| Page(s) : 1 ... 517 518 519 520 521 522 523 524 525 526 [527] 528 529 530 531 532 533 534 535 536 537 ... | Result(s) : 43383 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-08-23 | CVE-2021-42232 | cve | TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. The vulnerability is caused by the program taking part of the receiv... |
| 9.8 | 2022-08-23 | CVE-2022-37199 | cve | JFinal CMS 5.1.0 is vulnerable to SQL Injection via /jfinal_cms/system/user/list. |
| 9.1 | 2022-08-23 | CVE-2022-36261 | cve | An arbitrary file deletion vulnerability was discovered in taocms 3.0.2, that allows attacker to delete file in server when request url admin.php?action=file&ctrl=del&path=/../.... |
| 9.8 | 2022-08-23 | CVE-2021-42627 | cve | The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which can lead to disclose the information abo... |
| 9.8 | 2022-08-23 | CVE-2022-37113 | cve | Bluecms 1.6 has SQL injection in line 132 of admin/area.php |
| 9.8 | 2022-08-23 | CVE-2022-37112 | cve | BlueCMS 1.6 has SQL injection in line 55 of admin/model.php |
| 9.8 | 2022-08-23 | CVE-2022-37111 | cve | BlueCMS 1.6 has SQL injection in line 132 of admin/article.php |
| 9.8 | 2022-08-23 | CVE-2022-35726 | cve | Broken Authentication vulnerability in yotuwp Video Gallery plugin |
| 9.8 | 2022-08-23 | CVE-2022-37223 | cve | JFinal CMS 5.1.0 is vulnerable to SQL Injection via /jfinal_cms/system/role/list. |
| 9.8 | 2022-08-23 | CVE-2022-35115 | cve | IceWarp WebClient DC2 - Update 2 Build 9 (13.0.2.9) was discovered to contain a SQL injection vulnerability via the search parameter at /webmail/server/webmail.php. |
| 9 | 2022-08-22 | CVE-2022-28712 | cve | A cross-site scripting (xss) vulnerability exists in the videoAddNew functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead ... |
| 9.8 | 2022-08-22 | CVE-2022-36198 | cve | Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/change... |
| 9.8 | 2022-08-22 | CVE-2022-34773 | cve | Tabit - HTTP Method manipulation. https://bridge.tabit.cloud/configuration/addresses-query - can be POST-ed to add addresses to the DB. This is an example of OWASP:API8 – Inject... |
| 9.8 | 2022-08-22 | CVE-2022-2927 | cve | Weak Password Requirements in GitHub repository notrinos/notrinoserp prior to 0.7. |
| 9.8 | 2022-08-22 | CVE-2022-35583 | cve | wkhtmlTOpdf 0.12.6 is vulnerable to SSRF which allows an attacker to get initial access into the target's system by injecting iframe tag with initial asset IP address on it... |
| 9.8 | 2022-08-22 | CVE-2022-35150 | cve | Baijicms v4 was discovered to contain an arbitrary file upload vulnerability. |
| 9.8 | 2022-08-22 | CVE-2022-37134 | cve | D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Buffer Overflow via /goform/form2Wan.cgi. When wantype is 3, l2tp_usrname will be decrypted by base64, and the result will be s... |
| 9.8 | 2022-08-22 | CVE-2022-34858 | cve | Authentication Bypass vulnerability in miniOrange OAuth 2.0 client for SSO plugin |
| 9.8 | 2022-08-22 | CVE-2020-27836 | cve | A flaw was found in cluster-ingress-operator. A change to how the router-default service allows only certain IP source ranges could allow an attacker to access resources that wo... |
| 9.9 | 2022-08-22 | CVE-2022-30547 | cve | A directory traversal vulnerability exists in the unzipDirectory functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a... |
| Page(s) : 1 ... 517 518 519 520 521 522 523 524 525 526 [527] 528 529 530 531 532 533 534 535 536 537 ... | Result(s) : 43383 |
