| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 172723 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2021-10-21 | CVE-2021-35225 | cve | Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and browse all NetPath Services from all that MSP's customers. This can lead... |
| N/A | 2021-10-21 | CVE-2021-35227 | cve | The HTTP interface was enabled for RabbitMQ Plugin in ARM 2020.2.6 and the ability to configure HTTPS was not available. |
| N/A | 2021-10-21 | CVE-2021-35228 | cve | This vulnerability occurred due to missing input sanitization for one of the output fields that is extracted from headers on specific section of page causing a reflective cross ... |
| 8.8 | 2021-10-21 | CVE-2021-41146 | cve | qutebrowser is an open source keyboard-focused browser with a minimal GUI. Starting with qutebrowser v1.7.0, the Windows installer for qutebrowser registers a `qutebrowserurl:` ... |
| 5.8 | 2021-10-21 | CVE-2021-41159 | cve | FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections (`... |
| 5.3 | 2021-10-21 | CVE-2021-41160 | cve | FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a malicious server might trigger out of bound writ... |
| N/A | 2021-10-21 | CVE-2021-42715 | cve | An issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker ... |
| N/A | 2021-10-21 | CVE-2021-42716 | cve | An issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when late... |
| N/A | 2021-10-21 | CVE-2021-22034 | cve | Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure Vulnerability. |
| 8.8 | 2021-10-21 | CVE-2021-39321 | cve | Version 3.3.23 of the Sassy Social Share WordPress plugin is vulnerable to PHP Object Injection via the wp_ajax_heateor_sss_import_config AJAX action due to deserialization of u... |
| 5.5 | 2021-10-21 | CVE-2021-39328 | cve | The Simple Job Board WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $job_board_privacy_policy_label variable echo'd out v... |
| 5.5 | 2021-10-21 | CVE-2021-39348 | cve | The LearnPress WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $custom_profile parameter found in the ~/inc/admin/views/backend... |
| 7.2 | 2021-10-21 | CVE-2021-39352 | cve | The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions... |
| 4.8 | 2021-10-21 | CVE-2021-39354 | cve | The Easy Digital Downloads WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the $start_date and $end_date parameters found in the ~/includes/admin/payments/c... |
| N/A | 2021-10-21 | CVE-2021-39356 | cve | The Content Staging WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and escaping via several parameters that are echo'd o... |
| 5.5 | 2021-10-21 | CVE-2021-39357 | cve | The Leaky Paywall WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via the ~/class.php file which allowed atta... |
| 9.8 | 2021-10-21 | CVE-2021-40719 | cve | Adobe Connect version 11.2.2 (and earlier) is affected by a Deserialization of Untrusted Data vulnerability to achieve arbitrary method invocation when AMF messages are deserial... |
| 6.5 | 2021-10-21 | CVE-2021-41168 | cve | Snudown is a reddit-specific fork of the Sundown Markdown parser used by GitHub, with Python integration added. In affected versions snudown was found to be vulnerable to denial... |
| N/A | 2021-10-21 | CVE-2021-27746 | cve | "HCL Connections Security Update for Reflected Cross-Site Scripting (XSS) Vulnerability" |
| N/A | 2021-10-21 | CVE-2021-36869 | cve | Reflected Cross-Site Scripting (XSS) vulnerability in WordPress Ivory Search plugin (versions |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 172723 |
