| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 156586 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2021-01-20 | CVE-2020-4688 | cve | IBM Security Guardium 10.6 and 11.2 could allow a local attacker to execute arbitrary commands on the system as an unprivileged user, caused by command injection vulnerability. ... |
| N/A | 2021-01-20 | CVE-2020-35272 | cve | Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting (XSS) in the Admin Portal in the Task and Description fields. |
| N/A | 2021-01-20 | CVE-2020-35271 | cve | Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting (XSS) in the Employees, First Name and Last Name fields. |
| 7.1 | 2021-01-20 | CVE-2020-28483 | cve | This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For hea... |
| 6.3 | 2021-01-20 | CVE-2020-28452 | cve | This affects the package com.softwaremill.akka-http-session:core_2.12 from 0 and before 0.6.1; all versions of package com.softwaremill.akka-http-session:core_2.11; the package ... |
| N/A | 2021-01-20 | CVE-2020-25687 | cve | A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. ... |
| N/A | 2021-01-20 | CVE-2020-25686 | cve | A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By ... |
| N/A | 2021-01-20 | CVE-2020-25685 | cve | A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:reply_query(), which is the forwarded query that matche... |
| N/A | 2021-01-20 | CVE-2020-25684 | cve | A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:reply_query() if the reply destination address/port... |
| N/A | 2021-01-20 | CVE-2020-25683 | cve | A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. ... |
| N/A | 2021-01-20 | CVE-2020-25682 | cve | A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data... |
| N/A | 2021-01-20 | CVE-2020-25681 | cve | A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the ... |
| N/A | 2021-01-20 | CVE-2020-20949 | cve | Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library software expansion for STM32Cube (UM1924). The vulnerability can allow one t... |
| 9.8 | 2021-01-20 | CVE-2020-14756 | cve | Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core Components). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0,... |
| N/A | 2021-01-20 | CVE-2020-14360 | cve | A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest thre... |
| N/A | 2021-01-20 | CVE-2021-3110 | cve | The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter. |
| 6.3 | 2021-01-20 | CVE-2021-23326 | cve | This affects the package @graphql-tools/git-loader before 6.2.6. The use of exec and execSync in packages/loaders/git/src/load-git.ts allows arbitrary command injection. |
| N/A | 2021-01-20 | CVE-2020-35217 | cve | Vert.x-Web framework v4.0 milestone 1-4 does not perform a correct CSRF verification. Instead of comparing the CSRF token in the request with the CSRF token in the cookie, it co... |
| N/A | 2021-01-20 | CVE-2021-3137 | cve | XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section. |
| N/A | 2021-01-20 | CVE-2020-27852 | cve | A stored Cross-Site Scripting (XSS) vulnerability in the survey feature in Rocketgenius Gravity Forms before 2.4.21 allows remote attackers to inject arbitrary web script or HTM... |
| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 156586 |
