VYPR

CVEs

31,782 total · page 373 of 636

  • CVE-2021-42847CriNov 11, 2021
    risk 0.72cvss 9.8epss 0.70

    Zoho ManageEngine ADAudit Plus before 7006 allows attackers to write to, and execute, arbitrary files.

  • CVE-2021-42002CriNov 11, 2021
    risk 0.64cvss 9.8epss 0.07

    Zoho ManageEngine ADManager Plus before 7115 is vulnerable to a filter bypass that leads to file-upload remote code execution.

  • CVE-2021-41833CriNov 11, 2021
    risk 0.64cvss 9.8epss 0.08

    Zoho ManageEngine Patch Connect Plus before 90099 is vulnerable to unauthenticated remote code execution.

  • CVE-2021-41081CriNov 11, 2021
    risk 0.69cvss 9.8epss 0.63

    Zoho ManageEngine Network Configuration Manager before 125465 is vulnerable to SQL Injection in a configuration search.

  • CVE-2021-41080CriNov 11, 2021
    risk 0.64cvss 9.8epss 0.04

    Zoho ManageEngine Network Configuration Manager before 125465 is vulnerable to SQL Injection in a hardware details search.

  • CVE-2021-43573CriNov 11, 2021
    risk 0.64cvss 9.8epss 0.01

    A buffer overflow was discovered on Realtek RTL8195AM devices before 2.0.10. It exists in the client code when processing a malformed IE length of HT capability information in the Beacon and Association response frame.

  • CVE-2021-33816CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.04

    The website builder module in Dolibarr 13.0.2 allows remote PHP code execution because of an incomplete protection mechanism in which system, exec, and shell_exec are blocked but backticks are not blocked.

  • CVE-2020-23878CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.02

    pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch.

  • CVE-2020-23877CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.02

    pdf2xml v2.0 was discovered to contain a stack buffer overflow in the component getObjectStream.

  • CVE-2020-23874CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.02

    pdf2xml v2.0 was discovered to contain a heap-buffer overflow in the function TextPage::addAttributsNode.

  • CVE-2020-23873CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.02

    pdf2xml v2.0 was discovered to contain a heap-buffer overflow in the function TextPage::dump.

  • CVE-2021-40520CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.01

    Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials.

  • CVE-2021-3064CriNov 10, 2021
    risk 0.65cvss 9.8epss 0.19

    A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to disrupt system processes and potentially execute arbitrary code with root privileges. The attacker must have…

  • CVE-2021-40521CriNov 10, 2021
    risk 0.64cvss 9.8epss 0.04

    Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution.

  • CVE-2021-40519CriNov 10, 2021
    risk 0.65cvss 10.0epss 0.01

    Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials.

  • CVE-2021-43523CriNov 10, 2021
    risk 0.00cvss 9.6epss 0.03

    In uClibc and uClibc-ng before 1.0.39, incorrect handling of special characters in domain names returned by DNS servers via gethostbyname, getaddrinfo, gethostbyaddr, and getnameinfo can lead to output of wrong hostnames (leading to domain hijacking) or injection into…

  • CVE-2021-43136CriNov 10, 2021
    risk 0.68cvss 9.8epss 0.16

    An authentication bypass issue in FormaLMS <= 2.4.4 allows an attacker to bypass the authentication mechanism and obtain a valid access to the platform.

  • CVE-2021-26443CriNov 10, 2021
    risk 0.59cvss 9.0epss 0.02

    Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability

  • CVE-2021-43572CriNov 9, 2021
    risk 0.57cvss 9.8epss 0.01

    The verify function in the Stark Bank Python ECDSA library (aka starkbank-escada or ecdsa-python) before 2.0.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.

  • CVE-2021-43571CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.01

    The verify function in the Stark Bank Node.js ECDSA library (ecdsa-node) 1.1.2 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.

  • CVE-2021-43570CriNov 9, 2021
    risk 0.57cvss 9.8epss 0.01

    The verify function in the Stark Bank Java ECDSA library (ecdsa-java) 1.0.0 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.

  • CVE-2021-43569CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.01

    The verify function in the Stark Bank .NET ECDSA library (ecdsa-dotnet) 1.3.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.

  • CVE-2021-43568CriNov 9, 2021
    risk 0.57cvss 9.8epss 0.01

    The verify function in the Stark Bank Elixir ECDSA library (ecdsa-elixir) 1.0.0 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.

  • CVE-2021-43200CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.01

    In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient.

  • CVE-2021-43193CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.02

    In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is possible.

  • CVE-2021-43185CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.02

    JetBrains YouTrack before 2021.3.23639 is vulnerable to Host header injection.

  • CVE-2021-43183CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.01

    In JetBrains Hub before 2021.1.13690, the authentication throttling mechanism could be bypassed.

