Common Vulnerabilities and Exposures (CVE)

CVE-2023-23325

Jul 9, 2026 00:23:28 UTC

Zumtobel Netlink CCD Onboard 3.74 - Firmware 3.80 was discovered to contain a command injection vulnerability via the NetHostname parameter.

CVE-2023-23324

Jul 9, 2026 00:23:27 UTC

Zumtobel Netlink CCD Onboard 3.74 - Firmware 3.80 was discovered to contain hardcoded credentials for the Administrator account.

CVE-2023-23059

Jul 9, 2026 00:23:26 UTC

An issue was discovered in GeoVision GV-Edge Recording Manager 2.2.3.0 for windows, which contains improper permissions within the default installation and allows attackers to execute arbitrary code and gain escalated privileges.

CVE-2023-22985

Jul 9, 2026 00:23:25 UTC

Sourcecodester Simple Guestbook Management System version 1 is vulnerable to Cross Site Scripting (XSS) via Name, Referrer, Location, and Comments.

CVE-2022-48111

Jul 9, 2026 00:23:23 UTC

A cross-site scripting (XSS) vulnerability in the check_login function of SIPE s.r.l WI400 between version 8 and 11 included allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the f parameter.

CVE-2022-48085

Jul 9, 2026 00:23:22 UTC

Softr v2.0 was discovered to contain a HTML injection vulnerability via the Work Space Name parameter.

CVE-2022-47880

Jul 9, 2026 00:23:21 UTC

An Information disclosure vulnerability in /be/rpc.php in Jedox GmbH Jedox 2020.2.5 allow remote, authenticated users with permissions to modify database connections to disclose a connections' cleartext password via the 'test connection' fu...

CVE-2022-47879

Jul 9, 2026 00:23:20 UTC

A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods. NOTE: The vendor states that the vulnerability af...

CVE-2022-47770

Jul 9, 2026 00:23:18 UTC

Serenissima Informatica Fast Checkin version v1.0 is vulnerable to Unauthenticated SQL Injection.

CVE-2022-47769

Jul 9, 2026 00:23:17 UTC

An arbitrary file write vulnerability in Serenissima Informatica Fast Checkin v1.0 allows unauthenticated attackers to upload malicious files in the web root of the application to gain access to the server via the web shell.

CVE-2022-47768

Jul 9, 2026 00:23:16 UTC

Serenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal.

CVE-2022-47758

Jul 9, 2026 00:23:15 UTC

Nanoleaf firmware v7.1.1 and below is missing TLS verification, allowing attackers to execute arbitrary code via a DNS hijacking attack.

CVE-2022-47003

Jul 9, 2026 00:23:14 UTC

A vulnerability in the Remember Me function of Mura CMS before v10.0.580 allows attackers to bypass authentication via a crafted web request.

CVE-2022-46965

Jul 9, 2026 00:23:12 UTC

PrestaShop module, totadministrativemandate before v1.7.1 was discovered to contain a SQL injection vulnerability.

CVE-2022-46640

Jul 9, 2026 00:23:11 UTC

Nanoleaf Desktop App before v1.3.1 was discovered to contain a command injection vulnerability which is exploited via a crafted HTTP request.