| Page(s) : 1 ... 8 9 10 11 12 13 14 15 16 17 [18] 19 20 21 22 23 24 25 26 27 28 ... | Result(s) : 163118 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2021-05-12 | CVE-2021-31519 | cve | An incorrect permission vulnerability in the product installer folders for Trend Micro HouseCall for Home Networks version 5.3.1179 and below could allow an attacker to escalate... |
| N/A | 2021-05-12 | CVE-2021-32607 | cve | An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/PrivateMessages/View.cshtml does not call HtmlUtils.SanitizeHtml on a private message. |
| N/A | 2021-05-12 | CVE-2021-32608 | cve | An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/Boards/Partials/_ForumPost.cshtml does not call HtmlUtils.SanitizeHtml on certain text for a forum... |
| N/A | 2021-05-12 | CVE-2021-3457 | cve | An improper authorization handling flaw was found in Foreman. The Shellhooks plugin for the smart-proxy allows Foreman clients to execute actions that should be limited to the F... |
| N/A | 2021-05-12 | CVE-2020-23790 | cve | An Arbitrary File Upload vulnerability was discovered in the Golo Laravel theme v 1.1.5. |
| N/A | 2021-05-12 | CVE-2021-32572 | cve | Speco Web Viewer through 2021-05-12 allows Directory Traversal via GET request for a URI with /.. at the beginning, as demonstrated by reading the /etc/passwd file. |
| N/A | 2021-05-12 | CVE-2021-32611 | cve | A NULL pointer dereference vulnerability exists in eXcall_api.c in Antisip eXosip2 through 5.2.0 when handling certain 3xx redirect responses. |
| N/A | 2021-05-12 | CVE-2020-19274 | cve | A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code. |
| 5.4 | 2021-05-12 | CVE-2021-30211 | cve | Knowage Suite 7.3 is vulnerable to Stored Cross-Site Scripting (XSS). An attacker can inject arbitrary web script in '/knowage/restful-services/signup/update' via the ... |
| 5.4 | 2021-05-12 | CVE-2021-30212 | cve | Knowage Suite 7.3 is vulnerable to Stored Cross-Site Scripting (XSS). An attacker can inject arbitrary web script in '/knowage/restful-services/documentnotes/saveNote'... |
| 6.1 | 2021-05-12 | CVE-2021-30213 | cve | Knowage Suite 7.3 is vulnerable to unauthenticated reflected cross-site scripting (XSS). An attacker can inject arbitrary web script in '/servlet/AdapterHTTP' via the ... |
| 5.4 | 2021-05-12 | CVE-2021-30214 | cve | Knowage Suite 7.3 is vulnerable to Stored Client-Side Template Injection in '/knowage/restful-services/signup/update' via the 'name' parameter. |
| N/A | 2021-05-12 | CVE-2020-35198 | cve | An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a... |
| N/A | 2021-05-12 | CVE-2020-13873 | cve | A SQL Injection vulnerability in get_topic_info() in sys/CODOF/Forum/Topic.php in Codoforum before 4.9 allows remote attackers (pre-authentication) to bypass the admin page via ... |
| N/A | 2021-05-12 | CVE-2021-23872 | cve | Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by manipulating a... |
| N/A | 2021-05-12 | CVE-2021-23891 | cve | Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by impersonating a client token which could ... |
| N/A | 2021-05-12 | CVE-2021-23892 | cve | By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a l... |
| N/A | 2021-05-12 | CVE-2020-36289 | cve | Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to enumerate users via an Information Disclosure vulnerability in the QueryComponentRend... |
| N/A | 2021-05-11 | CVE-2020-24586 | cve | The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from m... |
| N/A | 2021-05-11 | CVE-2020-24587 | cve | The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypt... |
| Page(s) : 1 ... 8 9 10 11 12 13 14 15 16 17 [18] 19 20 21 22 23 24 25 26 27 28 ... | Result(s) : 163118 |
