Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-10 | CVE-2022-22426 | Unspecified vulnerability in IBM Spectrum Copy Data Management IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. | 3.3 |
| 2022-06-10 | CVE-2017-20031 | Unspecified vulnerability in PHPlist 3.2.6 A vulnerability was found in PHPList 3.2.6. | 2.7 |
| 2022-06-08 | CVE-2022-1684 | Unspecified vulnerability in Webpsilon Cube Slider 1.0/1.1/1.2 The Cube Slider WordPress plugin through 1.2 does not sanitise and escape the idslider parameter before using it in various SQL queries, leading to SQL Injections exploitable by high privileged users such as admin | 2.7 |
| 2022-06-08 | CVE-2022-1686 | Unspecified vulnerability in Five Minute Webshop Project Five Minute Webshop 1.3.2 The Five Minute Webshop WordPress plugin through 1.3.2 does not sanitise and escape the id parameter before using it in a SQL statement when editing a product via the admin dashboard, leading to an SQL Injection | 2.7 |
| 2022-06-08 | CVE-2022-1687 | Unspecified vulnerability in Logo Slider Project Logo Slider The Logo Slider WordPress plugin through 1.4.8 does not sanitise and escape the lsp_slider_id parameter before using it in a SQL statement via the Manage Slider Images admin page, leading to an SQL Injection | 2.7 |
| 2022-06-08 | CVE-2022-1688 | Unspecified vulnerability in Datainterlock Note Press The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the id parameter before using it in various SQL statement via the admin dashboard, leading to SQL Injections | 2.7 |
| 2022-06-08 | CVE-2022-1689 | Unspecified vulnerability in Datainterlock Note Press The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the Update parameter before using it in a SQL statement when updating a note via the admin dashboard, leading to an SQL injection | 2.7 |
| 2022-06-08 | CVE-2022-1690 | Unspecified vulnerability in Datainterlock Note Press The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the ids from the bulk actions before using them in a SQL statement in an admin page, leading to an SQL injection | 2.7 |
| 2022-06-07 | CVE-2022-30728 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 11.0/12.0 Information exposure vulnerability in ScanPool prior to SMR Jun-2022 Release 1 allows local attackers to get MAC address information. | 3.3 |
| 2022-06-07 | CVE-2022-30741 | Information Exposure Through Log Files vulnerability in Samsung Find MY Mobile Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permission to get sim card information through device log. | 3.3 |