| Page(s) : 1 ... 653 654 655 656 657 658 659 660 661 662 [663] 664 665 666 667 668 669 670 671 672 673 ... | Result(s) : 43432 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-01-26 | CVE-2021-46386 | cve | File upload vulnerability in mingSoft MCMS through 5.2.5, allows remote attackers to execute arbitrary code via a crafted jspx webshell to net.mingsoft.basic.action.web.FileActi... |
| 9.1 | 2022-01-25 | CVE-2022-23944 | cve | User can access /plugin api without authentication. This issue affected Apache ShenYu 2.4.0 and 2.4.1. |
| 9.8 | 2022-01-25 | CVE-2021-45802 | cve | MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the email and phone parameter values are added to the SQL query without any verificati... |
| 9.8 | 2022-01-25 | CVE-2021-45029 | cve | Groovy Code Injection & SpEL Injection which lead to Remote Code Execution. This issue affected Apache ShenYu 2.4.0 and 2.4.1. |
| 9.8 | 2022-01-25 | CVE-2021-46089 | cve | In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges. |
| 9.8 | 2022-01-25 | CVE-2021-46033 | cve | In ForestBlog, as of 2021-12-28, File upload can bypass verification. |
| 9.1 | 2022-01-25 | CVE-2021-3850 | cve | Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21. |
| 9.8 | 2022-01-25 | CVE-2021-43799 | cve | Zulip is an open-source team collaboration tool. Zulip Server installs RabbitMQ for internal message passing. In versions of Zulip Server prior to 4.9, the initial installation ... |
| 9.8 | 2022-01-25 | CVE-2022-0332 | cve | A flaw was found in Moodle in versions 3.11 to 3.11.4. An SQL injection risk was identified in the h5p activity web service responsible for fetching user attempt data. |
| 9.8 | 2022-01-25 | CVE-2021-43298 | cve | The code that performs password matching when using 'Basic' HTTP authentication does not use a constant-time memcmp and has no rate-limiting. This means that an unauth... |
| 9.8 | 2022-01-25 | CVE-2021-36294 | cve | Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability. A remote unauthenticated attacker may exploit this vulnerability by forgin... |
| 9.8 | 2022-01-24 | CVE-2021-40596 | cve | SQL injection vulnerability in Login.php in sourcecodester Online Learning System v2 by oretnom23, allows attackers to execute arbitrary SQL commands via the faculty_id parameter. |
| 9.8 | 2022-01-24 | CVE-2021-41659 | cve | SQL injection vulnerability in Sourcecodester Banking System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username or password field. |
| 9.8 | 2022-01-24 | CVE-2021-41472 | cve | SQL injection vulnerability in Sourcecodester Simple Membership System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username and password parameters. |
| 9.8 | 2022-01-24 | CVE-2021-41471 | cve | SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the email and Pass... |
| 9.6 | 2022-01-24 | CVE-2021-40909 | cve | Cross site scripting (XSS) vulnerability in sourcecodester PHP CRUD without Refresh/Reload using Ajax and DataTables Tutorial v1 by oretnom23, allows remote attackers to execute... |
| 9.8 | 2022-01-24 | CVE-2021-40908 | cve | SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username ... |
| 9.8 | 2022-01-24 | CVE-2021-40907 | cve | SQL injection vulnerability in Sourcecodester Storage Unit Rental Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username paramete... |
| 9.8 | 2022-01-24 | CVE-2020-17383 | cve | A directory traversal vulnerability on Telos Z/IP One devices through 4.0.0r grants an unauthenticated individual root level access to the device's file system. This can be... |
| 9.8 | 2022-01-24 | CVE-2021-43420 | cve | SQL injection vulnerability in Login.php in Sourcecodester Online Payment Hub v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter. |
| Page(s) : 1 ... 653 654 655 656 657 658 659 660 661 662 [663] 664 665 666 667 668 669 670 671 672 673 ... | Result(s) : 43432 |
