CVE-2022-2636

Improper Control of Generation of Code ('Code Injection') in GitHub repository hestiacp/hestiacp prior to 1.6.6.

Publication date: Fri, 05 Aug 2022 15:15:00 +0000

Cyber News related to CVE-2022-2636

CVE-2013-1873 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-2634, CVE-2013-2635, CVE-2013-2636. Reason: This candidate is a duplicate of CVE-2013-2634, CVE-2013-2635, and CVE-2013-2636. Notes: All CVE users should reference one or more of ...
55 years ago Tenable.com

CVE-2009-0300 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-2636. Reason: This candidate is a duplicate of CVE-2006-2636. Notes: All CVE users should reference CVE-2006-2636 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

CVE-2024-11716 - While assignment of a user to a team (bracket) in CTFd should be possible only once, at the registration, a flaw in logic implementation allows an authenticated user to reset it's bracket and then pick a new one, joining another team while a ...
1 week ago Tenable.com

CVE-2022-2636 - Improper Control of Generation of Code ('Code Injection') in GitHub repository hestiacp/hestiacp prior to 1.6.6. ...
1 year ago

CVE-2015-0446 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-0445 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-0444 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-0443 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-4758 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-4759 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-2635 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-2636 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2015-2634 - Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a ...
9 years ago

CVE-2005-2202 - Cross-site scripting (XSS) vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 through 0.001.04.504, allows remote attackers to inject arbitrary web script or HTML via unknown vectors. ...
16 years ago

CVE-2005-2200 - Multiple unknown vulnerabilities in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 through 0.001.04.504, allow attackers to bypass authentication. ...
16 years ago

CVE-2005-2201 - Unknown vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 through 0.001.04.504, allow attackers to cause a denial of service or access files via crafted HTTP requests. ...
16 years ago

CVE-2009-2636 - Cross-site scripting (XSS) vulnerability in the Integration page in the WebMail component in Kerio MailServer 6.6.0, 6.6.1, 6.6.2, and 6.7.0 allows remote attackers to inject arbitrary web script or HTML via an e-mail message. ...
15 years ago

CVE-2011-2636 - Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by a certain Tomato Firmware page. ...
13 years ago

CVE-2012-2636 - Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. ...
12 years ago

CVE-2013-2636 - net/bridge/br_mdb.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a crafted application. ...
11 years ago

CVE-2005-2636 - SQL injection vulnerability in lib-view-direct.inc.php in phpAdsNew and phpPgAds before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the clientid parameter. ...
7 years ago

CVE-2004-2636 - TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL. ...
7 years ago

CVE-2007-2636 - Unspecified vulnerability in phpTodo before 0.8.1 allows remote attackers to have an unknown impact via newlines in regular expressions to (1) index.php, (2) feed.php, (3) prefs.php, and (4) todolist.php; and (5) classTodoItem.php and (6) ...
7 years ago

CVE-2010-2636 - Multiple cross-site scripting (XSS) vulnerabilities in sample store pages in IBM WebSphere Commerce 7.0 before 7.0.0.1 allow remote attackers to inject arbitrary web script or HTML via a crafted URL. ...
7 years ago

CVE-2008-2636 - The HTTP service on the Cisco Linksys WRH54G with firmware 1.01.03 allows remote attackers to cause a denial of service (management interface outage) or possibly execute arbitrary code via a URI that begins with a "/./" sequence, contains ...
6 years ago

Latest Cyber News

CVE-2024-56841 - 1 day ago
CVE-2024-47100 - 1 day ago
CVE-2024-53649 - 1 day ago
CVE-2024-12240 - 1 day ago
CVE-2024-45385 - 1 day ago
CVE-2024-12919 - 1 day ago
CVE-2025-20016 - 1 day ago
CVE-2025-20055 - 1 day ago
CVE-2025-20620 - 1 day ago
CVE-2025-0393 - 1 day ago
CVE-2025-0394 - 1 day ago
CVE-2024-11736 - 1 day ago
CVE-2024-13156 - 1 day ago
CVE-2024-11734 - 1 day ago
CVE-2024-12365 - 1 day ago
CVE-2024-12006 - 1 day ago
CVE-2024-12008 - 1 day ago
CVE-2024-13323 - 1 day ago
CVE-2024-13348 - 1 day ago
CVE-2025-23082 - 1 day ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2025-22828 - 1 day ago
CVE-2024-56065 - 1 day ago
CVE-2024-56301 - 1 day ago
CVE-2025-22314 - 1 day ago
CVE-2025-22337 - 1 day ago
CVE-2025-22344 - 1 day ago
CVE-2025-22498 - 1 day ago
CVE-2025-22499 - 1 day ago
CVE-2025-22506 - 1 day ago
CVE-2025-22514 - 1 day ago
CVE-2025-22567 - 1 day ago
CVE-2025-22568 - 1 day ago
CVE-2025-22569 - 1 day ago
CVE-2025-22570 - 1 day ago
CVE-2025-22576 - 1 day ago
CVE-2025-22583 - 1 day ago
CVE-2025-22586 - 1 day ago
CVE-2025-22588 - 1 day ago
CVE-2025-22777 - 1 day ago
CVE-2025-22800 - 1 day ago