulnerability.2023-02-18not yet calculatedCVE-2023-0912
MISC
MISC
MISC
sourcecodester -- auto_dealer_management_systemA vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. This vulnerability affects unknown code of the file /adms/admin/?page=vehicles/sell_vehicle. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-221482 is the identifier assigned to this vulnerability.2023-02-18not yet calculatedCVE-2023-0913
MISC
MISC
MISC
pixelfed -- pixelfedImproper Authorization in GitHub repository pixelfed/pixelfed prior to 0.11.4.2023-02-19not yet calculatedCVE-2023-0914
MISC
CONFIRM
sourcecodester -- auto_dealer_management_systemA vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manage_user. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-221490 is the identifier assigned to this vulnerability.2023-02-19not yet calculatedCVE-2023-0915
MISC
MISC
MISC
sourcecodester -- auto_dealer_management_systemA vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /adms/classes/Users.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221491.2023-02-19not yet calculatedCVE-2023-0916
MISC
MISC
MISC
sourcecodester -- simple_customer_relationship_management_systemA vulnerability, which was classified as critical, was found in SourceCodester Simple Customer Relationship Management System 1.0. This affects an unknown part of the file /php-scrm/login.php. The manipulation of the argument Password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221493 was assigned to this vulnerability.2023-02-19not yet calculatedCVE-2023-0917
MISC
MISC
MISC
codeprojects -- pharmacy_management_systemA vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-221494 is the identifier assigned to this vulnerability.2023-02-19not yet calculatedCVE-2023-0918
MISC
MISC
MISC
kareadita -- kavitaMissing Authentication for Critical Function in GitHub repository kareadita/kavita prior to 0.7.0.2023-02-19not yet calculatedCVE-2023-0919
MISC
CONFIRM
google -- chromeUse after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)2023-02-22not yet calculatedCVE-2023-0927
MISC
MISC
google -- chromeUse after free in SwiftShader in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)2023-02-22not yet calculatedCVE-2023-0928
MISC
MISC
google -- chromeUse after free in Vulkan in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)2023-02-22not yet calculatedCVE-2023-0929
MISC
MISC
google -- chromeHeap buffer overflow in Video in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)2023-02-22not yet calculatedCVE-2023-0930
MISC
MISC
google -- chromeUse after free in Video in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)2023-02-22not yet calculatedCVE-2023-0931
MISC
MISC
google -- chromeUse after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)2023-02-22not yet calculatedCVE-2023-0932
MISC
MISC
google -- chromeInteger overflow in PDF in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)2023-02-22not yet calculatedCVE-2023-0933
MISC
MISC
answerdev -- answerCross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.5.2023-02-21not yet calculatedCVE-2023-0934
CONFIRM
MISC
dolphinphp -- dolphinphpA vulnerability was found in DolphinPHP up to 1.5.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file common.php of the component Incomplete Fix CVE-2021-46097. The manipulation of the argument id leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221551.2023-02-21not yet calculatedCVE-2023-0935
MISC
MISC
MISC
tp-link -- archer_c50A vulnerability was found in TP-Link Archer C50 V2_160801. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Web Management Interface. The manipulation leads to denial of service. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221552.2023-02-21not yet calculatedCVE-2023-0936
MISC
MISC
sourcecodester -- music_gallery_siteA vulnerability classified as critical has been found in SourceCodester Music Gallery Site 1.0. This affects an unknown part of the file music_list.php of the component GET Request Handler. The manipulation of the argument cid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221553 was assigned to this vulnerability.2023-02-21not yet calculatedCVE-2023-0938
MISC
MISC
MISC
ntn_information_technologies -- online_services_softwareImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies Online Services Software allows SQL Injection.This issue affects Online Services Software: before 1.17.2023-02-23not yet calculatedCVE-2023-0939
MISC
google -- chromeUse after free in Prompts in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)2023-02-22not yet calculatedCVE-2023-0941
MISC
MISC
wordpress -- wordpress
 		The Japanized For WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 2.5.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.2023-02-21not yet calculatedCVE-2023-0942
MISC
MISC
MISC
sourcecodester -- best_pos_management_systemA vulnerability, which was classified as problematic, has been found in SourceCodester Best POS Management System 1.0. This issue affects some unknown processing of the file index.php?page=site_settings of the component Image Handler. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-221591.2023-02-21not yet calculatedCVE-2023-0943
MISC
MISC
sourcecodester -- best_pos_management_systemA vulnerability, which was classified as problematic, was found in SourceCodester Best POS Management System 1.0. Affected is an unknown function of the file index.php?page=add-category. The manipulation of the argument Name with the input "><img src=x onerror=prompt(document.domain);> leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-221592.2023-02-21not yet calculatedCVE-2023-0945
MISC
MISC
sourcecodester -- best_pos_management_systemA vulnerability has been found in SourceCodester Best POS Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file billing/index.php?id=9. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The identifier VDB-221593 was assigned to this vulnerability.2023-02-21not yet calculatedCVE-2023-0946
MISC
MISC
flatpressblog -- flatpressPath Traversal in GitHub repository flatpressblog/flatpress prior to 1.3.2023-02-22not yet calculatedCVE-2023-0947
CONFIRM
MISC
modoboa -- modoboaCross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5.2023-02-22not yet calculatedCVE-2023-0949
MISC
CONFIRM
seacms -- seacmsA vulnerability was found in SeaCMS 11.6 and classified as problematic. Affected by this issue is some unknown functionality of the file /data/config.ftp.php of the component Picture Management. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-221630 is the identifier assigned to this vulnerability.2023-02-22not yet calculatedCVE-2023-0960
MISC
MISC
MISC
MISC
sourcecodester -- music_gallery_siteA vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been classified as critical. This affects an unknown part of the file view_music_details.php of the component GET Request Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221631.2023-02-22not yet calculatedCVE-2023-0961
MISC
MISC
MISC
