| Page(s) : 1 ... 817 818 819 820 821 822 823 824 825 826 [827] 828 829 830 831 832 833 834 835 836 837 ... | Result(s) : 43543 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-12-07 | CVE-2020-29595 | cve | PlugIns\IDE_ACDStd.apl in ACDSee Photo Studio Studio Professional 2021 14.0 Build 1705 has a User Mode Write AV starting at IDE_ACDStd!JPEGTransW+0x00000000000031aa. |
| 9.8 | 2020-12-07 | CVE-2020-29600 | cve | In AWStats through 7.7, cgi-bin/awstats.pl?config= accepts an absolute pathname, even though it was intended to only read a file in the /etc/awstats/awstats.conf format. NOTE: t... |
| 9.8 | 2020-12-07 | CVE-2020-29597 | cve | IncomCMS 2.0 has a modules/uploader/showcase/script.php insecure file upload vulnerability. This vulnerability allows unauthenticated attackers to upload files into the server. |
| 9.8 | 2020-12-04 | CVE-2020-25462 | cve | Heap buffer overflow in the fxCheckArrowFunction function at moddable/xs/sources/xsSyntaxical.c:3562 in Moddable SDK before OS200903. |
| 9.8 | 2020-12-03 | CVE-2020-6017 | cve | Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long unreliable segments in function SNP_ReceiveUnreliableSegment() when configured to support pl... |
| 9.8 | 2020-12-03 | CVE-2020-2320 | cve | Jenkins Plugin Installation Manager Tool 2.1.3 and earlier does not verify plugin downloads. |
| 9.8 | 2020-12-02 | CVE-2020-29288 | cve | An SQL injection vulnerability was discovered in Gym Management System In manage_user.php file, GET parameter 'id' is vulnerable. |
| 9.8 | 2020-12-02 | CVE-2020-29279 | cve | PHP remote file inclusion in the assign_resume_tpl method in Application/Common/Controller/BaseController.class.php in 74CMS before 6.0.48 allows remote code execution. |
| 9.8 | 2020-12-02 | CVE-2020-28272 | cve | Prototype pollution vulnerability in 'keyget' versions 1.0.0 through 2.2.0 allows attacker to cause a denial of service and may lead to remote code execution. |
| 9.8 | 2020-12-02 | CVE-2020-29285 | cve | SQL injection vulnerability was discovered in Point of Sales in PHP/PDO 1.0, which can be exploited via the id parameter to edit_category.php. |
| 9.8 | 2020-12-02 | CVE-2020-29287 | cve | An SQL injection vulnerability was discovered in Car Rental Management System v1.0 can be exploited via the id parameter in view_car.php or the car_id parameter in booking.php. |
| 9.8 | 2020-12-02 | CVE-2020-6018 | cve | Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long encrypted messages in function AES_GCM_DecryptContext::Decrypt() when compiled using libsodi... |
| 9.8 | 2020-12-02 | CVE-2020-28273 | cve | Prototype pollution vulnerability in 'set-in' versions 1.0.0 through 2.0.0 allows attacker to cause a denial of service and may lead to remote code execution. |
| 10 | 2020-12-02 | CVE-2017-14451 | cve | An exploitable out-of-bounds read vulnerability exists in libevm (Ethereum Virtual Machine) of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds r... |
| 9.8 | 2020-12-02 | CVE-2020-29284 | cve | The file view-chair-list.php in Multi Restaurant Table Reservation System 1.0 does not perform input validation on the table_id parameter which allows unauthenticated SQL Inject... |
| 9.8 | 2020-12-02 | CVE-2020-29389 | cve | The official Crux Linux Docker images 3.0 through 3.4 contain a blank password for a root user. System using the Crux Linux Docker container deployed by affected versions of the... |
| 9.8 | 2020-12-02 | CVE-2020-29282 | cve | SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication. |
| 9.8 | 2020-12-02 | CVE-2020-29280 | cve | The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page. |
| 9.8 | 2020-12-02 | CVE-2020-7199 | cve | A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could b... |
| 9.8 | 2020-12-02 | CVE-2020-29283 | cve | An SQL injection vulnerability was discovered in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php. |
| Page(s) : 1 ... 817 818 819 820 821 822 823 824 825 826 [827] 828 829 830 831 832 833 834 835 836 837 ... | Result(s) : 43543 |
