Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... Result(s) : 171851

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
6.1 2020-07-01 CVE-2020-4022 cve The attachment download resource in Atlassian Jira Server and Data Center before 8.5.5, and from 8.6.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to injec...
N/A 2020-07-01 CVE-2020-2500 cve This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. Attackers can access the sensitive data on QNAP Kayako server with...
N/A 2020-07-01 CVE-2020-15478 cve The Journal theme before 3.1.0 for OpenCart allows exposure of sensitive data via SQL errors.
7.5 2020-07-01 CVE-2020-15476 cve In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpi_search_oracle in lib/protocols/oracle.c.
9.8 2020-07-01 CVE-2020-15475 cve In nDPI through 3.2, ndpi_reset_packet_line_info in lib/ndpi_main.c omits certain reinitialization, leading to a use-after-free.
9.8 2020-07-01 CVE-2020-15474 cve In nDPI through 3.2, there is a stack overflow in extractRDNSequence in lib/protocols/tls.c.
9.1 2020-07-01 CVE-2020-15473 cve In nDPI through 3.2, the OpenVPN dissector is vulnerable to a heap-based buffer over-read in ndpi_search_openvpn in lib/protocols/openvpn.c.
9.1 2020-07-01 CVE-2020-15472 cve In nDPI through 3.2, the H.323 dissector is vulnerable to a heap-based buffer over-read in ndpi_search_h323 in lib/protocols/h323.c, as demonstrated by a payload packet length t...
9.1 2020-07-01 CVE-2020-15471 cve In nDPI through 3.2, the packet parsing code is vulnerable to a heap-based buffer over-read in ndpi_parse_packet_line_info in lib/ndpi_main.c.
5.5 2020-07-01 CVE-2020-15470 cve ffjpeg through 2020-02-24 has a heap-based buffer overflow in jfif_decode in jfif.c.
9.8 2020-07-01 CVE-2020-15468 cve Persian VIP Download Script 1.0 allows SQL Injection via the cart_edit.php active parameter.
6.1 2020-07-01 CVE-2020-14169 cve The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) ...
5.9 2020-07-01 CVE-2020-14168 cve The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to ...
N/A 2020-07-01 CVE-2020-14167 cve The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows rem...
N/A 2020-07-01 CVE-2020-14166 cve The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inj...
5.3 2020-07-01 CVE-2020-14165 cve The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars na...
6.1 2020-07-01 CVE-2020-14164 cve The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting ...
N/A 2020-07-01 CVE-2020-14057 cve Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to...
N/A 2020-07-01 CVE-2020-14056 cve Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read ...
N/A 2020-07-01 CVE-2020-14055 cve Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding.
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... Result(s) : 171851