| Page(s) : 1 ... 894 895 896 897 898 899 900 901 902 903 [904] 905 906 907 908 909 910 911 912 913 914 ... | Result(s) : 43549 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.1 | 2020-04-16 | CVE-2019-10622 | cve | Out of bound memory access can happen while parsing ADSP message due to lack of check of size of payload received from userspace in Snapdragon Auto, Snapdragon Compute, Snapdrag... |
| 9.8 | 2020-04-16 | CVE-2020-11815 | cve | In Rukovoditel 2.5.2, attackers can upload arbitrary file to the server by just changing the content-type value. As a result of that, an attacker can execute a command on the se... |
| 9.8 | 2020-04-16 | CVE-2020-11816 | cve | Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the reports_id (POST) parameter. |
| 9.8 | 2020-04-16 | CVE-2020-11819 | cve | In Rukovoditel 2.5.2, an attacker may inject an arbitrary .php file location instead of a language file and thus achieve command execution. |
| 9.8 | 2020-04-16 | CVE-2020-11820 | cve | Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the entities_id parameter. |
| 9.1 | 2020-04-16 | CVE-2020-3652 | cve | Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon C... |
| 9.1 | 2020-04-16 | CVE-2020-3653 | cve | Possible buffer over-read in windows wlan driver function due to lack of check of length of variable received from userspace in Snapdragon Compute, Snapdragon Connectivity in MS... |
| 9.8 | 2020-04-15 | CVE-2020-10505 | cve | The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of SQL Injection, an attacker can use a union based injection query strin... |
| 9.8 | 2020-04-15 | CVE-2020-10507 | cve | The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of Unrestricted file upload (RCE) , that would allow attackers to gain ac... |
| 9.8 | 2020-04-15 | CVE-2020-10511 | cve | HGiga C&Cmail CCMAILQ before olln-base-6.0-418.i386.rpm and CCMAILN before olln-base-5.0-418.i386.rpm contains insecure configurations. Attackers can exploit these flaws to acce... |
| 9.8 | 2020-04-15 | CVE-2019-20646 | cve | NETGEAR RAX40 devices before 1.0.3.64 are affected by disclosure of administrative credentials. |
| 9.8 | 2020-04-15 | CVE-2019-20679 | cve | NETGEAR MR1100 devices before 12.06.08.00 are affected by lack of access control at the function level. |
| 9.8 | 2020-04-15 | CVE-2020-2801 | cve | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 an... |
| 9.8 | 2020-04-15 | CVE-2020-11789 | cve | Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects R6400v2 before 1.0.4.84, R6700 before 1.0.2.8, R6700v3 before 1.0.4.84, R6... |
| 9.8 | 2020-04-15 | CVE-2020-11729 | cve | An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60. Long-term session cookies, uses to provide long-term session continuity, are not generated sec... |
| 9.8 | 2020-04-15 | CVE-2020-11658 | cve | CA API Developer Portal 4.3.1 and earlier handles shared secret keys in an insecure manner, which allows attackers to bypass authorization. |
| 9.8 | 2020-04-15 | CVE-2020-11537 | cve | A SQL Injection issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can execute arbitrary SQL queries via injection to DocID parameter of Websocket API. |
| 9.8 | 2020-04-15 | CVE-2020-2884 | cve | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 an... |
| 9.8 | 2020-04-15 | CVE-2020-2883 | cve | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 an... |
| 9.8 | 2020-04-15 | CVE-2020-2733 | cve | Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Monitoring and Diagnostics). The supported version that is affected is 9.2. Easily e... |
| Page(s) : 1 ... 894 895 896 897 898 899 900 901 902 903 [904] 905 906 907 908 909 910 911 912 913 914 ... | Result(s) : 43549 |
