May 11, 2022 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Advanced Uploader Project Advanced Uploader: public exploit or PoC linked (RCE)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2019-13720 Google Chrome WebAudio Use-After-Free

  • Public exploit or PoC available
  • Exploit activity linked

Google Chrome WebAudio Use-After-Free now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Active exploit activity

CVE-2021-22204 ExifTool Remote Code Execution

  • Public exploit or PoC available
  • Exploit activity linked
  • Remote code execution exposure

Perl Exiftool RCE now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2022-29596 Microstrategy Enterprise Manager Directory Traversal

  • CVSS 9.8

New critical Microstrategy Enterprise Manager Directory Traversal (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2022-1103 Exploit

The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP,...

CVE-2022-27308 Exploit

A stored cross-site scripting (XSS) vulnerability in PHProjekt PhpSimplyGest v1.3.0 allows attackers to execute arbitrary web scripts or...

CVE-2022-27412 Exploit

Explore CMS v1.0 was discovered to contain a SQL injection vulnerability via a /page.php?id= request.

CVE-2022-30286 Exploit

pyscriptjs (aka PyScript Demonstrator) in PyScript through 2022-05-04 allows a remote user to read Python source code.

CVE-2021-45783 Exploit

Bookeen Notea Firmware BK_R_1.0.5_20210608 is affected by a directory traversal vulnerability that allows an attacker to obtain sensitive...

CVE-2021-43164 Exploit

A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P...

CVE-2021-31673 Exploit

A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to i...

CVE-2021-31674 Exploit

Cyclos 4 PRO 4.14.7 and before does not validate user input at error inform, which allows remote unauthenticated attacker to execute java...

CVE-2022-28117 Exploit

A Server-Side Request Forgery (SSRF) in feed_parser class of Navigate CMS v2.9.4 allows remote attackers to force the application to make...

CVE-2022-24706 Exploit

Apache CouchDB Insecure Default Initialization of Resource

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-42646 CVSS 9.1

XML External Entity (XXE) vulnerability in the file based service provider creation feature of the Management Console in WSO2 API Manager...

CVE-2022-29596 CVSS 9.8

MicroStrategy Enterprise Manager 2022 allows authentication bypass by triggering a login failure and then entering the Uid=/../../../../....

CVE-2022-30047 CVSS 9.8

Mingsoft MCMS v5.2.7 was discovered to contain a SQL injection vulnerability in /mdiy/dict/listExcludeApp URI via orderBy parameter.

CVE-2022-30048 CVSS 9.8

Mingsoft MCMS 5.2.7 was discovered to contain a SQL injection vulnerability in /mdiy/dict/list URI via orderBy parameter.

CVE-2022-30063 CVSS 9.8

ftcms <=2.1 was discovered to be vulnerable to code execution attacks .

CVE-2022-30448 CVSS 9.8

Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a File upload vulnerability in treatmentrecord.php.

CVE-2022-30449 CVSS 9.8

Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a SQL injection vulnerability via the editid param...

CVE-2022-30450 CVSS 9.8

A Remote Code Execution (RCE) vulnerability exists in waimairen 9.1 via wx.php

CVE-2022-30453 CVSS 9.8

ShopWind <= 3.4.2 has a RCE vulnerability in Database.php

CVE-2022-30592 CVSS 9.8

liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles MAX_TABLE_CAPACITY.

View critical disclosures

cvelogic Threat Intelligence