Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2022
CVE-2022-38137
Cross-Site Request Forgery (CSRF) vulnerability in Analytify plugin <= 4.2.2 on WordPress.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-11-08
CVE-2022-40128
Cross-Site Request Forgery (CSRF) vulnerability in Advanced Order Export For WooCommerce plugin <= 3.3.2 on WordPress leading to export file download.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-11-08
CVE-2022-40205
Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as solved/unsolved.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-11-08
CVE-2022-32587
Cross-Site Request Forgery (CSRF) vulnerability in CodeAndMore WP Page Widget plugin <= 3.9 on WordPress leading to plugin settings change.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-11-08
CVE-2022-32776
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Advanced Ads GmbH Advanced Ads – Ad Manager & AdSense plugin <= 1.31.1 on WordPress.
CVSS Score
4.8
EPSS Score
0.001
Published
2022-11-08
CVE-2022-27858
CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress.
CVSS Score
7.4
EPSS Score
0.004
Published
2022-11-08
CVE-2022-27914
An issue was discovered in Joomla! 4.0.0 through 4.2.4. Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in com_media.
CVSS Score
6.1
EPSS Score
0.0
Published
2022-11-08
CVE-2022-30545
Auth. Reflected Cross-Site Scripting (XSS) vulnerability in 5 Anker Connect plugin <= 1.2.6 on WordPress.
CVSS Score
4.8
EPSS Score
0.001
Published
2022-11-08
CVE-2022-27855
Cross-Site Request Forgery (CSRF) vulnerability in Fatcat Apps Analytics Cat plugin <= 1.0.9 on WordPress allows Plugin Settings Change.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-11-08
CVE-2022-39069
There is a SQL injection vulnerability in ZTE ZAIP-AIE. Due to lack of input verification by the server, an attacker could trigger an attack by building malicious requests. Exploitation of this vulnerability could cause the leakage of the current table content.
CVSS Score
5.3
EPSS Score
0.003
Published
2022-11-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved