Security Vulnerabilities - CVEs Published In September 2022
Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.
CVSS Score
6.6
EPSS Score
0.001
Published
2022-09-09
Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication.
CVSS Score
1.8
EPSS Score
0.002
Published
2022-09-09
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.
CVSS Score
2.8
EPSS Score
0.001
Published
2022-09-09
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via log.
CVSS Score
3.3
EPSS Score
0.002
Published
2022-09-09
An issue was discovered in Shirne CMS 1.2.0. There is a Path Traversal vulnerability which could cause arbitrary file read via /static/ueditor/php/controller.php
CVSS Score
6.5
EPSS Score
0.172
Published
2022-09-09
Authenticated (author+) Stored Cross-Site Scripting (XSS) vulnerability in WHA's Word Search Puzzles game plugin <= 2.0.1 at WordPress.
CVSS Score
4.8
EPSS Score
0.003
Published
2022-09-09
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nikhil Vaghela's Add User Role plugin <= 0.0.1 at WordPress.
CVSS Score
4.8
EPSS Score
0.005
Published
2022-09-09
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress.
CVSS Score
4.8
EPSS Score
0.003
Published
2022-09-09
Cross-Site Request Forgery (CSRF) vulnerability in Mickey Kay's Better Font Awesome plugin <= 2.0.1 at WordPress.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-09-09
Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in WPChill Gallery PhotoBlocks plugin <= 1.2.6 at WordPress.
CVSS Score
4.1
EPSS Score
0.003
Published
2022-09-09