| Page(s) : 1 2 [3] 4 5 6 7 8 9 10 11 12 13 ... | Result(s) : 181668 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.5 | 2021-01-15 | CVE-2021-0202 | cve | On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port Concentrator) where Integrated Routing and Bridging (IRB) interface is configured and... |
| N/A | 2021-01-15 | CVE-2020-35749 | cve | Directory traversal vulnerability in class-simple_job_board_resume_download_handler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to... |
| N/A | 2021-01-15 | CVE-2020-35748 | cve | Cross-site scripting (XSS) vulnerability in models/list-table.php in the FV Flowplayer Video Player plugin before 7.4.37.727 for WordPress allows remote authenticated users to i... |
| N/A | 2021-01-15 | CVE-2020-26414 | cve | An issue has been discovered in GitLab affecting all versions starting from 12.4. The regex used for package names is written in a way that makes execution time have quadratic g... |
| N/A | 2021-01-15 | CVE-2020-16255 | cve | ownCloud (Core) before 10.5 allows XSS in login page 'forgot password.' |
| N/A | 2021-01-15 | CVE-2020-35733 | cve | An issue was discovered in Erlang/OTP before 23.2.2. The ssl application 10.2 accepts and trusts an invalid X.509 certificate chain to a trusted root Certification Authority. |
| N/A | 2021-01-15 | CVE-2019-16961 | cve | SolarWinds Web Help Desk 12.7.0 allows XSS via a Schedule Name. |
| N/A | 2021-01-15 | CVE-2021-23838 | cve | An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the media_filter HTTP request body parameter for the acp interface. T... |
| N/A | 2021-01-15 | CVE-2021-23837 | cve | An issue was discovered in flatCore before 2.0.0 build 139. A time-based blind SQL injection was identified in the selected_folder HTTP request body parameter for the acp interf... |
| N/A | 2021-01-15 | CVE-2021-23836 | cve | An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefs_smtp_psw HTTP request body parameter for the acp interface. An... |
| N/A | 2021-01-15 | CVE-2021-23835 | cve | An issue was discovered in flatCore before 2.0.0 build 139. A local file disclosure vulnerability was identified in the docs_file HTTP request body parameter for the acp interfa... |
| 5.4 | 2021-01-15 | CVE-2020-35582 | cve | A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/post.php re... |
| 5.4 | 2021-01-15 | CVE-2020-35581 | cve | A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/admin-ajax.... |
| N/A | 2021-01-14 | CVE-2020-6572 | cve | Use after free in Media in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to execute arbitrary code via a crafted HTML page. |
| N/A | 2021-01-14 | CVE-2020-29495 | cve | DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness Analyzer. A remote unauthenticated attacker could potentially exploit... |
| N/A | 2021-01-14 | CVE-2020-29494 | cve | Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM. A remote user could potentially exploit this vulnerability, to gain unauthorize... |
| N/A | 2021-01-14 | CVE-2020-29493 | cve | DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a SQL Injection Vulnerability in Fitness Analyzer. A remote unauthenticated attacker could potentially exploit this vu... |
| N/A | 2021-01-14 | CVE-2020-27220 | cve | The Eclipse Hono AMQP and MQTT protocol adapters do not check whether an authenticated gateway device is authorized to receive command & control messages when it has subscribed ... |
| N/A | 2021-01-14 | CVE-2020-27219 | cve | In all version of Eclipse Hawkbit prior to 0.3.0M7, the HTTP 404 (Not Found) JSON response body returned by the REST API may contain unsafe characters within the path attribute.... |
| N/A | 2021-01-14 | CVE-2020-16046 | cve | Script injection in iOSWeb in Google Chrome on iOS prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code via a crafted HTML page. |
| Page(s) : 1 2 [3] 4 5 6 7 8 9 10 11 12 13 ... | Result(s) : 181668 |
