Security Vulnerabilities - CVEs Published In April 2022
CMSimple 5.4 is vulnerable to Cross Site Scripting (XSS) via the file upload feature.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-04-13
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-04-13
Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows attackers to execute arbitrary code when when /admin.php is loaded.
CVSS Score
6.1
EPSS Score
0.004
Published
2022-04-13
SQL injection in ElementController.php in GitHub repository pimcore/pimcore prior to 10.3.5. This vulnerability is capable of steal the data
CVSS Score
8.8
EPSS Score
0.0
Published
2022-04-13
drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrs_clt_dev_release.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-04-13
A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions
CVSS Score
4.9
EPSS Score
0.006
Published
2022-04-13
In Citrix XenMobile Server through 10.12 RP9, there is an Authenticated Command Injection vulnerability, leading to remote code execution with root privileges.
CVSS Score
8.8
EPSS Score
0.061
Published
2022-04-13
Citrix XenMobile Server 10.12 through RP11, 10.13 through RP7, and 10.14 through RP4 allows Command Injection.
CVSS Score
7.2
EPSS Score
0.025
Published
2022-04-13
A Cross-Site Request Forgery (CSRF) in Pluck CMS v4.7.15 allows attackers to delete arbitrary pages.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-04-13
Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2.
CVSS Score
7.1
EPSS Score
0.001
Published
2022-04-12