VYPR

CVEs

31,781 total · page 421 of 636

  • CVE-2020-29283CriDec 2, 2020
    risk 0.64cvss 9.8epss 0.01

    An SQL injection vulnerability was discovered in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php.

  • CVE-2020-29282CriDec 2, 2020
    risk 0.64cvss 9.8epss 0.03

    SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.

  • CVE-2020-29280CriDec 2, 2020
    risk 0.64cvss 9.8epss 0.02

    The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.

  • CVE-2020-29279CriDec 2, 2020
    risk 0.68cvss 9.8epss 0.53

    PHP remote file inclusion in the assign_resume_tpl method in Application/Common/Controller/BaseController.class.php in 74CMS before 6.0.48 allows remote code execution.

  • CVE-2017-14451CriDec 2, 2020
    risk 0.65cvss 10.0epss 0.03

    An exploitable out-of-bounds read vulnerability exists in libevm (Ethereum Virtual Machine) of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read which can subsequently trigger an out-of-bounds write resulting in remote code execution. An…

  • CVE-2020-29389CriDec 2, 2020
    risk 0.64cvss 9.8epss 0.02

    The official Crux Linux Docker images 3.0 through 3.4 contain a blank password for a root user. System using the Crux Linux Docker container deployed by affected versions of the Docker image may allow an attacker to achieve root access with a blank password.

  • CVE-2020-28273CriDec 2, 2020
    risk 0.57cvss 9.8epss 0.04

    Prototype pollution vulnerability in 'set-in' versions 1.0.0 through 2.0.0 allows attacker to cause a denial of service and may lead to remote code execution.

  • CVE-2020-28272CriDec 2, 2020
    risk 0.57cvss 9.8epss 0.03

    Prototype pollution vulnerability in 'keyget' versions 1.0.0 through 2.2.0 allows attacker to cause a denial of service and may lead to remote code execution.

  • CVE-2020-7199CriDec 2, 2020
    risk 0.64cvss 9.8epss 0.09

    A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands,…

  • CVE-2020-6018CriDec 2, 2020
    risk 0.00cvss 9.8epss 0.03

    Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long encrypted messages in function AES_GCM_DecryptContext::Decrypt() when compiled using libsodium, leading to a Stack-Based Buffer Overflow and resulting in a memory corruption and possibly even a…

  • CVE-2020-14260CriDec 2, 2020
    risk 0.64cvss 9.8epss 0.01

    HCL Domino is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. A successful exploit could enable an attacker to crash Domino or execute attacker-controlled code on the server system.

  • CVE-2020-6880CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.01

    A ZXELINK wireless controller has a SQL injection vulnerability. A remote attacker does not need to log in. By sending malicious SQL statements, because the device does not properly filter parameters, successful use can obtain management rights. This affects: ZXV10 W908 all…

  • CVE-2020-28971CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie, because of insufficient validation of URI paths.

  • CVE-2020-28970CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie. (In addition, an upload endpoint could then be used by…

  • CVE-2020-28940CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.04

    On Western Digital My Cloud OS 5 devices before 5.06.115, the NAS Admin dashboard has an authentication bypass vulnerability that could allow an unauthenticated user to execute privileged commands on the device.

  • CVE-2020-7548CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.01

    A CWE-330 - Use of Insufficiently Random Values vulnerability exists in Smartlink, PowerTag, and Wiser Series Gateways (see security notification for version information) that could allow unauthorized users to login.

  • CVE-2020-7533CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.02

    CWE-287: Improper Authentication vulnerability exists which could cause the execution of commands on the webserver without authentication when sending specially crafted HTTP requests.

  • CVE-2020-26762CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.02

    A stack-based buffer-overflow exists in Edimax IP-Camera IC-3116W (v3.06) and IC-3140W (v3.07), which allows an unauthenticated, unauthorized attacker to perform remote-code-execution due to a crafted GET-Request. The overflow occurs in binary ipcam_cgi due to a missing type…

  • CVE-2020-29390CriNov 30, 2020
    risk 0.67cvss 9.8epss 0.37

    Zeroshell 3.9.3 contains a command injection vulnerability in the /cgi-bin/kerbynet StartSessionSubmit parameter that could allow an unauthenticated attacker to execute a system command by using shell metacharacters and the %0a character.

  • CVE-2020-28926CriNov 30, 2020
    risk 0.65cvss 9.8epss 0.14

    ReadyMedia (aka MiniDLNA) before versions 1.3.0 allows remote code execution. Sending a malicious UPnP HTTP request to the miniDLNA service using HTTP chunked encoding can lead to a signedness bug resulting in a buffer overflow in calls to memcpy/memmove.

  • CVE-2020-25537CriNov 30, 2020
    risk 0.64cvss 9.8epss 0.02

    File upload vulnerability exists in UCMS 1.5.0, and the attacker can take advantage of this vulnerability to obtain server management permission.

