| Page(s) : 1 ... 644 645 646 647 648 649 650 651 652 653 [654] 655 656 657 658 659 660 661 662 663 664 ... | Result(s) : 43432 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.9 | 2022-02-11 | CVE-2021-42940 | cve | A Cross Site Scripting (XSS) vulnerability exists in Projeqtor 9.3.1 via /projeqtor/tool/saveAttachment.php, which allows an attacker to upload a SVG file containing malicious J... |
| 9.8 | 2022-02-11 | CVE-2021-22801 | cve | A CWE-269: Improper Privilege Management vulnerability exists that could cause an arbitrary command execution when the software is configured with specially crafted event action... |
| 9.8 | 2022-02-11 | CVE-2021-31932 | cve | Nokia BTS TRS web console FTM_W20_FP2_2019.08.16_0010 allows Authentication Bypass. A malicious unauthenticated user can get access to all the functionalities exposed via the we... |
| 9.8 | 2022-02-11 | CVE-2021-34235 | cve | Tokheim Profleet DiaLOG 11.005.02 is affected by SQL Injection. The component is the Field__UserLogin parameter on the logon page. |
| 9.1 | 2022-02-11 | CVE-2021-44521 | cve | When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_th... |
| 9.8 | 2022-02-11 | CVE-2020-26728 | cve | A vulnerability was discovered in Tenda AC9 v3.0 V15.03.06.42_multi and Tenda AC9 V1.0 V15.03.05.19(6318)_CN which allows for remote code execution via shell metacharacters in t... |
| 9.8 | 2022-02-11 | CVE-2020-13675 | cve | Drupal's JSON:API and REST/File modules allow file uploads through their HTTP APIs. The modules do not correctly run all file validation, which causes an access bypass vuln... |
| 9.8 | 2022-02-11 | CVE-2020-36062 | cve | Dairy Farm Shop Management System v1.0 was discovered to contain hardcoded credentials in the source code which allows attackers access to the control panel if compromised. |
| 9.8 | 2022-02-11 | CVE-2020-14523 | cve | Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code. |
| 9.1 | 2022-02-11 | CVE-2021-22805 | cve | A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of ... |
| 9.1 | 2022-02-11 | CVE-2021-22823 | cve | A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of ... |
| 9.8 | 2022-02-11 | CVE-2021-46362 | cve | A Server-Side Template Injection (SSTI) vulnerability in the Registration and Forgotten Password forms of Magnolia v6.2.3 and below allows attackers to execute arbitrary code vi... |
| 9.8 | 2022-02-11 | CVE-2020-14521 | cve | Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious attacker could use this vulnerability to... |
| 9.8 | 2022-02-11 | CVE-2021-22803 | cve | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could lead to remote code execution through a number of paths, when an attacker, writes arbi... |
| 9.8 | 2022-02-10 | CVE-2021-45364 | cve | A Code Execution vulnerability exists in Statamic Version through 3.2.26 via SettingsController.php. NOTE: the vendor indicates that there was an error in publishing this CVE Re... |
| 9.8 | 2022-02-10 | CVE-2022-20705 | cve | Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate... |
| 9.8 | 2022-02-10 | CVE-2022-24568 | cve | Novel-plus v3.6.0 was discovered to be vulnerable to Server-Side Request Forgery (SSRF) via user-supplied crafted input. |
| 9.8 | 2022-02-10 | CVE-2022-20711 | cve | Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate... |
| 9.8 | 2022-02-10 | CVE-2022-20699 | cve | Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate... |
| 9.8 | 2022-02-10 | CVE-2022-20700 | cve | Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate... |
| Page(s) : 1 ... 644 645 646 647 648 649 650 651 652 653 [654] 655 656 657 658 659 660 661 662 663 664 ... | Result(s) : 43432 |
