| Page(s) : 1 2 3 4 5 6 7 8 9 [10] 11 12 13 14 15 16 17 18 19 20 ... | Result(s) : 161476 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2021-04-14 | CVE-2021-27288 | cve | Cross Site Scripting (XSS) in X2Engine X2CRM v7.1 allows remote attackers to obtain sensitive information by injecting arbitrary web script or HTML via the "Comment" field in "/... |
| N/A | 2021-04-14 | CVE-2021-27260 | cve | This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the abilit... |
| N/A | 2021-04-14 | CVE-2021-27259 | cve | This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the ability to execut... |
| N/A | 2021-04-14 | CVE-2021-27258 | cve | This vulnerability allows remote attackers to execute escalate privileges on affected installations of SolarWinds Orion Platform 2020.2. Authentication is not required to exploi... |
| N/A | 2021-04-14 | CVE-2021-27253 | cve | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Although authentication is required to explo... |
| N/A | 2021-04-14 | CVE-2021-27252 | cve | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Authentication is not requir... |
| N/A | 2021-04-14 | CVE-2021-27251 | cve | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Authentication is not required to exploit th... |
| N/A | 2021-04-14 | CVE-2021-27250 | cve | This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authenticatio... |
| N/A | 2021-04-14 | CVE-2021-27249 | cve | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not... |
| N/A | 2021-04-14 | CVE-2021-27248 | cve | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not... |
| N/A | 2021-04-14 | CVE-2021-27247 | cve | This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat 2.9.5 desktop version. User interaction is required to e... |
| N/A | 2021-04-14 | CVE-2021-27246 | cve | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer A7 AC1750 1.0.15 routers. Authentication is not requir... |
| 9.8 | 2021-04-14 | CVE-2021-27130 | cve | Online Reviewer System 1.0 contains a SQL injection vulnerability through authentication bypass, which may lead to a reverse shell upload. |
| N/A | 2021-04-14 | CVE-2021-27114 | cve | An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /goform/addassignment route, a very long text entry for the"'s_ip" and "s_... |
| N/A | 2021-04-14 | CVE-2021-27113 | cve | An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/addRou... |
| 6.1 | 2021-04-14 | CVE-2021-26832 | cve | Cross Site Scripting (XSS) in the "Reset Password" page form of Priority Enterprise Management System v8.00 allows attackers to execute javascript on behalf of the victim by sen... |
| N/A | 2021-04-14 | CVE-2021-26827 | cve | Buffer Overflow in TP-Link WR2041 v1 firmware for the TL-WR2041+ router allows remote attackers to cause a Denial-of-Service (DoS) by sending an HTTP request with a very long "s... |
| N/A | 2021-04-14 | CVE-2021-26812 | cve | Cross Site Scripting (XSS) in the Jitsi Meet 2.7 through 2.8.3 plugin for Moodle via the "sessionpriv.php" module. This allows attackers to craft a malicious URL, which when cli... |
| 5.5 | 2021-04-14 | CVE-2021-26805 | cve | Buffer Overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service (DoS) by running the application with a malicious WAV file. |
| N/A | 2021-04-14 | CVE-2021-25314 | cve | A Creation of Temporary File With Insecure Permissions vulnerability in hawk2 of SUSE Linux Enterprise High Availability 12-SP3, SUSE Linux Enterprise High Availability 12-SP5, ... |
| Page(s) : 1 2 3 4 5 6 7 8 9 [10] 11 12 13 14 15 16 17 18 19 20 ... | Result(s) : 161476 |
