| Page(s) : 1 ... 4 5 6 7 8 9 10 11 12 13 [14] 15 16 17 18 19 20 21 22 23 24 ... | Result(s) : 178977 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2020-11-19 | CVE-2020-25701 | cve | If the upload course tool in Moodle was used to delete an enrollment method which did not exist or was not already enabled, the tool would erroneously enable that enrollment met... |
| N/A | 2020-11-19 | CVE-2020-25700 | cve | In moodle, some database module web services allowed students to add entries within groups they did not belong to. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3... |
| N/A | 2020-11-19 | CVE-2020-25699 | cve | In moodle, insufficient capability checks could lead to users with the ability to course restore adding additional capabilities to roles within that course. Versions affected: 3... |
| N/A | 2020-11-19 | CVE-2020-25698 | cve | Users' enrollment capabilities were not being sufficiently checked in Moodle when they are restored into an existing course. This could lead to them unenrolling users witho... |
| 6.1 | 2020-11-19 | CVE-2020-22394 | cve | In YzmCMS v5.5 the member contribution function in the editor contains a cross-site scripting (XSS) vulnerability. |
| N/A | 2020-11-19 | CVE-2020-12510 | cve | The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created... |
| N/A | 2020-11-19 | CVE-2020-12496 | cve | Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) and Memograph M (Neutral/Private Label) (RSG45, ORSG45) with Firmware version V2.0.0 and above is prone to expo... |
| N/A | 2020-11-19 | CVE-2020-12495 | cve | Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) with Firmware version prior to V2.0.0 is prone to improper privilege management. The affected device has a web-... |
| N/A | 2020-11-19 | CVE-2020-11831 | cve | OvoiceManager has system permission to write vulnerability reports for arbitrary files, affected product is com.oppo.ovoicemanager V2.0.1. |
| N/A | 2020-11-19 | CVE-2020-11830 | cve | QualityProtect has a vulnerability to execute arbitrary system commands, affected product is com.oppo.qualityprotect V2.0. |
| N/A | 2020-11-19 | CVE-2020-11829 | cve | Dynamic loading of services in the backup and restore SDK leads to elevated privileges, affected product is com.coloros.codebook V2.0.0_5493e40_200722. |
| 7.4 | 2020-11-19 | CVE-2020-8279 | cve | Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack. |
| N/A | 2020-11-19 | CVE-2020-8278 | cve | Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user. |
| N/A | 2020-11-19 | CVE-2020-8277 | cve | A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.... |
| N/A | 2020-11-19 | CVE-2020-5947 | cve | In versions 16.0.0-16.0.0.1 and 15.1.0-15.1.1, on specific BIG-IP platforms, attackers may be able to obtain TCP sequence numbers from the BIG-IP system that can be reused in fu... |
| N/A | 2020-11-19 | CVE-2020-15710 | cve | Potential double free in Bluez 5 module of PulseAudio could allow a local attacker to leak memory or crash the program. The modargs variable may be freed twice in the fail condi... |
| N/A | 2020-11-19 | CVE-2019-20933 | cve | InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (ak... |
| N/A | 2020-11-19 | CVE-2020-13360 | cve | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. ... |
| N/A | 2020-11-19 | CVE-2020-13359 | cve | The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, ... |
| N/A | 2020-11-19 | CVE-2020-13356 | cve | An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.8.9. A specially crafted request could bypass Multipart protection and read files in certain ... |
| Page(s) : 1 ... 4 5 6 7 8 9 10 11 12 13 [14] 15 16 17 18 19 20 21 22 23 24 ... | Result(s) : 178977 |
