VYPR

CVEs

101,963 total · page 1286 of 2,040

  • CVE-2021-36690HigAug 24, 2021
    risk 0.49cvss 7.5epss 0.04

    A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges (e.g., is…

  • CVE-2021-39376HigAug 24, 2021
    risk 0.57cvss 8.8epss 0.01

    Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 allows SQL injection via the CorCad_F2/executaConsultaEspecifico IE_CORPO_ASSIST or CD_USUARIO_CONVENIO parameter.

  • CVE-2021-39375HigAug 24, 2021
    risk 0.57cvss 8.8epss 0.01

    Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 allows SQL injection via the WAdvancedFilter/getDimensionItemsByCode FilterValue parameter.

  • CVE-2021-38557HigAug 24, 2021
    risk 0.57cvss 8.8epss 0.02

    raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite…

  • CVE-2021-38556HigAug 24, 2021
    risk 0.58cvss 8.8epss 0.13

    includes/configure_client.php in RaspAP 2.6.6 allows attackers to execute commands via command injection.

  • CVE-2021-38612HigAug 24, 2021
    risk 0.49cvss 7.5epss 0.02

    In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL.

  • CVE-2021-23430HigAug 24, 2021
    risk 0.49cvss 7.5epss 0.02

    All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization.

  • CVE-2021-23406HigAug 24, 2021
    risk 0.46cvss 8.1epss 0.03

    This affects the package pac-resolver before 5.0.0. This can occur when used with untrusted input, due to unsafe PAC file handling. **NOTE:** The fix for this vulnerability is applied in the node-degenerator library, a dependency written by the same maintainer.

  • CVE-2021-28596HigAug 23, 2021
    risk 0.51cvss 7.8epss 0.02

    Adobe Framemaker version 2020.0.1 (and earlier) and 2019.0.8 (and earlier) are affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context…

  • CVE-2020-18771HigAug 23, 2021
    risk 0.53cvss 8.1epss 0.02

    Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmn_int.cpp which can result in an information leak.

  • CVE-2021-39608HigAug 23, 2021
    risk 0.53cvss 7.2epss 0.46

    Remote Code Execution (RCE) vulnerabilty exists in FlatCore-CMS 2.0.7 via the upload addon plugin, which could let a remote malicious user exeuct arbitrary php code.

  • CVE-2021-39158HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.01

    NVCaffe's python required dependencies list used to contain `gfortran`version prior to 0.17.4, entry which does not exist in the repository pypi.org. An attacker could potentially have posted malicious files to pypi.org causing a user to install it within NVCaffe.

  • CVE-2020-18735HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.02

    A heap buffer overflow in /src/dds_stream.c of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash.

  • CVE-2020-18734HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.02

    A stack buffer overflow in /ddsi/q_bitset.h of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash.

  • CVE-2020-18731HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    A segmentation violation in the Iec104_Deal_FirmUpdate function of IEC104 v1.0 allows attackers to cause a denial of service (DOS).

  • CVE-2020-18730HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    A segmentation violation in the Iec104_Deal_I function of IEC104 v1.0 allows attackers to cause a denial of service (DOS).

  • CVE-2021-22449HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    There is a logic vulnerability in Elf-G10HN 1.0.0.608. An unauthenticated attacker could perform specific operations to exploit this vulnerability. Due to insufficient security design, successful exploit could allow an attacker to add users to be friends without prompting in the…

  • CVE-2021-22357HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages due to validating inputs insufficiently. Attackers can exploit this vulnerability by sending specific messages to affected module. This can cause denial of service.…

  • CVE-2021-22328HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft the specific packet. Successful exploit may cause some services abnormal. Affected product versions include:CloudEngine…

  • CVE-2021-39152HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.11

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to request data from internal resources that are not publicly available only by manipulating the processed input stream with a Java runtime…

  • CVE-2021-39150HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.03

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to request data from internal resources that are not publicly available only by manipulating the processed input stream with a Java runtime…

