Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2022
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user.
CVSS Score
7.2
EPSS Score
0.009
Published
2022-06-21
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php.
CVSS Score
7.2
EPSS Score
0.009
Published
2022-06-21
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php.
CVSS Score
7.2
EPSS Score
0.009
Published
2022-06-21
Unioncms v1.0.13 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Default settings.
CVSS Score
5.4
EPSS Score
0.004
Published
2022-06-21
maccms8 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.
CVSS Score
5.4
EPSS Score
0.004
Published
2022-06-21
maccms10 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.
CVSS Score
5.4
EPSS Score
0.004
Published
2022-06-21
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_convert_to_slow_array at src/njs_array.c.
CVSS Score
5.5
EPSS Score
0.006
Published
2022-06-21
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_string_offset at src/njs_string.c.
CVSS Score
5.5
EPSS Score
0.006
Published
2022-06-21
SolarView Compact v6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Solar_AiConf.php.
CVSS Score
6.1
EPSS Score
0.051
Published
2022-06-21
An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file.
CVSS Score
9.8
EPSS Score
0.025
Published
2022-06-21


Contact Us

Shodan ® - All rights reserved