VYPR

CVEs

31,781 total · page 433 of 636

  • CVE-2020-25052CriAug 31, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Samsung mobile devices with Q(10.0) (exynos9830 chipsets) software. H-Arx allows attackers to execute arbitrary code or cause a denial of service (memory corruption) because indexes are mishandled. The Samsung ID is SVE-2020-17426 (August 2020).

  • CVE-2020-25049CriAug 31, 2020
    risk 0.64cvss 9.8epss 0.00

    An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. StatusBarService has insufficient DEX access control. The Samsung ID is SVE-2020-17797 (August 2020).

  • CVE-2020-7522CriAug 31, 2020
    risk 0.64cvss 9.8epss 0.02

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software (V2.0 and earlier) when accessing a vulnerable method of `SoundUploadServlet` which may lead to uploading executable files to…

  • CVE-2020-7521CriAug 31, 2020
    risk 0.64cvss 9.8epss 0.02

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software (V2.0 and earlier) when accessing a vulnerable method of `FileUploadServlet` which may lead to uploading executable files to…

  • CVE-2020-24786CriAug 31, 2020
    risk 0.65cvss 9.8epss 0.13

    An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer…

  • CVE-2020-12645CriAug 31, 2020
    risk 0.64cvss 9.8epss 0.01

    OX App Suite 7.10.1 to 7.10.3 has improper input validation for rate limits with a crafted User-Agent header, spoofed vacation notices, and /apps/load memory consumption.

  • CVE-2020-24115CriAug 31, 2020
    risk 0.64cvss 9.8epss 0.02

    In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access.

  • CVE-2020-25020CriAug 29, 2020
    risk 0.00cvss 9.8epss 0.03

    MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components.

  • CVE-2020-25016CriAug 29, 2020
    risk 0.59cvss 9.1epss 0.02

    A safety violation was discovered in the rgb crate before 0.8.20 for Rust, leading to (for example) dereferencing of arbitrary pointers or disclosure of uninitialized memory. This occurs because structs can be treated as bytes for read and write operations.

  • CVE-2020-15165CriAug 28, 2020
    risk 0.61cvss 9.3epss 0.01

    Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Store may have had it's sources or permissions tampered by a malicious actor. The official maintainer of the package is recommending all users upgrade to v1.1.8 as soon as possible. For more information, review…

  • CVE-2020-15164CriAug 28, 2020
    risk 0.00cvss 10.0epss 0.01

    in Scratch Login (MediaWiki extension) before version 1.1, any account can be logged into by using the same username with leading, trailing, or repeated underscore(s), since those are treated as whitespace and trimmed by MediaWiki. This affects all users on any wiki using this…

  • CVE-2020-5624CriAug 28, 2020
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2020-24715CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.01

    The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, native Python code is used that lacks a comparison of the hostname to commonName and subjectAltName.

  • CVE-2020-24714CriAug 27, 2020
    risk 0.57cvss 9.8epss 0.01

    The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verify_hostname option.

  • CVE-2020-24203CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.04

    Insecure File Permissions and Arbitrary File Upload in the upload pic function in updatesubcategory.php in Projects World Travel Management System v1.0 allows remote unauthenticated attackers to gain remote code execution.

  • CVE-2020-24202CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.03

    File Upload component in Projects World House Rental v1.0 suffers from an arbitrary file upload vulnerability with regular users, which allows remote attackers to conduct code execution.

  • CVE-2020-23979CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.02

    13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter.

  • CVE-2020-23978CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.02

    SQL injection can occur in Soluzione Globale Ecommerce CMS v1 via the parameter " offerta.php"

  • CVE-2020-23976CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.02

    Webexcels Ecommerce CMS 2.x, 2017, 2018, 2019, 2020 has SQL Injection via the 'content.php' id parameter.

  • CVE-2020-23973CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.02

    KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter.

  • CVE-2020-23980CriAug 27, 2020
    risk 0.64cvss 9.8epss 0.02

    DesignMasterEvents Conference management 1.0.0 allows SQL Injection via the username field on the administrator login page.

  • CVE-2019-4694CriAug 26, 2020
    risk 0.64cvss 9.8epss 0.01

    IBM Security Guardium Data Encryption (GDE) 3.0.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 171832.

  • CVE-2020-3446CriAug 26, 2020
    risk 0.64cvss 9.8epss 0.01

    A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS…

  • CVE-2020-24007CriAug 26, 2020
    risk 0.64cvss 9.8epss 0.02

    Umanni RH 1.0 does not limit the number of authentication attempts. An unauthenticated user may exploit this vulnerability to launch a brute-force authentication attack against the Login page.

  • CVE-2020-14498CriAug 26, 2020
    risk 0.63cvss 9.6epss 0.03

    HMS Industrial Networks AB eCatcher all versions prior to 6.5.5 is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

  • CVE-2019-18847CriAug 26, 2020
    risk 0.64cvss 9.8epss 0.02

    Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1.

