Show filters
244,469 Total Results
Displaying 1-10 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Unknown

CVE-2022-43463

Disclosure Date: November 30, 2022 (last updated November 22, 2022)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Custom Product Tabs for WooCommerce plugin <= 1.7.9 on WordPress.
Attacker Value
Unknown

CVE-2022-43481

Disclosure Date: November 30, 2022 (last updated November 10, 2022)
Cross-Site Request Forgery (CSRF) vulnerability in Advanced Coupons for WooCommerce Coupons plugin <= 4.5 on WordPress leading to notice dismissal.
Attacker Value
Unknown

CVE-2022-40206

Disclosure Date: November 26, 2022 (last updated November 10, 2022)
Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as private/public.
Attacker Value
Unknown

CVE-2022-29830

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 all versions allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a result, unauthorized users may obtain information about project files illegally.
0
Attacker Value
Unknown

CVE-2022-25164

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 all versions and Mitsubishi Electric MX OPC UA Module Configurator-R all versions allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthorized users can gain unauthorized access to the CPU module and the OPC UA server module.
0
Attacker Value
Unknown

CVE-2022-29825

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 all versions allows an unauthenticated attacker to disclose sensitive information. As a result, unauthorized users may view or execute programs illegally.
0
Attacker Value
Unknown

CVE-2022-29826

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions 1.086Q and prior allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthorized users may view or execute programs illegally.
0
Attacker Value
Unknown

CVE-2022-29831

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthorized attacker to obtain information about the project file for MELSEC safety CPU modules.
0
Attacker Value
Unknown

CVE-2022-29833

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthorized attacker to disclose sensitive information. As a result, unauthorized users could access to MELSEC safety CPU modules illgally.
0
Attacker Value
Unknown

CVE-2022-29827

Disclosure Date: November 25, 2022 (last updated November 25, 2022)
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 all versions allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthorized users may view or execute programs illegally.
0