VYPR

CVEs

31,782 total · page 367 of 636

  • CVE-2021-21903CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.02

    A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to…

  • CVE-2021-21894CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.02

    A directory traversal vulnerability exists in the Web Manager FsTFtp functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to arbitrary file overwrite FsTFtp file disclosure. An attacker can make an authenticated HTTP request…

  • CVE-2021-21892CriDec 22, 2021
    risk 0.67cvss 9.9epss 0.30

    A stack-based buffer overflow vulnerability exists in the Web Manager FsUnmount functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this…

  • CVE-2021-21891CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to remote code execution in the vulnerable portion of the branch (deletefile). An…

  • CVE-2021-21890CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to remote code execution in the vulnerable portion of the branch (deletedir). An…

  • CVE-2021-21889CriDec 22, 2021
    risk 0.65cvss 9.9epss 0.03

    A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this…

  • CVE-2021-21888CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.04

    An OS command injection vulnerability exists in the Web Manager SslGenerateCertificate functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to…

  • CVE-2021-21887CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    A stack-based buffer overflow vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger…

  • CVE-2021-21884CriDec 22, 2021
    risk 0.60cvss 9.1epss 0.05

    An OS command injection vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this…

  • CVE-2021-21883CriDec 22, 2021
    risk 0.65cvss 9.9epss 0.06

    An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this…

  • CVE-2021-21881CriDec 22, 2021
    risk 0.67cvss 9.9epss 0.37

    An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this…

  • CVE-2021-21877CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    Specially-crafted HTTP requests can lead to arbitrary command execution in “GET” requests. An attacker can make authenticated HTTP requests to trigger this vulnerability.

  • CVE-2021-21876CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    Specially-crafted HTTP requests can lead to arbitrary command execution in PUT requests. An attacker can make authenticated HTTP requests to trigger this vulnerability.

  • CVE-2021-21875CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    A specially-crafted HTTP request can lead to arbitrary command execution in EC keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2021-21874CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    A specially-crafted HTTP request can lead to arbitrary command execution in DSA keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2021-21873CriDec 22, 2021
    risk 0.59cvss 9.1epss 0.03

    A specially-crafted HTTP request can lead to arbitrary command execution in RSA keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2021-21872CriDec 22, 2021
    risk 0.65cvss 9.9epss 0.06

    An OS command injection vulnerability exists in the Web Manager Diagnostics: Traceroute functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger…

  • CVE-2021-44659CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.03

    Adding a new pipeline in GoCD server version 21.3.0 has a functionality that could be abused to do an un-intended action in order to achieve a Server Side Request Forgery (SSRF). NOTE: the vendor's position is that the observed behavior is not a vulnerability, because the…

  • CVE-2021-43631CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.

  • CVE-2021-43629CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in admin_home.php.

  • CVE-2021-43628CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.

  • CVE-2021-43157CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter in cart_remove.php.

  • CVE-2021-43155CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn" parameter in cart.php.

  • CVE-2021-40612CriDec 22, 2021
    risk 0.00cvss 9.8epss 0.02

    An issue was discovered in Opmantek Open-AudIT after 3.5.0. Without authentication, a vulnerability in code_igniter/application/controllers/util.php allows an attacker perform command execution without echoes.

  • CVE-2021-45459CriDec 22, 2021
    risk 0.57cvss 9.8epss 0.04

    lib/cmd.js in the node-windows package before 1.0.0-beta.6 for Node.js allows command injection via the PID parameter.

  • CVE-2021-44031CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Quest KACE Desktop Authority before 11.2. /dacomponentui/profiles/profileitems/outlooksettings/Insertimage.aspx contains a vulnerability that could allow pre-authentication remote code execution. An attacker could upload a .ASP file to reside at…

  • CVE-2021-44029CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Quest KACE Desktop Authority before 11.2. This vulnerability allows attackers to execute remote code through a deserialization exploitation in the RadAsyncUpload function of ASP.NET AJAX. An attacker can leverage this vulnerability when the encryption…

  • CVE-2021-27449CriDec 21, 2021
    risk 0.65cvss 9.9epss 0.03

    Mesa Labs AmegaView Versions 3.0 and prior has a command injection vulnerability that can be exploited to execute commands in the web server.

  • CVE-2021-27447CriDec 21, 2021
    risk 0.65cvss 10.0epss 0.02

    Mesa Labs AmegaView version 3.0 is vulnerable to a command injection, which may allow an attacker to remotely execute arbitrary code.

  • CVE-2021-36336CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.02

    Wyse Management Suite 3.3.1 and below versions contain a deserialization vulnerability that could allow an unauthenticated attacker to execute code on the affected system.

  • CVE-2021-45090CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.03

    Stormshield Endpoint Security before 2.1.2 allows remote code execution.

  • CVE-2021-4139CriDec 21, 2021
    risk 0.52cvss 9.0epss 0.01

    pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

  • CVE-2021-45255CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.02

    The email parameter from ajax.php of Video Sharing Website 1.0 appears to be vulnerable to SQL injection attacks. A payload injects a SQL sub-query that calls MySQL's load_file function with a UNC file path that references a URL on an external domain. The application interacted…

  • CVE-2021-45253CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.01

    The id parameter in view_storage.php from Simple Cold Storage Management System 1.0 appears to be vulnerable to SQL injection attacks. A payload injects a SQL sub-query that calls MySQL's load_file function with a UNC file path that references a URL on an external domain. The…

  • CVE-2021-45252CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.01

    Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are manage_topic.php, manage_user.php, and ajax.php. The attacker can be retrieving all information from the database of this system by using this…

  • CVE-2021-24849CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.08

    The wcfm_ajax_controller AJAX action of the WCFM Marketplace WordPress plugin before 3.4.12, available to unauthenticated and authenticated user, does not properly sanitise multiple parameters before using them in SQL statements, leading to SQL injections

  • CVE-2021-43439CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.03

    RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely

  • CVE-2021-44525CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.03

    Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.

  • CVE-2021-44676CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.04

    Zoho ManageEngine Access Manager Plus before 4203 allows anyone to view a few data elements (e.g., access control details) and modify a few aspects of the application state.

  • CVE-2021-44675CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.06

    Zoho ManageEngine ServiceDesk Plus MSP before 10.5 Build 10534 is vulnerable to unauthenticated remote code execution due to a filter bypass in which authentication is not required.

  • CVE-2020-8105CriDec 20, 2021
    risk 0.62cvss 9.6epss 0.01

    OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject commands and gain root access. This issue affects: Abode iota All-In-One Security Kit versions prior to 1.0.2.23_6.9V_dev_t2_homekit_RF_2.0.19_s2_k…

  • CVE-2021-44790CriDec 20, 2021
    risk 0.74cvss 9.8epss 0.97

    A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP…

  • CVE-2021-44732CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.03

    Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.

  • CVE-2021-44164CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.02

    Chain Sea ai chatbot system’s file upload function has insufficient filtering for special characters in URLs, which allows a remote attacker to by-pass file type validation, upload malicious script and execute arbitrary code without authentication, in order to take control of…

  • CVE-2021-44159CriDec 20, 2021
    risk 0.64cvss 9.8epss 0.03

    4MOSAn GCB Doctor’s file upload function has improper user privilege control. A remote attacker can upload arbitrary files including webshell files without authentication and execute arbitrary code in order to perform arbitrary system operations or deny of service attack.

  • CVE-2021-23803CriDec 17, 2021
    risk 0.57cvss 9.8epss 0.02

    This affects the package latte/latte before 2.10.6. There is a way to bypass allowFunctions that will affect the security of the application. When the template is set to allow/disallow the use of certain functions, adding control characters (x00-x08) after the function will…

  • CVE-2021-40850CriDec 17, 2021
    risk 0.65cvss 10.0epss 0.01

    TCMAN GIM is vulnerable to a SQL injection vulnerability inside several available webservice methods in /PC/WebService.asmx.

  • CVE-2020-18078CriDec 17, 2021
    risk 0.64cvss 9.8epss 0.01

    A vulnerability in /include/web_check.php of SEMCMS v3.8 allows attackers to reset the Administrator account's password.

  • CVE-2021-36779CriDec 17, 2021
    risk 0.62cvss 9.6epss 0.01

    A Missing Authentication for Critical Function vulnerability in SUSE Longhorn allows any workload in the cluster to execute any binary present in the image on the host without authentication. This issue affects: SUSE Longhorn longhorn versions prior to 1.1.3; longhorn versions…

  • CVE-2021-45092CriDec 16, 2021
    risk 0.70cvss 9.8epss 0.40

    Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter.