Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 [3] 4 5 6 7 8 9 10 11 12 13 ... Result(s) : 169655

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
7.5 2020-05-24 CVE-2020-13434 cve SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c.
N/A 2020-05-24 CVE-2020-13433 cve Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter.
6.1 2020-05-24 CVE-2020-13430 cve Grafana before 7.0.0 allows tag value XSS via the OpenTSDB datasource.
5.4 2020-05-24 CVE-2020-13429 cve legend.ts in the piechart-panel (aka Pie Chart Panel) plugin before 1.5.0 for Grafana allows XSS via the Values Header (aka legend header) option.
7.1 2020-05-23 CVE-2020-13425 cve TrackR devices through 2020-05-06 allow attackers to trigger the Beep (aka alarm) feature, which will eventually cause a denial of service when battery capacity is exhausted.
6.5 2020-05-23 CVE-2020-13424 cve The XCloner component before 3.5.4 for Joomla! allows Authenticated Local File Disclosure.
5.4 2020-05-22 CVE-2020-8789 cve Composr 10.0.30 allows Persistent XSS via a Usergroup name under the Security configuration.
N/A 2020-05-22 CVE-2020-7813 cve Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and prior versions contain a vulnerability that could allow remote attacker to download and execute arbitrary file ...
N/A 2020-05-22 CVE-2020-7658 cve meinheld prior to 1.0.2 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues and request smuggling attacks might be possible due to incorrect Content-Length and Trans...
N/A 2020-05-22 CVE-2020-6091 cve An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially craft...
N/A 2020-05-22 CVE-2020-1956 cve Kylin has some restful apis which will concatenate os command with the user input string, a user is likely to be able to execute any os command without any protection or validat...
9.8 2020-05-22 CVE-2020-13417 cve An Elevation of Privilege issue was discovered in Aviatrix VPN Client before 2.10.7, because of an incomplete fix for CVE-2020-7224. This affects Linux, macOS, and Windows insta...
6.5 2020-05-22 CVE-2020-13416 cve An issue was discovered in Aviatrix Controller before 5.4.1066. A Controller Web Interface session token parameter is not required on an API call, which opens the application up...
7.5 2020-05-22 CVE-2020-13415 cve An issue was discovered in Aviatrix Controller through 5.1. An attacker with any signed SAML assertion from the Identity Provider can establish a connection (even if that SAML a...
N/A 2020-05-22 CVE-2020-13414 cve An issue was discovered in Aviatrix Controller before 5.4.1204. It contains credentials unused by the software.
5.3 2020-05-22 CVE-2020-13413 cve An issue was discovered in Aviatrix Controller before 5.4.1204. There is a Observable Response Discrepancy from the API, which makes it easier to perform user enumeration via br...
8.8 2020-05-22 CVE-2020-13412 cve An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.
5.5 2020-05-22 CVE-2020-13398 cve An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) write vulnerability has been detected in crypto_rsa_common in libfreerdp/crypto/crypto.c.
N/A 2020-05-22 CVE-2020-13397 cve An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in security_fips_decrypt in libfreerdp/core/security.c due to an uni...
N/A 2020-05-22 CVE-2020-13396 cve An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in ntlm_read_ChallengeMessage in winpr/libwinpr/sspi/NTLM/ntlm_messa...
Page(s) : 1 2 [3] 4 5 6 7 8 9 10 11 12 13 ... Result(s) : 169655