| Page(s) : 1 ... 11 12 13 14 15 16 17 18 19 20 [21] 22 23 24 25 26 27 28 29 30 31 ... | Result(s) : 173497 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.6 | 2020-08-03 | CVE-2020-16116 | cve | In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal. |
| 6.1 | 2020-08-03 | CVE-2020-11584 | cve | A GET-based XSS reflected vulnerability in Plesk Onyx 17.8.11 allows remote unauthenticated users to inject arbitrary JavaScript, HTML, or CSS via a GET parameter. |
| 6.1 | 2020-08-03 | CVE-2020-11583 | cve | A GET-based XSS reflected vulnerability in Plesk Obsidian 18.0.17 allows remote unauthenticated users to inject arbitrary JavaScript, HTML, or CSS via a GET parameter. |
| 4.4 | 2020-08-03 | CVE-2020-8575 | cve | Active IQ Unified Manager for VMware vSphere and Windows versions prior to 9.5 are susceptible to a vulnerability which allows administrative users to cause Denial of Service (D... |
| 7.8 | 2020-08-03 | CVE-2020-8574 | cve | Active IQ Unified Manager for Linux versions prior to 9.6 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service enabled allowing unauthorized code e... |
| 9.1 | 2020-08-03 | CVE-2020-16272 | cve | The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 is missing validation for a client-provided parameter, which allows remote attackers to read and modify data in t... |
| 9.1 | 2020-08-03 | CVE-2020-16271 | cve | The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 generates insufficiently random numbers, which allows remote attackers to read and modify data in the KeePass dat... |
| 5.5 | 2020-08-03 | CVE-2020-16269 | cve | radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parse_typedef in type_dwarf.c via a malformed DW_AT_name in the .debug_info section. |
| 6.1 | 2020-08-03 | CVE-2020-16131 | cve | Tiki before 21.2 allows XSS because [\s\/"\'] is not properly considered in lib/core/TikiFilter/PreventXss.php. |
| 5.9 | 2020-08-03 | CVE-2020-14319 | cve | It was found that the AMQ Online console is vulnerable to a Cross-Site Request Forgery (CSRF) which is exploitable in cases where preflight checks are not instigated or bypassed... |
| 6.1 | 2020-08-03 | CVE-2020-13820 | cve | Extreme Management Center 8.4.1.24 allows unauthenticated reflected XSS via a parameter in a GET request. |
| 5.3 | 2020-08-03 | CVE-2020-12739 | cve | A denial-of-service vulnerability in the Fanuc i Series CNC (0i-MD and 0i Mate-MD) could allow an unauthenticated, remote attacker to cause an affected CNC to become inaccessibl... |
| 7.8 | 2020-08-03 | CVE-2019-19455 | cve | Wowza Streaming Engine through 2019-11-28 has Insecure Permissions. |
| 6.1 | 2020-08-03 | CVE-2019-19453 | cve | Wowza Streaming Engine through 2019-11-28 allows XSS (issue 1 of 2). |
| 6.1 | 2020-08-03 | CVE-2015-9549 | cve | A reflected Cross-site Scripting (XSS) vulnerability exists in OcPortal 9.0.20 via the OCF_EMOTICON_CELL.tpl FIELD_NAME field to data/emoticons.php. |
| 8.8 | 2020-08-03 | CVE-2020-8108 | cve | Improper Authentication vulnerability in Bitdefender Endpoint Security for Mac allows an unprivileged process to restart the main service and potentially inject third-party code... |
| 6.1 | 2020-08-03 | CVE-2020-4560 | cve | IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the... |
| 7.8 | 2020-08-03 | CVE-2020-4554 | cve | IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a spe... |
| 7.8 | 2020-08-03 | CVE-2020-4553 | cve | IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a spe... |
| 7.8 | 2020-08-03 | CVE-2020-4552 | cve | IBM i2 Analyst Notebook 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-cra... |
| Page(s) : 1 ... 11 12 13 14 15 16 17 18 19 20 [21] 22 23 24 25 26 27 28 29 30 31 ... | Result(s) : 173497 |