 sourcecodester -- music_gallery_siteA vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been declared as critical. This vulnerability affects unknown code of the file Master.php of the component GET Request Handler. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221632.2023-02-22not yet calculatedCVE-2023-0962
MISC
MISC
MISC
sourcecodester -- music_gallery_siteA vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file Users.php of the component POST Request Handler. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221633 was assigned to this vulnerability.2023-02-22not yet calculatedCVE-2023-0963
MISC
MISC
MISC
sourcecodester -- sales_tracker_management_systemA vulnerability classified as critical has been found in SourceCodester Sales Tracker Management System 1.0. Affected is an unknown function of the file admin/products/view_product.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. VDB-221634 is the identifier assigned to this vulnerability.2023-02-22not yet calculatedCVE-2023-0964
MISC
MISC
sourcecodester -- online_eyewear_shopA vulnerability classified as problematic was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=orders/view_order. The manipulation of the argument id leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221635.2023-02-22not yet calculatedCVE-2023-0966
MISC
MISC
MISC
sourcecodester -- yoga_class_registration_systemA vulnerability was found in SourceCodester Yoga Class Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file admin/registrations/update_status.php of the component Status Update Handler. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-221675.2023-02-23not yet calculatedCVE-2023-0980
MISC
MISC
sourcecodester -- yoga_class_registration_systemA vulnerability was found in SourceCodester Yoga Class Registration System 1.0. It has been classified as critical. Affected is an unknown function of the component Delete User. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-221676.2023-02-23not yet calculatedCVE-2023-0981
MISC
MISC
sourcecodester -- yoga_class_registration_systemA vulnerability was found in SourceCodester Yoga Class Registration System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Add Class Entry. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The identifier VDB-221677 was assigned to this vulnerability.2023-02-23not yet calculatedCVE-2023-0982
MISC
MISC
sourcecodester -- sales_tracker_management_systemA vulnerability classified as critical has been found in SourceCodester Sales Tracker Management System 1.0. This affects an unknown part of the file admin/?page=user/manage_user of the component Edit User. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-221679.2023-02-23not yet calculatedCVE-2023-0986
MISC
MISC
sourcecodester -- online_pizza_ordering_systemA vulnerability classified as problematic was found in SourceCodester Online Pizza Ordering System 1.0. This vulnerability affects unknown code of the file index.php?page=checkout. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221680.2023-02-23not yet calculatedCVE-2023-0987
MISC
MISC
MISC
sourcecodester-- online_pizza_ordering_system
 		A vulnerability, which was classified as problematic, has been found in SourceCodester Online Pizza Ordering System 1.0. This issue affects some unknown processing of the file admin/ajax.php?action=save_user. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221681 was assigned to this vulnerability.2023-02-23not yet calculatedCVE-2023-0988
MISC
MISC
MISC

rosariosis -- rosariosis

Improper Access Control in GitHub repository francoisjacquet/rosariosis prior to 10.8.2.2023-02-24not yet calculatedCVE-2023-0994
MISC
CONFIRM
bumsys -- bumsys
 		Cross-site Scripting (XSS) - Stored in GitHub repository unilogies/bumsys prior to v2.0.1.2023-02-24not yet calculatedCVE-2023-0995
CONFIRM
MISC
libheif -- libheif
 		There is a vulnerability in the strided image data parsing code in the emscripten wrapper for libheif. An attacker could exploit this through a crafted image file to cause a buffer overflow in linear memory during a memcpy call.2023-02-24not yet calculatedCVE-2023-0996
MISC
MISC
sourcecodester -- moosikay_e-commerce_system
 		A vulnerability was found in SourceCodester Moosikay E-Commerce System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Moosikay/order.php of the component POST Parameter Handler. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221732.2023-02-24not yet calculatedCVE-2023-0997
MISC
MISC
MISC
sourcecodester -- alphaware_simple_e-commerce_system
 		A vulnerability classified as critical has been found in SourceCodester Alphaware Simple E-Commerce System 1.0. This affects an unknown part of the file /alphaware/summary.php of the component Payment Handler. The manipulation of the argument amount leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221733 was assigned to this vulnerability.2023-02-24not yet calculatedCVE-2023-0998
MISC
MISC
MISC
sourcecodester -- sales_tracker_management_system
 		A vulnerability classified as problematic was found in SourceCodester Sales Tracker Management System 1.0. This vulnerability affects unknown code of the file admin/?page=user/list. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-221734 is the identifier assigned to this vulnerability.2023-02-24not yet calculatedCVE-2023-0999
MISC
MISC
MISC
muyucms -- muyucms
 		A vulnerability, which was classified as problematic, has been found in MuYuCMS 2.2. This issue affects some unknown processing of the file index.php. The manipulation of the argument file_path leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221735.2023-02-24not yet calculatedCVE-2023-1002
MISC
MISC
MISC
marktext -- marktext
 		A vulnerability has been found in MarkText up to 0.17.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component WSH JScript Handler. The manipulation leads to code injection. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier VDB-221737 was assigned to this vulnerability.2023-02-24not yet calculatedCVE-2023-1004
MISC
MISC
MISC
jp1016 -- markdown_electron
 		A vulnerability was found in JP1016 Markdown-Electron and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to code injection. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. VDB-221738 is the identifier assigned to this vulnerability.2023-02-24not yet calculatedCVE-2023-1005
MISC
MISC
MISC
sourcecodester -- medical_certificate_generator_app
 		A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been classified as problematic. This affects an unknown part of the component New Record Handler. The manipulation of the argument Firstname/Middlename/Lastname/Suffix/Nationality/Doctor Fullname/Doctor Suffix with the input "><script>prompt(1)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-221739.2023-02-24not yet calculatedCVE-2023-1006
MISC
MISC
twister -- antivirus
 		A vulnerability was found in Twister Antivirus 8.17. It has been declared as critical. This vulnerability affects unknown code in the library filmfd.sys of the component IoControlCode Handler. The manipulation leads to improper access controls. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221740.2023-02-24not yet calculatedCVE-2023-1007
MISC
MISC
MISC
MISC
twister -- antivirus
 		A vulnerability was found in Twister Antivirus 8.17. It has been rated as problematic. This issue affects some unknown processing in the library filmfd.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The identifier VDB-221741 was assigned to this vulnerability.2023-02-24not yet calculatedCVE-2023-1008
MISC
MISC
MISC
MISC
draytek -- vigor_2960
 		A vulnerability classified as problematic has been found in DrayTek Vigor 2960 1.5.1.4. Affected is the function sub_1DF14 of the file /cgi-bin/mainfunction.cgi. The manipulation of the argument option with the input /../etc/password leads to path traversal. The attack needs to be done within the local network. The exploit has been disclosed to the public and may be used. VDB-221742 is the identifier assigned to this vulnerability.2023-02-24not yet calculatedCVE-2023-1009
MISC
MISC
MISC
vox2png -- vox2png
 		A vulnerability classified as critical was found in vox2png 1.0. Affected by this vulnerability is an unknown functionality of the file vox2png.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221743.2023-02-24not yet calculatedCVE-2023-1010
MISC
MISC
MISC
wordpress -- wordpress
 		The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. This is due to missing or incorrect nonce validation on the regenerateSitemaps function. This makes it possible for unauthenticated attackers to regenerate Sitemaps via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.2023-02-24not yet calculatedCVE-2023-1029
MISC
MISC
sourcecodester -- online_boat_reservation_system
 		A vulnerability has been found in SourceCodester Online Boat Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /boat/login.php of the component POST Parameter Handler. The manipulation of the argument un leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221755.2023-02-24not yet calculatedCVE-2023-1030
MISC
MISC
MISC
froxlor -- froxlor
 		Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.11.2023-02-25not yet calculatedCVE-2023-1033
CONFIRM
MISC
salesagility -- suitecrm
 		Path Traversal: '\..\filename' in GitHub repository salesagility/suitecrm prior to 7.12.9.2023-02-25not yet calculatedCVE-2023-1034
CONFIRM
MISC
sourcecodester -- clinics_patient_management_system
 		A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been classified as critical. Affected is an unknown function of the file update_user.php. The manipulation of the argument user_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221784.2023-02-25not yet calculatedCVE-2023-1035
MISC
MISC
MISC
cisco -- multiple_products
 		A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected system. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the affected user. If the affected user has administrative privileges, these actions could include modifying the system configuration and creating new privileged accounts.2023-02-23not yet calculatedCVE-2023-20011
CISCO
cisco -- nexus_9300-fx3_series_fabric_extender
 		A vulnerability in the CLI console login authentication of Cisco Nexus 9300-FX3 Series Fabric Extender (FEX) when used in UCS Fabric Interconnect deployments could allow an unauthenticated attacker with physical access to bypass authentication. This vulnerability is due to the improper implementation of the password validation function. An attacker could exploit this vulnerability by logging in to the console port on an affected device. A successful exploit could allow the attacker to bypass authentication and execute a limited set of commands local to the FEX, which could cause a device reboot and denial of service (DoS) condition.2023-02-23not yet calculatedCVE-2023-20012
CISCO
cisco -- multiple_products
 		A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.2023-02-23not yet calculatedCVE-2023-20015
CISCO
cisco -- multiple_products
 		A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup files. This vulnerability is due to a weakness in the encryption method used for the backup function. An attacker could exploit this vulnerability by leveraging a static key used for the backup configuration feature. A successful exploit could allow the attacker to decrypt sensitive information that is stored in full state and configuration backup files, such as local user credentials, authentication server passwords, Simple Network Management Protocol (SNMP) community names, and other credentials.2023-02-23not yet calculatedCVE-2023-20016
CISCO
cisco -- nx-os_software
 		A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI commands. An attacker could exploit this vulnerability by including crafted input as the argument of an affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the currently logged-in user.2023-02-23not yet calculatedCVE-2023-20050
CISCO
cisco -- nexus_9000_series_fabric_switches
 		A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent attacker to cause a memory leak, which could result in an unexpected reload of the device. This vulnerability is due to incorrect error checking when parsing ingress LLDP packets. An attacker could exploit this vulnerability by sending a steady stream of crafted LLDP packets to an affected device. A successful exploit could allow the attacker to cause a memory leak, which could result in a denial of service (DoS) condition when the device unexpectedly reloads. Note: This vulnerability cannot be exploited by transit traffic through the device. The crafted LLDP packet must be targeted to a directly connected interface, and the attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). In addition, the attack surface for this vulnerability can be reduced by disabling LLDP on interfaces where it is not required.2023-02-23not yet calculatedCVE-2023-20089
CISCO
vmware -- vrealize_orchestrator
 		VMware vRealize Orchestrator contains an XML External Entity (XXE) vulnerability. A malicious actor, with non-administrative access to vRealize Orchestrator, may be able to use specially crafted input to bypass XML parsing restrictions leading to access to sensitive information or possible escalation of privileges.2023-02-22not yet calculatedCVE-2023-20855
MISC
vmware -- carbon_black_app_control
 		VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying server operating system.2023-02-22not yet calculatedCVE-2023-20858
MISC
shirasagi -- shirasagiStored cross-site scripting vulnerability in Schedule function of SHIRASAGI v1.16.2 and earlier versions allows a remote authenticated attacker to inject an arbitrary script.2023-02-24not yet calculatedCVE-2023-22425
MISC
MISC
MISC
MISC
shirasagi -- shirasagiStored cross-site scripting vulnerability in Theme switching function of SHIRASAGI v1.16.2 and earlier versions allows a remote attacker with an administrative privilege to inject an arbitrary script.2023-02-24not yet calculatedCVE-2023-22427
MISC
MISC
MISC
MISC
mantisbt -- mantisbt
 		Mantis Bug Tracker (MantisBT) is an open source issue tracker. In versions prior to 2.25.6, due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can access to the _Summary_ field of private Issues (i.e. having Private view status, or belonging to a private Project) via a crafted `bug_arr[]` parameter in *bug_actiongroup_ext.php*. This issue is fixed in version 2.25.6. There are no workarounds.2023-02-23not yet calculatedCVE-2023-22476
