| Page(s) : 1 ... 867 868 869 870 871 872 873 874 875 876 [877] 878 879 880 881 882 883 884 885 886 887 ... | Result(s) : 43550 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-07-03 | CVE-2020-10282 | cve | The Micro Air Vehicle Link (MAVLink) protocol presents no authentication mechanism on its version 1.0 (nor authorization) whichs leads to a variety of attacks including identity... |
| 9.8 | 2020-07-02 | CVE-2020-7821 | cve | Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version contain a vulnerability that could allow remote attacker to execute arbitrary code by modifying the value of registry... |
| 9.8 | 2020-07-02 | CVE-2020-14092 | cve | The CodePeople Payment Form for PayPal Pro plugin before 1.1.65 for WordPress allows SQL Injection. |
| 9.8 | 2020-07-02 | CVE-2020-3297 | cve | A vulnerability in session management for the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to defeat au... |
| 9.8 | 2020-07-02 | CVE-2020-4074 | cve | In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, the authentication system is malformed and an attacker is able to forge requests and execute admin commands. The p... |
| 9.8 | 2020-07-02 | CVE-2020-7820 | cve | Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version contain a vulnerability that could allow remote attacker to execute arbitrary code by setting the arguments to the vu... |
| 9.8 | 2020-07-01 | CVE-2019-15311 | cve | An issue was discovered on Zolo Halo devices via the Linkplay firmware. There is Zolo Halo LAN remote code execution. The Zolo Halo Bluetooth speaker had a GoAhead web server li... |
| 9.8 | 2020-07-01 | CVE-2020-15474 | cve | In nDPI through 3.2, there is a stack overflow in extractRDNSequence in lib/protocols/tls.c. |
| 9.1 | 2020-07-01 | CVE-2020-15471 | cve | In nDPI through 3.2, the packet parsing code is vulnerable to a heap-based buffer over-read in ndpi_parse_packet_line_info in lib/ndpi_main.c. |
| 9.1 | 2020-07-01 | CVE-2020-15473 | cve | In nDPI through 3.2, the OpenVPN dissector is vulnerable to a heap-based buffer over-read in ndpi_search_openvpn in lib/protocols/openvpn.c. |
| 9.8 | 2020-07-01 | CVE-2020-15490 | cve | An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple buffer overflow vulnerabilities exist in CGI scripts, leading to remote code execution with ... |
| 9.8 | 2020-07-01 | CVE-2020-14056 | cve | Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read ... |
| 9.1 | 2020-07-01 | CVE-2020-15472 | cve | In nDPI through 3.2, the H.323 dissector is vulnerable to a heap-based buffer over-read in ndpi_search_h323 in lib/protocols/h323.c, as demonstrated by a payload packet length t... |
| 9.8 | 2020-07-01 | CVE-2020-15468 | cve | Persian VIP Download Script 1.0 allows SQL Injection via the cart_edit.php active parameter. |
| 9.8 | 2020-07-01 | CVE-2019-15310 | cve | An issue was discovered on various devices via the Linkplay firmware. There is WAN remote code execution without user interaction. An attacker could retrieve the AWS key from th... |
| 9.8 | 2020-07-01 | CVE-2020-14057 | cve | Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to... |
| 9.6 | 2020-07-01 | CVE-2020-5901 | cve | In NGINX Controller 3.3.0-3.4.0, undisclosed API endpoints may allow for a reflected Cross Site Scripting (XSS) attack. If the victim user is logged in as admin this could resul... |
| 9.8 | 2020-07-01 | CVE-2020-15489 | cve | An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple shell metacharacter injection vulnerabilities exist in CGI scripts, leading to remote code e... |
| 9.8 | 2020-07-01 | CVE-2020-15475 | cve | In nDPI through 3.2, ndpi_reset_packet_line_info in lib/ndpi_main.c omits certain reinitialization, leading to a use-after-free. |
| 9.8 | 2020-07-01 | CVE-2020-5902 | cve | In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the... |
| Page(s) : 1 ... 867 868 869 870 871 872 873 874 875 876 [877] 878 879 880 881 882 883 884 885 886 887 ... | Result(s) : 43550 |
