VYPR

CVEs

31,277 total · page 452 of 626

  • CVE-2014-2052CriFeb 11, 2020
    risk 0.64cvss 9.8epss 0.02

    Zend Framework, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

  • CVE-2013-1360CriFeb 11, 2020
    risk 0.69cvss 9.8epss 0.23

    An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which…

  • CVE-2020-3934CriFeb 11, 2020
    risk 0.64cvss 9.8epss 0.01

    TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command.

  • CVE-2019-14514CriFeb 11, 2020
    risk 0.64cvss 9.8epss 0.07

    An issue was discovered in Microvirt MEmu all versions prior to 7.0.2. A guest Android operating system inside the MEmu emulator contains a /system/bin/systemd binary that is run with root privileges on startup (this is unrelated to Red Hat's systemd init program, and is a…

  • CVE-2013-5945CriFeb 11, 2020
    risk 0.67cvss 9.8epss 0.10

    Multiple SQL injection vulnerabilities in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware before 1.08B77 allow remote attackers to…

  • CVE-2013-4267CriFeb 11, 2020
    risk 0.57cvss 9.8epss 0.04

    Ajaxeplorer before 5.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) archive_name parameter to the Power FS module (plugins/action.powerfs/class.PowerFSController.php), a (2) file name to the getTrustSizeOnFileSystem function in the…

  • CVE-2020-8840CriFeb 10, 2020
    risk 0.59cvss 9.8epss 0.27

    FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.

  • CVE-2019-17137CriFeb 10, 2020
    risk 0.61cvss 9.4epss 0.03

    This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR AC1200 R6220 Firmware version 1.1.0.86 Smart WiFi Router. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…

  • CVE-2019-20451CriFeb 10, 2020
    risk 0.64cvss 9.8epss 0.08

    The HTTP API in Prismview System 9 11.10.17.00 and Prismview Player 11 13.09.1100 allows remote code execution by uploading RebootSystem.lnk and requesting /REBOOTSYSTEM or /RESTARTVNC. (Authentication is required but an XML file containing credentials can be downloaded.)

  • CVE-2012-6611CriFeb 10, 2020
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative password by default, and can be successfully used without setting this password.

  • CVE-2019-20062CriFeb 10, 2020
    risk 0.64cvss 9.8epss 0.02

    MFScripts YetiShare v3.5.2 through v4.5.4 might allow an attacker to reset a password by using a leaked hash (the hash never expires until used).

  • CVE-2015-5741CriFeb 8, 2020
    risk 0.57cvss 9.8epss 0.03

    The net/http library in net/http/transfer.go in Go before 1.4.3 does not properly parse HTTP headers, which allows remote attackers to conduct HTTP request smuggling attacks via a request that contains Content-Length and Transfer-Encoding header fields.

  • CVE-2014-8739CriFeb 8, 2020
    risk 0.74cvss 9.8epss 0.92

    Unrestricted file upload vulnerability in server/php/UploadHandler.php in the jQuery File Upload Plugin 6.4.4 for jQuery, as used in the Creative Solutions Creative Contact Form (formerly Sexy Contact Form) before 1.0.0 for WordPress and before 2.0.1 for Joomla!, allows remote…

  • CVE-2011-3642CriFeb 8, 2020
    risk 0.66cvss 9.6epss 0.07

    Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16, as used in the News system (news) extension for TYPO3 and Mahara, allows remote attackers to inject arbitrary web script or HTML via the plugin configuration directive in a reference to an…

  • CVE-2020-6770CriFeb 7, 2020
    risk 0.65cvss 10.0epss 0.04

    Deserialization of Untrusted Data in the BVMS Mobile Video Service (BVMS MVS) allows an unauthenticated remote attacker to execute arbitrary code on the system. This affects Bosch BVMS versions 10.0 <= 10.0.0.1225, 9.0 <= 9.0.0.827, 8.0 <= 8.0.0.329 and 7.5 and older. This…

  • CVE-2020-8796CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.03

    Biscom Secure File Transfer (SFT) before 5.1.1071 and 6.0.1xxx before 6.0.1005 allows Remote Code Execution on the server.

  • CVE-2020-6769CriFeb 7, 2020
    risk 0.65cvss 10.0epss 0.02

    Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. A successful attack can impact the confidentiality and availability…

  • CVE-2013-3091CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.04

    An Authentication Bypass vulnerability in Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication using "Javascript debugging."

  • CVE-2014-5091CriFeb 7, 2020
    risk 0.68cvss 9.8epss 0.15

    A vulnerability exits in Status2K 2.5 Server Monitoring Software via the multies parameter to includes/functions.php, which could let a malicious user execute arbitrary PHP code.

  • CVE-2014-5087CriFeb 7, 2020
    risk 0.67cvss 9.8epss 0.07

    A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.

  • CVE-2019-15606CriFeb 7, 2020
    risk 0.65cvss 9.8epss 0.20

    Including trailing white space in HTTP header values in Nodejs 10, 12, and 13 causes bypass of authorization based on header value comparisons

  • CVE-2019-15605CriFeb 7, 2020
    risk 0.68cvss 9.8epss 0.57

    HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed

  • CVE-2014-9530CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.01

    A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact.

  • CVE-2013-4335CriFeb 7, 2020
    risk 0.57cvss 9.8epss 0.02

    opOpenSocialPlugin 0.8.2.1, > 0.9.9.2, 0.9.13, 1.2.6: Multiple XML External Entity Injection Vulnerabilities

  • CVE-2019-17268CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.02

    The omniauth-weibo-oauth2 gem 0.4.6 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Versions through 0.4.5, and 0.5.1 and later, are unaffected.

