VYPR

CVEs

31,781 total · page 402 of 636

  • CVE-2021-29998CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Wind River VxWorks before 6.5. There is a possible heap overflow in dhcp client.

  • CVE-2021-21730CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.01

    A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0_TY.T6

  • CVE-2020-27236CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.01

    An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the compnomenclature parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-27235CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.01

    An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the description parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-27234CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.01

    An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the serviceUID parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-27233CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.01

    An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the supplierUID parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-27227CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.03

    An exploitable unatuhenticated command injection exists in the OpenClinic GA 5.173.3. Specially crafted web requests can cause commands to be executed on the server. An attacker can send a web request with parameters containing specific parameter to trigger this vulnerability,…

  • CVE-2021-30176CriApr 13, 2021
    risk 0.66cvss 9.8epss 0.29

    The ZEROF Expert pro/2.0 application for mobile devices allows SQL Injection via the Authorization header to the /v2/devices/add endpoint.

  • CVE-2021-30175CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.09

    ZEROF Web Server 1.0 (April 2021) allows SQL Injection via the /HandleEvent endpoint for the login page.

  • CVE-2021-22505CriApr 13, 2021
    risk 0.64cvss 9.8epss 0.01

    Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x, 12.10, 12.11, 12.12, 12.14 and 12.15. The vulnerability could be exploited to escalate privileges and execute code under the account of the Operations Agent.

  • CVE-2021-29943CriApr 13, 2021
    risk 0.60cvss 9.1epss 0.05

    When using ConfigurableInternodeAuthHadoopPlugin for authentication, Apache Solr versions prior to 8.8.2 would forward/proxy distributed requests using server credentials instead of original client credentials. This would result in incorrect authorization resolution on the…

  • CVE-2021-27905CriApr 13, 2021
    risk 0.71cvss 9.8epss 0.93

    The ReplicationHandler (normally registered at "/replication" under a Solr core) in Apache Solr has a "masterUrl" (also "leaderUrl" alias) parameter that is used to designate another ReplicationHandler on another Solr core to replicate index data into the local core. To prevent…

  • CVE-2021-29003CriApr 13, 2021
    risk 0.70cvss 9.8epss 0.45

    Genexis PLATINUM 4410 2.1 P4410-V2-1.28 devices allow remote attackers to execute arbitrary code via shell metacharacters to sys_config_valid.xgi, as demonstrated by the sys_config_valid.xgi?exeshell=%60telnetd%20%26%60 URI.

  • CVE-2021-30503CriApr 13, 2021
    risk 0.00cvss 9.8epss 0.03

    The unofficial GLSL Linting extension before 1.4.0 for Visual Studio Code allows remote code execution via a crafted glslangValidatorPath in the workspace configuration.

  • CVE-2021-21524CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.03

    Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to arbitrary privileged code execution on the vulnerable…

  • CVE-2020-15390CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.01

    pyActivity in Pega Platform 8.4.0.237 has a security misconfiguration that leads to an improper access control vulnerability via =GetWebInfo.

  • CVE-2021-24229CriApr 12, 2021
    risk 0.63cvss 9.6epss 0.02

    The Jetpack Scan team identified a Reflected Cross-Site Scripting via the patreon_save_attachment_patreon_level AJAX action of the Patreon WordPress plugin before 1.7.2. This AJAX hook is used to update the pledge level required by Patreon subscribers to access a given…

  • CVE-2021-24228CriApr 12, 2021
    risk 0.63cvss 9.6epss 0.02

    The Jetpack Scan team identified a Reflected Cross-Site Scripting in the Login Form of the Patreon WordPress plugin before 1.7.2. The WordPress login form (wp-login.php) is hooked by the plugin and offers to allow users to authenticate on the site using their Patreon account.…

  • CVE-2021-24223CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.02

    The N5 Upload Form WordPress plugin through 1.0 suffers from an arbitrary file upload issue in page where a Form from the plugin is embed, as any file can be uploaded. The uploaded filename might be hard to guess as it's generated with md5(uniqid(rand())), however, in the case…

  • CVE-2021-24222CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.02

    The WP-Curriculo Vitae Free WordPress plugin through 6.3 suffers from an arbitrary file upload issue in page where the [formCadastro] is embed. The form allows unauthenticated user to register and submit files for their profile picture as well as resume, without any file…

  • CVE-2021-24220CriApr 12, 2021
    risk 0.59cvss 9.1epss 0.04

    Thrive “Legacy” Rise by Thrive Themes WordPress theme before 2.0.0, Luxe by Thrive Themes WordPress theme before 2.0.0, Minus by Thrive Themes WordPress theme before 2.0.0, Ignition by Thrive Themes WordPress theme before 2.0.0, FocusBlog by Thrive Themes WordPress theme…

  • CVE-2021-24215CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.10

    An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress plugin before 1.5.2. Uncontrolled access to the website customization functionality and global CMS settings, like /wp-admin/customization.php and /wp-admin/options.php, can lead to a…

  • CVE-2020-28872CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.03

    An authorization bypass vulnerability in Monitorr v1.7.6m in Monitorr/assets/config/_installation/_register.php allows an unauthorized person to create valid credentials.

  • CVE-2021-28879CriApr 11, 2021
    risk 0.00cvss 9.8epss 0.02

    In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer overflow when a consumed Zip iterator is used again.