MISC
MISC
zyxel -- lte3316-m604A security misconfiguration vulnerability exists in the Zyxel LTE3316-M604 firmware version V2.00(ABMP.6)C0 due to a factory default misconfiguration intended for testing purposes. A remote attacker could leverage this vulnerability to access an affected device using Telnet.2023-02-21not yet calculatedCVE-2023-22920
CONFIRM
openemr -- openemrA Reflected Cross-site scripting (XSS) vulnerability in interface/forms/eye_mag/php/eye_mag_functions.php in OpenEMR < 7.0.0 allows remote authenticated users to inject arbitrary web script or HTML via the REQUEST_URI.2023-02-22not yet calculatedCVE-2023-22972
MISC
openemr -- openemrA Local File Inclusion (LFI) vulnerability in interface/forms/LBF/new.php in OpenEMR < 7.0.0 allows remote authenticated users to execute code via the formname parameter.2023-02-22not yet calculatedCVE-2023-22973
MISC
MISC
openemr -- openemrA Path Traversal in setup.php in OpenEMR < 7.0.0 allows remote unauthenticated users to read arbitrary files by controlling a connection to an attacker-controlled MySQL server.2023-02-22not yet calculatedCVE-2023-22974
MISC
MISC
axis -- 207wA Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL.2023-02-21not yet calculatedCVE-2023-22984
MISC
libreswan -- libreswanLibreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.2023-02-21not yet calculatedCVE-2023-23009
MISC
linux -- linux_kernel
 		An issue was discovered in the Linux kernel through 6.2.0-rc2. drivers/tty/vcc.c has a race condition and resultant use-after-free if a physically proximate attacker removes a VCC device while calling open(), aka a race condition between vcc_open() and vcc_remove().2023-02-22not yet calculatedCVE-2023-23039
MISC
tp-link -- tl-wr940nTP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication.2023-02-22not yet calculatedCVE-2023-23040
MISC
MISC
cellinx -- nvtCellinx NVT v1.0.6.002b is vulnerable to local file disclosure.2023-02-22not yet calculatedCVE-2023-23063
MISC
totolink -- a720r
 		TOTOLINK A720R V4.1.5cu.532_ B20210610 is vulnerable to Incorrect Access Control.2023-02-17not yet calculatedCVE-2023-23064
MISC
lib60870 -- lib60870An issue was discovered in lib60870 v2.3.2. There is a memory leak in lib60870/lib60870-C/examples/multi_client_server/multi_client_server.c.2023-02-24not yet calculatedCVE-2023-23205
MISC
korenix -- multiple_productsKorenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection. An attacker can modify the file_name parameter to execute commands as root.2023-02-23not yet calculatedCVE-2023-23294
MISC
korenix -- multiple_productsKorenix Jetwave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection via /goform/formSysCmd. An attacker an modify the sysCmd parameter in order to execute commands as root.2023-02-23not yet calculatedCVE-2023-23295
MISC
korenix -- multiple_productsKorenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0 are vulnerable to Denial of Service via /goform/formDefault.2023-02-23not yet calculatedCVE-2023-23296
MISC
sick -- fx0-gpntMissing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000.2023-02-20not yet calculatedCVE-2023-23452
MISC
sick -- fx0-gpntMissing Authentication for Critical Function in SICK FX0-GENT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000.2023-02-20not yet calculatedCVE-2023-23453
MISC
wordpress -- wordpressCross-Site Request Forgery (CSRF) vulnerability in MainWP Matomo Extension <= 4.0.4 versions.2023-02-23not yet calculatedCVE-2023-23659
MISC
curl -- curlA cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support, curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is provided in the URL. ThisHSTS mechanism would however surprisingly be ignored by subsequent transferswhen done on the same command line because the state would not be properlycarried on.2023-02-23not yet calculatedCVE-2023-23914
MISC
curl -- curlA cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then *not* get upgraded properly to HSTS.2023-02-23not yet calculatedCVE-2023-23915
MISC
curl -- curlAn allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable "links" in this "decompression chain" wascapped, but the cap was implemented on a per-header basis allowing a maliciousserver to insert a virtually unlimited number of compression steps simply byusing many headers. The use of such a decompression chain could result in a "malloc bomb", making curl end up spending enormous amounts of allocated heap memory, or trying to and returning out of memory errors.2023-02-23not yet calculatedCVE-2023-23916
MISC
MLIST
rocket.chat -- rocket.chatA prototype pollution vulnerability exists in Rocket.Chat server <5.2.0 that could allow an attacker to a RCE under the admin account. Any user can create their own server in your cloud and become an admin so this vulnerability could affect the cloud infrastructure. This attack vector also may increase the impact of XSS to RCE which is dangerous for self-hosted users as well.2023-02-23not yet calculatedCVE-2023-23917
MISC
node.js -- node.jsA privilege escalation vulnerability exists in Node.js <19.6.1, <18.14.1, <16.19.1 and <14.21.3 that made it possible to bypass the experimental Permissions (https://nodejs.org/api/permissions.html) feature in Node.js and access non authorized modules by using process.mainModule.require(). This only affects users who had enabled the experimental permissions option with --experimental-policy.2023-02-23not yet calculatedCVE-2023-23918
MISC
node.js -- node.jsA cryptographic vulnerability exists in Node.js <19.2.0, <18.14.1, <16.19.1, <14.21.3 that in some cases did does not clear the OpenSSL error stack after operations that may set it. This may lead to false positive errors during subsequent cryptographic operations that happen to be on the same thread. This in turn could be used to cause a denial of service.2023-02-23not yet calculatedCVE-2023-23919
MISC
MISC
node.js -- node.jsAn untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.2023-02-23not yet calculatedCVE-2023-23920
MISC
MLIST
moodle -- moodleThe vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in some returnurl parameters. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website. This flaw allows a remote attacker to perform cross-site scripting (XSS) attacks.2023-02-17not yet calculatedCVE-2023-23921
MISC
MISC
MISC
moodle -- moodleThe vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in blog search. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website. This flaw allows a remote attacker to perform cross-site scripting (XSS) attacks.2023-02-17not yet calculatedCVE-2023-23922
MISC
MISC
MISC
moodle -- moodleThe vulnerability was found Moodle which exists due to insufficient limitations on the "start page" preference. A remote attacker can set that preference for another user. The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.2023-02-17not yet calculatedCVE-2023-23923
MISC
MISC
MISC
