Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-23 | CVE-2022-40310 | Race Condition vulnerability in Blazzdev Rate MY Post - WP Rating System Authenticated (subscriber+) Race Condition vulnerability in Rate my Post – WP Rating System plugin <= 3.3.4 at WordPress allows attackers to increase/decrease votes. | 3.1 |
| 2022-09-23 | CVE-2022-35252 | When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. | 3.7 |
| 2022-09-23 | CVE-2022-39231 | Unspecified vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 3.7 |
| 2022-09-23 | CVE-2022-39225 | Unspecified vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 3.1 |
| 2022-09-22 | CVE-2022-3274 | Unspecified vulnerability in Ikus-Soft Rdiffweb Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.7. | 3.5 |
| 2022-09-22 | CVE-2022-36062 | Unspecified vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 3.8 |
| 2022-09-21 | CVE-2022-31679 | Unspecified vulnerability in VMWare Spring Data Rest Applications that allow HTTP PATCH access to resources exposed by Spring Data REST in versions 3.6.0 - 3.5.5, 3.7.0 - 3.7.2, and older unsupported versions, if an attacker knows about the structure of the underlying domain model, they can craft HTTP requests that expose hidden entity attributes. | 3.7 |
| 2022-09-20 | CVE-2022-32872 | Unspecified vulnerability in Apple Ipados and Iphone OS A logic issue was addressed with improved restrictions. low complexity apple | 2.4 |
| 2022-09-16 | CVE-2021-42948 | Cleartext Transmission of Sensitive Information vulnerability in Digitaldruid Hoteldruid HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's. | 3.7 |
| 2022-09-13 | CVE-2022-37703 | Path Traversal vulnerability in Amanda 3.5.1 In Amanda 3.5.1, an information leak vulnerability was found in the calcsize SUID binary. | 3.3 |