  • CVE-2019-16240CriNov 9, 2021
    risk 0.59cvss 9.1epss 0.01

    A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert.…

  • CVE-2021-43466CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.04

    In the thymeleaf-spring5:3.0.12 component, thymeleaf combined with specific scenarios in template injection may lead to remote code execution.

  • CVE-2021-40358CriNov 9, 2021
    risk 0.64cvss 9.9epss 0.01

    A vulnerability has been identified in SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3 UC04), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP1), SIMATIC WinCC V15 and earlier (All versions < V15 SP1 Update 7), SIMATIC WinCC V16 (All versions < V16…

  • CVE-2021-31886CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.03

    A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.4), APOGEE…

  • CVE-2021-31884CriNov 9, 2021
    risk 0.64cvss 9.8epss 0.01

    A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.4), APOGEE…

  • CVE-2021-41170CriNov 8, 2021
    risk 0.57cvss 9.8epss 0.02

    neoan3-apps/template is a neoan3 minimal template engine. Versions prior to 1.1.1 have allowed for passing in closures directly into the template engine. As a result values that are callable are executed by the template engine. The issue arises if a value has the same name as a…

  • CVE-2021-24827CriNov 8, 2021
    risk 0.65cvss 9.8epss 0.13

    The Asgaros Forum WordPress plugin before 1.15.13 does not validate and escape user input when subscribing to a topic before using it in a SQL statement, leading to an unauthenticated SQL injection issue

  • CVE-2021-24731CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.08

    The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before 3.7.1.6 does not properly escape user data before using it in a SQL statement in the wp-json/pie/v1/login REST API endpoint, leading to an…

  • CVE-2021-24693CriNov 8, 2021
    risk 0.59cvss 9.0epss 0.01

    The Simple Download Monitor WordPress plugin before 3.9.5 does not escape the "File Thumbnail" post meta before outputting it in some pages, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks. Given the that XSS is triggered…

  • CVE-2021-28024CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.01

    Unauthorized system access in the login form in ServiceTonic Helpdesk software version < 9.0.35937 allows attacker to login without using a password.

  • CVE-2021-28023CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.01

    Arbitrary file upload in Service import feature in ServiceTonic Helpdesk software version < 9.0.35937 allows a malicious user to execute JSP code by uploading a zip that extracts files in relative paths.

  • CVE-2021-25979CriNov 8, 2021
    risk 0.57cvss 9.8epss 0.01

    Apostrophe CMS versions prior to 3.3.1 did not invalidate existing login sessions when disabling a user account or changing the password, creating a situation in which a device compromised by a third party could not be locked out by those means. As a mitigation for older…

  • CVE-2021-30132CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.01

    Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.

  • CVE-2021-42371CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.02

    lpar2rrd is a hardcoded system account in XoruX LPAR2RRD and STOR2RRD before 7.30.

  • CVE-2021-42077CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.02

    PHP Event Calendar before 2021-09-03 allows SQL injection, as demonstrated by the /server/ajax/user_manager.php username parameter. This can be used to execute SQL statements directly on the database, allowing an adversary in some cases to completely compromise the database…

  • CVE-2021-34684CriNov 8, 2021
    risk 0.64cvss 9.8epss 0.06

    Hitachi Vantara Pentaho Business Analytics through 9.1 allows an unauthenticated user to execute arbitrary SQL queries on any Pentaho data source and thus retrieve data from the related databases, as demonstrated by an api/repos/dashboards/editor URI.

  • CVE-2020-22226CriNov 5, 2021
    risk 0.64cvss 9.8epss 0.01

    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionSetAmount function.

  • CVE-2020-22225CriNov 5, 2021
    risk 0.64cvss 9.8epss 0.01

    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoadForm function.

  • CVE-2020-22223CriNov 5, 2021
    risk 0.64cvss 9.8epss 0.01

    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoad function.

  • CVE-2021-42837CriNov 5, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Talend Data Catalog before 7.3-20210930. After setting up SAML/OAuth, authentication is not correctly enforced on the native login page. Any valid user from the SAML/OAuth provider can be used as the username with an arbitrary password, and login will…

  • CVE-2021-35368CriNov 5, 2021
    risk 0.64cvss 9.8epss 0.03

    OWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is affected by a Request Body Bypass via a trailing pathname.

  • CVE-2021-42670CriNov 5, 2021
    risk 0.64cvss 9.8epss 0.08

    A SQL injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to the announcements_student.php web page. As a result a malicious user can extract sensitive data from the web server and in some cases use this vulnerability in order to…

  • CVE-2021-42669CriNov 5, 2021
    risk 0.66cvss 9.8epss 0.23

    A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboard_teacher.php, which allows changing the avatar through teacher_avatar.php. Once an avatar gets uploaded it is getting uploaded to the /admin/uploads/ directory, and is accessible by…