chamberlain -- myqA lack of rate limiting on the password reset endpoint of Chamberlain myQ v5.222.0.32277 (on iOS) allows attackers to compromise user accounts via a bruteforce attack.2023-02-21not yet calculatedCVE-2023-24080
MISC
MISC
MISC
MISC
redrock -- tutortracMultiple stored cross-site scripting (XSS) vulnerabilities in Redrock Software TutorTrac before v4.2.170210 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the reason and location fields of the visits listing page.2023-02-21not yet calculatedCVE-2023-24081
MISC
MISC
MISC
h3c -- a210-gAn access control issue in H3C A210-G A210-GV100R005 allows attackers to authenticate without a password.2023-02-22not yet calculatedCVE-2023-24093
MISC
ubiquiti_networks -- unifi_dream_machine_proUbiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to bypass domain restrictions via crafted packets.2023-02-23not yet calculatedCVE-2023-24104
MISC
MISC
hour_of_code_python_2015-- hour_of_code_python_2015hour_of_code_python_2015 commit 520929797b9ca43bb818b2e8f963fb2025459fa3 was discovered to contain a code execution backdoor via the request package (requirements.txt). This vulnerability allows attackers to access sensitive user information and execute arbitrary code.2023-02-22not yet calculatedCVE-2023-24107
MISC
MISC
MISC
zetacomponents -- mvctools
 		MvcTools 6d48cd6830fc1df1d8c9d61caa1805fd6a1b7737 was discovered to contain a code execution backdoor via the request package (requirements.txt). This vulnerability allows attackers to access sensitive user information and execute arbitrary code.2023-02-22not yet calculatedCVE-2023-24108
MISC
MISC
MISC
typecho -- typecho
 		typecho 1.1/17.10.30 was discovered to contain a remote code execution (RCE) vulnerability via install.php.2023-02-22not yet calculatedCVE-2023-24114
MISC
totolink -- a7100ru
 		TOTOLink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability.2023-02-21not yet calculatedCVE-2023-24184
MISC
urule -- urule
 		An XML External Entity (XXE) vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile.2023-02-24not yet calculatedCVE-2023-24189
MISC
MISC
clash_for_windows -- clash_for_windows
 		Clash for Windows v0.20.12 was discovered to contain a remote code execution (RCE) vulnerability which is exploited via overwriting the configuration file (cfw-setting.yaml).2023-02-23not yet calculatedCVE-2023-24205
MISC
MISC
tenda -- ax3
 		Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the timeType function at /goform/SetSysTimeCfg.2023-02-23not yet calculatedCVE-2023-24212
MISC
sourcecodester -- judging_management_system
 		Judging Management System 1.0 was discovered to contain an arbitrary file upload vulnerability via the component edit_organizer.php.2023-02-23not yet calculatedCVE-2023-24317
MISC
MISC
MISC
axcora -- pos
 		An access control issue in Axcora POS #0~gitf77ec09 allows unauthenticated attackers to execute arbitrary commands via unspecified vectors.2023-02-21not yet calculatedCVE-2023-24320
MISC
wordpress -- wordpress
 		Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Organization chart <= 1.4.4 versions.2023-02-23not yet calculatedCVE-2023-24384
MISC
wordpress -- wordpress
 		Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud ChatBot ? plugin <= 4.2.8 versions.2023-02-23not yet calculatedCVE-2023-24415
MISC
dell -- multifunction_printer_e525w_driver_and_software_suite
 		Dell Multifunction Printer E525w Driver and Software Suite, versions prior to 1.047.2022, A05, contain a local privilege escalation vulnerability that could be exploited by malicious users to compromise the affected system2023-02-21not yet calculatedCVE-2023-24575
MISC
changedetection.io -- changedetection.io
 		Changedetection.io before v0.40.1.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the main page. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter under the "Add a new change detection watch" function.2023-02-17not yet calculatedCVE-2023-24769
MISC
MISC
nethack -- nethack
 		NetHack is a single player dungeon exploration game. Starting with version 3.6.2 and prior to version 3.6.7, illegal input to the "C" (call) command can cause a buffer overflow and crash the NetHack process. This vulnerability may be a security issue for systems that have NetHack installed suid/sgid and for shared systems. For all systems, it may result in a process crash. This issue is resolved in NetHack 3.6.7. There are no known workarounds.2023-02-17not yet calculatedCVE-2023-24809
MISC
MISC
misskey -- misskey
 		Misskey is an open source, decentralized social media platform. Due to insufficient validation of the redirect URL during `miauth` authentication in Misskey, arbitrary JavaScript can be executed when a user allows the link. All versions below 13.3.1 (including 12.x) are affected. This has been fixed in version 13.3.1. Users are advised to upgrade. Users unable to upgrade should not allow authentication of untrusted apps.2023-02-22not yet calculatedCVE-2023-24810
MISC
misskey -- misskey
 		Misskey is an open source, decentralized social media platform. In versions prior to 13.3.2 the URL preview function is subject to a cross site scripting vulnerability due to insufficient URL validation. Arbitrary JavaScript is executed when a malicious URL is loaded in the `View in Player` or `View in Window` preview. This has been fixed in version 13.3.2. Users are advised to upgrade. Users unable to upgrade should avoid usage of the `View in Player` or `View in Window` functions.2023-02-22not yet calculatedCVE-2023-24811
MISC
MISC
misskey -- misskey
 		Misskey is an open source, decentralized social media platform. In versions prior to 13.3.3 SQL injection is possible due to insufficient parameter validation in the note search API by tag (notes/search-by-tag). This has been fixed in version 13.3.3. Users are advised to upgrade. Users unable to upgrade should block access to the `api/notes/search-by-tag` endpoint.2023-02-22not yet calculatedCVE-2023-24812
MISC
MISC
apache -- commons_fileupload
 		Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configuration option (FileUploadBase#setFileCountMax) is not enabled by default and must be explicitly configured.2023-02-20not yet calculatedCVE-2023-24998
MISC
misskey -- misskey
 		Misskey is an open source, decentralized social media platform. In versions prior to 13.5.0 the link to the instance to the sender that appears when viewing a user or note received through ActivityPub is not properly validated, so by inserting a URL with a javascript scheme an attacker may execute JavaScript code in the context of the recipient. This issue has been fixed in version 13.5.0. Users are advised to upgrade. Users unable to upgrade should not "view on remote" for untrusted instances.2023-02-22not yet calculatedCVE-2023-25154
MISC
geoserver -- geoserver
 		GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language (CQL) as part of the Web Feature Service (WFS) and Web Map Service (WMS) protocols. CQL is also supported through the Web Coverage Service (WCS) protocol for ImageMosaic coverages. Users are advised to upgrade to either version 2.21.4, or version 2.22.2 to resolve this issue. Users unable to upgrade should disable the PostGIS Datastore *encode functions* setting to mitigate ``strEndsWith``, ``strStartsWith`` and ``PropertyIsLike `` misuse and enable the PostGIS DataStore *preparedStatements* setting to mitigate the ``FeatureId`` misuse.2023-02-21not yet calculatedCVE-2023-25157