  • CVE-2013-4334CriFeb 7, 2020
    risk 0.57cvss 9.8epss 0.01

    opWebAPIPlugin 0.5.1, 0.4.0, and 0.1.0: XXE Vulnerabilities

  • CVE-2019-14063CriFeb 7, 2020
    risk 0.59cvss 9.1epss 0.01

    Out of bound access due to Invalid inputs to dapm mux settings which results into kernel failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and…

  • CVE-2019-14057CriFeb 7, 2020
    risk 0.59cvss 9.1epss 0.01

    Buffer Over read of codec private data while parsing an mkv file due to lack of check of buffer size before read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon…

  • CVE-2019-10590CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.01

    Out of bound access while parsing dts atom, which is non-standard as it does not have valid number of tracks in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &…

  • CVE-2020-8656CriFeb 7, 2020
    risk 0.73cvss 9.8epss 0.85

    An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/api_functions.php.

  • CVE-2020-8645CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is job_id. The function is getJobApplicationsByJobId(). The file is _lib/class.JobApplication.php.

  • CVE-2020-6760CriFeb 6, 2020
    risk 0.64cvss 9.8epss 0.02

    Schmid ZI 620 V400 VPN 090 routers allow an attacker to execute OS commands as root via shell metacharacters to an entry on the SSH subcommand menu, as demonstrated by ping.

  • CVE-2020-8657CriKEVFeb 6, 2020
    risk 0.86cvss 9.8epss 0.92

    An issue was discovered in EyesOfNetwork 5.3. The installation uses the same API key (hardcoded as EONAPI_KEY in include/api_functions.php for API version 2.4.2) by default for all installations, hence allowing an attacker to calculate/guess the admin access token.

  • CVE-2012-6306CriFeb 6, 2020
    risk 0.64cvss 9.8epss 0.01

    A vulnerability exists in HCView (aka Hardcoreview) 1.4 due to a write access violation with a GIF file.

  • CVE-2020-8772CriFeb 6, 2020
    risk 0.74cvss 9.8epss 0.88

    The InfiniteWP Client plugin before 1.9.4.5 for WordPress has a missing authorization check in iwp_mmb_set_request in init.php. Any attacker who knows the username of an administrator can log in.

  • CVE-2020-8771CriFeb 6, 2020
    risk 0.67cvss 9.8epss 0.46

    The Time Capsule plugin before 1.21.16 for WordPress has an authentication bypass. Any request containing IWP_JSON_PREFIX causes the client to be logged in as the first account on the list of administrator accounts.

  • CVE-2020-8636CriFeb 6, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered in OpServices OpMon 9.3.2 that allows Remote Code Execution .

  • CVE-2019-10789CriFeb 6, 2020
    risk 0.64cvss 9.8epss 0.05

    All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users without any sanitization.

  • CVE-2013-4521CriFeb 6, 2020
    risk 0.57cvss 9.8epss 0.04

    RichFaces implementation in Nuxeo Platform 5.6.0 before HF27 and 5.8.0 before HF-01 does not restrict the classes for which deserialization methods can be called, which allows remote attackers to execute arbitrary code via crafted serialized data. NOTE: this vulnerability may…

  • CVE-2015-2909CriFeb 6, 2020
    risk 0.64cvss 9.8epss 0.03

    Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not…

  • CVE-2011-1517CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.04

    SAP NetWeaver 7.0 allows Remote Code Execution and Denial of Service caused by an error in the DiagTraceHex() function. By sending a specially-crafted packet, an attacker could exploit this vulnerability to cause the application to crash.

  • CVE-2020-8644CriKEVFeb 5, 2020
    risk 0.79cvss 9.8epss 0.87

    PlaySMS before 1.4.3 does not sanitize inputs from a malicious string.

  • CVE-2011-1151CriFeb 5, 2020
    risk 0.59cvss 9.1epss 0.02

    Joomla! 1.6.0 is vulnerable to SQL Injection via the filter_order and filer_order_Dir parameters.

  • CVE-2013-2681CriFeb 5, 2020
    risk 0.68cvss 9.8epss 0.10

    Cisco Linksys E4200 1.0.05 Build 7 devices contain a Security Bypass Vulnerability which could allow remote attackers to gain unauthorized access.

  • CVE-2019-20447CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.02

    Jobberbase 2.0 has SQL injection via the PATH_INFO to the jobs-in endpoint.

  • CVE-2015-5628CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.07

    Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP Entry R5.04.20 and earlier, ProSafe-RS R3.02.10 and earlier, Exaopc R3.72.00 and…

  • CVE-2015-5627CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.04

    Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP Entry R5.04.20 and earlier, ProSafe-RS R3.02.10 and earlier, Exaopc R3.72.00 and…

  • CVE-2015-5626CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.04

    Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP Entry R5.04.20 and earlier, ProSafe-RS R3.02.10 and earlier, Exaopc R3.72.00 and…

  • CVE-2010-4815CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.02

    Coppermine gallery before 1.4.26 has an input validation vulnerability that allows for code execution.

  • CVE-2020-6754CriFeb 5, 2020
    risk 0.71cvss 9.8epss 0.95

    dotCMS before 5.2.4 is vulnerable to directory traversal, leading to incorrect access control. It allows an attacker to read or execute files under $TOMCAT_HOME/webapps/ROOT/assets (which should be a protected directory). Additionally, attackers can upload temporary files (e.g.,…