Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-31782 | 1 Freedesktop | 1 Freetype Demo Programs | 2022-06-10 | 6.8 MEDIUM | 7.8 HIGH |
| ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow. | |||||
| CVE-2022-30478 | 1 Ecommerce-project-with-php-and-mysqli-fruits-bazar Project | 1 Ecommerce-project-with-php-and-mysqli-fruits-bazar | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Ecommerce-project-with-php-and-mysqli-Fruits-Bazar 1.0 is vulnerable to SQL Injection in \search_product.php via the keyword parameters. | |||||
| CVE-2022-30470 | 1 Afian | 1 Filerun | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| In Afian Filerun 20220202 Changing the "search_tika_path" variable to a custom (and previously uploaded) jar file results in remote code execution in the context of the webserver user. | |||||
| CVE-2022-30034 | 1 Flower Project | 1 Flower | 2022-06-10 | 7.5 HIGH | 8.6 HIGH |
| Flower, a web UI for the Celery Python RPC framework, all versions as of 05-02-2022 is vulnerable to an OAuth authentication bypass. An attacker could then access the Flower API to discover and invoke arbitrary Celery RPC calls or deny service by shutting down Celery task nodes. | |||||
| CVE-2022-31946 | 1 Rescue Dispatch Management System Project | 1 Rescue Dispatch Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/classes/Master.php?f=delete_team. | |||||
| CVE-2022-31945 | 1 Rescue Dispatch Management System Project | 1 Rescue Dispatch Management System | 2022-06-10 | 6.4 MEDIUM | 9.1 CRITICAL |
| Rescue Dispatch Management System v1.0 is vulnerable to Delete any file via /rdms/classes/Master.php?f=delete_img. | |||||
| CVE-2022-31952 | 1 Rescue Dispatch Management System Project | 1 Rescue Dispatch Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Rescue Dispatch Management System v1.0 is vulnerable to SQL injection via /rdms/classes/Master.php?f=delete_incident. | |||||
| CVE-2022-31951 | 1 Rescue Dispatch Management System Project | 1 Rescue Dispatch Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/classes/Master.php?f=delete_respondent_type. | |||||
| CVE-2022-31948 | 1 Rescue Dispatch Management System Project | 1 Rescue Dispatch Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/classes/Master.php?f=delete_report. | |||||
| CVE-2022-32008 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/vacancy/index.php?view=edit&id=. | |||||
| CVE-2022-32007 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/company/index.php?view=edit&id=. | |||||
| CVE-2022-32011 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=. | |||||
| CVE-2022-32010 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/user/index.php?view=edit&id=. | |||||
| CVE-2022-32013 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/category/index.php?view=edit&id=. | |||||
| CVE-2022-32012 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/employee/index.php?view=edit&id=. | |||||
| CVE-2022-32015 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=category&search=. | |||||
| CVE-2022-32014 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=byfunction. | |||||
| CVE-2022-32017 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=bytitle. | |||||
| CVE-2022-32016 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=bycompany. | |||||
| CVE-2022-32018 | 1 Complete Online Job Search System Project | 1 Complete Online Job Search System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=hiring&search=. | |||||
| CVE-2022-31994 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=sales/view_details&id. | |||||
| CVE-2022-31959 | 1 Rescue Dispatch Management System Project | 1 Rescue Dispatch Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/admin/teams/manage_team.php?id=. | |||||
| CVE-2022-32002 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/courts/manage_court.php?id=. | |||||
| CVE-2022-32003 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/courts/view_court.php?id=. | |||||
| CVE-2022-32004 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products/manage_product.php?id=. | |||||
| CVE-2021-43512 | 1 Flightradar24 | 1 Flightradar24 Flight Tracker | 2022-06-10 | 2.1 LOW | 5.5 MEDIUM |
| An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android, allows attackers to cause unspecified consequences due to being able to decompile a local application and extract their API keys. | |||||
| CVE-2022-32006 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/services/view_service.php?id=. | |||||
| CVE-2022-32005 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/services/manage_service.php?id=. | |||||
| CVE-2022-31985 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=reports/daily_sales_report&date=. | |||||
| CVE-2022-31988 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=reports/daily_services_report&date=. | |||||
| CVE-2022-31986 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=reports/daily_court_rental_report&date=. | |||||
| CVE-2022-31991 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/classes/Master.php?f=delete_court. | |||||
| CVE-2022-31990 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/classes/Master.php?f=delete_product. | |||||
| CVE-2022-31989 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=user/manage_user&id=. | |||||
| CVE-2022-31993 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/classes/Master.php?f=delete_service. | |||||
| CVE-2022-31992 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=court_rentals/view_court_rental&id=. | |||||
| CVE-2022-32001 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products/view_product.php?id=. | |||||
| CVE-2022-32201 | 1 Libjpeg Project | 1 Libjpeg | 2022-06-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp. | |||||
| CVE-2022-32200 | 1 Libdwarf Project | 1 Libdwarf | 2022-06-10 | 6.8 MEDIUM | 7.8 HIGH |
| libdwarf 0.4.0 has a heap-based buffer over-read in _dwarf_check_string_valid in dwarf_util.c. | |||||
| CVE-2022-32202 | 1 Libjpeg Project | 1 Libjpeg | 2022-06-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::FetchRegion in linebuffer.cpp. | |||||
| CVE-2022-31998 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=service_transactions/view_details&id=. | |||||
| CVE-2022-31996 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=sales/manage_sale&id=. | |||||
| CVE-2022-32000 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=service_transactions/manage_service_transaction&id=. | |||||
| CVE-2022-31974 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=. | |||||
| CVE-2022-31976 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_request. | |||||
| CVE-2022-31975 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=. | |||||
| CVE-2022-31978 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_inquiry. | |||||
| CVE-2022-31977 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 7.5 HIGH | 9.8 CRITICAL |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_team. | |||||
| CVE-2022-31980 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manage_team&id=. | |||||
| CVE-2022-31981 | 1 Online Fire Reporting System Project | 1 Online Fire Reporting System | 2022-06-10 | 6.5 MEDIUM | 7.2 HIGH |
| Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/view_team&id=. | |||||