  • CVE-2020-24653CriAug 26, 2020
    risk 0.57cvss 9.8epss 0.01

    secure-store in Expo through 2.16.1 on iOS provides the insecure kSecAttrAccessibleAlwaysThisDeviceOnly policy when WHEN_UNLOCKED_THIS_DEVICE_ONLY is used.

  • CVE-2020-15639CriAug 25, 2020
    risk 0.65cvss 9.8epss 0.12

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Authentication is not required to exploit this vulnerability. The specific flaw exists within the decryptFile method of the…

  • CVE-2020-16245CriAug 25, 2020
    risk 0.64cvss 9.8epss 0.08

    Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.

  • CVE-2020-14524CriAug 25, 2020
    risk 0.64cvss 9.8epss 0.03

    Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

  • CVE-2020-14510CriAug 25, 2020
    risk 0.64cvss 9.8epss 0.02

    GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root.

  • CVE-2020-14500CriAug 25, 2020
    risk 0.65cvss 10.0epss 0.02

    Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data.

  • CVE-2020-6637CriAug 24, 2020
    risk 0.02cvss 9.8epss 0.20

    openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php.

  • CVE-2020-24186CriAug 24, 2020
    risk 0.76cvss 10.0epss 0.95

    A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action.

  • CVE-2020-8234CriAug 21, 2020
    risk 0.64cvss 9.8epss 0.03

    A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SIDSSL cookie for admin can be guessed, enabling the attacker to obtain high privileges and get a root shell by a Command injection.

  • CVE-2020-24590CriAug 21, 2020
    risk 0.59cvss 9.1epss 0.01

    The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML Entity Expansion attacks.

  • CVE-2020-24589CriAug 21, 2020
    risk 0.61cvss 9.1epss 0.27

    The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML External Entity injection (XXE) attacks.

  • CVE-2019-11857CriAug 21, 2020
    risk 0.59cvss 9.1epss 0.02

    Lack of input sanitization in AceManager of ALEOS before 4.12.0, 4.9.5 and 4.4.9 allows disclosure of sensitive system information.

  • CVE-2020-24055CriAug 21, 2020
    risk 0.64cvss 9.8epss 0.02

    Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an autodiscovery service implemented in the binary executable '/usr/sbin/DM' that listens on port TCP 6666. The service is vulnerable to a stack buffer overflow. It is worth noting that…

  • CVE-2020-24054CriAug 21, 2020
    risk 0.64cvss 9.8epss 0.03

    The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One of the limitations of this feature is that it only takes a path to a binary…

  • CVE-2020-24052CriAug 21, 2020
    risk 0.59cvss 9.1epss 0.02

    Several XML External Entity (XXE) vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition (DTD) in an XML request.

  • CVE-2020-24051CriAug 21, 2020
    risk 0.64cvss 9.8epss 0.02

    The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that the authentication check for those ONVIF operations can be bypassed. An attacker…

  • CVE-2020-16279CriAug 20, 2020
    risk 0.64cvss 9.8epss 0.02

    The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization.

  • CVE-2020-23935CriAug 20, 2020
    risk 0.68cvss 9.8epss 0.16

    Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)".

  • CVE-2020-23936CriAug 20, 2020
    risk 0.64cvss 9.8epss 0.01

    PHPGurukul Vehicle Parking Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)".

  • CVE-2020-10283CriAug 20, 2020
    risk 0.64cvss 9.8epss 0.01

    The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autopilot negotiate the version via the AUTOPILOT_VERSION message. Since this…

  • CVE-2020-17456CriAug 20, 2020
    risk 0.72cvss 9.8epss 0.72

    SEOWON INTECH SLC-130 And SLR-120S devices allow Remote Code Execution via the ipAddr parameter to the system_log.cgi page.

  • CVE-2020-15636CriAug 20, 2020
    risk 0.64cvss 9.8epss 0.09

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR R6400, R6700, R7000, R7850, R7900, R8000, RS400, and XR300 routers with firmware 1.0.4.84_10.0.58. Authentication is not required to exploit this vulnerability. The specific…

  • CVE-2020-15149CriAug 20, 2020
    risk 0.00cvss 9.9epss 0.02

    NodeBB before version 1.14.3 has a bug introduced in version 1.12.2 in the validation logic that makes it possible to change the password of any user on a running NodeBB forum by sending a specially crafted socket.io call to the server. This could lead to a privilege escalation…

  • CVE-2020-15146CriAug 20, 2020
    risk 0.56cvss 9.6epss 0.02

    In SyliusResourceBundle before versions 1.3.14, 1.4.7, 1.5.2 and 1.6.4, request parameters injected inside an expression evaluated by `symfony/expression-language` package haven't been sanitized properly. This allows the attacker to access any public service by manipulating that…