Security Vulnerabilities - CVEs Published In September 2022
Authenticated (author+) CSV Injection vulnerability in Export Post Info plugin <= 1.2.0 at WordPress.
CVSS Score
6.2
EPSS Score
0.002
Published
2022-09-23
Cross-Site Request Forgery (CSRF) vulnerability in Read more By Adam plugin <= 1.1.8 at WordPress.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-09-23
Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in NOTICE BOARD plugin <= 1.1 at WordPress.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-09-23
Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service.
CVSS Score
3.1
EPSS Score
0.002
Published
2022-09-23
Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability in Awesome Filterable Portfolio plugin <= 1.9.7 at WordPress.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-09-23
There is a broken access control vulnerability in ZTE ZXvSTB product. Due to improper permission control, attackers could use this vulnerability to delete the default application type, which affects normal use of system.
CVSS Score
9.1
EPSS Score
0.003
Published
2022-09-23
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/update_payment.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-09-23
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/update_tax.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-09-23
Multiple Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerabilities in GS Testimonial Slider plugin <= 1.9.6 at WordPress.
CVSS Score
4.1
EPSS Score
0.001
Published
2022-09-23
Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set
CVSS Score
9.8
EPSS Score
0.002
Published
2022-09-23