Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2022
CVE-2022-0133
peertube is vulnerable to Improper Access Control
CVSS Score
5.3
EPSS Score
0.003
Published
2022-01-10
CVE-2022-0132
peertube is vulnerable to Server-Side Request Forgery (SSRF)
CVSS Score
4.8
EPSS Score
0.003
Published
2022-01-10
CVE-2021-46165
Zoho ManageEngine Desktop Central before 10.0.662, during startup, launches an executable file from the batch files, but this file's path might not be properly defined.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-01-10
CVE-2021-46166
Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated users to obtain sensitive information from the database by visiting the Reports page.
CVSS Score
6.5
EPSS Score
0.003
Published
2022-01-10
CVE-2021-46164
Zoho ManageEngine Desktop Central before 10.0.662 allows remote code execution by an authenticated user who has complete access to the Reports module.
CVSS Score
8.8
EPSS Score
0.098
Published
2022-01-10
CVE-2021-46163
Kentico Xperience 13.0.44 allows XSS via an XML document to the Media Libraries subsystem.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-01-10
CVE-2021-46150
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Special:CheckUserLog allows CheckUser XSS because of date mishandling, as demonstrated by an XSS payload in MediaWiki:October.
CVSS Score
4.8
EPSS Score
0.002
Published
2022-01-10
CVE-2021-46148
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Some unprivileged users can view confidential information (e.g., IP addresses and User-Agent headers for election traffic) on a testwiki SecurePoll instance.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-01-10
CVE-2021-46149
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A denial of service (resource consumption) can be accomplished by searching for a very long key in a Language Name Search.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-01-10
CVE-2021-46146
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-01-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved