| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-25052 | Cri | 0.64 | 9.8 | 0.01 | Aug 31, 2020 | An issue was discovered on Samsung mobile devices with Q(10.0) (exynos9830 chipsets) software. H-Arx allows attackers to execute arbitrary code or cause a denial of service (memory corruption) because indexes are mishandled. The Samsung ID is SVE-2020-17426 (August 2020). | ||
| CVE-2020-25049 | Cri | 0.64 | 9.8 | 0.00 | Aug 31, 2020 | An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. StatusBarService has insufficient DEX access control. The Samsung ID is SVE-2020-17797 (August 2020). | ||
| CVE-2020-7522 | Cri | 0.64 | 9.8 | 0.02 | Aug 31, 2020 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software (V2.0 and earlier) when accessing a vulnerable method of `SoundUploadServlet` which may lead to uploading executable files to… | ||
| CVE-2020-7521 | Cri | 0.64 | 9.8 | 0.02 | Aug 31, 2020 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software (V2.0 and earlier) when accessing a vulnerable method of `FileUploadServlet` which may lead to uploading executable files to… | ||
| CVE-2020-24786 | Cri | 0.65 | 9.8 | 0.13 | Aug 31, 2020 | An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer… | ||
| CVE-2020-12645 | Cri | 0.64 | 9.8 | 0.01 | Aug 31, 2020 | OX App Suite 7.10.1 to 7.10.3 has improper input validation for rate limits with a crafted User-Agent header, spoofed vacation notices, and /apps/load memory consumption. | ||
| CVE-2020-24115 | Cri | 0.64 | 9.8 | 0.02 | Aug 31, 2020 | In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access. | ||
| CVE-2020-25020 | — | Cri | 0.00 | 9.8 | 0.03 | Aug 29, 2020 | MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components. | |
| CVE-2020-25016 | — | Cri | 0.59 | 9.1 | 0.02 | Aug 29, 2020 | A safety violation was discovered in the rgb crate before 0.8.20 for Rust, leading to (for example) dereferencing of arbitrary pointers or disclosure of uninitialized memory. This occurs because structs can be treated as bytes for read and write operations. | |
| CVE-2020-15165 | Cri | 0.61 | 9.3 | 0.01 | Aug 28, 2020 | Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Store may have had it's sources or permissions tampered by a malicious actor. The official maintainer of the package is recommending all users upgrade to v1.1.8 as soon as possible. For more information, review… | ||
| CVE-2020-15164 | Cri | 0.00 | 10.0 | 0.01 | Aug 28, 2020 | in Scratch Login (MediaWiki extension) before version 1.1, any account can be logged into by using the same username with leading, trailing, or repeated underscore(s), since those are treated as whitespace and trimmed by MediaWiki. This affects all users on any wiki using this… | ||
| CVE-2020-5624 | Cri | 0.64 | 9.8 | 0.01 | Aug 28, 2020 | SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | ||
| CVE-2020-24715 | — | Cri | 0.64 | 9.8 | 0.01 | Aug 27, 2020 | The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, native Python code is used that lacks a comparison of the hostname to commonName and subjectAltName. | |
| CVE-2020-24714 | — | Cri | 0.57 | 9.8 | 0.01 | Aug 27, 2020 | The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verify_hostname option. | |
| CVE-2020-24203 | Cri | 0.64 | 9.8 | 0.04 | Aug 27, 2020 | Insecure File Permissions and Arbitrary File Upload in the upload pic function in updatesubcategory.php in Projects World Travel Management System v1.0 allows remote unauthenticated attackers to gain remote code execution. | ||
| CVE-2020-24202 | Cri | 0.64 | 9.8 | 0.03 | Aug 27, 2020 | File Upload component in Projects World House Rental v1.0 suffers from an arbitrary file upload vulnerability with regular users, which allows remote attackers to conduct code execution. | ||
| CVE-2020-23979 | Cri | 0.64 | 9.8 | 0.02 | Aug 27, 2020 | 13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter. | ||
| CVE-2020-23978 | Cri | 0.64 | 9.8 | 0.02 | Aug 27, 2020 | SQL injection can occur in Soluzione Globale Ecommerce CMS v1 via the parameter " offerta.php" | ||
| CVE-2020-23976 | Cri | 0.64 | 9.8 | 0.02 | Aug 27, 2020 | Webexcels Ecommerce CMS 2.x, 2017, 2018, 2019, 2020 has SQL Injection via the 'content.php' id parameter. | ||
| CVE-2020-23973 | Cri | 0.64 | 9.8 | 0.02 | Aug 27, 2020 | KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter. | ||
| CVE-2020-23980 | Cri | 0.64 | 9.8 | 0.02 | Aug 27, 2020 | DesignMasterEvents Conference management 1.0.0 allows SQL Injection via the username field on the administrator login page. | ||
| CVE-2019-4694 | Cri | 0.64 | 9.8 | 0.01 | Aug 26, 2020 | IBM Security Guardium Data Encryption (GDE) 3.0.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 171832. | ||
| CVE-2020-3446 | Cri | 0.64 | 9.8 | 0.01 | Aug 26, 2020 | A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS… | ||
| CVE-2020-24007 | Cri | 0.64 | 9.8 | 0.02 | Aug 26, 2020 | Umanni RH 1.0 does not limit the number of authentication attempts. An unauthenticated user may exploit this vulnerability to launch a brute-force authentication attack against the Login page. | ||
| CVE-2020-14498 | Cri | 0.63 | 9.6 | 0.03 | Aug 26, 2020 | HMS Industrial Networks AB eCatcher all versions prior to 6.5.5 is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code. | ||
| CVE-2019-18847 | Cri | 0.64 | 9.8 | 0.02 | Aug 26, 2020 | Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1. | ||
| CVE-2020-24653 | — | Cri | 0.57 | 9.8 | 0.01 | Aug 26, 2020 | secure-store in Expo through 2.16.1 on iOS provides the insecure kSecAttrAccessibleAlwaysThisDeviceOnly policy when WHEN_UNLOCKED_THIS_DEVICE_ONLY is used. | |
| CVE-2020-15639 | Cri | 0.65 | 9.8 | 0.12 | Aug 25, 2020 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Authentication is not required to exploit this vulnerability. The specific flaw exists within the decryptFile method of the… | ||
| CVE-2020-16245 | Cri | 0.64 | 9.8 | 0.08 | Aug 25, 2020 | Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code. | ||
| CVE-2020-14524 | Cri | 0.64 | 9.8 | 0.03 | Aug 25, 2020 | Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute arbitrary code. | ||
| CVE-2020-14510 | Cri | 0.64 | 9.8 | 0.02 | Aug 25, 2020 | GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root. | ||
| CVE-2020-14500 | Cri | 0.65 | 10.0 | 0.02 | Aug 25, 2020 | Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data. | ||
| CVE-2020-6637 | Cri | 0.02 | 9.8 | 0.20 | Aug 24, 2020 | openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php. | ||
| CVE-2020-24186 | Cri | 0.76 | 10.0 | 0.95 | Aug 24, 2020 | A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action. | ||
| CVE-2020-8234 | Cri | 0.64 | 9.8 | 0.03 | Aug 21, 2020 | A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SIDSSL cookie for admin can be guessed, enabling the attacker to obtain high privileges and get a root shell by a Command injection. | ||
| CVE-2020-24590 | — | Cri | 0.59 | 9.1 | 0.01 | Aug 21, 2020 | The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML Entity Expansion attacks. | |
| CVE-2020-24589 | — | Cri | 0.61 | 9.1 | 0.27 | Aug 21, 2020 | The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML External Entity injection (XXE) attacks. | |
| CVE-2019-11857 | Cri | 0.59 | 9.1 | 0.02 | Aug 21, 2020 | Lack of input sanitization in AceManager of ALEOS before 4.12.0, 4.9.5 and 4.4.9 allows disclosure of sensitive system information. | ||
| CVE-2020-24055 | Cri | 0.64 | 9.8 | 0.02 | Aug 21, 2020 | Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an autodiscovery service implemented in the binary executable '/usr/sbin/DM' that listens on port TCP 6666. The service is vulnerable to a stack buffer overflow. It is worth noting that… | ||
| CVE-2020-24054 | Cri | 0.64 | 9.8 | 0.03 | Aug 21, 2020 | The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One of the limitations of this feature is that it only takes a path to a binary… | ||
| CVE-2020-24052 | Cri | 0.59 | 9.1 | 0.02 | Aug 21, 2020 | Several XML External Entity (XXE) vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition (DTD) in an XML request. | ||
| CVE-2020-24051 | Cri | 0.64 | 9.8 | 0.02 | Aug 21, 2020 | The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that the authentication check for those ONVIF operations can be bypassed. An attacker… | ||
| CVE-2020-16279 | Cri | 0.64 | 9.8 | 0.02 | Aug 20, 2020 | The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization. | ||
| CVE-2020-23935 | Cri | 0.68 | 9.8 | 0.16 | Aug 20, 2020 | Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)". | ||
| CVE-2020-23936 | Cri | 0.64 | 9.8 | 0.01 | Aug 20, 2020 | PHPGurukul Vehicle Parking Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)". | ||
| CVE-2020-10283 | Cri | 0.64 | 9.8 | 0.01 | Aug 20, 2020 | The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autopilot negotiate the version via the AUTOPILOT_VERSION message. Since this… | ||
