| Page(s) : 1 ... 755 756 757 758 759 760 761 762 763 764 [765] 766 767 768 769 770 771 772 773 774 775 ... | Result(s) : 43529 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2021-05-20 | CVE-2021-20720 | cve | SQL injection vulnerability in the KonaWiki2 versions prior to 2.2.4 allows remote attackers to execute arbitrary SQL commands and to obtain/alter the information stored in the ... |
| 9.8 | 2021-05-20 | CVE-2021-27459 | cve | A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The webserver of the affected products allows unvalidated files to be uploaded, ... |
| 9.8 | 2021-05-20 | CVE-2021-20721 | cve | KonaWiki2 versions prior to 2.2.4 allows a remote attacker to upload arbitrary files via unspecified vectors. If the file contains PHP scripts, arbitrary code may be executed. |
| 9.8 | 2021-05-19 | CVE-2021-33204 | cve | In the pg_partman (aka PG Partition Manager) extension before 4.5.1 for PostgreSQL, arbitrary code execution can be achieved via SECURITY DEFINER functions because an explicit s... |
| 9.8 | 2021-05-19 | CVE-2017-17674 | cve | BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be targeted, the system can be vulnerable to attacks such ... |
| 9.1 | 2021-05-19 | CVE-2020-36364 | cve | An issue was discovered in Smartstore (aka SmartStoreNET) before 4.1.0. Administration/Controllers/ImportController.cs allows path traversal (for copy and delete actions) in the... |
| 9.8 | 2021-05-18 | CVE-2021-31324 | cve | The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerability leading to root Remote Code Execution. |
| 9.8 | 2021-05-18 | CVE-2021-31316 | cve | The unprivileged user portal part of CentOS Web Panel is affected by a SQL Injection via the 'idsession' HTTP POST parameter. |
| 9.8 | 2021-05-18 | CVE-2020-20951 | cve | In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when uploading files. |
| 9.8 | 2021-05-18 | CVE-2021-32305 | cve | WebSVN before 2.6.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search parameter. |
| 9.8 | 2021-05-18 | CVE-2020-18178 | cve | Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/aj... |
| 9.8 | 2021-05-17 | CVE-2021-27734 | cve | Hirschmann HiOS 07.1.01, 07.1.02, and 08.1.00 through 08.5.xx and HiSecOS 03.3.00 through 03.5.01 allow remote attackers to change the credentials of existing users. |
| 9.1 | 2021-05-17 | CVE-2020-4669 | cve | IBM Planning Analytics Local 2.0 connects to a MongoDB server. MongoDB, a document-oriented database system, is listening on the remote port, and it is configured to allow conne... |
| 9.1 | 2021-05-17 | CVE-2020-4670 | cve | IBM Planning Analytics Local 2.0 connects to a Redis server. The Redis server, an in-memory data structure store, running on the remote host is not protected by password authent... |
| 9.8 | 2021-05-17 | CVE-2021-24314 | cve | The Goto WordPress theme before 2.1 did not sanitise, validate of escape the keywords GET parameter from its listing page before using it in a SQL statement, leading to an Unaut... |
| 9.8 | 2021-05-16 | CVE-2021-22668 | cve | Delta Industrial Automation CNCSoft ScreenEditor Versions 1.01.28 (with ScreenEditor Version 1.01.2) and prior are vulnerable to an out-of-bounds read while processing project f... |
| 9.8 | 2021-05-14 | CVE-2020-18166 | cve | Unrestricted File Upload in LAOBANCMS v2.0 allows remote attackers to upload arbitrary files by attaching a file with a ".jpg.php" extension to the component "admin/wenjian.php?... |
| 9.8 | 2021-05-14 | CVE-2021-25941 | cve | Prototype pollution vulnerability in 'deep-override' versions 1.0.0 through 1.0.1 allows an attacker to cause a denial of service and may lead to remote code execution. |
| 9.8 | 2021-05-14 | CVE-2021-25943 | cve | Prototype pollution vulnerability in '101' versions 1.0.0 through 1.6.3 allows an attacker to cause a denial of service and may lead to remote code execution. |
| 9.1 | 2021-05-14 | CVE-2021-3402 | cve | An integer overflow and several buffer overflow reads in libyara/modules/macho/macho.c in YARA v4.0.3 and earlier could allow an attacker to either cause denial of service or in... |
| Page(s) : 1 ... 755 756 757 758 759 760 761 762 763 764 [765] 766 767 768 769 770 771 772 773 774 775 ... | Result(s) : 43529 |
