Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-17 CVE-2022-22485 Improper Authentication vulnerability in IBM Spectrum Protect Operations Center
In some cases, an unsuccessful attempt to log into IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.14.000 does not cause the administrator's invalid sign-on count to be incremented on the IBM Spectrum Protect Server.
network
low complexity
ibm CWE-287
7.5
2022-06-17 CVE-2021-40903 Improper Authentication vulnerability in Antminer Monitor Project Antminer Monitor 0.50.0
A vulnerability in Antminer Monitor 0.50.0 exists because of backdoor or misconfiguration inside a settings file in flask server.
network
low complexity
antminer-monitor-project CWE-287
7.5
2022-06-17 CVE-2022-31355 SQL Injection vulnerability in Online Ordering System Project Online Ordering System 2.3.2
Online Ordering System v2.3.2 was discovered to contain a SQL injection vulnerability via /ordering/index.php?q=category&search=.
network
low complexity
online-ordering-system-project CWE-89
7.5
2022-06-17 CVE-2022-31356 SQL Injection vulnerability in Online Ordering System Project Online Ordering System 2.3.2
Online Ordering System v2.3.2 was discovered to contain a SQL injection vulnerability via /ordering/admin/store/index.php?view=edit&id=.
network
low complexity
online-ordering-system-project CWE-89
7.5
2022-06-17 CVE-2022-31357 SQL Injection vulnerability in Online Ordering System Project Online Ordering System 2.3.2
Online Ordering System v2.3.2 was discovered to contain a SQL injection vulnerability via /ordering/admin/inventory/index.php?view=edit&id=.
network
low complexity
online-ordering-system-project CWE-89
7.5
2022-06-17 CVE-2020-36547 Use of Hard-coded Credentials vulnerability in GE Voluson S8 Firmware
A vulnerability was found in GE Voluson S8.
local
low complexity
ge CWE-798
7.2
2022-06-17 CVE-2020-36548 Improper Authentication vulnerability in GE Voluson S8 Firmware
A vulnerability classified as problematic has been found in GE Voluson S8.
local
low complexity
ge CWE-287
7.2
2022-06-17 CVE-2020-36549 Unspecified vulnerability in GE Voluson S8 Firmware
A vulnerability classified as critical was found in GE Voluson S8.
local
low complexity
ge
7.2
2022-06-17 CVE-2021-41408 SQL Injection vulnerability in Voipmonitor 24.61
VoIPmonitor WEB GUI up to version 24.61 is affected by SQL injection through the "api.php" file and "user" parameter.
network
low complexity
voipmonitor CWE-89
7.5
2022-06-17 CVE-2021-45024 XXE vulnerability in Rocketsoftware Ags-Zena 4.2.1
ASG technologies ( A Rocket Software Company) ASG-Zena Cross Platform Server Enterprise Edition 4.2.1 is vulnerable to XML External Entity (XXE).
network
low complexity
rocketsoftware CWE-611
7.5