Severity Medium Analysis Summary CVE-2022-3451 Product Stock Manager plugin for WordPress is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading […]

Severity Medium Analysis Summary CVE-2022-3408  WP Word Count plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Before […]

Severity High Analysis Summary CVE-2022-40202 CVSS:9.8Delta Electronics InfraSuite Device Master could allow a remote attacker to execute arbitrary code on the system, caused by the lack […]

Severity High Analysis Summary APT-C-23 (aka AridViper) is an Arabic-speaking Advanced Persistent Threat group working for Hamas. The threat group has been previously known to target […]

Severity High Analysis Summary CVE-2022-43398 Siemens SICAM Q100 could allow a remote attacker to hijack a user’s session, cause by lack of session cookie renewal and […]

Severity High Analysis Summary CVE-2022-43397 Siemens Parasolid could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write when parsing […]

Severity Medium Analysis Summary CVE-2022-31777 Apache Spark is vulnerable to cross-site scripting, caused by improper validation of user-supplied input in the log viewer. A remote attacker […]

Severity High Analysis Summary CVE-2022-32287 Apache UIMA could allow a remote attacker to traverse directories on the system, caused by improper validation of user supplied input […]

Severity High Analysis Summary CVE-2022-37866 Apache Ivy could allow a remote attacker to traverse directories on the system, caused by improper validation of user request. An […]