MISC
MISC
geotools -- geotools
 		GeoTools is an open source Java library that provides tools for geospatial data. GeoTools includes support for OGC Filter expression language parsing, encoding and execution against a range of datastore. SQL Injection Vulnerabilities have been found when executing OGC Filters with JDBCDataStore implementations. Users are advised to upgrade to either version 27.4 or to 28.2 to resolve this issue. Users unable to upgrade may disable `encode functions` for PostGIS DataStores or enable `prepared statements` for JDBCDataStores as a partial mitigation.2023-02-21not yet calculatedCVE-2023-25158
MISC
MISC
apolloconfig -- apollo
 		Apollo is a configuration management system. Prior to version 2.1.0, a low-privileged user can create a special web page. If an authenticated portal admin visits this page, the page can silently send a request to assign new roles for that user without any confirmation from the Portal admin. Cookie SameSite strategy was set to Lax in version 2.1.0. As a workaround, avoid visiting unknown source pages.2023-02-20not yet calculatedCVE-2023-25569
MISC
MISC
MISC
MISC
MISC
apolloconfig -- apollo
 		Apollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet, which is not recommended. This is because there is no authentication feature enabled for the built-in eureka service. Malicious hackers may access eureka directly to mock apollo-configservice and apollo-adminservice. Login authentication for eureka was added in version 2.1.0. As a workaround, avoid exposing apollo-configservice to the internet.2023-02-20not yet calculatedCVE-2023-25570
MISC
MISC
MISC
MISC
nextcloud -- nextcloud
 		Nextcloud server is a self hosted home cloud product. In affected versions the `OC\Files\Node\Folder::getFullPath()` function was validating and normalizing the string in the wrong order. The function is used in the `newFile()` and `newFolder()` items, which may allow to creation of paths outside of ones own space and overwriting data from other users with crafted paths. This issue has been addressed in versions 25.0.2, 24.0.8, and 23.0.12. Users are advised to upgrade. There are no known workarounds for this issue.2023-02-22not yet calculatedCVE-2023-25579
MISC
MISC
apache -- kerbyAn LDAP Injection vulnerability exists in the LdapIdentityBackend of Apache Kerby before 2.0.3.2023-02-20not yet calculatedCVE-2023-25613
MISC
apache -- sling
 		Privilege Escalation vulnerability in Apache Software Foundation Apache Sling. Any content author is able to create i18n dictionaries in the repository in a location the author has write access to. As these translations are used across the whole product, it allows an author to change any text or dialog in the product. For example an attacker might fool someone by changing the text on a delete button to "Info". This issue affects the i18n module of Apache Sling up to version 2.5.18. Version 2.6.2 and higher limit by default i18m dictionaries to certain paths in the repository (/libs and /apps). Users of the module are advised to update to version 2.6.2 or higher, check the configuration for resource loading and then adjust the access permissions for the configured path accordingly.2023-02-23not yet calculatedCVE-2023-25621
MISC
notaryproject -- notation-go
 		notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is impacted. The problem has been patched in the release v1.0.0-rc.3. Some workarounds are available. Users can review their own trust policy file and check if the identity string contains `=#`. Meanwhile, users should only put trusted certificates in their trust stores referenced by their own trust policy files, and make sure the `authenticity` validation is set to `enforce`.2023-02-20not yet calculatedCVE-2023-25656
MISC
MISC
nautobot -- nautobot
 		Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions earlier than 1.5.7 are impacted by a remote code execution vulnerability. Nautobot did not properly sandbox Jinja2 template rendering. In Nautobot 1.5.7 has enabled sandboxed environments for the Jinja2 template engine used internally for template rendering for the following objects: `extras.ComputedField`, `extras.CustomLink`, `extras.ExportTemplate`, `extras.Secret`, `extras.Webhook`. While no active exploits of this vulnerability are known this change has been made as a preventative measure to protect against any potential remote code execution attacks utilizing maliciously crafted template code. This change forces the Jinja2 template engine to use a `SandboxedEnvironment` on all new installations of Nautobot. This addresses any potential unsafe code execution everywhere the helper function `nautobot.utilities.utils.render_jinja2` is called. Additionally, the documentation that had previously suggesting the direct use of `jinja2.Template` has been revised to suggest `render_jinja2`. Users are advised to upgrade to Nautobot 1.5.7 or newer. For users that are unable to upgrade to the latest release of Nautobot, you may add the following setting to your `nautobot_config.py` to apply the sandbox environment enforcement: `TEMPLATES[1]["OPTIONS"]["environment"] = "jinja2.sandbox.SandboxedEnvironment"` After applying this change, you must restart all Nautobot services, including any Celery worker processes. **Note:** *Nautobot specifies two template engines by default, the first being “django” for the Django built-in template engine, and the second being “jinja” for the Jinja2 template engine. This recommended setting will update the second item in the list of template engines, which is the Jinja2 engine.* For users that are unable to immediately update their configuration such as if a Nautobot service restart is too disruptive to operations, access to provide custom Jinja2 template values may be mitigated using permissions to restrict “change” (write) actions to the affected object types listed in the first section. **Note:** *This solution is intended to be stopgap until you can successfully update your `nautobot_config.py` or upgrade your Nautobot instance to apply the sandboxed environment enforcement.*2023-02-21not yet calculatedCVE-2023-25657
MISC
MISC
MISC
apache -- airflow_google_provider
 		Improper Input Validation vulnerability in the Apache Airflow Google Provider. This issue affects Apache Airflow Google Provider versions before 8.10.0.2023-02-24not yet calculatedCVE-2023-25691
MISC
MISC
apache -- airflow_google_providerImproper Input Validation vulnerability in the Apache Airflow Google Provider. This issue affects Apache Airflow Google Provider versions before 8.10.0.2023-02-24not yet calculatedCVE-2023-25692
MISC
MISC
apache -- airflow_sqoop_providerImproper Input Validation vulnerability in the Apache Airflow Sqoop Provider. This issue affects Apache Airflow Sqoop Provider versions before 3.1.1.2023-02-24not yet calculatedCVE-2023-25693
MISC
MISC
