VYPR

CVEs

31,277 total · page 455 of 626

  • CVE-2014-4172CriJan 24, 2020
    risk 0.57cvss 9.8epss 0.06

    A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrary web script or HTML via…

  • CVE-2020-6966CriJan 24, 2020
    risk 0.65cvss 10.0epss 0.02

    In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control,…

  • CVE-2020-6965CriJan 24, 2020
    risk 0.64cvss 9.9epss 0.01

    In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850…

  • CVE-2013-1595CriJan 24, 2020
    risk 0.70cvss 9.8epss 0.42

    A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service.

  • CVE-2020-6963CriJan 24, 2020
    risk 0.65cvss 10.0epss 0.03

    In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an…

  • CVE-2020-6962CriJan 24, 2020
    risk 0.65cvss 10.0epss 0.05

    In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X CARESCAPE Central Station (CSCS) Versions…

  • CVE-2020-6961CriJan 24, 2020
    risk 0.65cvss 10.0epss 0.02

    In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X, a vulnerability exists in the affected…

  • CVE-2015-4042CriJan 24, 2020
    risk 0.57cvss 9.8epss 0.02

    Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service (application crash) or possibly have unspecified other impact via long strings.

  • CVE-2014-1925CriJan 24, 2020
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in the MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 allows remote authenticated users to execute arbitrary SQL commands via…

  • CVE-2014-1924CriJan 24, 2020
    risk 0.64cvss 9.8epss 0.02

    The MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 does not require authentication, which allows remote attackers to conduct SQL injection attacks via…

  • CVE-2013-4333CriJan 24, 2020
    risk 0.52cvss 9.1epss 0.02

    OpenPNE 3 versions 3.8.7, 3.6.11, 3.4.21.1, 3.2.7.6, 3.0.8.5 has an External Entity Injection Vulnerability

  • CVE-2013-3960CriJan 24, 2020
    risk 0.64cvss 9.9epss 0.02

    Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass

  • CVE-2012-6451CriJan 24, 2020
    risk 0.64cvss 9.8epss 0.03

    Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability

  • CVE-2020-7245CriJan 23, 2020
    risk 0.00cvss 9.8epss 0.01

    Incorrect username validation in the registration process of CTFd v2.0.0 - v2.2.2 allows an attacker to take over an arbitrary account if the username is known and emails are enabled on the CTFd instance. To exploit the vulnerability, one must register with a username identical…

  • CVE-2019-17570CriJan 23, 2020
    risk 0.68cvss 9.8epss 0.49

    An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer…

  • CVE-2012-6649CriJan 23, 2020
    risk 0.61cvss 9.8epss 0.16

    WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.

  • CVE-2020-7941CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.02

    A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without needing write permission.

  • CVE-2019-19897CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.06

    In IXP EasyInstall 6.2.13723, there is Remote Code Execution via the Agent Service. An unauthenticated attacker can communicate with the Agent Service over TCP port 20051, and execute code in the NT AUTHORITY\SYSTEM context of the target system by using the Execute Command Line…

  • CVE-2019-19896CriJan 23, 2020
    risk 0.65cvss 9.9epss 0.03

    In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions of the IXP$ share on the server allows modification of directories and files (e.g., bat-scripts), which allows execution of code in the…

  • CVE-2015-5334CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.03

    Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (program crash) or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability…

  • CVE-2013-1592CriJan 23, 2020
    risk 0.69cvss 9.8epss 0.23

    A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04, which could let a…

  • CVE-2019-16517CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a CORS misconfiguration, which reflected the Origin provided by incoming requests. This allowed JavaScript running on any domain to interact with the server APIs and…

  • CVE-2019-16153CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.01

    A hard-coded password vulnerability in the Fortinet FortiSIEM database component version 5.2.5 and below may allow attackers to access the device database via the use of static credentials.

  • CVE-2019-19839CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.03

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=import-category to admin/_cmdstat.jsp via the uploadFile attribute.

  • CVE-2019-19838CriJan 23, 2020
    risk 0.66cvss 9.8epss 0.24

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=get-platform-depends to admin/_cmdstat.jsp via the uploadFile attribute.

  • CVE-2013-6792CriJan 23, 2020
    risk 0.67cvss 9.8epss 0.03

    Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability

  • CVE-2012-5867CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.02

    HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability

  • CVE-2012-5699CriJan 23, 2020
    risk 0.67cvss 9.8epss 0.05

    BabyGekko before 1.2.4 allows PHP file inclusion.

  • CVE-2012-2087CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.03

    ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface.

  • CVE-2019-19842CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.05

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=spectra-analysis to admin/_cmdstat.jsp via the mac attribute.

  • CVE-2019-19841CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.03

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=packet-capture to admin/_cmdstat.jsp via the mac attribute.

  • CVE-2019-19840CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.04

    A stack-based buffer overflow in zap_parse_args in zap.c in zap in Ruckus Unleashed through 200.7.10.102.64 allows remote code execution via an unauthenticated HTTP request.

  • CVE-2019-19843CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.02

    Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote credential fetch via an unauthenticated HTTP request involving a symlink with /tmp and web/user/wps_tool_cache.

  • CVE-2019-19836CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.04

    AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote code execution via a POST request that uses tools/_rcmdstat.jsp to write to a specified filename.

  • CVE-2012-4919CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.03

    Gallery Plugin1.4 for WordPress has a Remote File Include Vulnerability

  • CVE-2011-3621CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.01

    A reverse proxy issue exists in FluxBB before 1.4.7 when FORUM_BEHIND_REVERSE_PROXY is enabled.

  • CVE-2011-3614CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.02

    An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9.

  • CVE-2020-7109CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.02

    The Elementor Page Builder plugin before 2.8.4 for WordPress does not sanitize data during creation of a new template.

  • CVE-2020-6960CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.01

    The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6…

  • CVE-2020-6959CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.02

    The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6…

  • CVE-2019-10781CriJan 22, 2020
    risk 0.57cvss 9.8epss 0.01

    In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector.

  • CVE-2019-10780CriJan 22, 2020
    risk 0.57cvss 9.8epss 0.03

    BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized user input being passed directly to the built-in Ruby Kernel.open method through BibTeX.open.

  • CVE-2018-16272CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.02

    The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build…

  • CVE-2011-4943CriJan 22, 2020
    risk 0.57cvss 9.8epss 0.02

    ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13)

  • CVE-2016-11018CriJan 21, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in the Huge-IT gallery-images plugin before 1.9.0 for WordPress. The headers Client-Ip and X-Forwarded-For are prone to unauthenticated SQL injection. The affected file is gallery-images.php. The affected function is huge_it_image_gallery_ajax_callback().

  • CVE-2015-2784CriJan 21, 2020
    risk 0.57cvss 9.8epss 0.02

    The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle crop input.

  • CVE-2020-7229CriJan 21, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php.

  • CVE-2019-19392CriJan 21, 2020
    risk 0.64cvss 9.8epss 0.01

    The forDNN.UsersExportImport module before 1.2.0 for DNN (formerly DotNetNuke) allows an unprivileged user to import (create) new users with Administrator privileges, as demonstrated by Roles="Administrators" in XML or CSV data.

  • CVE-2012-5190CriJan 21, 2020
    risk 0.67cvss 9.8epss 0.05

    Prizm Content Connect 5.1 has an Arbitrary File Upload Vulnerability

  • CVE-2011-4094CriJan 21, 2020
    risk 0.67cvss 9.8epss 0.03

    Jara 1.6 has a SQL injection vulnerability.