| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-4172 | — | Cri | 0.57 | 9.8 | 0.06 | Jan 24, 2020 | A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrary web script or HTML via… | |
| CVE-2020-6966 | Cri | 0.65 | 10.0 | 0.02 | Jan 24, 2020 | In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control,… | ||
| CVE-2020-6965 | Cri | 0.64 | 9.9 | 0.01 | Jan 24, 2020 | In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850… | ||
| CVE-2013-1595 | Cri | 0.70 | 9.8 | 0.42 | Jan 24, 2020 | A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service. | ||
| CVE-2020-6963 | Cri | 0.65 | 10.0 | 0.03 | Jan 24, 2020 | In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an… | ||
| CVE-2020-6962 | Cri | 0.65 | 10.0 | 0.05 | Jan 24, 2020 | In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X CARESCAPE Central Station (CSCS) Versions… | ||
| CVE-2020-6961 | Cri | 0.65 | 10.0 | 0.02 | Jan 24, 2020 | In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X, a vulnerability exists in the affected… | ||
| CVE-2015-4042 | Cri | 0.57 | 9.8 | 0.02 | Jan 24, 2020 | Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service (application crash) or possibly have unspecified other impact via long strings. | ||
| CVE-2014-1925 | Cri | 0.64 | 9.8 | 0.02 | Jan 24, 2020 | SQL injection vulnerability in the MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 allows remote authenticated users to execute arbitrary SQL commands via… | ||
| CVE-2014-1924 | Cri | 0.64 | 9.8 | 0.02 | Jan 24, 2020 | The MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 does not require authentication, which allows remote attackers to conduct SQL injection attacks via… | ||
| CVE-2013-4333 | Cri | 0.52 | 9.1 | 0.02 | Jan 24, 2020 | OpenPNE 3 versions 3.8.7, 3.6.11, 3.4.21.1, 3.2.7.6, 3.0.8.5 has an External Entity Injection Vulnerability | ||
| CVE-2013-3960 | Cri | 0.64 | 9.9 | 0.02 | Jan 24, 2020 | Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass | ||
| CVE-2012-6451 | Cri | 0.64 | 9.8 | 0.03 | Jan 24, 2020 | Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability | ||
| CVE-2020-7245 | Cri | 0.00 | 9.8 | 0.01 | Jan 23, 2020 | Incorrect username validation in the registration process of CTFd v2.0.0 - v2.2.2 allows an attacker to take over an arbitrary account if the username is known and emails are enabled on the CTFd instance. To exploit the vulnerability, one must register with a username identical… | ||
| CVE-2019-17570 | — | Cri | 0.68 | 9.8 | 0.49 | Jan 23, 2020 | An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer… | |
| CVE-2012-6649 | Cri | 0.61 | 9.8 | 0.16 | Jan 23, 2020 | WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload. | ||
| CVE-2020-7941 | — | Cri | 0.64 | 9.8 | 0.02 | Jan 23, 2020 | A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without needing write permission. | |
| CVE-2019-19897 | Cri | 0.64 | 9.8 | 0.06 | Jan 23, 2020 | In IXP EasyInstall 6.2.13723, there is Remote Code Execution via the Agent Service. An unauthenticated attacker can communicate with the Agent Service over TCP port 20051, and execute code in the NT AUTHORITY\SYSTEM context of the target system by using the Execute Command Line… | ||
| CVE-2019-19896 | Cri | 0.65 | 9.9 | 0.03 | Jan 23, 2020 | In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions of the IXP$ share on the server allows modification of directories and files (e.g., bat-scripts), which allows execution of code in the… | ||
| CVE-2015-5334 | Cri | 0.64 | 9.8 | 0.03 | Jan 23, 2020 | Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (program crash) or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability… | ||
| CVE-2013-1592 | Cri | 0.69 | 9.8 | 0.23 | Jan 23, 2020 | A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04, which could let a… | ||
| CVE-2019-16517 | Cri | 0.64 | 9.8 | 0.01 | Jan 23, 2020 | An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a CORS misconfiguration, which reflected the Origin provided by incoming requests. This allowed JavaScript running on any domain to interact with the server APIs and… | ||
| CVE-2019-16153 | Cri | 0.64 | 9.8 | 0.01 | Jan 23, 2020 | A hard-coded password vulnerability in the Fortinet FortiSIEM database component version 5.2.5 and below may allow attackers to access the device database via the use of static credentials. | ||
| CVE-2019-19839 | Cri | 0.64 | 9.8 | 0.03 | Jan 23, 2020 | emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=import-category to admin/_cmdstat.jsp via the uploadFile attribute. | ||
| CVE-2019-19838 | Cri | 0.66 | 9.8 | 0.24 | Jan 23, 2020 | emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=get-platform-depends to admin/_cmdstat.jsp via the uploadFile attribute. | ||
| CVE-2013-6792 | Cri | 0.67 | 9.8 | 0.03 | Jan 23, 2020 | Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability | ||
| CVE-2012-5867 | Cri | 0.64 | 9.8 | 0.02 | Jan 23, 2020 | HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability | ||
| CVE-2012-5699 | Cri | 0.67 | 9.8 | 0.05 | Jan 23, 2020 | BabyGekko before 1.2.4 allows PHP file inclusion. | ||
| CVE-2012-2087 | Cri | 0.64 | 9.8 | 0.03 | Jan 23, 2020 | ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface. | ||
| CVE-2019-19842 | Cri | 0.64 | 9.8 | 0.05 | Jan 22, 2020 | emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=spectra-analysis to admin/_cmdstat.jsp via the mac attribute. | ||
| CVE-2019-19841 | Cri | 0.64 | 9.8 | 0.03 | Jan 22, 2020 | emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=packet-capture to admin/_cmdstat.jsp via the mac attribute. | ||
| CVE-2019-19840 | Cri | 0.64 | 9.8 | 0.04 | Jan 22, 2020 | A stack-based buffer overflow in zap_parse_args in zap.c in zap in Ruckus Unleashed through 200.7.10.102.64 allows remote code execution via an unauthenticated HTTP request. | ||
| CVE-2019-19843 | Cri | 0.64 | 9.8 | 0.02 | Jan 22, 2020 | Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote credential fetch via an unauthenticated HTTP request involving a symlink with /tmp and web/user/wps_tool_cache. | ||
| CVE-2019-19836 | Cri | 0.64 | 9.8 | 0.04 | Jan 22, 2020 | AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote code execution via a POST request that uses tools/_rcmdstat.jsp to write to a specified filename. | ||
| CVE-2012-4919 | Cri | 0.64 | 9.8 | 0.03 | Jan 22, 2020 | Gallery Plugin1.4 for WordPress has a Remote File Include Vulnerability | ||
| CVE-2011-3621 | Cri | 0.64 | 9.8 | 0.01 | Jan 22, 2020 | A reverse proxy issue exists in FluxBB before 1.4.7 when FORUM_BEHIND_REVERSE_PROXY is enabled. | ||
| CVE-2011-3614 | Cri | 0.64 | 9.8 | 0.02 | Jan 22, 2020 | An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9. | ||
| CVE-2020-7109 | Cri | 0.64 | 9.8 | 0.02 | Jan 22, 2020 | The Elementor Page Builder plugin before 2.8.4 for WordPress does not sanitize data during creation of a new template. | ||
| CVE-2020-6960 | Cri | 0.64 | 9.8 | 0.01 | Jan 22, 2020 | The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6… | ||
| CVE-2020-6959 | Cri | 0.64 | 9.8 | 0.02 | Jan 22, 2020 | The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6… | ||
| CVE-2019-10781 | — | Cri | 0.57 | 9.8 | 0.01 | Jan 22, 2020 | In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector. | |
| CVE-2019-10780 | — | Cri | 0.57 | 9.8 | 0.03 | Jan 22, 2020 | BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized user input being passed directly to the built-in Ruby Kernel.open method through BibTeX.open. | |
