| Page(s) : 1 ... 632 633 634 635 636 637 638 639 640 641 [642] 643 644 645 646 647 648 649 650 651 652 ... | Result(s) : 43431 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-03-06 | CVE-2022-26495 | cve | In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-size... |
| 9.8 | 2022-03-05 | CVE-2022-0845 | cve | Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0. |
| 9.6 | 2022-03-05 | CVE-2022-25069 | cve | Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting (XSS) vulnerability which allows attackers to perform remote code execution (RCE) via injecting a cr... |
| 9.1 | 2022-03-05 | CVE-2022-25312 | cve | An XML external entity (XXE) injection vulnerability was discovered in the Any23 RDFa XSLTStylesheet extractor and is known to affect Any23 versions < 2.7. XML external entity i... |
| 9.8 | 2022-03-04 | CVE-2022-0848 | cve | OS Command Injection in GitHub repository part-db/part-db prior to 0.5.11. |
| 9.8 | 2022-03-04 | CVE-2022-26201 | cve | Victor CMS v1.0 was discovered to contain a SQL injection vulnerability. |
| 9.8 | 2022-03-04 | CVE-2021-46394 | cve | There is a stack buffer overflow vulnerability in the formSetPPTPServer function of Tenda-AX3 router V16.03.12.10_CN. The v13 variable is directly retrieved from the http reques... |
| 9.8 | 2022-03-04 | CVE-2021-46393 | cve | There is a stack buffer overflow vulnerability in the formSetPPTPServer function of Tenda-AX3 router V16.03.12.10_CN. The v10 variable is directly retrieved from the http reques... |
| 9.8 | 2022-03-04 | CVE-2022-26318 | cve | On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before... |
| 9.8 | 2022-03-04 | CVE-2021-46384 | cve | https://gitee.com/mingSoft/MCMS MCMS |
| 9.8 | 2022-03-04 | CVE-2022-0839 | cve | Improper Restriction of XML External Entity Reference in GitHub repository liquibase/liquibase prior to 4.8.0. |
| 9.8 | 2022-03-03 | CVE-2022-0265 | cve | Improper Restriction of XML External Entity Reference in GitHub repository hazelcast/hazelcast in 5.1-BETA-1. |
| 9.8 | 2022-03-03 | CVE-2021-3762 | cve | A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair,... |
| 9.8 | 2022-03-03 | CVE-2021-38578 | cve | Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. |
| 9.8 | 2022-03-03 | CVE-2022-24724 | cve | cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm&#... |
| 9.8 | 2022-03-03 | CVE-2022-25125 | cve | MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via search.do in the file /mdiy/dict/listExcludeApp. |
| 9.8 | 2022-03-03 | CVE-2022-23899 | cve | MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via search.do in the file /web/MCmsAction.java. |
| 9.8 | 2022-03-03 | CVE-2022-23898 | cve | MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml. |
| 9.8 | 2022-03-03 | CVE-2022-0730 | cve | Under certain ldap conditions, Cacti authentication can be bypassed with certain credential types. |
| 10 | 2022-03-03 | CVE-2022-22947 | cve | In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and u... |
| Page(s) : 1 ... 632 633 634 635 636 637 638 639 640 641 [642] 643 644 645 646 647 648 649 650 651 652 ... | Result(s) : 43431 |
