| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 182037 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2021-01-25 | CVE-2021-21275 | cve | The MediaWiki "Report" extension has a Cross-Site Request Forgery (CSRF) vulnerability. Before fixed version, there was no protection against CSRF checks on Special:Report, so r... |
| N/A | 2021-01-25 | CVE-2021-21272 | cve | ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from versio... |
| N/A | 2021-01-25 | CVE-2021-23901 | cve | An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also kno... |
| N/A | 2021-01-25 | CVE-2020-17532 | cve | When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions... |
| N/A | 2021-01-22 | CVE-2020-12525 | cve | M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage. |
| N/A | 2021-01-22 | CVE-2020-12514 | cve | Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd |
| N/A | 2021-01-22 | CVE-2020-12513 | cve | Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection. |
| N/A | 2021-01-22 | CVE-2020-12512 | cve | Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting |
| N/A | 2021-01-22 | CVE-2020-12511 | cve | Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a Cross-Site Request Forgery (CSRF) in the web interface. |
| N/A | 2021-01-22 | CVE-2021-21270 | cve | OctopusDSC is a PowerShell module with DSC resources that can be used to install and configure an Octopus Deploy Server and Tentacle agent. In OctopusDSC version 4.0.977 and ear... |
| N/A | 2021-01-22 | CVE-2021-21260 | cve | Online Invoicing System (OIS) is open source software which is a lean invoicing system for small businesses, consultants and freelancers created using AppGini. In OIS version 4.... |
| N/A | 2021-01-22 | CVE-2021-21259 | cve | HedgeDoc is open source software which lets you create real-time collaborative markdown notes. In HedgeDoc before version 1.7.2, an attacker can inject arbitrary JavaScript int... |
| N/A | 2021-01-22 | CVE-2020-4766 | cve | IBM MQ Internet Pass-Thru 2.1 and 9.2 could allow a remote user to cause a denial of service by sending malformed MQ data requests which would consume all available resources. ... |
| 6.8 | 2021-01-22 | CVE-2020-28487 | cve | This affects the package vis-timeline before 7.4.4. An attacker with the ability to control the items of a Timeline element can inject additional script code into the generated... |
| 7.5 | 2021-01-22 | CVE-2020-28488 | cve | This affects all versions of package jquery-ui; all versions of package org.fujion.webjars:jquery-ui. When the "dialog" is injected into an HTML tag more than once, the browser... |
| N/A | 2021-01-22 | CVE-2021-22849 | cve | Hyweb HyCMS-J1 backend editing function does not filter special characters. Users after log-in can inject JavaScript syntax to perform a stored XSS (Stored Cross-site scripting)... |
| N/A | 2021-01-22 | CVE-2021-22847 | cve | Hyweb HyCMS-J1's API fail to filter POST request parameters. Remote attackers can inject SQL syntax and execute commands without privilege. |
| N/A | 2021-01-21 | CVE-2021-21253 | cve | OnlineVotingSystem is an open source project hosted on GitHub. OnlineVotingSystem before version 1.1.2 hashes user passwords without a salt, which is vulnerable to dictionary at... |
| N/A | 2021-01-21 | CVE-2021-21239 | cve | PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2... |
| N/A | 2021-01-21 | CVE-2021-21238 | cve | PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pys... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 182037 |