  • CVE-2020-36318CriApr 11, 2021
    risk 0.57cvss 9.8epss 0.02

    In the standard library in Rust before 1.49.0, VecDeque::make_contiguous has a bug that pops the same element more than once under certain condition. This bug could result in a use-after-free or double free.

  • CVE-2021-20020CriApr 10, 2021
    risk 0.64cvss 9.8epss 0.04

    A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root.

  • CVE-2021-25360CriApr 9, 2021
    risk 0.59cvss 9.0epss 0.01

    An improper input validation vulnerability in libswmfextractor library prior to SMR APR-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.

  • CVE-2021-21433CriApr 9, 2021
    risk 0.00cvss 9.9epss 0.03

    Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2.

  • CVE-2021-20021CriKEVApr 9, 2021
    risk 0.88cvss 9.8epss 0.83

    A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host.

  • CVE-2020-23763CriApr 9, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL injection in admin.php in Online Book Store 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication.

  • CVE-2021-22507CriApr 8, 2021
    risk 0.64cvss 9.8epss 0.02

    Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects versions 2019.05, 2019.11, 2020.05 and 2020.10. The vulnerability could allow remote attackers to bypass user authentication and get unauthorized access.

  • CVE-2020-23426CriApr 8, 2021
    risk 0.64cvss 9.8epss 0.04

    zzcms 201910 contains an access control vulnerability through escalation of privileges in /user/adv.php, which allows an attacker to modify data for further attacks such as CSRF.

  • CVE-2021-28925CriApr 8, 2021
    risk 0.64cvss 9.8epss 0.04

    SQL injection vulnerability in Nagios Network Analyzer before 2.4.3 via the o[col] parameter to api/checks/read/.

  • CVE-2021-1459CriApr 8, 2021
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to improper validation of…

  • CVE-2021-30457CriApr 7, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in the id-map crate through 2021-02-26 for Rust. A double free can occur in remove_set upon a panic in a Drop impl.

  • CVE-2021-30456CriApr 7, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in the id-map crate through 2021-02-26 for Rust. A double free can occur in get_or_insert upon a panic of a user-provided f function.

  • CVE-2021-30455CriApr 7, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in the id-map crate through 2021-02-26 for Rust. A double free can occur in IdMap::clone_from upon a .clone panic.

  • CVE-2021-30454CriApr 7, 2021
    risk 0.57cvss 9.8epss 0.01

    An issue was discovered in the outer_cgi crate before 0.2.1 for Rust. A user-provided Read instance receives an uninitialized memory buffer from KeyValueReader.

  • CVE-2021-30246CriApr 7, 2021
    risk 0.59cvss 9.1epss 0.01

    In the jsrsasign package through 10.1.13 for Node.js, some invalid RSA PKCS#1 v1.5 signatures are mistakenly recognized to be valid. NOTE: there is no known practical attack.

  • CVE-2021-21425CriApr 7, 2021
    risk 0.70cvss 9.3epss 0.81

    Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. In versions 1.10.7 and earlier, an unauthenticated user can execute some methods of administrator controller without needing any credentials. Particular method…

  • CVE-2021-30177CriApr 7, 2021
    risk 0.64cvss 9.8epss 0.02

    There is a SQL Injection vulnerability in PHP-Nuke 8.3.3 in the User Registration section, leading to remote code execution. This occurs because the U.S. state is not validated to be two letters, and the OrderBy field is not validated to be one of LASTNAME, CITY, or STATE.

  • CVE-2021-26709CriApr 7, 2021
    risk 0.67cvss 9.8epss 0.40

    D-Link DSL-320B-D1 devices through EU_1.25 are prone to multiple Stack-Based Buffer Overflows that allow unauthenticated remote attackers to take over a device via the login.xgi user and pass parameters. NOTE: This vulnerability only affects products that are no longer supported…

  • CVE-2020-11210CriApr 7, 2021
    risk 0.60cvss 9.3epss 0.00

    Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

  • CVE-2020-13421CriApr 6, 2021
    risk 0.64cvss 9.8epss 0.01

    OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions, and Password Reset actions.

  • CVE-2020-13420CriApr 6, 2021
    risk 0.64cvss 9.8epss 0.02

    OpenIAM before 4.2.0.3 allows remote attackers to execute arbitrary code via Groovy Script.

  • CVE-2021-24026CriApr 6, 2021
    risk 0.64cvss 9.8epss 0.01

    A missing bounds check within the audio decoding pipeline for WhatsApp calls in WhatsApp for Android prior to v2.21.3, WhatsApp Business for Android prior to v2.21.3, WhatsApp for iOS prior to v2.21.32, and WhatsApp Business for iOS prior to v2.21.32 could have allowed an…

  • CVE-2021-30045CriApr 6, 2021
    risk 0.00cvss 9.1epss 0.02

    SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read() function.

  • CVE-2021-27698CriApr 6, 2021
    risk 0.64cvss 9.8epss 0.01

    RIOT-OS 2021.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c through the _parse_options() function.

  • CVE-2021-27697CriApr 6, 2021
    risk 0.64cvss 9.8epss 0.01

    RIOT-OS 2021.01 contains a buffer overflow vulnerability in sys/net/gnrc/routing/rpl/gnrc_rpl_validation.c through the gnrc_rpl_validation_options() function.

  • CVE-2021-27357CriApr 6, 2021
    risk 0.64cvss 9.8epss 0.01

    RIOT-OS 2020.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c.