Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 19 20 21 22 23 24 25 26 27 28 [29] 30 31 32 33 34 35 36 37 38 39 ... Result(s) : 171851

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2020-06-24 CVE-2020-13484 cve Bitrix24 through 20.0.975 allows SSRF via an intranet IP address in the services/main/ajax.php?action=attachUrlPreview url parameter, if the destination URL hosts an HTML docume...
6.1 2020-06-24 CVE-2020-13483 cve The Web Application Firewall in Bitrix24 through 20.0.0 allows XSS via the items[ITEMS][ID] parameter to the components/bitrix/mobileapp.list/ajax.php/ URI.
8.8 2020-06-24 CVE-2020-13443 cve ExpressionEngine before 5.3.2 allows remote attackers to upload and execute arbitrary code in a .php%20 file via Compose Msg, Add attachment, and Save As Draft actions. A user w...
7.5 2020-06-24 CVE-2020-11961 cve Xiaomi router R3600 ROM before 1.0.50 is affected by a sensitive information leakage caused by an insecure interface get_config_result without authentication
9.8 2020-06-24 CVE-2020-11960 cve Xiaomi router R3600 ROM before 1.0.50 is affected by a vulnerability when checking backup file in c_upload interface let attacker able to extract malicious file under any locati...
7.5 2020-06-24 CVE-2020-11959 cve An unsafe configuration of nginx lead to information leak in Xiaomi router R3600 ROM before 1.0.50.
9.8 2020-06-24 CVE-2020-10561 cve An issue was discovered on Xiaomi Mi Jia ink-jet printer < 3.4.6_0138. Injecting parameters to ippserver through the web management background, resulting in command execution vu...
7.5 2020-06-24 CVE-2020-7667 cve In package github.com/sassoftware/go-rpmutils/cpio before version 0.1.0, the CPIO extraction functionality doesn't sanitize the paths of the archived files for leading and ...
N/A 2020-06-24 CVE-2020-4071 cve In django-basic-auth-ip-whitelist before 0.3.4, a potential timing attack exists on websites where the basic authentication is used or configured, i.e. BASIC_AUTH_LOGIN and BASI...
N/A 2020-06-24 CVE-2020-15018 cve playSMS through 1.4.3 is vulnerable to session fixation.
8.8 2020-06-24 CVE-2020-15014 cve pramodmahato BlogCMS through 2019-12-31 has admin/changepass.php CSRF.
N/A 2020-06-24 CVE-2020-15011 cve GNU Mailman before 2.1.33 allows arbitrary content injection via the Cgi/private.py private archive login page.
N/A 2020-06-24 CVE-2020-15007 cve A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not li...
5.4 2020-06-24 CVE-2020-15006 cve Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document to bl-kernel/ajax/logo-upload.php.
N/A 2020-06-24 CVE-2020-12866 cve A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079.
N/A 2020-06-24 CVE-2020-12865 cve A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.
N/A 2020-06-24 CVE-2020-12864 cve An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the AS...
N/A 2020-06-24 CVE-2020-12863 cve An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the AS...
N/A 2020-06-24 CVE-2020-12862 cve An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the AS...
N/A 2020-06-24 CVE-2020-12861 cve A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.
Page(s) : 1 ... 19 20 21 22 23 24 25 26 27 28 [29] 30 31 32 33 34 35 36 37 38 39 ... Result(s) : 171851