VYPR

CVEs

101,963 total · page 1439 of 2,040

  • CVE-2020-24161HigSep 3, 2020
    risk 0.51cvss 7.8epss 0.00

    Guangzhou NetEase Mail Master 4.14.1.1004 on Windows has a DLL hijacking vulnerability. Attackers can use this vulnerability to execute malicious code.

  • CVE-2020-24160HigSep 3, 2020
    risk 0.51cvss 7.8epss 0.00

    Shenzhen Tencent TIM Windows client 3.0.0.21315 has a DLL hijacking vulnerability, which can be exploited by attackers to execute malicious code.

  • CVE-2020-24159HigSep 3, 2020
    risk 0.51cvss 7.8epss 0.00

    NetEase Youdao Dictionary has a DLL hijacking vulnerability, which can be exploited by attackers to gain server permissions. This affects Guangzhou NetEase Youdao Dictionary 8.9.2.0.

  • CVE-2020-24158HigSep 3, 2020
    risk 0.51cvss 7.8epss 0.00

    360 Speed Browser 12.0.1247.0 has a DLL hijacking vulnerability, which can be exploited by attackers to execute malicious code. It is a dual-core browser owned by Beijing Qihoo Technology.

  • CVE-2020-23811HigSep 3, 2020
    risk 0.49cvss 7.5epss 0.01

    xxl-job 2.2.0 allows Information Disclosure of username, model, and password via job/admin/controller/UserController.java.

  • CVE-2020-25068HigSep 3, 2020
    risk 0.49cvss 7.5epss 0.04

    Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated attacker to read internal files on the server via an http:IP:PORT/../../path/file_to_disclose Directory Traversal URI. NOTE: The manufacturer…

  • CVE-2020-25042HigSep 3, 2020
    risk 0.51cvss 7.2epss 0.18

    An arbitrary file upload issue exists in Mara CMS 7.5. In order to exploit this, an attacker must have a valid authenticated (admin/manager) session and make a codebase/dir.php?type=filenew request to upload PHP code to codebase/handler.php.

  • CVE-2020-24948HigSep 3, 2020
    risk 0.48cvss 7.2epss 0.13

    The ao_ccss_import AJAX call in Autoptimize Wordpress Plugin 2.7.6 does not ensure that the file provided is a legitimate Zip file, allowing high privilege users to upload arbitrary files, such as PHP, leading to remote command execution.

  • CVE-2019-10679HigSep 3, 2020
    risk 0.51cvss 7.8epss 0.00

    Thomson Reuters Eikon 4.0.42144 allows all local users to modify the service executable file because of weak %PROGRAMFILES(X86)%\Thomson Reuters\Eikon permissions.

  • CVE-2020-4638HigSep 3, 2020
    risk 0.47cvss 7.2epss 0.02

    IBM API Connect's API Manager 2018.4.1.0 through 2018.4.1.12 is vulnerable to privilege escalation. An invitee to an API Provider organization can escalate privileges by manipulating the invitation link. IBM X-Force ID: 185508.

  • CVE-2020-24949HigSep 3, 2020
    risk 0.66cvss 8.8epss 0.67

    Privilege escalation in PHP-Fusion 9.03.50 downloads/downloads.php allows an authenticated user (not admin) to send a crafted request to the server and perform remote command execution (RCE).

  • CVE-2020-7729HigSep 3, 2020
    risk 0.39cvss 7.1epss 0.02

    The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load() instead of its secure replacement safeLoad() of the package js-yaml inside grunt.file.readYAML.

  • CVE-2020-5420HigSep 3, 2020
    risk 0.50cvss 7.7epss 0.01

    Cloud Foundry Routing (Gorouter) versions prior to 0.206.0 allow a malicious developer with "cf push" access to cause denial-of-service to the CF cluster by pushing an app that returns specially crafted HTTP responses that crash the Gorouters.

  • CVE-2020-5386HigSep 2, 2020
    risk 0.49cvss 7.5epss 0.01

    Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. A remote unauthenticated attacker can access the list of DT (Directory Table) objects of all internally running services and gain knowledge of sensitive data of the system.

  • CVE-2020-5369HigSep 2, 2020
    risk 0.57cvss 8.8epss 0.01

    Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to system management files.

  • CVE-2020-7830HigSep 2, 2020
    risk 0.51cvss 7.8epss 0.01

    RAONWIZ v2018.0.2.50 and earlier versions contains a vulnerability that could allow remote files to be downloaded by lack of validation. Vulnerabilities in downloading with Kupload agent allow files to be downloaded to arbitrary paths due to insufficient verification of…

  • CVE-2020-5779HigSep 2, 2020
    risk 0.49cvss 7.5epss 0.01

    A flaw in Trading Technologies Messaging 7.1.28.3 (ttmd.exe) relates to invalid parameter handling when calling strcpy_s() with an invalid parameter (i.e., a long src string parameter) as a part of processing a type 4 message sent to default TCP RequestPort 10200. It's been…

  • CVE-2020-5778HigSep 2, 2020
    risk 0.49cvss 7.5epss 0.01

    A flaw exists in Trading Technologies Messaging 7.1.28.3 (ttmd.exe) due to improper validation of user-supplied data when processing a type 8 message sent to default TCP RequestPort 10200. An unauthenticated, remote attacker can exploit this issue, via a specially crafted…

  • CVE-2020-25045HigSep 2, 2020
    risk 0.51cvss 7.8epss 0.00

    Installers of Kaspersky Security Center and Kaspersky Security Center Web Console prior to 12 & prior to 12 Patch A were vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges in the system.

  • CVE-2020-25044HigSep 2, 2020
    risk 0.46cvss 7.1epss 0.00

    Kaspersky Virus Removal Tool (KVRT) prior to 15.0.23.0 was vulnerable to arbitrary file corruption that could provide an attacker with the opportunity to eliminate content of any file in the system.

  • CVE-2020-25043HigSep 2, 2020
    risk 0.46cvss 7.1epss 0.00

    The installer of Kaspersky VPN Secure Connection prior to 5.0 was vulnerable to arbitrary file deletion that could allow an attacker to delete any file in the system.

  • CVE-2020-15167HigSep 2, 2020
    risk 0.53cvss 8.2epss 0.00

    In Miller (command line utility) using the configuration file support introduced in version 5.9.0, it is possible for an attacker to cause Miller to run arbitrary code by placing a malicious `.mlrrc` file in the working directory. See linked GitHub Security Advisory for complete…

  • CVE-2020-15094HigSep 2, 2020
    risk 0.45cvss 8.0epss 0.03

    In Symfony before versions 4.4.13 and 5.1.5, the CachingHttpClient class from the HttpClient Symfony component relies on the HttpCache class to handle requests. HttpCache uses internal headers like X-Body-Eval and X-Body-File to control the restoration of cached responses. The…

  • CVE-2020-24028HigSep 2, 2020
    risk 0.57cvss 8.8epss 0.02

    ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via user creations, password changes, or user permission updates. NOTE: as of 2025-10-14, the Supplier's perspective is that this "does not allow administrative privilege gain.…

  • CVE-2020-23830HigSep 2, 2020
    risk 0.46cvss 7.1epss 0.01

    A Cross-Site Request Forgery (CSRF) vulnerability in changeUsername.php in SourceCodester Stock Management System v1.0 allows remote attackers to deny future logins by changing an authenticated victim's username when they visit a third-party site.

  • CVE-2020-14209HigSep 2, 2020
    risk 0.62cvss 8.8epss 0.27

    Dolibarr before 11.0.5 allows low-privilege users to upload files of dangerous types, leading to arbitrary code execution. This occurs because .pht and .phar files can be uploaded. Also, a .htaccess file can be uploaded to reconfigure access control (e.g., to let .noexe files be…

  • CVE-2020-25079HigKEVSep 2, 2020
    risk 0.73cvss 8.8epss 0.53

    An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi allows authenticated command injection.

  • CVE-2020-25078HigKEVSep 2, 2020
    risk 0.69cvss 7.5epss 0.98

    An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.

  • CVE-2020-16602HigSep 2, 2020
    risk 0.56cvss 8.1epss 0.06

    Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary programs because there is a race condition in which a file created under "%PROGRAMDATA%\Razer Chroma\SDK\Apps" can be replaced before it is executed by the server. The attacker must have…

  • CVE-2020-5622HigSep 2, 2020
    risk 0.49cvss 7.5epss 0.01

    Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a…

  • CVE-2020-24955HigSep 1, 2020
    risk 0.51cvss 7.8epss 0.01

    SUPERAntiSyware Professional X Trial 10.0.1206 is vulnerable to local privilege escalation because it allows unprivileged users to restore a malicious DLL from quarantine into the system32 folder via an NTFS directory junction, as demonstrated by a crafted ualapi.dll file that…

  • CVE-2020-6152HigSep 1, 2020
    risk 0.51cvss 7.8epss 0.02

    A code execution vulnerability exists in the DICOM parse_dicom_meta_info functionality of Accusoft ImageGear 19.7. A specially crafted malformed file can cause an out-of-bounds write. An attacker can trigger this vulnerability by providing a victim with a malicious DICOM file.

  • CVE-2020-5776HigSep 1, 2020
    risk 0.58cvss 8.8epss 0.15

    Currently, all versions of MAGMI are vulnerable to CSRF due to the lack of CSRF tokens. RCE (via phpcli command) is possible in the event that a CSRF is leveraged against an existing admin session for MAGMI.

  • CVE-2020-25070HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.00

    USVN (aka User-friendly SVN) before 1.0.10 allows CSRF, related to the lack of the SameSite Strict feature.

  • CVE-2020-16208HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.01

    The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted link on the N-Tron 702-W / 702M12-W (all versions).

  • CVE-2020-24559HigSep 1, 2020
    risk 0.51cvss 7.8epss 0.01

    A vulnerability in Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services on macOS may allow an attacker to manipulate a certain binary to load and run a script from a user-writable folder, which then would allow them to execute…

  • CVE-2020-24558HigSep 1, 2020
    risk 0.46cvss 7.1epss 0.01

    A vulnerability in an Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services dll may allow an attacker to manipulate it to cause an out-of-bounds read that crashes multiple processes in the product. An attacker must first obtain the…

  • CVE-2020-24557HigKEVSep 1, 2020
    risk 0.63cvss 7.8epss 0.03

    A vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 on Microsoft Windows may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function and attain privilege escalation. An…

  • CVE-2020-24556HigSep 1, 2020
    risk 0.51cvss 7.8epss 0.01

    A vulnerability in Trend Micro Apex One, OfficeScan XG SP1, Worry-Free Business Security 10 SP1 and Worry-Free Business Security Services on Microsoft Windows may allow an attacker to create a hard link to any file on the system, which then could be manipulated to gain a…

  • CVE-2020-6136HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.02

    An exploitable SQL injection vulnerability exists in the DownloadWindow.php functionality of OS4Ed openSIS 7.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-24034HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.04

    Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sess_id, nonce, and ha1 values inside of the serialized session cookie,…

  • CVE-2020-17405HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.02

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Senstar Symphony 7.3.2.2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SSOAuth process. The issue results from the…

  • CVE-2020-6135HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.02

    An exploitable SQL injection vulnerability exists in the Validator.php functionality of OS4Ed openSIS 7.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-23836HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.01

    A Cross-Site Request Forgery (CSRF) vulnerability in edit_user.php in OSWAPP Warehouse Inventory System (aka OSWA-INV) through 2020-08-10 allows remote attackers to change the admin's password after an authenticated admin visits a third-party site.

  • CVE-2020-23829HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.03

    interface/new/new_comprehensive_save.php in LibreHealth EHR 2.0.0 suffers from an authenticated file upload vulnerability, allowing remote attackers to achieve remote code execution (RCE) on the hosting webserver by uploading a maliciously crafted image.

  • CVE-2016-1000249higSep 1, 2020
    risk 0.39cvss epss 0.06

    `fury-adapter-swagger` from version 0.2.0 until version 0.9.7 has a weakness that allows an attacker to read arbitrary files off of the system. This can be used to read sensitive data, or to cause a denial of service condition by attempting to read something like `/dev/zero`. …

  • CVE-2020-23971HigSep 1, 2020
    risk 0.49cvss 7.5epss 0.02

    gmapfp.org Joomla Component GMapFP J3.30pro is affected by Insecure Permissions. An attacker can access the upload function without authenticating to the application and also can upload files due the issues of unrestricted file uploads which can be bypassed by changing the…

  • CVE-2012-3336HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.01

    IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to multiple scripts, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM…

  • CVE-2016-1000242higSep 1, 2020
    risk 0.46cvss epss 0.03

    Affected versions of `mqtt` will cause the node process to crash when receiving specially crafted MQTT packets, making the application vulnerable to a denial of service condition. ## Recommendation Update to v1.0.0 or later

  • CVE-2016-1000241higSep 1, 2020
    risk 0.39cvss epss 0.01

    Affected versions of `pivottable` are vulnerable to cross-site scripting, due to a new mechanism used to render JSON elements. ## Recommendation Update to version 2.0.0 or later.