cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-38110,https://securityvulnerability.io/vulnerability/CVE-2022-38110,Reflected Cross-Site Scripting Vulnerability,"In Database Performance Analyzer (DPA) 2022.4 and older releases, certain URL vectors are susceptible to authenticated reflected cross-site scripting.

",Solarwinds,Database Performance Analyzer (dpa),5.4,MEDIUM,0.0005099999834783375,false,,false,false,false,,,false,false,,2023-01-20T00:00:00.000Z,0
CVE-2022-38112,https://securityvulnerability.io/vulnerability/CVE-2022-38112,Sensitive Information Disclosure Vulnerability,"In versions of SolarWinds Database Performance Analyzer (DPA) 2022.4 and earlier, there exists a vulnerability where generated heap memory dumps can expose sensitive information in cleartext format. This exposure could lead to unauthorized access to critical data, thus posing significant risks to the integrity and confidentiality of stored information. Organizations utilizing affected versions are strongly urged to upgrade to later releases and implement appropriate security measures to mitigate potential data breaches.",Solarwinds,Database Performance Analyzer (dpa),7.5,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-01-20T00:00:00.000Z,0