VYPR

CVEs

101,963 total · page 1299 of 2,040

  • CVE-2021-22381HigAug 2, 2021
    risk 0.49cvss 7.5epss 0.01

    There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause an infinite loop in DoS.

  • CVE-2021-22379HigAug 2, 2021
    risk 0.49cvss 7.5epss 0.01

    There is an Integer Underflow (Wrap or Wraparound) Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause DoS of Samgr.

  • CVE-2021-29757HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.00

    IBM QRadar User Behavior Analytics 4.1.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 202168.

  • CVE-2021-29741HigAug 2, 2021
    risk 0.51cvss 7.8epss 0.00

    IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478.

  • CVE-2021-37840HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.02

    aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking (CSWH) involving OS commands within WebSocket messages at a ws:// URL for /webssh (the victim must have configured Terminal with at least one host). Successful exploitation depends on the browser used by a potential…

  • CVE-2021-37166HigAug 2, 2021
    risk 0.49cvss 7.5epss 0.02

    A buffer overflow issue leading to denial of service was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When HMI3 starts up, it binds a local service to a TCP port on all interfaces of…

  • CVE-2021-34575HigAug 2, 2021
    risk 0.49cvss 7.5epss 0.01

    In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

  • CVE-2021-33526HigAug 2, 2021
    risk 0.51cvss 7.8epss 0.00

    In MB connect line mbDIALUP versions <= 3.9R0.0 a low privileged local attacker can send a command to the service running with NT AUTHORITY\SYSTEM instructing it to execute a malicous OpenVPN configuration resulting in arbitrary code execution with the privileges of the service.

  • CVE-2021-24492HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.02

    The hndtst_action_instance_callback AJAX call of the Handsome Testimonials & Reviews WordPress plugin before 2.1.1, available to any authenticated users, does not sanitise, validate or escape the hndtst_previewShortcodeInstanceId POST parameter before using it in a SQL…

  • CVE-2021-24484HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.01

    The get_reports() function in the Secure Copy Content Protection and Content Locking WordPress plugin before 2.6.7 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in…

  • CVE-2021-24483HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.01

    The get_poll_categories(), get_polls() and get_reports() functions in the Poll Maker WordPress plugin before 3.2.1 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in…

  • CVE-2021-24463HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_sliders() function in the Image Slider by Ays- Responsive Slider and Carousel WordPress plugin before 2.5.0 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in…

  • CVE-2021-24462HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays – Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls,…

  • CVE-2021-24461HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_faqs() function in the FAQ Builder AYS WordPress plugin before 1.3.6 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard

  • CVE-2021-24460HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_fb_likeboxes() function in the Popup Like box – Page Plugin WordPress plugin before 3.5.3 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin…

  • CVE-2021-24459HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_results() and get_items() functions in the Survey Maker WordPress plugin before 1.5.6 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard

  • CVE-2021-24458HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_ays_popupboxes() and get_popup_categories() functions of the Popup box WordPress plugin before 2.3.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the…

  • CVE-2021-24457HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.01

    The get_portfolios() and get_portfolio_attributes() functions in the class-portfolio-responsive-gallery-list-table.php and class-portfolio-responsive-gallery-attributes-list-table.php files of the Portfolio Responsive Gallery WordPress plugin before 1.1.8 did not use whitelist…

  • CVE-2021-24456HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.01

    The Quiz Maker WordPress plugin before 6.2.0.9 did not properly sanitise and escape the order and orderby parameters before using them in SQL statements, leading to SQL injection issues in the admin dashboard

  • CVE-2021-24430HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.02

    The Speed Booster Pack ⚡ PageSpeed Optimization Suite WordPress plugin before 4.2.0 did not validate its caching_exclude_urls and caching_include_query_strings settings before outputting them in a PHP file, which could lead to RCE

  • CVE-2017-18113HigAug 2, 2021
    risk 0.57cvss 8.8epss 0.02

    The DefaultOSWorkflowConfigurator class in Jira Server and Jira Data Center before version 8.18.1 allows remote attackers who can trick a system administrator to import their malicious workflow to execute arbitrary code via a Remote Code Execution (RCE) vulnerability. The…

  • CVE-2021-32066HigAug 1, 2021
    risk 0.00cvss 7.4epss 0.03

    An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network…

  • CVE-2020-26806HigJul 31, 2021
    risk 0.58cvss 8.8epss 0.06

    admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload of executable JSP files, resulting in remote code execution, because filePath can have directory traversal and fileContent can be valid JSP code.

  • CVE-2020-26565HigJul 31, 2021
    risk 0.49cvss 7.5epss 0.02

    ObjectPlanet Opinio before 7.14 allows Expression Language Injection via the admin/permissionList.do from parameter. This can be used to retrieve possibly sensitive serverInfo data.

  • CVE-2021-27495HigJul 30, 2021
    risk 0.46cvss 7.1epss 0.01

    Ypsomed mylife Cloud, mylife Mobile Application:Ypsomed mylife Cloud,All versions prior to 1.7.2,Ypsomed mylife App,All versions prior to 1.7.5,he Ypsomed mylife Cloud reflects the user password during the login process after redirecting the user from a HTTPS endpoint to a HTTP…

  • CVE-2021-27491HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.01

    Ypsomed mylife Cloud, mylife Mobile Application:Ypsomed mylife Cloud,All versions prior to 1.7.2,Ypsomed mylife App,All versions prior to 1.7.5,The Ypsomed mylife Cloud discloses password hashes during the registration process.

