| Page(s) : 1 ... 750 751 752 753 754 755 756 757 758 759 [760] 761 762 763 764 765 766 767 768 769 770 ... | Result(s) : 43529 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2021-06-03 | CVE-2021-22333 | cve | There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute, thus obtaining system... |
| 9.8 | 2021-06-02 | CVE-2009-0948 | cve | Multiple buffer overflows in the (1) cdf_read_sat, (2) cdf_read_long_sector_chain, and (3) cdf_read_ssat function in file before 5.02. |
| 9.1 | 2021-06-02 | CVE-2021-25288 | cve | An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_gray_i. |
| 9.8 | 2021-06-02 | CVE-2009-0947 | cve | Multiple integer overflows in the (1) cdf_read_property_info and (2) cdf_read_sat functions in file before 5.02. |
| 9.8 | 2021-06-02 | CVE-2021-29089 | cve | Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in thumbnail component in Synology Photo Station before 6.8.14-3500 ... |
| 9.8 | 2021-06-02 | CVE-2021-31921 | cve | Istio before 1.8.6 and 1.9.x before 1.9.5 contains a remotely exploitable vulnerability where an external client can access unexpected services in the cluster, bypassing authori... |
| 9.8 | 2021-06-02 | CVE-2021-30474 | cve | aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free. |
| 9.8 | 2021-06-02 | CVE-2020-35441 | cve | FDCMS (aka Fangfa Content Management System) 4.0 contains a front-end SQL injection via Admin/Lib/Action/FloginAction.class.php. |
| 9.8 | 2021-06-02 | CVE-2021-26707 | cve | The merge-deep library before 3.0.3 for Node.js can be tricked into overwriting properties of Object.prototype or adding new properties to it. These properties are then inherite... |
| 9.8 | 2021-06-02 | CVE-2021-3538 | cve | A flaw was found in github.com/satori/go.uuid in versions from commit 0ef6afb2f6cdd6cdaeee3885a95099c63f18fc8c to d91630c8510268e75203009fe7daf2b8e1d60c45. Due to insecure rando... |
| 9.8 | 2021-06-02 | CVE-2020-35442 | cve | FDCMS (also known as Fangfa Content Management System) 4.0 allows remote attackers to get a webshell in the background via Front/lib/Action/FindexAction.class.php. |
| 9.1 | 2021-06-02 | CVE-2021-25287 | cve | An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_graya_la. |
| 9.8 | 2021-06-02 | CVE-2021-3520 | cve | There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() ... |
| 9.1 | 2021-06-01 | CVE-2021-27828 | cve | SQL injection in In4Suite ERP 3.2.74.1370 allows attackers to modify or delete data, causing persistent changes to the application's content or behavior by using malicious ... |
| 10 | 2021-06-01 | CVE-2020-4561 | cve | IBM Cognos Analytics 11.0 and 11.1 DQM API allows submitting of all control requests in unauthenticated sessions. This allows a remote attacker who can access a valid CA endpoin... |
| 9.8 | 2021-06-01 | CVE-2021-30179 | cve | Apache Dubbo prior to 2.6.9 and 2.7.9 by default supports generic calls to arbitrary methods exposed by provider interfaces. These invocations are handled by the GenericFilter w... |
| 9.8 | 2021-06-01 | CVE-2021-24321 | cve | The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, l... |
| 9.8 | 2021-06-01 | CVE-2021-25641 | cve | Each Apache Dubbo server will set a serialization id to tell the clients which serialization protocol it is working on. But for Dubbo versions before 2.7.8 or 2.6.9, an attacker... |
| 9.8 | 2021-06-01 | CVE-2021-30180 | cve | Apache Dubbo prior to 2.7.9 support Tag routing which will enable a customer to route the request to the right server. These rules are used by the customers when making a reques... |
| 9.1 | 2021-06-01 | CVE-2021-32654 | cve | Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.11, 20.0.10, and 21.0.2, an attacker is able to receive write/read privileges on any... |
| Page(s) : 1 ... 750 751 752 753 754 755 756 757 758 759 [760] 761 762 763 764 765 766 767 768 769 770 ... | Result(s) : 43529 |
