Security Vulnerabilities - CVEs Published In June 2022
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=.
CVSS Score
7.2
EPSS Score
0.176
Published
2022-06-02
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_request.
CVSS Score
9.8
EPSS Score
0.416
Published
2022-06-02
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_team.
CVSS Score
9.8
EPSS Score
0.381
Published
2022-06-02
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_inquiry.
CVSS Score
9.8
EPSS Score
0.482
Published
2022-06-02
ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.
CVSS Score
7.8
EPSS Score
0.003
Published
2022-06-02
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.
CVSS Score
5.5
EPSS Score
0.003
Published
2022-06-02
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.
CVSS Score
6.5
EPSS Score
0.003
Published
2022-06-02
Bottle before 0.12.20 mishandles errors during early request binding.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
Rescue Dispatch Management System v1.0 is vulnerable to Delete any file via /rdms/classes/Master.php?f=delete_img.
CVSS Score
9.1
EPSS Score
0.003
Published
2022-06-02
Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/classes/Master.php?f=delete_team.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02