Show filters
159 Total Results
Displaying 41-50 of 159
Sort by:
Attacker Value
Unknown
CVE-2022-41515
Disclosure Date: October 07, 2022 (last updated February 24, 2025)
Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_payment.
0
Attacker Value
Unknown
CVE-2022-41514
Disclosure Date: October 07, 2022 (last updated February 24, 2025)
Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_loan.
0
Attacker Value
Unknown
CVE-2022-34578
Disclosure Date: July 28, 2022 (last updated February 24, 2025)
Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page.
0
Attacker Value
Unknown
CVE-2022-34966
Disclosure Date: July 25, 2022 (last updated February 24, 2025)
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an HTML injection vulnerability via the location parameter at http://ip_address/:port/ossn/home.
0
Attacker Value
Unknown
CVE-2022-34962
Disclosure Date: July 25, 2022 (last updated February 24, 2025)
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Group Timeline module.
0
Attacker Value
Unknown
CVE-2022-34965
Disclosure Date: July 25, 2022 (last updated February 24, 2025)
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an arbitrary file upload vulnerability via the component /ossn/administrator/com_installer. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. Note: The project owner believes this is intended behavior of the application as it only allows authenticated admins to upload files.
0
Attacker Value
Unknown
CVE-2022-34964
Disclosure Date: July 25, 2022 (last updated February 24, 2025)
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the SitePages module.
0
Attacker Value
Unknown
CVE-2022-34963
Disclosure Date: July 25, 2022 (last updated February 24, 2025)
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the News Feed module.
0
Attacker Value
Unknown
CVE-2022-34961
Disclosure Date: July 25, 2022 (last updated February 24, 2025)
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Users Timeline module.
0
Attacker Value
Unknown
CVE-2022-21666
Disclosure Date: January 10, 2022 (last updated February 23, 2025)
Useful Simple Open-Source CMS (USOC) is a content management system (CMS) for programmers. Versions prior to Pb2.4Bfx3 allowed Sql injection in usersearch.php only for users with administrative privileges. Users should replace the file `admin/pages/useredit.php` with a newer version. USOC version Pb2.4Bfx3 contains a fixed version of `admin/pages/useredit.php`.
0
