| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-3205 | Controller: cross site scripting in automation controller ui | Red Hat | Red Hat Ansible Automation Platform 1.2 | Medium | 4.6 | 2022-09-13 19:19:46 | Deep Dive |
| CVE-2022-39014 | SAP BusinessObjects Business Intelligence Platform 安全漏洞 | SAP SE | SAP BusinessObjects Business Intelligence Platform (CMC) | 中危 | - | 2022-09-13 15:43:47 | Deep Dive |
| CVE-2022-36100 | XWiki Platform Applications Tag and XWiki Platform Tag UI vulnerable to Eval Injection | xwiki | xwiki-platform | Critical | 9.9 | 2022-09-08 21:10:10 | Deep Dive |
| CVE-2022-36098 | XWiki Platform Mentions UI vulnerable to Cross-site Scripting | xwiki | xwiki-platform | High | 8.9 | 2022-09-08 20:50:11 | Deep Dive |
| CVE-2022-36099 | XWiki Platform Wiki UI Main Wiki Eval Injection vulnerability | xwiki | xwiki-platform | Critical | 9.9 | 2022-09-08 20:45:14 | Deep Dive |
| CVE-2022-36097 | XWiki Platform Attachment UI vulnerable to cross-site scripting in the move attachment form | xwiki | xwiki-platform | High | 8.9 | 2022-09-08 20:35:11 | Deep Dive |
| CVE-2022-36096 | XWiki Platform vulnerable to Cross-site Scripting in the deleted attachments list | xwiki | xwiki-platform | High | 8.9 | 2022-09-08 20:30:13 | Deep Dive |
| CVE-2022-36095 | XWiki Cross-Site Request Forgery (CSRF) for actions on tags | xwiki | xwiki-platform | Medium | 4.3 | 2022-09-08 20:20:13 | Deep Dive |
| CVE-2022-36094 | XWiki Platform Web Parent POM vulnerable to XSS in the attachment history | xwiki | xwiki-platform | High | 8.9 | 2022-09-08 20:10:09 | Deep Dive |
| CVE-2022-36093 | XWiki Platform Web Templates vulnerable to Unauthorized User Registration Through the Distribution Wizard | xwiki | xwiki-platform | High | 8.5 | 2022-09-08 17:25:10 | Deep Dive |
| CVE-2022-36092 | XWiki Platform Old Core vulnerable to Authentication Bypass Using the Login Action | xwiki | xwiki-platform | High | 7.5 | 2022-09-08 17:15:15 | Deep Dive |
| CVE-2022-36091 | XWiki Platform Web Templates vulnerable to Missing Authorization and Exposure of Private Personal Information to an Unauthorized Actor | xwiki | xwiki-platform | High | 7.5 | 2022-09-08 16:10:09 | Deep Dive |
| CVE-2022-36090 | org.xwiki.platform:xwiki-platform-oldcore Improper Authorization check for inactive users | xwiki | xwiki-platform | High | 8.1 | 2022-09-08 14:45:13 | Deep Dive |
| CVE-2022-31166 | XWiki.WebHome vulnerable to Improper Privilege Management in XWiki resolving groups | xwiki | xwiki-platform | High | 8.1 | 2022-09-07 14:10:12 | Deep Dive |
| CVE-2022-31167 | XWiki Platform Security Parent POM vulnerable to overwriting of security rules of a page with a final page having the same reference | xwiki | xwiki-platform | High | 7.1 | 2022-09-07 13:55:11 | Deep Dive |
| CVE-2022-2568 | Red Hat Ansible 安全漏洞 | - | Red Hat Ansible Automation Platform | 中危 | - | 2022-08-18 19:28:20 | Deep Dive |
| CVE-2022-37438 | Information disclosure via the dashboard drilldown in Splunk Enterprise | Splunk | Splunk Enterprise | Low | 2.6 | 2022-08-16 19:49:24 | Deep Dive |
| CVE-2022-32245 | SAP BusinessObjects Business Intelligence Platform 安全漏洞 | SAP SE | SAP BusinessObjects Business Intelligence Platform (Open Document) | 高危 | - | 2022-08-09 20:13:29 | Deep Dive |
| CVE-2022-2664 | Private Cloud Management Platform POST Request global_config_query improper authentication | unspecified | Private Cloud Management Platform | High | 7.3 | 2022-08-05 10:45:17 | Deep Dive |
| CVE-2022-2260 | GiveWP < 2.21.3 - DoS via CSRF | Unknown | GiveWP – Donation Plugin and Fundraising Platform | 中危 | - | 2022-08-01 12:50:58 | Deep Dive |