| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-38203 | The allowedProxyHosts property is not fully honored in ArcGIS Enterprise (10.8.1 and 10.7.1 only) | Esri | Portal for ArcGIS | High | 7.5 | 2022-12-30 05:13:00 | Deep Dive |
| CVE-2022-23746 | Check Point IPSec VPN 安全漏洞 | - | Gateway & Management, IPsec VPN blade SNX portal. | 高危 | - | 2022-11-30 00:00:00 | Deep Dive |
| CVE-2022-35298 | SAP NetWeaver Enterprise Portal 跨站脚本漏洞 | SAP SE | SAP NetWeaver Enterprise Portal (KMC) | 中危 | - | 2022-09-13 15:43:36 | Deep Dive |
| CVE-2022-38189 | There is a stored cross-site scripting (XSS) vulnerability in ArcGIS API for JavaScript. | Esri | Portal for ArcGIS | Medium | 5.4 | 2022-08-16 17:25:13 | Deep Dive |
| CVE-2022-38184 | There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1 | Esri | Portal for ArcGIS | High | 7.5 | 2022-08-16 17:20:15 | Deep Dive |
| CVE-2022-38192 | There is a stored cross-site scripting (XSS) vulnerability in ArcGIS API for JavaScript. | Esri | Portal for ArcGIS | Medium | 6.1 | 2022-08-16 17:10:09 | Deep Dive |
| CVE-2022-38193 | Code injection issue in Portal for ArcGIS (10.7.1 and 10.8.1) | Esri | Portal for ArcGIS | Medium | 6.1 | 2022-08-16 17:05:11 | Deep Dive |
| CVE-2022-38194 | Portal for ArcGIS system properties are not properly encrypted (10.8.1 only) | Esri | Portal for ArcGIS | Medium | 6.7 | 2022-08-16 17:00:18 | Deep Dive |
| CVE-2022-38191 | HTML injection vulnerability in Portal for ArcGIS | Esri | Portal for ArcGIS | Medium | 6.1 | 2022-08-15 21:05:11 | Deep Dive |
| CVE-2022-38187 | Prevent access to sharing/rest/content/features/analyze to unauthorized users | Esri | Portal for ArcGIS | High | 7.5 | 2022-08-15 21:00:16 | Deep Dive |
| CVE-2022-38188 | Esri Portal For ArcGis 跨站脚本漏洞 | Esri | Portal for ArcGIS | 中危 | - | 2022-08-15 20:46:03 | Deep Dive |
| CVE-2022-38190 | Stored cross-site scripting vulnerability in Esri Portal for ArcGIS Configurable Apps | Esri | Portal for ArcGIS | Medium | 6.1 | 2022-08-15 20:45:35 | Deep Dive |
| CVE-2022-38186 | Esri Portal For ArcGis 跨站脚本漏洞 | Esri | Portal for ArcGIS | 中危 | - | 2022-08-15 20:45:13 | Deep Dive |
| CVE-2022-29071 | This advisory documents an internally found vulnerability in the on premises deployment model of Arista CloudVision Portal (CVP) where under a certain set of conditions, user passwords can be leaked in the Audit and System logs. The impact of this vu ... | Arista Networks | CloudVision Portal | Medium | 4.0 | 2022-08-05 16:47:17 | Deep Dive |
| CVE-2021-38410 | AVEVA PCS Portal Uncontrolled Search Path Element | AVEVA | Platform Common Services (PCS) Portal | High | 7.3 | 2022-07-27 20:23:04 | Deep Dive |
| CVE-2017-20143 | Itech Movie Portal Script film-rating.php Error sql injection | Itech | Movie Portal Script | Medium | 6.3 | 2022-07-22 16:58:00 | Deep Dive |
| CVE-2017-20142 | Itech Movie Portal Script artist-display.php Union sql injection | Itech | Movie Portal Script | Medium | 6.3 | 2022-07-22 16:57:50 | Deep Dive |
| CVE-2017-20141 | Itech Movie Portal Script movie.php Union sql injection | Itech | Movie Portal Script | Medium | 6.3 | 2022-07-22 16:57:38 | Deep Dive |
| CVE-2017-20140 | Itech Movie Portal Script movie.php Reflected cross site scripting | Itech | Movie Portal Script | Medium | 4.3 | 2022-07-22 16:01:04 | Deep Dive |
| CVE-2017-20139 | Itech Movie Portal Script show_news.php Error sql injection | Itech | Movie Portal Script | Medium | 6.3 | 2022-07-22 16:00:21 | Deep Dive |