| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 161476 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2021-04-15 | CVE-2021-30477 | cve | An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to messages sent by outgoing webhooks to private streams meant that an outgoing webhoo... |
| N/A | 2021-04-15 | CVE-2021-26076 | cve | The jira.editor.user.mode cookie set by the Jira Editor Plugin in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8... |
| N/A | 2021-04-15 | CVE-2021-26075 | cve | The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 befor... |
| N/A | 2021-04-15 | CVE-2020-36288 | cve | The issue navigation and search view in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8.15.... |
| N/A | 2021-04-14 | CVE-2021-29449 | cve | Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Multiple privilege escalation vulnerabilities were discovered in version 5.2.4 of Pi-ho... |
| N/A | 2021-04-14 | CVE-2021-28157 | cve | An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a user... |
| N/A | 2021-04-14 | CVE-2021-28048 | cve | An overly permissive CORS policy in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows a remote attacker to leak cross-origin data via a crafted... |
| N/A | 2021-04-14 | CVE-2021-27183 | cve | An issue was discovered in MDaemon before 20.0.4. Administrators can use Remote Administration to exploit an Arbitrary File Write vulnerability. An attacker is able to create ne... |
| N/A | 2021-04-14 | CVE-2021-27182 | cve | An issue was discovered in MDaemon before 20.0.4. There is an IFRAME injection vulnerability in Webmail (aka WorldClient). It can be exploited via an email message. It allows an... |
| N/A | 2021-04-14 | CVE-2021-27181 | cve | An issue was discovered in MDaemon before 20.0.4. Remote Administration allows an attacker to perform a fixation of the anti-CSRF token. In order to exploit this issue, the user... |
| N/A | 2021-04-14 | CVE-2021-27180 | cve | An issue was discovered in MDaemon before 20.0.4. There is Reflected XSS in Webmail (aka WorldClient). It can be exploited via a GET request. It allows performing any action wit... |
| N/A | 2021-04-14 | CVE-2021-30459 | cve | A SQL Injection issue in the SQL Panel in Jazzband Django Debug Toolbar before 1.11.1, 2.x before 2.2.1, and 3.x before 3.2.1 allows attackers to execute SQL statements by chang... |
| N/A | 2021-04-14 | CVE-2021-3017 | cve | The web interface on Intelbras WIN 300 and WRN 342 devices through 2021-01-04 allows remote attackers to discover credentials by reading the def_wirelesspassword line in the HTM... |
| N/A | 2021-04-14 | CVE-2021-29654 | cve | AjaxSearchPro before 4.20.8 allows Deserialization of Untrusted Data (in the import database feature of the administration panel), leading to Remote Code execution. |
| N/A | 2021-04-14 | CVE-2021-28484 | cve | An issue was discovered in the /api/connector endpoint handler in Yubico yubihsm-connector before 3.0.1 (in YubiHSM SDK before 2021.04). The handler did not validate the length ... |
| N/A | 2021-04-14 | CVE-2021-27710 | cve | Command Injection in TOTOLINK X5000R router with firmware v9.1.0u.6118_B20201102, and TOTOLINK A720R router with firmware v4.1.5cu.470_B20200911 allows remote attackers to execu... |
| N/A | 2021-04-14 | CVE-2021-26031 | cve | An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate filters on module layout settings could lead to an LFI. |
| N/A | 2021-04-14 | CVE-2021-26030 | cve | An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page |
| 5.4 | 2021-04-14 | CVE-2020-35660 | cve | Cross Site Scripting (XSS) in Monica before 2.19.1 via the journal page. |
| 5.4 | 2021-04-14 | CVE-2020-28124 | cve | Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field. |
| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 161476 |