  • CVE-2021-39154HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.05

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39153HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.04

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream, if using the version out of the box…

  • CVE-2021-39151HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.05

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39149HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.05

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39148HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.05

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39147HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.05

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39146HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.14

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39145HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.04

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39144HigKEVAug 23, 2021
    risk 0.78cvss 8.5epss 0.98

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39141HigAug 23, 2021
    risk 0.57cvss 8.5epss 0.16

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed…

  • CVE-2021-39139HigAug 23, 2021
    risk 0.56cvss 8.5epss 0.05

    XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. A user is only affected if using the…

  • CVE-2021-29802HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    IBM Security SOAR performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

  • CVE-2021-29704HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    IBM Security SOAR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

  • CVE-2021-3694HigAug 23, 2021
    risk 0.00cvss 8.2epss 0.02

    LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

  • CVE-2021-3693HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.03

    LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

  • CVE-2021-24602HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.02

    The HM Multiple Roles WordPress plugin before 1.3 does not have any access control to prevent low privilege users to set themselves as admin via their profile page

  • CVE-2021-24565HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.01

    The Contact Form 7 Captcha WordPress plugin before 0.0.9 does not have any CSRF check in place when saving its settings, allowing attacker to make a logged in user with the manage_options change them. Furthermore, the settings are not escaped when output in attributes, leading…

  • CVE-2021-24562HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.02

    The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was affected by an IDOR issue, allowing students to see other student answers and grades

  • CVE-2021-24557HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The update functionality in the rslider_page uses an rs_id POST parameter which is not validated, sanitised or escaped before being inserted in sql query, therefore leading to SQL injection for users having Administrator role.

  • CVE-2021-24555HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.01

    The daac_delete_booking_callback function, hooked to the daac_delete_booking AJAX action, takes the id POST parameter which is passed into the SQL statement without proper sanitisation, validation or escaping, leading to a SQL Injection issue. Furthermore, the ajax action is…

  • CVE-2021-24554HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.06

    The Paytm – Donation Plugin WordPress plugin through 1.3.2 does not sanitise, validate or escape the id GET parameter before using it in a SQL statement when deleting donations, leading to an authenticated SQL injection issue

  • CVE-2021-24553HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The Timeline Calendar WordPress plugin through 1.2 does not sanitise, validate or escape the edit GET parameter before using it in a SQL statement when editing events, leading to an authenticated SQL injection issue. Other SQL Injections are also present in the plugin

  • CVE-2021-24552HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The Simple Events Calendar WordPress plugin through 1.4.0 does not sanitise, validate or escape the event_id POST parameter before using it in a SQL statement when deleting events, leading to an authenticated SQL injection issue

  • CVE-2021-24550HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise, validate or escape the url GET parameter before using it in a SQL statement when retrieving an URL to edit, leading to an authenticated SQL injection issue

  • CVE-2021-24506HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.01

    The Slider Hero with Animation, Video Background & Intro Maker WordPress plugin before 8.2.7 does not sanitise or escape the id attribute of its hero-button shortcode before using it in a SQL statement, allowing users with a role as low as Contributor to perform SQL injection.

  • CVE-2021-24497HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.01

    The Giveaway WordPress plugin through 1.2.2 is vulnerable to an SQL Injection issue which allows an administrative user to execute arbitrary SQL commands via the $post_id on the options.php page.

  • CVE-2021-35940HigAug 23, 2021
    risk 0.46cvss 7.1epss 0.01

    An out-of-bounds array read in the apr_time_exp*() functions was fixed in the Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to…

  • CVE-2021-39291HigAug 23, 2021
    risk 0.57cvss 8.8epss 0.01

    Certain NetModule devices allow credentials via GET parameters to CLI-PHP. These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and…

  • CVE-2021-39289HigAug 23, 2021
    risk 0.49cvss 7.5epss 0.01

    Certain NetModule devices have Insecure Password Handling (cleartext or reversible encryption), These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710,…