apache -- airflow_hive_providerImproper Input Validation vulnerability in the Apache Airflow Hive Provider. This issue affects Apache Airflow Hive Provider versions before 5.1.3.2023-02-24not yet calculatedCVE-2023-25696
MISC
MISC
versionn -- versionnversionn, software for changing version information across multiple files, has a command injection vulnerability in all versions prior to version 1.1.0. This issue is patched in version 1.1.0.2023-02-20not yet calculatedCVE-2023-25805
MISC
MISC
uptime_kuma -- uptime_kumaUptime Kuma is a self-hosted monitoring tool. In versions prior to 1.20.0 the Uptime Kuma status page allows a persistent XSS attack. Users are advised to upgrade. There are no known workarounds for this vulnerability.2023-02-21not yet calculatedCVE-2023-25810
MISC
uptime_kuma -- uptime_kumaUptime Kuma is a self-hosted monitoring tool. In versions prior to 1.20.0 the Uptime Kuma `name` parameter allows a persistent XSS attack. Users are advised to upgrade. There are no known workarounds for this vulnerability.2023-02-21not yet calculatedCVE-2023-25811
MISC
mino -- minioMinio is a Multi-Cloud Object Storage framework. Affected versions do not correctly honor a `Deny` policy on ByPassGoverance. Ideally, minio should return "Access Denied" to all users attempting to DELETE a versionId with the special header `X-Amz-Bypass-Governance-Retention: true`. However, this was not honored instead the request will be honored and an object under governance would be incorrectly deleted. All users are advised to upgrade. There are no known workarounds for this issue.2023-02-21not yet calculatedCVE-2023-25812
MISC
MISC
MISC
sequelize -- sequelizeSequelize is a Node.js ORM tool. In versions prior to 6.19.1 a SQL injection exploit exists related to replacements. Parameters which are passed through replacements are not properly escaped which can lead to arbitrary SQL injection depending on the specific queries in use. The issue has been fixed in Sequelize 6.19.1. Users are advised to upgrade. Users unable to upgrade should not use the `replacements` and the `where` option in the same query.2023-02-22not yet calculatedCVE-2023-25813
MISC
MISC
MISC
MISC
nextcloud -- nextcloudNextcloud is an Open Source private cloud software. Versions 25.0.0 and above, prior to 25.0.3, are subject to Uncontrolled Resource Consumption. A user can configure a very long password, consuming more resources on password validation than desired. This issue is patched in 25.0.3 No workaround is available.2023-02-25not yet calculatedCVE-2023-25816
MISC
MISC
MISC
nextcloud -- nextcloudNextcloud is an Open Source private cloud software. Versions 24.0.4 and above, prior to 24.0.7, and 25.0.0 and above, prior to 25.0.1, contain Improper Access Control. Secure view for internal shares can be circumvented if reshare permissions are also given. This issue is patched in versions 24.0.7 and 25.0.1. No workaround is available.2023-02-25not yet calculatedCVE-2023-25821
MISC
MISC
MISC
gradio -- gradioGradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.2023-02-23not yet calculatedCVE-2023-25823
MISC
mod_gnutls -- mod_gnutlsMod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. Versions from 0.9.0 to 0.12.0 (including) did not properly fail blocking read operations on TLS connections when the transport hit timeouts. Instead it entered an endless loop retrying the read operation, consuming CPU resources. This could be exploited for denial of service attacks. If trace level logging was enabled, it would also produce an excessive amount of log output during the loop, consuming disk space. The problem has been fixed in commit d7eec4e598158ab6a98bf505354e84352f9715ec, please update to version 0.12.1. There are no workarounds, users who cannot update should apply the errno fix detailed in the security advisory.2023-02-23not yet calculatedCVE-2023-25824
MISC
MISC
MISC
zoneminder -- zoneminder
 		ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 are vulnerable to Cross-site Scripting. Log entries can be injected into the database logs, containing a malicious referrer field. This is unescaped when viewing the logs in the web ui. This issue is patched in version 1.36.33.2023-02-25not yet calculatedCVE-2023-25825
MISC
MISC
MISC
MISC
ibm  -- infosphere_information_serverIBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 247646.2023-02-21not yet calculatedCVE-2023-25928
MISC
MISC
apache -- airflow_aws_providerGeneration of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1.2023-02-24not yet calculatedCVE-2023-25956
MISC
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain SQL Injection via malicious jason web token. The Username field of the JWT token was trusted when performing an SQL query to load the user. If an attacker could determine the HASH key used by ZoneMinder, they could generate a malicious JWT token and use it to execute arbitrary SQL. This issue is fixed in versions 1.36.33 and 1.37.33.2023-02-25not yet calculatedCVE-2023-26032
MISC
linux -- gentooGentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects (in user preferences) the "Recently Visited Packages" view for the index page, the value of the `search_history` cookie is used as a base64 encoded comma separated list of atoms. These are string loaded directly into the SQL query with `atom = '%s'` format string. As a result, any user can modify the browser's cookie value and inject most SQL queries. A proof of concept malformed cookie was generated that wiped the database or changed it's content. On the database, only public data is stored, so there is no confidentiality issues to site users. If it is known that the database was modified, a full restoration of data is possible by performing a full database wipe and performing full update of all components. This issue is patched with commit id 5ae9ca83b73. Version 1.0.1 contains the patch. If users are unable to upgrade immediately, the following workarounds may be applied: (1.) Use a proxy to always drop the `search_history` cookie until upgraded. The impact on user experience is low. (2.) Sanitize to the value of `search_history` cookie after base64 decoding it.2023-02-25not yet calculatedCVE-2023-26033
MISC
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 are affected by a SQL Injection vulnerability. The (blind) SQL Injection vulnerability is present within the `filter[Query][terms][0][attr]` query string parameter of the `/zm/index.php` endpoint. A user with the View or Edit permissions of Events may execute arbitrary SQL. The resulting impact can include unauthorized data access (and modification), authentication and/or authorization bypass, and remote code execution.2023-02-25not yet calculatedCVE-2023-26034
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 are vulnerable to Unauthenticated Remote Code Execution via Missing Authorization. There are no permissions check on the snapshot action, which expects an id to fetch an existing monitor but can be passed an object to create a new one instead. TriggerOn ends up calling shell_exec using the supplied Id. This issue is fixed in This issue is fixed in versions 1.36.33 and 1.37.33.2023-02-25not yet calculatedCVE-2023-26035
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain a Local File Inclusion (Untrusted Search Path) vulnerability via /web/index.php. By controlling $view, any local file ending in .php can be executed. This is supposed to be mitigated by calling detaintPath, however dentaintPath does not properly sandbox the path. This can be exploited by constructing paths like "..././", which get replaced by "../". This issue is patched in versions 1.36.33 and 1.37.33.2023-02-25not yet calculatedCVE-2023-26036
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain an SQL Injection. The minTime and maxTime request parameters are not properly validated and could be used execute arbitrary SQL. This issue is fixed in versions 1.36.33 and 1.37.33.2023-02-25not yet calculatedCVE-2023-26037
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain a Local File Inclusion (Untrusted Search Path) vulnerability via web/ajax/modal.php, where an arbitrary php file path can be passed in the request and loaded. This issue is patched in versions 1.36.33 and 1.37.33.2023-02-25not yet calculatedCVE-2023-26038
MISC
zoneminder -- zoneminderZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain an OS Command Injection via daemonControl() in (/web/api/app/Controller/HostController.php). Any authenticated user can construct an api command to execute any shell command as the web user. This issue is patched in versions 1.36.33 and 1.37.33.2023-02-25not yet calculatedCVE-2023-26039
MISC
gnome -- epiphanyIn Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts.2023-02-20not yet calculatedCVE-2023-26081
MISC
MISC
FEDORA
liima -- liimaLiima before 1.17.28 allows server-side template injection.2023-02-20not yet calculatedCVE-2023-26092
MISC
MISC
liima -- liimaLiima before 1.17.28 allows Hibernate query language (HQL) injection, related to colToSort in the deployment filter.2023-02-20not yet calculatedCVE-2023-26093
MISC
MISC
rangy -- rangyAll versions of the package rangy are vulnerable to Prototype Pollution when using the extend() function in file rangy-core.js.The function uses recursive merge which can lead an attacker to modify properties of the Object.prototype2023-02-24not yet calculatedCVE-2023-26102
MISC
MISC
deno -- denoVersions of the package deno before 1.31.0 are vulnerable to Regular Expression Denial of Service (ReDoS) due to the upgradeWebSocket function, which contains regexes in the form of /s*,s*/, used for splitting the Connection/Upgrade header. A specially crafted Connection/Upgrade header can be used to significantly slow down a web socket server.2023-02-25not yet calculatedCVE-2023-26103
MISC
MISC
MISC
MISC
MISC
lite-web-server -- lite-web-serverAll versions of the package lite-web-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.2023-02-25not yet calculatedCVE-2023-26104
MISC
MISC
MISC
tibco -- tibco_businessconnectThe BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker with network access to execute scripts targeting the affected system or the victim's local system. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect: versions 7.3.0 and below.2023-02-22not yet calculatedCVE-2023-26214
CONFIRM
java -- jd-guiJD-GUI 1.6.6 allows deserialization via UIMainWindowPreferencesProvider.singleInstance.2023-02-21not yet calculatedCVE-2023-26234
MISC
MISC
java -- jd-guiJD-GUI 1.6.6 allows XSS via util/net/InterProcessCommunicationUtil.java.2023-02-21not yet calculatedCVE-2023-26235
MISC
linux -- linux_kernel
 		afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12 has an integer overflow.2023-02-21not yet calculatedCVE-2023-26242
MISC
knot_resolver -- knot_resolverKnot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.2023-02-21not yet calculatedCVE-2023-26249
MISC
gluster -- glusterfsIn Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read.2023-02-21not yet calculatedCVE-2023-26253
MISC
backdrop_cms -- borgThe Borg theme before 1.1.19 for Backdrop CMS does not sufficiently sanitize path arguments that are passed in via a URL. The function borg_preprocess_page in the file template.php does not properly sanitize incoming path arguments before using them.2023-02-21not yet calculatedCVE-2023-26265
MISC
MISC
aflplusplus -- aflplusplusIn AFL++ 4.05c, the CmpLog component uses the current working directory to resolve and execute unprefixed fuzzing targets, allowing code execution.2023-02-21not yet calculatedCVE-2023-26266
MISC
php-saml-sp -- php-saml-spphp-saml-sp before 1.1.1 and 2.x before 2.1.1 allows reading arbitrary files as the webserver user because resolving XML external entities was silently enabled via \LIBXML_DTDLOAD | \LIBXML_DTDATTR.2023-02-21not yet calculatedCVE-2023-26267
MISC
MISC
 executablebooks -- markdown-it-pyDenial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.2023-02-22not yet calculatedCVE-2023-26302
MISC
executablebooks -- markdown-it-pyDenial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.2023-02-23not yet calculatedCVE-2023-26303
MISC
debian -- mono_packageThe mono package before 6.8.0.105+dfsg-3.3 for Debian allows arbitrary code execution because the application/x-ms-dos-executable MIME type is associated with an un-sandboxed Mono CLR interpreter.2023-02-22not yet calculatedCVE-2023-26314
MISC
MISC
MLIST
wordpress -- wordpressThe 'rx_export_review' action in the ReviewX WordPress Plugin version < 1.6.4, is affected by an authenticated SQL injection vulnerability in the 'filterValue' and 'selectedColumns' parameters.2023-02-23not yet calculatedCVE-2023-26325
MISC
wordpress -- wordpress
 		The BuddyForms WordPress plugin, in versions prior to 2.7.8, was affected by an unauthenticated insecure deserialization issue. An unauthenticated attacker could leverage this issue to call files using a PHAR wrapper that will deserialize the data and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present.2023-02-23not yet calculatedCVE-2023-26326
MISC
thingsboard -- thingsboardThingsBoard 3.4.1 could allow a remote attacker to gain elevated privileges because hard-coded service credentials (usable for privilege escalation) are stored in an insecure format. (To read this stored data, the attacker needs access to the application server or its source code.)2023-02-23not yet calculatedCVE-2023-26462
MISC
MISC
cerebate -- cerebateCerebrate 1.12 does not properly consider organisation_id during creation of API keys.2023-02-24not yet calculatedCVE-2023-26468
MISC
linux -- linux_kernel
 		In the Linux kernel 6.0.8, there is a use-after-free in run_unpack in fs/ntfs3/run.c, related to a difference between NTFS sector size and media sector size.2023-02-25not yet calculatedCVE-2023-26544
MISC
linux -- linux_kernel
 		In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device.2023-02-25not yet calculatedCVE-2023-26545
MISC
MISC
MISC
bmc -- control-mA SQL injection vulnerability in BMC Control-M before 9.0.20.214 allows attackers to execute arbitrary SQL commands via the memname JSON field.2023-02-25not yet calculatedCVE-2023-26550
MISC

Back to top

Please share your thoughts

We recently updated our anonymous product survey; we’d welcome your feedback.