| CVE-2020-17456 | Cri | 0.72 | 9.8 | 0.72 | Aug 20, 2020 | SEOWON INTECH SLC-130 And SLR-120S devices allow Remote Code Execution via the ipAddr parameter to the system_log.cgi page. | ||
| CVE-2020-15636 | Cri | 0.64 | 9.8 | 0.09 | Aug 20, 2020 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR R6400, R6700, R7000, R7850, R7900, R8000, RS400, and XR300 routers with firmware 1.0.4.84_10.0.58. Authentication is not required to exploit this vulnerability. The specific… | ||
| CVE-2020-15149 | Cri | 0.00 | 9.9 | 0.02 | Aug 20, 2020 | NodeBB before version 1.14.3 has a bug introduced in version 1.12.2 in the validation logic that makes it possible to change the password of any user on a running NodeBB forum by sending a specially crafted socket.io call to the server. This could lead to a privilege escalation… | ||
| CVE-2020-15146 | — | Cri | 0.56 | 9.6 | 0.02 | Aug 20, 2020 | In SyliusResourceBundle before versions 1.3.14, 1.4.7, 1.5.2 and 1.6.4, request parameters injected inside an expression evaluated by `symfony/expression-language` package haven't been sanitized properly. This allows the attacker to access any public service by manipulating that… |
- risk 0.64cvss 9.8epss 0.01
An issue was discovered on Samsung mobile devices with Q(10.0) (exynos9830 chipsets) software. H-Arx allows attackers to execute arbitrary code or cause a denial of service (memory corruption) because indexes are mishandled. The Samsung ID is SVE-2020-17426 (August 2020).
- risk 0.64cvss 9.8epss 0.00
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. StatusBarService has insufficient DEX access control. The Samsung ID is SVE-2020-17797 (August 2020).
- risk 0.64cvss 9.8epss 0.02
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software (V2.0 and earlier) when accessing a vulnerable method of `SoundUploadServlet` which may lead to uploading executable files to…
- risk 0.64cvss 9.8epss 0.02
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software (V2.0 and earlier) when accessing a vulnerable method of `FileUploadServlet` which may lead to uploading executable files to…
- risk 0.65cvss 9.8epss 0.13
An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer…
- risk 0.64cvss 9.8epss 0.01
OX App Suite 7.10.1 to 7.10.3 has improper input validation for rate limits with a crafted User-Agent header, spoofed vacation notices, and /apps/load memory consumption.
- risk 0.64cvss 9.8epss 0.02
In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access.
- risk 0.00cvss 9.8epss 0.03
MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components.
- risk 0.59cvss 9.1epss 0.02
A safety violation was discovered in the rgb crate before 0.8.20 for Rust, leading to (for example) dereferencing of arbitrary pointers or disclosure of uninitialized memory. This occurs because structs can be treated as bytes for read and write operations.
- risk 0.61cvss 9.3epss 0.01
Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Store may have had it's sources or permissions tampered by a malicious actor. The official maintainer of the package is recommending all users upgrade to v1.1.8 as soon as possible. For more information, review…
- risk 0.00cvss 10.0epss 0.01
in Scratch Login (MediaWiki extension) before version 1.1, any account can be logged into by using the same username with leading, trailing, or repeated underscore(s), since those are treated as whitespace and trimmed by MediaWiki. This affects all users on any wiki using this…
- risk 0.64cvss 9.8epss 0.01
SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
- risk 0.64cvss 9.8epss 0.01
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, native Python code is used that lacks a comparison of the hostname to commonName and subjectAltName.
- risk 0.57cvss 9.8epss 0.01
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verify_hostname option.
- risk 0.64cvss 9.8epss 0.04
Insecure File Permissions and Arbitrary File Upload in the upload pic function in updatesubcategory.php in Projects World Travel Management System v1.0 allows remote unauthenticated attackers to gain remote code execution.
- risk 0.64cvss 9.8epss 0.03
File Upload component in Projects World House Rental v1.0 suffers from an arbitrary file upload vulnerability with regular users, which allows remote attackers to conduct code execution.