| CVE-2018-16272 | Cri | 0.64 | 9.8 | 0.02 | Jan 22, 2020 | The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build… | ||
| CVE-2011-4943 | — | Cri | 0.57 | 9.8 | 0.02 | Jan 22, 2020 | ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13) | |
| CVE-2016-11018 | Cri | 0.64 | 9.8 | 0.02 | Jan 21, 2020 | An issue was discovered in the Huge-IT gallery-images plugin before 1.9.0 for WordPress. The headers Client-Ip and X-Forwarded-For are prone to unauthenticated SQL injection. The affected file is gallery-images.php. The affected function is huge_it_image_gallery_ajax_callback(). | ||
| CVE-2015-2784 | — | Cri | 0.57 | 9.8 | 0.02 | Jan 21, 2020 | The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle crop input. | |
| CVE-2020-7229 | Cri | 0.64 | 9.8 | 0.01 | Jan 21, 2020 | An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php. | ||
| CVE-2019-19392 | Cri | 0.64 | 9.8 | 0.01 | Jan 21, 2020 | The forDNN.UsersExportImport module before 1.2.0 for DNN (formerly DotNetNuke) allows an unprivileged user to import (create) new users with Administrator privileges, as demonstrated by Roles="Administrators" in XML or CSV data. | ||
| CVE-2012-5190 | Cri | 0.67 | 9.8 | 0.05 | Jan 21, 2020 | Prizm Content Connect 5.1 has an Arbitrary File Upload Vulnerability | ||
| CVE-2011-4094 | Cri | 0.67 | 9.8 | 0.03 | Jan 21, 2020 | Jara 1.6 has a SQL injection vulnerability. |
- risk 0.57cvss 9.8epss 0.06
A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrary web script or HTML via…
- risk 0.65cvss 10.0epss 0.02
In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control,…
- risk 0.64cvss 9.9epss 0.01
In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850…
- risk 0.70cvss 9.8epss 0.42
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service.
- risk 0.65cvss 10.0epss 0.03
In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an…
- risk 0.65cvss 10.0epss 0.05
In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X CARESCAPE Central Station (CSCS) Versions…
- risk 0.65cvss 10.0epss 0.02
In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X, a vulnerability exists in the affected…
- risk 0.57cvss 9.8epss 0.02
Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service (application crash) or possibly have unspecified other impact via long strings.
- risk 0.64cvss 9.8epss 0.02
SQL injection vulnerability in the MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 allows remote authenticated users to execute arbitrary SQL commands via…
- risk 0.64cvss 9.8epss 0.02
The MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 does not require authentication, which allows remote attackers to conduct SQL injection attacks via…
- risk 0.52cvss 9.1epss 0.02
OpenPNE 3 versions 3.8.7, 3.6.11, 3.4.21.1, 3.2.7.6, 3.0.8.5 has an External Entity Injection Vulnerability
- risk 0.64cvss 9.9epss 0.02
Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass
- risk 0.64cvss 9.8epss 0.03
Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability
- risk 0.00cvss 9.8epss 0.01
Incorrect username validation in the registration process of CTFd v2.0.0 - v2.2.2 allows an attacker to take over an arbitrary account if the username is known and emails are enabled on the CTFd instance. To exploit the vulnerability, one must register with a username identical…
- risk 0.68cvss 9.8epss 0.49
An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer…
- risk 0.61cvss 9.8epss 0.16
WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.
- risk 0.64cvss 9.8epss 0.02
A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without needing write permission.