  • CVE-2021-35193HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.01

    Patterson Application Service in Patterson Eaglesoft 18 through 21 accepts the same certificate authentication across different customers' installations (that have the same software version). This provides remote access to SQL database credentials. (In the normal use of the…

  • CVE-2021-37601HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.02

    muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive information (list of admins, members, owners, and banned entities of a Multi-User chat room) in some common configurations.

  • CVE-2021-36983HigJul 30, 2021
    risk 0.51cvss 7.8epss 0.00

    replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local attacker to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.

  • CVE-2021-36766HigJul 30, 2021
    risk 0.47cvss 7.2epss 0.04

    Concrete5 through 8.5.5 deserializes Untrusted Data. The vulnerable code is located within the controllers/single_page/dashboard/system/environment/logging.php Logging::update_logging() method. User input passed through the logFile request parameter is not properly sanitized…

  • CVE-2021-36754HigJul 30, 2021
    risk 0.54cvss 7.5epss 0.65

    PowerDNS Authoritative Server 4.5.0 before 4.5.1 allows anybody to crash the process by sending a specific query (QTYPE 65535) that causes an out-of-bounds exception.

  • CVE-2021-36621HigJul 30, 2021
    risk 0.53cvss 8.1epss 0.02

    Sourcecodester Online Covid Vaccination Scheduler System 1.0 is vulnerable to SQL Injection. The username parameter is vulnerable to time-based SQL injection. Upon successful dumping the admin password hash, an attacker can decrypt and obtain the plain-text password. Hence, the…

  • CVE-2021-36386HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.03

    report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the vsnprintf va_list argument, which might allow mail servers to cause a denial of service or possibly have unspecified other impact via long error messages. NOTE: it is unclear whether use…

  • CVE-2021-36004HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.02

    Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability in the CoolType library. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue…

  • CVE-2021-35472HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in LemonLDAP::NG before 2.0.12. Session cache corruption can lead to authorization bypass or spoofing. By running a loop that makes many authentication attempts, an attacker might alternately be authenticated as one of two different users.

  • CVE-2021-34802HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.01

    A failure in resetting the security context in some transaction actions in Neo4j Graph Database 4.2 and 4.3 could allow authenticated users to execute commands with elevated privileges.

  • CVE-2021-32610HigJul 30, 2021
    risk 0.45cvss 7.1epss 0.73

    In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.

  • CVE-2021-32558HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.09

    An issue was discovered in Sangoma Asterisk 13.x before 13.38.3, 16.x before 16.19.1, 17.x before 17.9.4, and 18.x before 18.5.1, and Certified Asterisk before 16.8-cert10. If the IAX2 channel driver receives a packet that contains an unsupported media format, a crash can occur.

  • CVE-2021-31799HigJul 30, 2021
    risk 0.39cvss 7.0epss 0.01

    In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.

  • CVE-2021-28966HigJul 30, 2021
    risk 0.46cvss 7.5epss 0.58

    In Ruby through 3.0 on Windows, a remote attacker can submit a crafted path when a Web application handles a parameter with TmpDir.

  • CVE-2021-20783HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Cross-site request forgery (CSRF) vulnerability in Optical BB unit E-WMTA2.3 allows a remote attacker to hijack the authentication of administrators via a specially crafted page.

  • CVE-2021-20114HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.06

    When installed following the default/recommended settings, TCExam <= 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory, which included sensitive database backup files.

  • CVE-2020-22761HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php.

  • CVE-2020-20698HigJul 30, 2021
    risk 0.47cvss 7.2epss 0.02

    A remote code execution (RCE) vulnerability in /1.com.php of S-CMS PHP v3.0 allows attackers to getshell via modification of a PHP file.

  • CVE-2020-18157HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Cross Site Request Forgery (CSRF) vulnerability in MetInfo 6.1.3 via a doaddsave action in admin/index.php.

  • CVE-2020-16839HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.01

    On Crestron DM-NVX-DIR, DM-NVX-DIR80, and DM-NVX-ENT devices before the DM-XIO/1-0-3-802 patch, the password can be changed by sending an unauthenticated WebSocket request.

  • CVE-2020-14999HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.01

    A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and before 12.5.23094 allowed to bypass Windows memory protection and access sensitive data.

  • CVE-2020-11511HigJul 30, 2021
    risk 0.53cvss 8.1epss 0.03

    The LearnPress plugin before 3.2.6.9 for WordPress allows remote attackers to escalate the privileges of any user to LP Instructor via the accept-to-be-teacher action parameter.

  • CVE-2020-10590HigJul 30, 2021
    risk 0.49cvss 7.5epss 0.01

    Replicated Classic 2.x versions have an improperly secured API that exposes sensitive data from the Replicated Admin Console configuration. An attacker with network access to the Admin Console port (8800) on the Replicated Classic server could retrieve the TLS Keypair (Cert and…

  • CVE-2021-29736HigJul 30, 2021
    risk 0.57cvss 8.8epss 0.01

    IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote user to gain elevated privileges on the system. IBM X-Force ID: 201300.