Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 618 619 620 621 622 623 624 625 626 627 [628] 629 630 631 632 633 634 635 636 637 638 ... Result(s) : 43431

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2022-03-24 CVE-2022-27079 cve Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setPicListItem.
9.8 2022-03-24 CVE-2022-27078 cve Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setAdInfoDetail.
9.8 2022-03-24 CVE-2022-27077 cve Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /cgi-bin/uploadWeiXinPic.
9.8 2022-03-24 CVE-2022-27076 cve Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/delAd.
9.8 2022-03-24 CVE-2022-26536 cve Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setFixTools.
9.8 2022-03-24 CVE-2022-26289 cve Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/exeCommand.
9.8 2022-03-24 CVE-2021-31326 cve D-Link DIR-816 A2 1.10 B05 allows unauthenticated attackers to arbitrarily reset the device via a crafted tokenid parameter to /goform/form2Reboot.cgi.
9.8 2022-03-24 CVE-2021-43700 cve An issue was discovered in ApiManager 1.1. there is sql injection vulnerability that can use in /index.php?act=api&tag=8.
9.1 2022-03-24 CVE-2022-22374 cve The BMC (IBM Power 9 AC922 OP910, OP920, OP930, and OP940) may be subject to a firmware downgrade attack which may affect its ability to operate its host. IBM X-Force ID: 221442.
9.8 2022-03-24 CVE-2021-43084 cve An SQL Injection vulnerability exists in Dreamer CMS 4.0.0 via the tableName parameter.
9.1 2022-03-24 CVE-2022-26629 cve An Access Control vulnerability exists in SoroushPlus+ Messenger 1.0.30 in the Lock Screen Security Feature function due to insufficient permissions and privileges, which allows...
9.8 2022-03-24 CVE-2022-26279 cve EyouCMS v1.5.5 was discovered to have no access control in the component /data/sqldata.
9.8 2022-03-24 CVE-2022-26301 cve TuziCMS v2.0.6 was discovered to contain a SQL injection vulnerability via the component App\Manage\Controller\ZhuantiController.class.php.
9.8 2022-03-24 CVE-2022-26249 cve Survey King v0.3.0 does not filter data properly when exporting excel files, allowing attackers to execute arbitrary code or access sensitive information via a CSV injection att...
9.8 2022-03-24 CVE-2022-26272 cve A remote code execution (RCE) vulnerability in Ionize v1.0.8.1 allows attackers to execute arbitrary code via a crafted string written to the file application/config/config.php.
9.8 2022-03-23 CVE-2022-0888 cve The Ninja Forms - File Uploads Extension WordPress plugin is vulnerable to arbitrary file uploads due to insufficient input file type validation found in the ~/includes/ajax/con...
9.1 2022-03-23 CVE-2022-22952 cve VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7.4 and 8.8.x prior to 8.8.2) contains a file upload vulnerability. A malicious ac...
9.8 2022-03-23 CVE-2021-27476 cve A vulnerability exists in the SaveConfigFile function of the RACompare Service, which may allow for OS command injection. This vulnerability may allow a remote, unauthenticated ...
9.1 2022-03-23 CVE-2022-22951 cve VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7.4 and 8.8.x prior to 8.8.2) contains an OS command injection vulnerability. An a...
9.8 2022-03-23 CVE-2021-27464 cve The ArchiveService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier exposes functions lacking proper authentication. This vulnerability may allow a ...
Page(s) : 1 ... 618 619 620 621 622 623 624 625 626 627 [628] 629 630 631 632 633 634 635 636 637 638 ... Result(s) : 43431