Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... Result(s) : 156586

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2021-01-20 CVE-2020-4688 cve IBM Security Guardium 10.6 and 11.2 could allow a local attacker to execute arbitrary commands on the system as an unprivileged user, caused by command injection vulnerability. ...
N/A 2021-01-20 CVE-2020-35272 cve Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting (XSS) in the Admin Portal in the Task and Description fields.
N/A 2021-01-20 CVE-2020-35271 cve Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting (XSS) in the Employees, First Name and Last Name fields.
7.1 2021-01-20 CVE-2020-28483 cve This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For hea...
6.3 2021-01-20 CVE-2020-28452 cve This affects the package com.softwaremill.akka-http-session:core_2.12 from 0 and before 0.6.1; all versions of package com.softwaremill.akka-http-session:core_2.11; the package ...
N/A 2021-01-20 CVE-2020-25687 cve A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. ...
N/A 2021-01-20 CVE-2020-25686 cve A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By ...
N/A 2021-01-20 CVE-2020-25685 cve A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:reply_query(), which is the forwarded query that matche...
N/A 2021-01-20 CVE-2020-25684 cve A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:reply_query() if the reply destination address/port...
N/A 2021-01-20 CVE-2020-25683 cve A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. ...
N/A 2021-01-20 CVE-2020-25682 cve A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data...
N/A 2021-01-20 CVE-2020-25681 cve A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the ...
N/A 2021-01-20 CVE-2020-20949 cve Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library software expansion for STM32Cube (UM1924). The vulnerability can allow one t...
9.8 2021-01-20 CVE-2020-14756 cve Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core Components). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0,...
N/A 2021-01-20 CVE-2020-14360 cve A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest thre...
N/A 2021-01-20 CVE-2021-3110 cve The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter.
6.3 2021-01-20 CVE-2021-23326 cve This affects the package @graphql-tools/git-loader before 6.2.6. The use of exec and execSync in packages/loaders/git/src/load-git.ts allows arbitrary command injection.
N/A 2021-01-20 CVE-2020-35217 cve Vert.x-Web framework v4.0 milestone 1-4 does not perform a correct CSRF verification. Instead of comparing the CSRF token in the request with the CSRF token in the cookie, it co...
N/A 2021-01-20 CVE-2021-3137 cve XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section.
N/A 2021-01-20 CVE-2020-27852 cve A stored Cross-Site Scripting (XSS) vulnerability in the survey feature in Rocketgenius Gravity Forms before 2.4.21 allows remote attackers to inject arbitrary web script or HTM...
Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... Result(s) : 156586