  • CVE-2020-4627CriNov 30, 2020
    risk 0.59cvss 9.0epss 0.02

    IBM Cloud Pak for Security 1.3.0.1(CP4S) potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 185367.

  • CVE-2020-27660CriNov 30, 2020
    risk 0.63cvss 9.6epss 0.05

    SQL injection vulnerability in request.cgi in Synology SafeAccess before 1.2.3-0234 allows remote attackers to execute arbitrary SQL commands via the domain parameter.

  • CVE-2020-29127CriNov 30, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on Fujitsu Eternus Storage DX200 S4 devices through 2020-11-25. After logging into the portal as a root user (using any web browser), the portal can be accessed with root privileges when the URI cgi-bin/csp?cspid={XXXXXXXXXX}&csppage=cgi_PgOverview&csplang…

  • CVE-2020-29381CriNov 29, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. Command injection can occur in "upload tftp syslog" and "upload tftp configuration" in the CLI via a crafted…

  • CVE-2020-29377CriNov 29, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on V-SOL V1600D V2.03.69 OLT devices. The string K0LTdi@gnos312$ is compared to the password provided by the the remote attacker. If it matches, access is provided.

  • CVE-2020-29376CriNov 29, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. There is an !j@l#y$z%x6x7q8c9z) password for the admin account to authenticate to the TELNET service.

  • CVE-2020-25014CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.04

    A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet.

  • CVE-2017-15681CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.02

    In Crafter CMS Crafter Studio 3.0.1 a directory traversal vulnerability exists which allows unauthenticated attackers to overwrite files from the operating system which can lead to RCE.

  • CVE-2020-27745CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.02

    Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin.

  • CVE-2019-19876CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. An EnMon PHP script was vulnerable to SQL injection, a different vulnerability than CVE-2019-10006.

  • CVE-2019-19875CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. Arbitrary commands could be injected (using Python scripts) via the AprolCluster script that is invoked via sudo and thus executes with root privileges, a different vulnerability than CVE-2019-16364.

  • CVE-2019-19874CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. Some web scripts in the web interface allowed injection and execution of arbitrary unintended commands on the web server, a different vulnerability than CVE-2019-16364.

  • CVE-2019-19872CriNov 27, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. The AprolLoader could be used to inject and execute arbitrary unintended commands via an unspecified attack scenario, a different vulnerability than CVE-2019-16364.

  • CVE-2020-29128CriNov 26, 2020
    risk 0.57cvss 9.8epss 0.02

    petl before 1.68, in some configurations, allows resolution of entities in an XML document.

  • CVE-2020-27251CriNov 26, 2020
    risk 0.64cvss 9.8epss 0.05

    A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote, unauthenticated attacker to send malicious port ranges, which could result in remote code execution.

  • CVE-2020-29071CriNov 25, 2020
    risk 0.59cvss 9.0epss 0.02

    An XSS issue was found in the Shares feature of LiquidFiles before 3.3.19. The issue arises from the insecure rendering of HTML files uploaded to the platform as attachments, when the -htmlview URL is directly accessed. The impact ranges from executing commands as root on the…

  • CVE-2020-29062CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2020-29061CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2020-29060CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2020-29059CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2020-29058CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2020-29056CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2020-29054CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN,…

  • CVE-2015-9551CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. There is Remote Code Execution in the management interface via the formSysCmd sysCmd parameter.

  • CVE-2020-28329CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.02

    Barco wePresent WiPG-1600W firmware includes a hardcoded API account and password that is discoverable by inspecting the firmware image. A malicious actor could use this password to access authenticated, administrative functions in the API. Affected Version(s): 2.5.1.8,…

  • CVE-2020-25159CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.03

    499ES EtherNet/IP (ENIP) Adaptor Source Code is vulnerable to a stack-based buffer overflow, which may allow an attacker to send a specially crafted packet that may result in a denial-of-service condition or code execution.

  • CVE-2020-28334CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.05

    Barco wePresent WiPG-1600W devices use Hard-coded Credentials (issue 2 of 2). Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19. The Barco wePresent WiPG-1600W device has a hardcoded root password hash included in the firmware image. Exploiting CVE-2020-28329,…

  • CVE-2020-28333CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.03

    Barco wePresent WiPG-1600W devices allow Authentication Bypass. Affected Version(s): 2.5.1.8. The Barco wePresent WiPG-1600W web interface does not use session cookies for tracking authenticated sessions. Instead, the web interface uses a "SEID" token that is appended to the end…

  • CVE-2020-28332CriNov 24, 2020
    risk 0.64cvss 9.8epss 0.01

    Barco wePresent WiPG-1600W devices download code without an Integrity Check. Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19. The Barco wePresent WiPG-1600W firmware does not perform verification of digitally signed firmware updates and is susceptible to processing…