| Page(s) : 1 ... 493 494 495 496 497 498 499 500 501 502 [503] 504 505 506 507 508 509 510 511 512 513 ... | Result(s) : 43370 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-09-30 | CVE-2022-40314 | cve | A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified. |
| 9.8 | 2022-09-30 | CVE-2022-40943 | cve | Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via bwdate-report-ds.php file. |
| 9.8 | 2022-09-30 | CVE-2022-35156 | cve | Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php.. |
| 9.8 | 2022-09-30 | CVE-2022-40944 | cve | Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via sales-report-ds.php file. |
| 9.8 | 2022-09-29 | CVE-2022-40887 | cve | SourceCodester Best Student Result Management System 1.0 is vulnerable to SQL Injection. |
| 9.8 | 2022-09-29 | CVE-2020-15332 | cve | Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak /opt/axess/etc/default/axess permissions. |
| 9.8 | 2022-09-29 | CVE-2021-45790 | cve | An arbitrary file upload vulnerability was found in Metersphere v1.15.4. Unauthenticated users can upload any file to arbitrary directory, where attackers can write a cron job t... |
| 9.8 | 2022-09-29 | CVE-2016-2338 | cve | An exploitable heap overflow vulnerability exists in the Psych::Emitter start_document function of Ruby. In Psych::Emitter start_document function heap buffer "head" allocation ... |
| 9.8 | 2022-09-29 | CVE-2022-29503 | cve | A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. Thread allocation can lead to memory corruption. A... |
| 9.8 | 2022-09-29 | CVE-2020-27602 | cve | BigBlueButton before 2.2.7 does not have a protection mechanism for separator injection in meetingId, userId, and authToken. |
| 9.8 | 2022-09-29 | CVE-2022-40475 | cve | TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection via the component /cgi-bin/downloadFile.cgi. |
| 9.8 | 2022-09-29 | CVE-2020-15347 | cve | Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has the q6xV4aW8bQ4cfD-b password for the axiros account. |
| 9.8 | 2022-09-29 | CVE-2020-35674 | cve | BigProf Online Invoicing System before 2.9 suffers from an unauthenticated SQL Injection found in /membership_passwordReset.php (the endpoint that is responsible for issuing sel... |
| 9.8 | 2022-09-29 | CVE-2022-33880 | cve | hms-staff.php in Projectworlds Hospital Management System Mini-Project through 2018-06-17 allows SQL injection via the type parameter. |
| 9.8 | 2022-09-29 | CVE-2022-39266 | cve | isolated-vm is a library for nodejs which gives the user access to v8's Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API... |
| 9.8 | 2022-09-29 | CVE-2020-15331 | cve | Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded OAUTH_SECRET_KEY in /opt/axess/etc/default/axess. |
| 9.6 | 2022-09-28 | CVE-2022-40083 | cve | Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Serve... |
| 9.4 | 2022-09-28 | CVE-2022-22524 | cve | In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full... |
| 9.8 | 2022-09-28 | CVE-2022-40942 | cve | Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time. |
| 9.8 | 2022-09-28 | CVE-2022-40929 | cve | XXL-JOB 2.2.0 has a Command execution vulnerability in background tasks. NOTE: this is disputed because the issues/4929 report is about an intended and supported use case (runni... |
| Page(s) : 1 ... 493 494 495 496 497 498 499 500 501 502 [503] 504 505 506 507 508 509 510 511 512 513 ... | Result(s) : 43370 |
