Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... Result(s) : 161476

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
4.3 2021-04-15 CVE-2021-30477 cve An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to messages sent by outgoing webhooks to private streams meant that an outgoing webhoo...
N/A 2021-04-15 CVE-2021-26076 cve The jira.editor.user.mode cookie set by the Jira Editor Plugin in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8...
N/A 2021-04-15 CVE-2021-26075 cve The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 befor...
N/A 2021-04-15 CVE-2020-36288 cve The issue navigation and search view in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8.15....
N/A 2021-04-14 CVE-2021-29449 cve Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Multiple privilege escalation vulnerabilities were discovered in version 5.2.4 of Pi-ho...
N/A 2021-04-14 CVE-2021-28157 cve An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a user...
N/A 2021-04-14 CVE-2021-28048 cve An overly permissive CORS policy in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows a remote attacker to leak cross-origin data via a crafted...
N/A 2021-04-14 CVE-2021-27183 cve An issue was discovered in MDaemon before 20.0.4. Administrators can use Remote Administration to exploit an Arbitrary File Write vulnerability. An attacker is able to create ne...
N/A 2021-04-14 CVE-2021-27182 cve An issue was discovered in MDaemon before 20.0.4. There is an IFRAME injection vulnerability in Webmail (aka WorldClient). It can be exploited via an email message. It allows an...
N/A 2021-04-14 CVE-2021-27181 cve An issue was discovered in MDaemon before 20.0.4. Remote Administration allows an attacker to perform a fixation of the anti-CSRF token. In order to exploit this issue, the user...
N/A 2021-04-14 CVE-2021-27180 cve An issue was discovered in MDaemon before 20.0.4. There is Reflected XSS in Webmail (aka WorldClient). It can be exploited via a GET request. It allows performing any action wit...
N/A 2021-04-14 CVE-2021-30459 cve A SQL Injection issue in the SQL Panel in Jazzband Django Debug Toolbar before 1.11.1, 2.x before 2.2.1, and 3.x before 3.2.1 allows attackers to execute SQL statements by chang...
N/A 2021-04-14 CVE-2021-3017 cve The web interface on Intelbras WIN 300 and WRN 342 devices through 2021-01-04 allows remote attackers to discover credentials by reading the def_wirelesspassword line in the HTM...
N/A 2021-04-14 CVE-2021-29654 cve AjaxSearchPro before 4.20.8 allows Deserialization of Untrusted Data (in the import database feature of the administration panel), leading to Remote Code execution.
N/A 2021-04-14 CVE-2021-28484 cve An issue was discovered in the /api/connector endpoint handler in Yubico yubihsm-connector before 3.0.1 (in YubiHSM SDK before 2021.04). The handler did not validate the length ...
N/A 2021-04-14 CVE-2021-27710 cve Command Injection in TOTOLINK X5000R router with firmware v9.1.0u.6118_B20201102, and TOTOLINK A720R router with firmware v4.1.5cu.470_B20200911 allows remote attackers to execu...
N/A 2021-04-14 CVE-2021-26031 cve An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate filters on module layout settings could lead to an LFI.
N/A 2021-04-14 CVE-2021-26030 cve An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page
5.4 2021-04-14 CVE-2020-35660 cve Cross Site Scripting (XSS) in Monica before 2.19.1 via the journal page.
5.4 2021-04-14 CVE-2020-28124 cve Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field.
Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... Result(s) : 161476