| Page(s) : 1 ... 768 769 770 771 772 773 774 775 776 777 [778] 779 780 781 782 783 784 785 786 787 788 ... | Result(s) : 43529 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2021-04-13 | CVE-2019-10881 | cve | Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded p... |
| 9.9 | 2021-04-13 | CVE-2021-27602 | cve | SAP Commerce, versions - 1808, 1811, 1905, 2005, 2011, Backoffice application allows certain authorized users to create source rules which are translated to drools rule when pub... |
| 9.9 | 2021-04-13 | CVE-2021-23280 | cve | Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated arbitrary file upload vulnerability. IPM’s maps_srv.js allows an attacker to upload a maliciou... |
| 9.8 | 2021-04-13 | CVE-2021-30176 | cve | The ZEROF Expert pro/2.0 application for mobile devices allows SQL Injection via the Authorization header to the /v2/devices/add endpoint. |
| 9.8 | 2021-04-13 | CVE-2021-30175 | cve | ZEROF Web Server 1.0 (April 2021) allows SQL Injection via the /HandleEvent endpoint for the login page. |
| 9.8 | 2021-04-13 | CVE-2021-22505 | cve | Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x, 12.10, 12.11, 12.12, 12.14 and 12.15. The vulnerability could be exploited to esc... |
| 9.8 | 2021-04-13 | CVE-2020-27235 | cve | An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the description parameter. An attacker can make an authenticated HTTP reque... |
| 10 | 2021-04-13 | CVE-2021-28480 | cve | Microsoft Exchange Server Remote Code Execution Vulnerability |
| 9.8 | 2021-04-13 | CVE-2021-0430 | cve | In rw_mfc_handle_read_op of rw_mfc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution via a malicious NFC packet... |
| 9.8 | 2021-04-13 | CVE-2021-29998 | cve | An issue was discovered in Wind River VxWorks before 6.5. There is a possible heap overflow in dhcp client. |
| 9.6 | 2021-04-12 | CVE-2021-24229 | cve | The Jetpack Scan team identified a Reflected Cross-Site Scripting via the patreon_save_attachment_patreon_level AJAX action of the Patreon WordPress plugin before 1.7.2. This AJ... |
| 9.8 | 2021-04-12 | CVE-2020-15390 | cve | pyActivity in Pega Platform 8.4.0.237 has a security misconfiguration that leads to an improper access control vulnerability via =GetWebInfo. |
| 9.8 | 2021-04-12 | CVE-2021-24222 | cve | The WP-Curriculo Vitae Free WordPress plugin through 6.3 suffers from an arbitrary file upload issue in page where the [formCadastro] is embed. The form allows unauthenticated u... |
| 9.8 | 2021-04-12 | CVE-2021-24223 | cve | The N5 Upload Form WordPress plugin through 1.0 suffers from an arbitrary file upload issue in page where a Form from the plugin is embed, as any file can be uploaded. The uploa... |
| 9.8 | 2021-04-12 | CVE-2021-23369 | cve | The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source. |
| 9.1 | 2021-04-12 | CVE-2021-24220 | cve | Thrive “Legacy” Rise by Thrive Themes WordPress theme before 2.0.0, Luxe by Thrive Themes WordPress theme before 2.0.0, Minus by Thrive Themes WordPress theme before 2.0.0, Igni... |
| 9.8 | 2021-04-12 | CVE-2021-24215 | cve | An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress plugin before 1.5.2. Uncontrolled access to the website customization functional... |
| 9.6 | 2021-04-12 | CVE-2021-24228 | cve | The Jetpack Scan team identified a Reflected Cross-Site Scripting in the Login Form of the Patreon WordPress plugin before 1.7.2. The WordPress login form (wp-login.php) is hook... |
| 9.8 | 2021-04-12 | CVE-2021-23370 | cve | This affects the package swiper before 6.5.1. |
| 9.8 | 2021-04-12 | CVE-2021-21524 | cve | Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially e... |
| Page(s) : 1 ... 768 769 770 771 772 773 774 775 776 777 [778] 779 780 781 782 783 784 785 786 787 788 ... | Result(s) : 43529 |
