Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2023
CVE-2022-45537
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article publish component in cookie "ENV_LIST_URL".
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-20
CVE-2022-45538
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article publish component in cookie "ENV_GOBACK_URL".
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-20
CVE-2022-45539
EyouCMS <= 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-20
CVE-2022-45540
EyouCMS <= 1.6.0 was discovered a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-20
CVE-2022-45541
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-20
CVE-2022-45542
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-01-20
CVE-2022-45557
Cross site scripting (XSS) vulnerability in Hundredrabbits Left 7.1.5 for MacOS allows attackers to execute arbitrary code via file names.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-01-20
CVE-2022-45558
Cross site scripting (XSS) vulnerability in Hundredrabbits Left 7.1.5 for MacOS allows attackers to execute arbitrary code via the meta tag.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-01-20
CVE-2022-45748
An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-01-20
CVE-2022-39193
An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This information should not allow public viewing: it is supposed to be viewable only by users with suppression rights.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-01-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved