VYPR

CVEs

31,782 total · page 369 of 636

  • CVE-2021-24922CriDec 13, 2021
    risk 0.59cvss 9.0epss 0.01

    The Pixel Cat WordPress plugin before 2.6.2 does not have CSRF check when saving its settings, and did not sanitise as well as escape some of them, which could allow attacker to make a logged in admin change them and perform Cross-Site Scripting attacks

  • CVE-2021-24863CriDec 13, 2021
    risk 0.64cvss 9.8epss 0.02

    The WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection Plugin StopBadBots WordPress plugin before 6.67 does not sanitise and escape the User Agent before using it in a SQL statement to save it, leading to a SQL injection

  • CVE-2021-24857CriDec 13, 2021
    risk 0.64cvss 9.8epss 0.02

    The ToTop Link WordPress plugin through 1.7.1 passes base64 encoded user input to the unserialize() PHP function, which could lead to PHP Object injection if a plugin installed on the blog has a suitable gadget chain.

  • CVE-2021-44152CriDec 13, 2021
    risk 0.68cvss 9.8epss 0.59

    An issue was discovered in Reprise RLM 14.2. Because /goform/change_password_process does not verify authentication or authorization, an unauthenticated user can change the password of any existing user. This allows an attacker to change the password of any known user, thereby…

  • CVE-2021-44847CriDec 13, 2021
    risk 0.00cvss 9.8epss 0.04

    A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 (caused by an improper length calculation during the handling of received network packets) allows remote attackers to crash the process or potentially…

  • CVE-2021-44833CriDec 12, 2021
    risk 0.00cvss 9.8epss 0.02

    The CLI 1.0.0 for Amazon AWS OpenSearch has weak permissions for the configuration file.

  • CVE-2021-44515CriKEVDec 12, 2021
    risk 0.84cvss 9.8epss 1.00

    Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through…

  • CVE-2021-23639CriDec 10, 2021
    risk 0.57cvss 9.8epss 0.05

    The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execution (RCE) due to utilizing the library gray-matter to parse front matter content, without disabling the JS engine.

  • CVE-2021-27983CriDec 10, 2021
    risk 0.64cvss 9.8epss 0.03

    Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents page.

  • CVE-2021-38917CriDec 10, 2021
    risk 0.59cvss 9.1epss 0.01

    IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary host system memory through a series of carefully crafted service procedures. IBM X-Force ID: 210018.

  • CVE-2021-31746CriDec 10, 2021
    risk 0.64cvss 9.8epss 0.02

    Zip Slip vulnerability in Pluck-CMS Pluck 4.7.15 allows an attacker to upload specially crafted zip files, resulting in directory traversal and potentially arbitrary code execution.

  • CVE-2021-37934CriDec 10, 2021
    risk 0.64cvss 9.8epss 0.01

    Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise before 3.10.14 could allow an unauthenticated, remote user to perform multiple login attempts for brute-force password guessing.

  • CVE-2021-35978CriDec 10, 2021
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered in Digi TransPort DR64, SR44 VC74, and WR. The ZING protocol allows arbitrary remote command execution with SUPER privileges. This allows an attacker (with knowledge of the protocol) to execute arbitrary code on the controller including overwriting…

  • CVE-2021-44228CriKEVDec 10, 2021
    risk 0.29cvss 10.0epss 1.00

    Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log…

  • CVE-2021-43802CriDec 9, 2021
    risk 0.65cvss 9.9epss 0.02

    Etherpad is a real-time collaborative editor. In versions prior to 1.8.16, an attacker can craft an `*.etherpad` file that, when imported, might allow the attacker to gain admin privileges for the Etherpad instance. This, in turn, can be used to install a malicious Etherpad…

  • CVE-2021-44514CriDec 9, 2021
    risk 0.64cvss 9.8epss 0.05

    OpUtils in Zoho ManageEngine OpManager 12.5 before 125490 mishandles authentication for a few audit directories.

  • CVE-2021-43608CriDec 9, 2021
    risk 0.57cvss 9.8epss 0.02

    Doctrine DBAL 3.x before 3.1.4 allows SQL Injection. The escaping of offset and length inputs to the generation of a LIMIT clause was not probably cast to an integer, allowing SQL injection to take place if application developers passed unescaped user input to the DBAL…

  • CVE-2021-43703CriDec 9, 2021
    risk 0.64cvss 9.8epss 0.02

    An Incorrect Access Control vulnerability exists in zzcms less than or equal to 2019 via admin.php. After disabling JavaScript, you can directly access the administrator console.

  • CVE-2021-41695CriDec 9, 2021
    risk 0.64cvss 9.8epss 0.01

    An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php. .

  • CVE-2021-41694CriDec 9, 2021
    risk 0.64cvss 9.8epss 0.01

    An Incorrect Access Control vulnerability exists in Premiumdatingscript 4.2.7.7 via the password change procedure in requests\user.php.

  • CVE-2021-21954CriDec 9, 2021
    risk 0.65cvss 9.9epss 0.02

    A command execution vulnerability exists in the wifi_country_code_update functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to arbitrary command execution.

  • CVE-2021-20146CriDec 9, 2021
    risk 0.64cvss 9.8epss 0.02

    An unprotected ssh private key exists on the Gryphon devices which could be used to achieve root access to a server affiliated with Gryphon's development and infrastructure. At the time of discovery, the ssh key could be used to login to the development server hosted in Amazon…

  • CVE-2021-3817CriDec 9, 2021
    risk 0.06cvss 9.8epss 0.38

    wbce_cms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command

  • CVE-2021-4048CriDec 8, 2021
    risk 0.00cvss 9.1epss 0.03

    An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version 0.3.18. Specially crafted inputs passed to these functions could cause an application using lapack to crash or…

  • CVE-2021-44529CriKEVDec 8, 2021
    risk 0.93cvss 9.8epss 0.99

    A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an unauthenticated user to execute arbitrary code with limited permissions (nobody).

  • CVE-2021-43527CriDec 8, 2021
    risk 0.65cvss 9.8epss 0.18

    NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \#7, or PKCS \#12 are likely to be…

  • CVE-2021-38503CriDec 8, 2021
    risk 0.65cvss 10.0epss 0.04

    The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. This vulnerability affects Firefox < 94, Thunderbird < 91.3, and Firefox ESR < 91.3.

  • CVE-2021-23859CriDec 8, 2021
    risk 0.59cvss 9.1epss 0.01

    An unauthenticated attacker is able to send a special HTTP request, that causes a service to crash. In case of a standalone VRM or BVMS with VRM installation this crash also opens the possibility to send further unauthenticated commands to the service. On some products the…

  • CVE-2021-21951CriDec 8, 2021
    risk 0.65cvss 10.0epss 0.02

    An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h in function read_udp_push_config_file. A specially-crafted network packet can lead to code execution.

  • CVE-2021-21950CriDec 8, 2021
    risk 0.65cvss 10.0epss 0.02

    An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h in function recv_server_device_response_msg_process. A specially-crafted network packet can lead to code execution.

  • CVE-2020-27416CriDec 8, 2021
    risk 0.64cvss 9.8epss 0.02

    Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account.

  • CVE-2021-41063CriDec 8, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability was discovered in Aanderaa GeoView Webservice prior to version 2.1.3 that could allow an unauthenticated attackers to execute arbitrary commands.

  • CVE-2021-3815CriDec 8, 2021
    risk 0.57cvss 9.8epss 0.01

    utils.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

  • CVE-2021-27860CriKEVDec 8, 2021
    risk 0.79cvss 9.8epss 0.40

    A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this…

  • CVE-2021-37051CriDec 8, 2021
    risk 0.59cvss 9.1epss 0.01

    There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds memory access.

  • CVE-2021-37049CriDec 8, 2021
    risk 0.64cvss 9.8epss 0.01

    There is a Heap-based buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may rewrite the memory of adjacent objects.

  • CVE-2021-37045CriDec 8, 2021
    risk 0.64cvss 9.8epss 0.01

    There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart unexpectedly and the kernel-mode code to be executed.

  • CVE-2021-37040CriDec 8, 2021
    risk 0.64cvss 9.8epss 0.01

    There is a Parameter injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause privilege escalation of files after CIFS share mounting.

  • CVE-2021-44557CriDec 8, 2021
    risk 0.59cvss 9.1epss 0.01

    National Library of the Netherlands multiNER <= c0440948057afc6e3d6b4903a7c05e666b94a3bc is affected by an XML External Entity (XXE) vulnerability in multiNER/ner.py. Since XML parsing resolves external entities, a malicious XML stream could leak internal files and/or cause a…

  • CVE-2021-44556CriDec 8, 2021
    risk 0.00cvss 9.1epss 0.01

    National Library of the Netherlands digger < 6697d1269d981e35e11f240725b16401b5ce3db5 is affected by a XML External Entity (XXE) vulnerability. Since XML parsing resolves external entities, a malicious XML stream could leak internal files and/or cause a DoS.

  • CVE-2021-20045CriDec 8, 2021
    risk 0.66cvss 9.8epss 0.25

    A buffer overflow vulnerability in SMA100 sonicfiles RAC_COPY_TO (RacNumber 36) method allows a remote unauthenticated attacker to potentially execute code as the 'nobody' user in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.

  • CVE-2021-20042CriDec 8, 2021
    risk 0.64cvss 9.8epss 0.03

    An unauthenticated remote attacker can use SMA 100 as an unintended proxy or intermediary undetectable proxy to bypass firewall rules. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.

  • CVE-2021-20038CriKEVDec 8, 2021
    risk 0.90cvss 9.8epss 1.00

    A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' user in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v…

  • CVE-2021-38759CriDec 7, 2021
    risk 0.68cvss 9.8epss 0.16

    Raspberry Pi OS through 5.10 has the raspberry default password for the pi account. If not changed, attackers can gain administrator privileges.

  • CVE-2021-41716CriDec 7, 2021
    risk 0.64cvss 9.8epss 0.01

    Maharashtra State Electricity Board Mahavitara Android Application 8.20 and prior is vulnerable to remote account takeover due to OTP fixation vulnerability in password rest function

  • CVE-2021-40859CriDec 7, 2021
    risk 0.72cvss 9.8epss 0.72

    Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.

  • CVE-2021-24041CriDec 7, 2021
    risk 0.64cvss 9.8epss 0.01

    A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and WhatsApp Business for Android v2.21.22.7 could have allowed an out-of-bounds write if a user sent a malicious image.

  • CVE-2021-37099CriDec 7, 2021
    risk 0.59cvss 9.1epss 0.01

    There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete any file.

  • CVE-2021-37095CriDec 7, 2021
    risk 0.64cvss 9.8epss 0.01

    There is a Integer Overflow or Wraparound vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to remote denial of service and potential remote code execution.

  • CVE-2021-37088CriDec 7, 2021
    risk 0.59cvss 9.1epss 0.01

    There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can write any content to any file.