| Page(s) : 1 ... 723 724 725 726 727 728 729 730 731 732 [733] 734 735 736 737 738 739 740 741 742 743 ... | Result(s) : 43489 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.6 | 2021-08-16 | CVE-2021-32827 | cve | MockServer is open source software which enables easy mocking of any system you integrate with via HTTP or HTTPS. An attacker that can trick a victim into visiting a malicious s... |
| 9.8 | 2021-08-16 | CVE-2021-38753 | cve | An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app. |
| 9.8 | 2021-08-16 | CVE-2021-38754 | cve | SQL Injection vulnerability in Hospital Management System due to lack of input validation in messearch.php. |
| 9.8 | 2021-08-16 | CVE-2021-24527 | cve | The User Registration & User Profile – Profile Builder WordPress plugin before 3.4.9 has a bug allowing any user to reset the password of the admin of the blog, and gain unautho... |
| 9.8 | 2021-08-16 | CVE-2021-35393 | cve | Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or... |
| 9 | 2021-08-15 | CVE-2021-25955 | cve | In “Dolibarr ERP CRM”, WYSIWYG Editor module, v2.8.1 to v13.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious script... |
| 9.8 | 2021-08-13 | CVE-2020-18753 | cve | An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows attackers to gain access to the system and escalate privileges via a crafted packet. |
| 9.1 | 2021-08-13 | CVE-2021-3352 | cve | The Software Development Kit in Mitel MiContact Center Business from 8.0.0.0 through 8.1.4.1 and 9.0.0.0 through 9.3.1.0 could allow an unauthenticated attacker to access (view ... |
| 9.8 | 2021-08-13 | CVE-2021-36380 | cve | Sunhillo SureLine before 8.7.0.1.1 allows Unauthenticated OS Command Injection via shell metacharacters in ipAddr or dnsAddr /cgi/networkDiag.cgi. |
| 9.8 | 2021-08-13 | CVE-2021-32071 | cve | The MiCollab Client service in Mitel MiCollab before 9.3 could allow an unauthenticated user to gain system access due to improper access control. A successful exploit could all... |
| 9.8 | 2021-08-13 | CVE-2021-1104 | cve | The RISC-V Instruction Set Manual contains a documented ambiguity for the Machine Trap Vector Base Address (MTVEC) register that may lead to a vulnerability due to the initial s... |
| 9.1 | 2021-08-13 | CVE-2021-38621 | cve | The remove API in v1/controller/cloudStorage/alibabaCloud/remove/index.ts in netless Agora Flat Server before 2021-07-30 mishandles file ownership. |
| 9.1 | 2021-08-13 | CVE-2021-27741 | cve | " Security vulnerability in HCL Commerce Management Center allowing XML external entity (XXE) injection" |
| 10 | 2021-08-13 | CVE-2021-37705 | cve | OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuzz 2.12.0 or greater, an incomplete authorization check allows an authenticated user from... |
| 9.8 | 2021-08-13 | CVE-2021-21830 | cve | A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote... |
| 9.8 | 2021-08-13 | CVE-2021-21829 | cve | A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI... |
| 9.8 | 2021-08-13 | CVE-2021-37350 | cve | Nagios XI before version 5.8.5 is vulnerable to SQL injection vulnerability in Bulk Modifications Tool due to improper input sanitisation. |
| 9.8 | 2021-08-13 | CVE-2021-37346 | cve | Nagios XI WatchGuard Wizard before version 1.4.8 is vulnerable to remote code execution through Improper neutralisation of special elements used in an OS Command (OS Command inj... |
| 9.1 | 2021-08-13 | CVE-2021-34823 | cve | The ON24 ScreenShare (aka DesktopScreenShare.app) plugin before 2.0 for macOS allows remote file access via its built-in HTTP server. This allows unauthenticated remote users to... |
| 9.8 | 2021-08-13 | CVE-2021-37353 | cve | Nagios XI Docker Wizard before version 1.1.3 is vulnerable to SSRF due to improper sanitation in table_population.php. |
| Page(s) : 1 ... 723 724 725 726 727 728 729 730 731 732 [733] 734 735 736 737 738 739 740 741 742 743 ... | Result(s) : 43489 |
