| Page(s) : 1 ... 564 565 566 567 568 569 570 571 572 573 [574] 575 576 577 578 579 580 581 582 583 584 ... | Result(s) : 43429 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-06-10 | CVE-2017-20029 | cve | A vulnerability was found in PHPList 3.2.6 and classified as critical. This issue affects some unknown processing of the file /lists/index.php of the component Edit Subscription... |
| 9.8 | 2022-06-10 | CVE-2017-20032 | cve | A vulnerability was found in PHPList 3.2.6. It has been rated as critical. Affected by this issue is some unknown functionality of the component Subscription. The manipulation l... |
| 9.8 | 2022-06-10 | CVE-2022-32563 | cve | An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are not verified when using X.509 client-certificate authentication from Sync Gateway to Co... |
| 9.8 | 2022-06-10 | CVE-2022-31788 | cve | IdeaLMS 2022 allows SQL injection via the IdeaLMS/ChatRoom/ClassAccessControl/6?isBigBlueButton=0&ClassID= pathname. |
| 9.8 | 2022-06-09 | CVE-2021-27786 | cve | Cross-origin resource sharing (CORS) enables browsers to perform cross domain requests in a controlled manner. This request has an Origin header that identifies the domain that ... |
| 9.8 | 2022-06-09 | CVE-2019-25065 | cve | A vulnerability was found in OpenNetAdmin 18.1.1. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to privilege escala... |
| 9.8 | 2022-06-09 | CVE-2022-31031 | cve | PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versi... |
| 9.8 | 2022-06-09 | CVE-2022-32272 | cve | OPSWAT MetaDefender Core before 5.1.2, MetaDefender ICAP before 4.12.1, and MetaDefender Email Gateway Security before 5.6.1 have incorrect access control, resulting in privileg... |
| 9.1 | 2022-06-09 | CVE-2022-31830 | cve | Kity Minder v1.3.5 was discovered to contain a Server-Side Request Forgery (SSRF) via the init function at ImageCapture.class.php. |
| 9.1 | 2022-06-09 | CVE-2022-31827 | cve | MonstaFTP v2.10.3 was discovered to contain a Server-Side Request Forgery (SSRF) via the function performFetchRequest at HTTPFetcher.php. |
| 9.1 | 2022-06-09 | CVE-2022-31393 | cve | Jizhicms v2.2.5 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability via the Index function in app/admin/c/PluginsController.php. |
| 9.1 | 2022-06-09 | CVE-2022-31390 | cve | Jizhicms v2.2.5 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability via the Update function in app/admin/c/TemplateController.php. |
| 9.1 | 2022-06-09 | CVE-2022-31386 | cve | A Server-Side Request Forgery (SSRF) in the getFileBinary function of nbnbk cms 3 allows attackers to force the application to make arbitrary requests via injection of arbitrary... |
| 9.8 | 2022-06-09 | CVE-2022-31045 | cve | Istio is an open platform to connect, manage, and secure microservices. In affected versions ill-formed headers sent to Envoy in certain configurations can lead to unexpected me... |
| 9.1 | 2022-06-09 | CVE-2022-29226 | cve | Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter implementation does not include a mechanism for validating access tokens, so by desi... |
| 9.8 | 2022-06-09 | CVE-2017-20028 | cve | A vulnerability was found in HumHub 0.20.1/1.0.0-beta.3. It has been classified as critical. This affects an unknown part. The manipulation leads to privilege escalation. It is ... |
| 9.8 | 2022-06-09 | CVE-2017-20025 | cve | A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Fl... |
| 9.8 | 2022-06-09 | CVE-2017-20023 | cve | A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects some unknown processing of the component Network Config. The manip... |
| 9.8 | 2022-06-09 | CVE-2022-24840 | cve | django-s3file is a lightweight file upload input for Django and Amazon S3 . In versions prior to 5.5.1 it was possible to traverse the entire AWS S3 bucket and in most cases to ... |
| 9.8 | 2022-06-09 | CVE-2022-29013 | cve | A command injection in the command parameter of Razer Sila Gaming Router v2.0.441_api-2.0.418 allows attackers to execute arbitrary commands via a crafted POST request. |
| Page(s) : 1 ... 564 565 566 567 568 569 570 571 572 573 [574] 575 576 577 578 579 580 581 582 583 584 ... | Result(s) : 43429 |