- risk 0.64cvss 9.8epss 0.02
13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter.
- risk 0.64cvss 9.8epss 0.02
SQL injection can occur in Soluzione Globale Ecommerce CMS v1 via the parameter " offerta.php"
- risk 0.64cvss 9.8epss 0.02
Webexcels Ecommerce CMS 2.x, 2017, 2018, 2019, 2020 has SQL Injection via the 'content.php' id parameter.
- risk 0.64cvss 9.8epss 0.02
KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter.
- risk 0.64cvss 9.8epss 0.02
DesignMasterEvents Conference management 1.0.0 allows SQL Injection via the username field on the administrator login page.
- risk 0.64cvss 9.8epss 0.01
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 171832.
- risk 0.64cvss 9.8epss 0.01
A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS…
- risk 0.64cvss 9.8epss 0.02
Umanni RH 1.0 does not limit the number of authentication attempts. An unauthenticated user may exploit this vulnerability to launch a brute-force authentication attack against the Login page.
- risk 0.63cvss 9.6epss 0.03
HMS Industrial Networks AB eCatcher all versions prior to 6.5.5 is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.
- risk 0.64cvss 9.8epss 0.02
Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1.
- risk 0.57cvss 9.8epss 0.01
secure-store in Expo through 2.16.1 on iOS provides the insecure kSecAttrAccessibleAlwaysThisDeviceOnly policy when WHEN_UNLOCKED_THIS_DEVICE_ONLY is used.
- risk 0.65cvss 9.8epss 0.12
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Authentication is not required to exploit this vulnerability. The specific flaw exists within the decryptFile method of the…
- risk 0.64cvss 9.8epss 0.08
Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.
- risk 0.64cvss 9.8epss 0.03
Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.
- risk 0.64cvss 9.8epss 0.02
GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root.
- risk 0.65cvss 10.0epss 0.02
Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data.
- risk 0.02cvss 9.8epss 0.20
openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php.
- risk 0.76cvss 10.0epss 0.95
A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action.
- risk 0.64cvss 9.8epss 0.03
A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SIDSSL cookie for admin can be guessed, enabling the attacker to obtain high privileges and get a root shell by a Command injection.
- risk 0.59cvss 9.1epss 0.01
The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML Entity Expansion attacks.
- risk 0.61cvss 9.1epss 0.27
The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML External Entity injection (XXE) attacks.
- risk 0.59cvss 9.1epss 0.02
Lack of input sanitization in AceManager of ALEOS before 4.12.0, 4.9.5 and 4.4.9 allows disclosure of sensitive system information.
- risk 0.64cvss 9.8epss 0.02
Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an autodiscovery service implemented in the binary executable '/usr/sbin/DM' that listens on port TCP 6666. The service is vulnerable to a stack buffer overflow. It is worth noting that…
- risk 0.64cvss 9.8epss 0.03
The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One of the limitations of this feature is that it only takes a path to a binary…
- risk 0.59cvss 9.1epss 0.02
Several XML External Entity (XXE) vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition (DTD) in an XML request.
- risk 0.64cvss 9.8epss 0.02
The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that the authentication check for those ONVIF operations can be bypassed. An attacker…
- risk 0.64cvss 9.8epss 0.02
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization.
- risk 0.68cvss 9.8epss 0.16
Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)".
- risk 0.64cvss 9.8epss 0.01
PHPGurukul Vehicle Parking Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)".
- risk 0.64cvss 9.8epss 0.01
The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autopilot negotiate the version via the AUTOPILOT_VERSION message. Since this…
- risk 0.72cvss 9.8epss 0.72
SEOWON INTECH SLC-130 And SLR-120S devices allow Remote Code Execution via the ipAddr parameter to the system_log.cgi page.
- risk 0.64cvss 9.8epss 0.09
This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR R6400, R6700, R7000, R7850, R7900, R8000, RS400, and XR300 routers with firmware 1.0.4.84_10.0.58. Authentication is not required to exploit this vulnerability. The specific…
- risk 0.00cvss 9.9epss 0.02
NodeBB before version 1.14.3 has a bug introduced in version 1.12.2 in the validation logic that makes it possible to change the password of any user on a running NodeBB forum by sending a specially crafted socket.io call to the server. This could lead to a privilege escalation…
- risk 0.56cvss 9.6epss 0.02
In SyliusResourceBundle before versions 1.3.14, 1.4.7, 1.5.2 and 1.6.4, request parameters injected inside an expression evaluated by `symfony/expression-language` package haven't been sanitized properly. This allows the attacker to access any public service by manipulating that…