| Page(s) : 1 ... 754 755 756 757 758 759 760 761 762 763 [764] 765 766 767 768 769 770 771 772 773 774 ... | Result(s) : 43529 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2021-05-24 | CVE-2021-29300 | cve | The @ronomon/opened library before 1.5.2 is vulnerable to a command injection vulnerability which would allow a remote attacker to execute commands on the system if the library ... |
| 9.8 | 2021-05-24 | CVE-2020-25409 | cve | Projectsworlds College Management System Php 1.0 is vulnerable to SQL injection issues over multiple parameters. |
| 9.8 | 2021-05-24 | CVE-2020-28901 | cve | Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code Execution as root via vectors related to corrupt component installation in cmd_subsy... |
| 9.8 | 2021-05-24 | CVE-2020-28910 | cve | Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and earlier allows for Privilege Escalation via creation of symlinks, which are mishandled in getp... |
| 9.8 | 2021-05-24 | CVE-2019-12348 | cve | An issue was discovered in zzcms 2019. SQL Injection exists in user/ztconfig.php via the daohang or img POST parameter. |
| 9.8 | 2021-05-24 | CVE-2020-28908 | cve | Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to nagios. |
| 9.1 | 2021-05-21 | CVE-2018-25012 | cve | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24(). |
| 9.8 | 2021-05-21 | CVE-2018-25011 | cve | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16(). |
| 9.8 | 2021-05-21 | CVE-2020-36328 | cve | A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest... |
| 9.8 | 2021-05-21 | CVE-2018-25014 | cve | A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(). |
| 9.8 | 2021-05-21 | CVE-2021-31474 | cve | This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor 2020.2.1. Authentication is not required... |
| 9.8 | 2021-05-21 | CVE-2020-12061 | cve | An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows a... |
| 9.8 | 2021-05-21 | CVE-2020-36329 | cve | A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data co... |
| 9.1 | 2021-05-21 | CVE-2020-36330 | cve | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data con... |
| 9.9 | 2021-05-21 | CVE-2021-33509 | cve | Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted keyword arguments to the ReStructuredText transform in a Python script. |
| 9.1 | 2021-05-21 | CVE-2020-36331 | cve | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confiden... |
| 9.1 | 2021-05-21 | CVE-2018-25009 | cve | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16(). |
| 9.1 | 2021-05-21 | CVE-2018-25010 | cve | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter(). |
| 9.1 | 2021-05-21 | CVE-2018-25013 | cve | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes(). |
| 9.8 | 2021-05-21 | CVE-2021-33514 | cve | Certain NETGEAR devices are affected by command injection by an unauthenticated attacker via the vulnerable /sqfs/lib/libsal.so.0.0 library used by a CGI application, as demonst... |
| Page(s) : 1 ... 754 755 756 757 758 759 760 761 762 763 [764] 765 766 767 768 769 770 771 772 773 774 ... | Result(s) : 43529 |
