| Page(s) : 1 ... 652 653 654 655 656 657 658 659 660 661 [662] 663 664 665 666 667 668 669 670 671 672 ... | Result(s) : 43432 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-01-28 | CVE-2021-23484 | cve | The package zip-local before 0.3.5 are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) which can lead to an extraction of a crafted file outside the intende... |
| 9.8 | 2022-01-28 | CVE-2021-23558 | cve | The package bmoor before 0.10.1 are vulnerable to Prototype Pollution due to missing sanitization in set function. **Note:** This vulnerability derives from an incomplete fix in... |
| 9.8 | 2022-01-28 | CVE-2021-23760 | cve | The package keyget from 0.0.0 are vulnerable to Prototype Pollution via the methods set, push, and at which could allow an attacker to cause a denial of service and may lead to ... |
| 9.8 | 2022-01-28 | CVE-2021-46444 | cve | H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admin_group_edit&agID. |
| 9.8 | 2022-01-28 | CVE-2021-46445 | cve | H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/categories.php?box_group_id. |
| 9.8 | 2022-01-28 | CVE-2021-46446 | cve | H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admin_access_group_edit&aagID. |
| 9.8 | 2022-01-28 | CVE-2021-46448 | cve | H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/customers.php?page=1&cID. |
| 9.8 | 2022-01-28 | CVE-2021-44249 | cve | Online Motorcycle (Bike) Rental System 1.0 is vulnerable to a Blind Time-Based SQL Injection attack within the login portal. This can lead attackers to remotely dump MySQL datab... |
| 9.8 | 2022-01-28 | CVE-2021-45435 | cve | An SQL Injection vulnerability exists in Sourcecodester Simple Cold Storage Management System using PHP/OOP 1.0 via the username field in login.php. |
| 9.8 | 2022-01-28 | CVE-2020-25905 | cve | An SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in (1) login.php or (2) LoginAsAdmin.php. |
| 9.1 | 2022-01-27 | CVE-2022-21723 | cve | PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versi... |
| 9.1 | 2022-01-27 | CVE-2022-21722 | cve | PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versi... |
| 9.8 | 2022-01-27 | CVE-2021-46377 | cve | There is a front-end sql injection vulnerability in cszcms 1.2.9 via cszcms/controllers/Member.php#viewUser |
| 9.8 | 2022-01-27 | CVE-2021-46428 | cve | A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Simple Chatbot Application 1.0 ( and previous versions via the bot_avatar parameter in SystemSettings.php. |
| 9.8 | 2022-01-27 | CVE-2021-46427 | cve | An SQL Injection vulnerability exists in Sourcecodester Simple Chatbot Application 1.0 via the message parameter in Master.php. |
| 9.8 | 2022-01-26 | CVE-2021-46386 | cve | File upload vulnerability in mingSoft MCMS through 5.2.5, allows remote attackers to execute arbitrary code via a crafted jspx webshell to net.mingsoft.basic.action.web.FileActi... |
| 9.8 | 2022-01-26 | CVE-2021-32840 | cve | SharpZipLib (or #ziplib) is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry `../evil.txt` may be extracted in the parent directory of `destFolder`. ... |
| 9.8 | 2022-01-26 | CVE-2022-21686 | cve | PrestaShop is an Open Source e-commerce platform. Starting with version 1.7.0.0 and ending with version 1.7.8.3, an attacker is able to inject twig code inside the back office w... |
| 9.8 | 2022-01-26 | CVE-2021-46560 | cve | The firmware on Moxa TN-5900 devices through 3.1 allows command injection that could lead to device damage. |
| 9.1 | 2022-01-26 | CVE-2022-23959 | cve | In Varnish Cache before 6.6.2 and 7.x before 7.0.2, Varnish Cache 6.0 LTS before 6.0.10, and and Varnish Enterprise (Cache Plus) 4.1.x before 4.1.11r6 and 6.0.x before 6.0.9r4, ... |
| Page(s) : 1 ... 652 653 654 655 656 657 658 659 660 661 [662] 663 664 665 666 667 668 669 670 671 672 ... | Result(s) : 43432 |
