Security Vulnerabilities - CVEs Published In April 2022
The DW Question & Answer Pro WordPress plugin through 1.3.4 does not properly check for CSRF in some of its functions, allowing attackers to make logged in users perform unwanted actions, such as update a comment or a question status.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-04-25
The BeanShell components of IRISNext through 9.8.28 allow execution of arbitrary commands on the target server by creating a custom search (or editing an existing/predefined search) of the documents. The search components permit adding BeanShell expressions that result in Remote Code Execution in the context of the IRISNext application user, running on the web server.
CVSS Score
8.8
EPSS Score
0.074
Published
2022-04-25
SCBS Online Sports Venue Reservation System v1.0 was discovered to contain a local file inclusion vulnerability which allow attackers to execute arbitrary code via a crafted PHP file.
CVSS Score
9.8
EPSS Score
0.009
Published
2022-04-25
SCBS Online Sports Venue Reservation System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the fid parameter at booking.php.
CVSS Score
6.1
EPSS Score
0.003
Published
2022-04-25
The ejs (aka Embedded JavaScript templates) package 3.1.6 for Node.js allows server-side template injection in settings[view options][outputFunctionName]. This is parsed as an internal option, and overwrites the outputFunctionName option with an arbitrary OS command (which is executed upon template compilation).
CVSS Score
9.8
EPSS Score
0.935
Published
2022-04-25
VeryFitPro (com.veryfit2hr.second) 3.2.8 hashes the account's password locally on the device and uses the hash to authenticate in all communication with the backend API, including login, registration and changing of passwords. This allows an attacker in possession of a hash to takeover a user's account, rendering the benefits of storing hashed passwords in the database useless.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-04-25
element-plus 2.0.5 is vulnerable to Cross Site Scripting (XSS) via el-table-column.
CVSS Score
6.1
EPSS Score
0.003
Published
2022-04-25
xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-04-25
Gibbon v3.4.4 and below allows attackers to execute a Server-Side Request Forgery (SSRF) via a crafted URL.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-04-25
A stored cross-site scripting (XSS) vulnerability in /index.php/album/add of GalleryCMS v2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the album_name parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-04-25