| Page(s) : 1 ... 642 643 644 645 646 647 648 649 650 651 [652] 653 654 655 656 657 658 659 660 661 662 ... | Result(s) : 43432 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.1 | 2022-02-14 | CVE-2022-24976 | cve | Atheme IRC Services before 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response... |
| 9.8 | 2022-02-14 | CVE-2021-46461 | cve | njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vmcode_typeof in /src/njs_vmcode.c. |
| 9.8 | 2022-02-14 | CVE-2022-23992 | cve | XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases contain a vulnerability due to insufficient input validation that could potentially allow remote attackers to exec... |
| 9.8 | 2022-02-14 | CVE-2022-24206 | cve | Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in /mobile_seal/get_seal.php via the DEVICE_LIST parameter. |
| 9.8 | 2022-02-14 | CVE-2022-24977 | cve | ImpressCMS before 1.4.2 allows unauthenticated remote code execution via ...../// directory traversal in origName or imageName, leading to unsafe interaction with the CKEditor p... |
| 9.8 | 2022-02-14 | CVE-2022-24704 | cve | The rad_packet_recv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr->val.... |
| 9.8 | 2022-02-14 | CVE-2022-24705 | cve | The rad_packet_recv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow an... |
| 9.8 | 2022-02-14 | CVE-2021-4201 | cve | Missing access control in ForgeRock Access Management 7.1.0 and earlier versions on all platforms allows remote unauthenticated attackers to hijack sessions, including potential... |
| 9.8 | 2022-02-14 | CVE-2022-25139 | cve | njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njs_await_fulfilled. |
| 9.8 | 2022-02-14 | CVE-2022-23902 | cve | Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in export_data.php via the d_name parameter. |
| 9.8 | 2022-02-14 | CVE-2022-0570 | cve | Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. |
| 9.8 | 2022-02-14 | CVE-2022-23390 | cve | An issue in the getType function of BBS Forum v5.3 and below allows attackers to upload arbitrary files. |
| 9.8 | 2022-02-14 | CVE-2022-23389 | cve | PublicCMS v4.0 was discovered to contain a remote code execution (RCE) vulnerability via the cmdarray parameter. |
| 9.8 | 2022-02-14 | CVE-2022-23336 | cve | S-CMS v5.0 was discovered to contain a SQL injection vulnerability in member_pay.php via the O_id parameter. |
| 9.8 | 2022-02-14 | CVE-2022-23337 | cve | DedeCMS v5.7.87 was discovered to contain a SQL injection vulnerability in article_coonepage_rule.php via the ids parameter. |
| 9.8 | 2022-02-14 | CVE-2022-23335 | cve | Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in language_general.class.php via doModifyParameter. |
| 9.8 | 2022-02-14 | CVE-2022-0582 | cve | Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file |
| 9.8 | 2022-02-14 | CVE-2022-22295 | cve | Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in parameter_admin.class.php via the table_para parameter. |
| 9.8 | 2022-02-14 | CVE-2022-24988 | cve | In galois_2p8 before 0.1.2, PrimitivePolynomialField::new has an off-by-one buffer overflow for a vector. |
| 9.8 | 2022-02-14 | CVE-2021-46463 | cve | njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njs_promise_perform_then(). |
| Page(s) : 1 ... 642 643 644 645 646 647 648 649 650 651 [652] 653 654 655 656 657 658 659 660 661 662 ... | Result(s) : 43432 |
