| Page(s) : 1 ... 790 791 792 793 794 795 796 797 798 799 [800] 801 802 803 804 805 806 807 808 809 810 ... | Result(s) : 43532 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.6 | 2021-02-09 | CVE-2021-21142 | cve | Use after free in Payments in Google Chrome on Mac prior to 88.0.4324.146 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
| 9.8 | 2021-02-09 | CVE-2020-15798 | cve | A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Updat... |
| 9.6 | 2021-02-09 | CVE-2021-21132 | cve | Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted Chrome Extension. |
| 9.6 | 2021-02-09 | CVE-2021-21124 | cve | Potential user after free in Speech Recognizer in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted ... |
| 9.6 | 2021-02-09 | CVE-2021-21121 | cve | Use after free in Omnibox in Google Chrome on Linux prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
| 9.8 | 2021-02-08 | CVE-2021-26754 | cve | wpDataTables before 3.4.1 mishandles order direction for server-side tables, aka admin-ajax.php?action=get_wdtable order[0][dir] SQL injection. |
| 9.8 | 2021-02-08 | CVE-2020-11920 | cve | An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. A command injection vulnerability resides in the HOST/IP section of the NFS settings menu in the webser... |
| 9.8 | 2021-02-08 | CVE-2020-26051 | cve | College Management System Php 1.0 suffers from SQL injection vulnerabilities in the index.php page from POST parameters 'unametxt' and 'pwdtxt', which are no... |
| 9.8 | 2021-02-08 | CVE-2020-16629 | cve | PhpOK 5.4.137 contains a SQL injection vulnerability that can inject an attachment data through SQL, and then call the attachment replacement function through api.php to write a... |
| 9.8 | 2021-02-08 | CVE-2020-6649 | cve | An insufficient session expiration vulnerability in FortiNet's FortiIsolator version 2.0.1 and below may allow an attacker to reuse the unexpired admin user session IDs to ... |
| 9.8 | 2021-02-08 | CVE-2021-21304 | cve | Dynamoose is an open-source modeling tool for Amazon's DynamoDB. In Dynamoose from version 2.0.0 and before version 2.7.0 there was a prototype pollution vulnerability in t... |
| 9.8 | 2021-02-08 | CVE-2021-26541 | cve | The gitlog function in src/index.ts in gitlog before 4.0.4 has a command injection vulnerability. |
| 9.8 | 2021-02-08 | CVE-2021-22502 | cve | Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. The vulnerability could be exploited to allow Remote Code Ex... |
| 9.8 | 2021-02-08 | CVE-2021-25913 | cve | Prototype pollution vulnerability in 'set-or-get' version 1.0.0 through 1.2.10 allows an attacker to cause a denial of service and may lead to remote code execution. |
| 9.1 | 2021-02-08 | CVE-2021-26528 | cve | The mg_http_serve_file function in Cesanta Mongoose HTTP server 7.0 is vulnerable to remote OOB write attack via connection request after exhausting memory pool. |
| 9.1 | 2021-02-08 | CVE-2021-26529 | cve | The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 and 6.7-6.18 (compiled with mbedTLS support) is vulnerable to remote OOB write attack via connection request after ... |
| 9.1 | 2021-02-08 | CVE-2021-26530 | cve | The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 (compiled with OpenSSL support) is vulnerable to remote OOB write attack via connection request after exhausting me... |
| 9.8 | 2021-02-07 | CVE-2021-3122 | cve | CMCAgent in NCR Command Center Agent 16.3 on Aloha POS/BOH servers permits the submission of a runCommand parameter (within an XML document sent to port 8089) that enables the r... |
| 9.1 | 2021-02-07 | CVE-2020-36242 | cve | In the cryptography package before 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer ov... |
| 9.8 | 2021-02-05 | CVE-2020-18716 | cve | SQL Injection in Rockoa v1.8.7 allows remote attackers to gain privileges due to loose filtering of parameters in wordAction.php. |
| Page(s) : 1 ... 790 791 792 793 794 795 796 797 798 799 [800] 801 802 803 804 805 806 807 808 809 810 ... | Result(s) : 43532 |
