| Page(s) : 1 ... 744 745 746 747 748 749 750 751 752 753 [754] 755 756 757 758 759 760 761 762 763 764 ... | Result(s) : 43525 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2021-06-23 | CVE-2021-21998 | cve | VMware Carbon Black App Control 8.0, 8.1, 8.5 prior to 8.5.8, and 8.6 prior to 8.6.2 has an authentication bypass. A malicious actor with network access to the VMware Carbon Bla... |
| 9.1 | 2021-06-23 | CVE-2021-21809 | cve | A command execution vulnerability exists in the default legacy spellchecker plugin in Moodle 3.10. A specially crafted series of HTTP requests can lead to command execution. An ... |
| 9.8 | 2021-06-23 | CVE-2021-27649 | cve | Use after free vulnerability in file transfer protocol component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via... |
| 9.8 | 2021-06-23 | CVE-2020-20392 | cve | SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php. |
| 9.1 | 2021-06-22 | CVE-2021-20736 | cve | NoSQL injection vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to obtain and/or alter the information stored in the database via unspecified vectors. |
| 9.8 | 2021-06-21 | CVE-2010-1433 | cve | Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit... |
| 9.8 | 2021-06-21 | CVE-2018-25016 | cve | Greenbone Security Assistant (GSA) before 7.0.3 and Greenbone OS (GOS) before 5.0.0 allow Host Header Injection. |
| 9.8 | 2021-06-21 | CVE-2021-24361 | cve | In the Location Manager WordPress plugin before 2.1.0.10, the AJAX action gd_popular_location_list did not properly sanitise or validate some of its POST parameters, which are t... |
| 9.8 | 2021-06-21 | CVE-2020-19510 | cve | Textpattern 4.7.3 contains an aribtrary file load via the file_insert function in include/txp_file.php. |
| 9.8 | 2021-06-21 | CVE-2020-20466 | cve | White Shark System (WSS) 1.3.2 is vulnerable to unauthorized access via user_edit_password.php, remote attackers can modify the password of any user. |
| 9.8 | 2021-06-21 | CVE-2021-0516 | cve | In p2p_process_prov_disc_req of p2p_pd.c, there is a possible out of bounds read and write due to a use after free. This could lead to remote escalation of privilege with no add... |
| 9.8 | 2021-06-21 | CVE-2021-26461 | cve | Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memo... |
| 9.8 | 2021-06-21 | CVE-2021-24370 | cve | The Fancy Product Designer WordPress plugin before 4.6.9 allows unauthenticated attackers to upload arbitrary files, resulting in remote code execution. |
| 9.8 | 2021-06-21 | CVE-2021-24376 | cve | The Autoptimize WordPress plugin before 2.7.8 attempts to delete malicious files (such as .php) form the uploaded archive via the "Import Settings" feature, after its extraction... |
| 9.8 | 2021-06-21 | CVE-2021-35066 | cve | An XXE vulnerability exists in ConnectWise Automate before 2021.0.6.132. |
| 9.8 | 2021-06-21 | CVE-2010-1435 | cve | Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password re... |
| 9.8 | 2021-06-18 | CVE-2021-21280 | cve | Contiki-NG is an open-source, cross-platform operating system for internet of things devices. It is possible to cause an out-of-bounds write in versions of Contiki-NG prior to 4... |
| 9.8 | 2021-06-18 | CVE-2021-21281 | cve | Contiki-NG is an open-source, cross-platform operating system for internet of things devices. A buffer overflow vulnerability exists in Contiki-NG versions prior to 4.6. After e... |
| 9.1 | 2021-06-18 | CVE-2021-21410 | cve | Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. An out-of-bounds read can be triggered by 6LoWPAN packets sent to devices running ... |
| 9.8 | 2021-06-18 | CVE-2021-21282 | cve | Contiki-NG is an open-source, cross-platform operating system for internet of things devices. In versions prior to 4.5, buffer overflow can be triggered by an input packet when ... |
| Page(s) : 1 ... 744 745 746 747 748 749 750 751 752 753 [754] 755 756 757 758 759 760 761 762 763 764 ... | Result(s) : 43525 |
