| Page(s) : 1 ... 609 610 611 612 613 614 615 616 617 618 [619] 620 621 622 623 624 625 626 627 628 629 ... | Result(s) : 43431 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.1 | 2022-04-07 | CVE-2022-27818 | cve | SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service. |
| 9.1 | 2022-04-07 | CVE-2021-46419 | cve | An unauthorized file deletion vulnerability in Telesquare TLR-2855KS6 via DELETE method can allow deletion of system files and scripts. |
| 9.8 | 2022-04-07 | CVE-2022-23900 | cve | A command injection vulnerability in the API of the Wavlink WL-WN531P3 router, version M31G3.V5030.201204, allows an attacker to achieve unauthorized remote code execution via a... |
| 9.8 | 2022-04-07 | CVE-2021-43421 | cve | A File Upload vulnerability exists in Studio-42 elFinder 2.0.4 to 2.1.59 via connector.minimal.php, which allows a remote malicious user to upload arbitrary files and execute PH... |
| 9.8 | 2022-04-07 | CVE-2022-27022 | cve | There is a stack overflow vulnerability in the SetSysTimeCfg() function in the httpd service of Tenda AC9 V15.03.2.21_cn. The attacker can obtain a stable root shell through a c... |
| 9.8 | 2022-04-07 | CVE-2022-27016 | cve | There is a stack overflow vulnerability in the SetStaticRouteCfg() function in the httpd service of Tenda AC9 15.03.2.21_cn. |
| 9.8 | 2022-04-07 | CVE-2021-43474 | cve | An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function |
| 9.8 | 2022-04-07 | CVE-2022-26612 | cve | In Apache Hadoop, The unTar function uses unTarUsingJava function on Windows and the built-in tar utility on Unix and other OSes. As a result, a TAR entry may create a symlink u... |
| 9.8 | 2022-04-07 | CVE-2022-26676 | cve | aEnrich a+HRD has inadequate privilege restrictions, an unauthenticated remote attacker can use the API function to upload and execute malicious scripts to control the system or... |
| 9.8 | 2022-04-07 | CVE-2021-43453 | cve | A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds read in parser_parse_for_statement_start in the js-parser-statm.c ... |
| 9.8 | 2022-04-06 | CVE-2022-1253 | cve | Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to and including 1.0.8. The fix is established in commit 8e89fe0e175d2870c39486fdd09250b230ec10b8 but d... |
| 9.1 | 2022-04-06 | CVE-2022-23441 | cve | A use of hard-coded cryptographic key vulnerability [CWE-321] in FortiEDR versions 5.0.2, 5.0.1, 5.0.0, 4.0.0 may allow an unauthenticated attacker on the network to disguise as... |
| 9.8 | 2022-04-06 | CVE-2021-26114 | cve | Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiWAN before 4.5.9 may allow an unauthenticated attacker to execute unauthorize... |
| 9.8 | 2022-04-06 | CVE-2021-26112 | cve | Multiple stack-based buffer overflow vulnerabilities [CWE-121] both in network daemons and in the command line interpreter of FortiWAN before 4.5.9 may allow an unauthenticated ... |
| 9.8 | 2022-04-06 | CVE-2022-24786 | cve | PJSIP is a free and open source multimedia communication library written in C. PJSIP versions 2.12 and prior do not parse incoming RTCP feedback RPSI (Reference Picture Selectio... |
| 9.8 | 2022-04-06 | CVE-2022-26613 | cve | PHP-CMS v1.0 was discovered to contain a SQL injection vulnerability via the category parameter in categorymenu.php. |
| 9.8 | 2022-04-06 | CVE-2020-22253 | cve | Xiongmai Technology Co devices AHB7008T-MH-V2, AHB7804R-ELS, AHB7804R-MH-V2, AHB7808R-MS-V2, AHB7808R-MS, AHB7808T-MS-V2, AHB7804R-LMS, and HI3518E_50H10L_S39 were all discovere... |
| 9.8 | 2022-04-05 | CVE-2022-28467 | cve | Online Student Admission v1.0 was discovered to contain a SQL injection vulnerability via the txtapplicationID parameter. |
| 9.8 | 2022-04-05 | CVE-2022-28116 | cve | Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter. |
| 9.8 | 2022-04-05 | CVE-2022-28115 | cve | Online Sports Complex Booking v1.0 was discovered to contain a SQL injection vulnerability via the id parameter. |
| Page(s) : 1 ... 609 610 611 612 613 614 615 616 617 618 [619] 620 621 622 623 624 625 626 627 628 629 ... | Result(s) : 43431 |