- risk 0.64cvss 9.8epss 0.06
In IXP EasyInstall 6.2.13723, there is Remote Code Execution via the Agent Service. An unauthenticated attacker can communicate with the Agent Service over TCP port 20051, and execute code in the NT AUTHORITY\SYSTEM context of the target system by using the Execute Command Line…
- risk 0.65cvss 9.9epss 0.03
In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions of the IXP$ share on the server allows modification of directories and files (e.g., bat-scripts), which allows execution of code in the…
- risk 0.64cvss 9.8epss 0.03
Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (program crash) or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability…
- risk 0.69cvss 9.8epss 0.23
A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04, which could let a…
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a CORS misconfiguration, which reflected the Origin provided by incoming requests. This allowed JavaScript running on any domain to interact with the server APIs and…
- risk 0.64cvss 9.8epss 0.01
A hard-coded password vulnerability in the Fortinet FortiSIEM database component version 5.2.5 and below may allow attackers to access the device database via the use of static credentials.
- risk 0.64cvss 9.8epss 0.03
emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=import-category to admin/_cmdstat.jsp via the uploadFile attribute.
- risk 0.66cvss 9.8epss 0.24
emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=get-platform-depends to admin/_cmdstat.jsp via the uploadFile attribute.
- risk 0.67cvss 9.8epss 0.03
Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability
- risk 0.64cvss 9.8epss 0.02
HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability
- risk 0.67cvss 9.8epss 0.05
BabyGekko before 1.2.4 allows PHP file inclusion.
- risk 0.64cvss 9.8epss 0.03
ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface.
- risk 0.64cvss 9.8epss 0.05
emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=spectra-analysis to admin/_cmdstat.jsp via the mac attribute.
- risk 0.64cvss 9.8epss 0.03
emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=packet-capture to admin/_cmdstat.jsp via the mac attribute.
- risk 0.64cvss 9.8epss 0.04
A stack-based buffer overflow in zap_parse_args in zap.c in zap in Ruckus Unleashed through 200.7.10.102.64 allows remote code execution via an unauthenticated HTTP request.
- risk 0.64cvss 9.8epss 0.02
Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote credential fetch via an unauthenticated HTTP request involving a symlink with /tmp and web/user/wps_tool_cache.
- risk 0.64cvss 9.8epss 0.04
AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote code execution via a POST request that uses tools/_rcmdstat.jsp to write to a specified filename.
- risk 0.64cvss 9.8epss 0.03
Gallery Plugin1.4 for WordPress has a Remote File Include Vulnerability
- risk 0.64cvss 9.8epss 0.01
A reverse proxy issue exists in FluxBB before 1.4.7 when FORUM_BEHIND_REVERSE_PROXY is enabled.
- risk 0.64cvss 9.8epss 0.02
An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9.
- risk 0.64cvss 9.8epss 0.02
The Elementor Page Builder plugin before 2.8.4 for WordPress does not sanitize data during creation of a new template.
- risk 0.64cvss 9.8epss 0.01
The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6…
- risk 0.64cvss 9.8epss 0.02
The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6…
- risk 0.57cvss 9.8epss 0.01
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector.
- risk 0.57cvss 9.8epss 0.03
BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized user input being passed directly to the built-in Ruby Kernel.open method through BibTeX.open.
- risk 0.64cvss 9.8epss 0.02
The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build…
- risk 0.57cvss 9.8epss 0.02
ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13)
- risk 0.64cvss 9.8epss 0.02
An issue was discovered in the Huge-IT gallery-images plugin before 1.9.0 for WordPress. The headers Client-Ip and X-Forwarded-For are prone to unauthenticated SQL injection. The affected file is gallery-images.php. The affected function is huge_it_image_gallery_ajax_callback().
- risk 0.57cvss 9.8epss 0.02
The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle crop input.
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php.
- risk 0.64cvss 9.8epss 0.01
The forDNN.UsersExportImport module before 1.2.0 for DNN (formerly DotNetNuke) allows an unprivileged user to import (create) new users with Administrator privileges, as demonstrated by Roles="Administrators" in XML or CSV data.
- risk 0.67cvss 9.8epss 0.05
Prizm Content Connect 5.1 has an Arbitrary File Upload Vulnerability
- risk 0.67cvss 9.8epss 0.03
Jara 1.6 has a SQL injection vulnerability.