| Page(s) : 1 ... 613 614 615 616 617 618 619 620 621 622 [623] 624 625 626 627 628 629 630 631 632 633 ... | Result(s) : 43431 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.1 | 2022-03-31 | CVE-2022-26546 | cve | Hospital Management System v1.0 was discovered to lack an authorization component, allowing attackers to access sensitive information and obtain the admin password. |
| 9.8 | 2022-03-31 | CVE-2021-43722 | cve | D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limi... |
| 9.8 | 2022-03-31 | CVE-2021-43479 | cve | A Remote Code Execution (RCE) vulnerability exists in The-Secretary 2.5 via install.php. |
| 9.8 | 2022-03-31 | CVE-2021-43484 | cve | A Remote Code Execution (RCE) vulnerability exists in Simple Client Management System 1.0 in create.php due to the failure to validate the extension of the file being sent in a ... |
| 9.1 | 2022-03-31 | CVE-2022-24797 | cve | Pomerium is an identity-aware access proxy. In distributed service mode, Pomerium's Authenticate service exposes pprof debug and prometheus metrics handlers to untrusted tr... |
| 9.8 | 2022-03-31 | CVE-2022-24796 | cve | RaspberryMatic is a free and open-source operating system for running a cloud-free smart-home using the homematicIP / HomeMatic hardware line of IoT devices. A Remote Code Execu... |
| 9.8 | 2022-03-31 | CVE-2022-24791 | cve | Wasmtime is a standalone JIT-style runtime for WebAssembly, using Cranelift. There is a use after free vulnerability in Wasmtime when both running Wasm that uses externrefs and ... |
| 9.8 | 2022-03-30 | CVE-2021-46009 | cve | In Totolink A3100R V5.9c.4577, multiple pages can be read by curl or Burp Suite without authentication. Additionally, admin configurations can be set without cookies. |
| 9.8 | 2022-03-30 | CVE-2022-28205 | cve | An issue was discovered in MediaWiki through 1.37.1. The CentralAuth extension mishandles a ttl issue for groups expiring in the future. |
| 9.8 | 2022-03-30 | CVE-2022-26645 | cve | A remote code execution (RCE) vulnerability in Online Banking System Protect v1.0 allows attackers to execute arbitrary code via a crafted PHP file uploaded through the Upload I... |
| 9.8 | 2022-03-30 | CVE-2022-23799 | cve | An issue was discovered in Joomla! 4.0.0 through 4.1.0. Under specific circumstances, JInput pollutes method-specific input bags with $_REQUEST data. |
| 9.8 | 2022-03-30 | CVE-2022-24693 | cve | Baicells Nova436Q and Neutrino 430 devices with firmware through QRTB 2.7.8 have hardcoded credentials that are easily discovered, and can be used by remote attackers to authent... |
| 9.8 | 2022-03-30 | CVE-2020-24770 | cve | SQL injection vulnerability in modrules.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. |
| 9.8 | 2022-03-30 | CVE-2020-24769 | cve | SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the classes parameter. |
| 9.8 | 2022-03-30 | CVE-2022-28209 | cve | An issue was discovered in Mediawiki through 1.37.1. The check for the override-antispoof permission in the AntiSpoof extension is incorrect. |
| 9.8 | 2022-03-30 | CVE-2022-28206 | cve | An issue was discovered in MediaWiki through 1.37.1. ImportPlanValidator.php in the FileImporter extension mishandles the check for edit rights. |
| 9 | 2022-03-30 | CVE-2022-25620 | cve | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Group Functionality of Profelis IT Consultancy SambaBox allows AUTHENTICATED user ... |
| 9.8 | 2022-03-30 | CVE-2019-12266 | cve | Stack-based Buffer Overflow vulnerability in Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to run arbitrary code on the affected device. This issue affects: Wyze Cam Pan v2... |
| 9.8 | 2022-03-30 | CVE-2019-9564 | cve | A vulnerability in the authentication logic of Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to bypass login and control the devices. This issue affects: Wyze Cam Pan v2 ve... |
| 9.8 | 2022-03-30 | CVE-2022-26646 | cve | Online Banking System Protect v1.0 was discovered to contain a local file inclusion (LFI) vulnerability via the pages parameter. |
| Page(s) : 1 ... 613 614 615 616 617 618 619 620 621 622 [623] 624 625 626 627 628 629 630 631 632 633 ... | Result(s) : 43431 |
