| Page(s) : 1 ... 551 552 553 554 555 556 557 558 559 560 [561] 562 563 564 565 566 567 568 569 570 571 ... | Result(s) : 43428 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9 | 2022-07-05 | CVE-2021-43702 | cve | ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to cha... |
| 9.8 | 2022-07-04 | CVE-2022-33171 | cve | The findOne function in TypeORM before 0.3.0 can either be supplied with a string or a FindOneOptions object. When input to the function is a user-controlled parsed JSON object,... |
| 9.8 | 2022-07-04 | CVE-2022-34265 | cve | An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as ... |
| 9.8 | 2022-07-02 | CVE-2022-34913 | cve | md2roff 1.7 has a stack-based buffer overflow via a Markdown file containing a large number of consecutive characters to be processed. NOTE: the vendor's position is that t... |
| 9.8 | 2022-07-01 | CVE-2022-32295 | cve | On Ampere Altra and AltraMax devices before SRP 1.09, the Altra reference design of UEFI accesses allows insecure access to SPI-NOR by the OS/hypervisor component. |
| 9.8 | 2022-07-01 | CVE-2021-32428 | cve | SQL Injection vulnerability in viaviwebtech Android EBook App (Books App, PDF, ePub, Online Book Reading, Download Books) 10 via the author_id parameter to api.php. |
| 9.8 | 2022-07-01 | CVE-2022-2274 | cve | The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with... |
| 9.1 | 2022-07-01 | CVE-2022-2253 | cve | A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 may send OS commands to execute on the host server. |
| 9.8 | 2022-07-01 | CVE-2022-32095 | cve | Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter at orders.php. |
| 9.8 | 2022-07-01 | CVE-2022-32094 | cve | Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the loginid parameter at doctorlogin.php. |
| 9.8 | 2022-07-01 | CVE-2022-32093 | cve | Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the loginid parameter at adminlogin.php. |
| 9.8 | 2022-07-01 | CVE-2022-31943 | cve | MCMS v5.2.8 was discovered to contain an arbitrary file upload vulnerability. |
| 9.8 | 2022-07-01 | CVE-2022-25900 | cve | All versions of package git-clone are vulnerable to Command Injection due to insecure usage of the --upload-pack feature of git. |
| 9.8 | 2022-07-01 | CVE-2022-25898 | cve | The package jsrsasign before 10.5.25 are vulnerable to Improper Verification of Cryptographic Signature when JWS or JWT signature with non Base64URL encoding special characters ... |
| 9.8 | 2022-07-01 | CVE-2022-32324 | cve | PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src/pdfalto.cc. |
| 9.8 | 2022-07-01 | CVE-2022-32032 | cve | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule. |
| 9.1 | 2022-06-30 | CVE-2022-28127 | cve | A data removal vulnerability exists in the web_server /action/remove/ API functionality of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary file d... |
| 9.8 | 2022-06-30 | CVE-2021-40643 | cve | EyesOfNetwork before 07-07-2021 has a Remote Code Execution vulnerability on the mail options configuration page. In the location of the "sendmail" application in the "cacti" co... |
| 9.8 | 2022-06-30 | CVE-2022-2197 | cve | By using a specific credential string, an attacker with network access to the device’s web interface could circumvent the authentication scheme and perform administrative operat... |
| 9.8 | 2022-06-30 | CVE-2014-0156 | cve | Awesome spawn contains OS command injection vulnerability, which allows execution of additional commands passed to Awesome spawn as arguments. If untrusted input was included in... |
| Page(s) : 1 ... 551 552 553 554 555 556 557 558 559 560 [561] 562 563 564 565 566 567 568 569 570 571 ... | Result(s) : 43428 |
