Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2021-27332 |
|
Cross-Site Scripting (XSS) in casap-automated-enrollment-system-project (CVE-2021-27332)
cross-site scripting in casap-automated-enrollment-system-project (CVE-2021-27332). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-22779 |
|
Vulnerability in schneider-electric (CVE-2021-22779)
vulnerability in schneider-electric (CVE-2021-22779). Confidential information can be exposed externally.
|
| CVE-2021-27033 |
|
Vulnerability in autodesk (CVE-2021-27033)
vulnerability in autodesk (CVE-2021-27033). Confidential information can be exposed externally.
|
| CVE-2021-34110 |
|
Vulnerability in csharp (CVE-2021-34110)
vulnerability in csharp (CVE-2021-34110). Successful exploitation can lead to full system takeover.
|
| CVE-2020-20586 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2020-20586)
vulnerability in csrf (CVE-2020-20586). Data can be tampered with by attackers.
|
| CVE-2020-20584 |
|
Cross-Site Scripting (XSS) in baigo (CVE-2020-20584)
cross-site scripting in baigo (CVE-2020-20584). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-20363 |
|
Crossi Site Scripting (XSS) vulnerability in PbootCMS 2.0.3 in admin.php.
Crossi Site Scripting (XSS) vulnerability in PbootCMS 2.0.3 in admin.php.
|
| CVE-2021-36212 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2021-36212)
cross-site scripting in misp-project (CVE-2021-36212). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-35451 |
|
Cross-Site Scripting (XSS) in teradici (CVE-2021-35451)
cross-site scripting in teradici (CVE-2021-35451). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-31721 |
|
Cross-Site Scripting (XSS) in chevereto (CVE-2021-31721)
cross-site scripting in chevereto (CVE-2021-31721). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-28993 |
|
SQL Injection in sqli (CVE-2021-28993)
SQL injection in sqli (CVE-2021-28993). Confidential information can be exposed externally.
|
| CVE-2020-19511 |
|
Cross-Site Scripting (XSS) in typesettercms (CVE-2020-19511)
cross-site scripting in typesettercms (CVE-2020-19511). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21517 |
|
Cross Site Scripting (XSS) vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php.
Cross Site Scripting (XSS) vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php.
|
| CVE-2021-34204 |
|
Vulnerability in dlink (CVE-2021-34204)
vulnerability in dlink (CVE-2021-34204). Successful exploitation can lead to full system takeover.
|
| CVE-2021-31659 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2021-31659)
vulnerability in csrf (CVE-2021-31659). Successful exploitation can lead to full system takeover.
|
| CVE-2020-26678 |
|
Unrestricted File Upload in vfairs (CVE-2020-26678)
vulnerability in vfairs (CVE-2020-26678). Successful exploitation can lead to full system takeover.
|
| CVE-2020-26680 |
|
Cross-Site Scripting (XSS) in vfairs (CVE-2020-26680)
cross-site scripting in vfairs (CVE-2020-26680). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-17678 |
|
Cross-Site Scripting (XSS) in bmc (CVE-2017-17678)
cross-site scripting in bmc (CVE-2017-17678). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-17675 |
|
Vulnerability in bmc (CVE-2017-17675)
vulnerability in bmc (CVE-2017-17675). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21831 |
|
Out-of-Bounds Write in c (CVE-2020-21831)
out-of-bounds write in c (CVE-2020-21831). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21842 |
|
Out-of-Bounds Write in c (CVE-2020-21842)
out-of-bounds write in c (CVE-2020-21842). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21835 |
|
Vulnerability in c (CVE-2020-21835)
vulnerability in c (CVE-2020-21835). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21838 |
|
Out-of-Bounds Write in c (CVE-2020-21838)
out-of-bounds write in c (CVE-2020-21838). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21832 |
|
Out-of-Bounds Write in c (CVE-2020-21832)
out-of-bounds write in c (CVE-2020-21832). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21830 |
|
Out-of-Bounds Write in c (CVE-2020-21830)
out-of-bounds write in c (CVE-2020-21830). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21836 |
|
Out-of-Bounds Write in c (CVE-2020-21836)
out-of-bounds write in c (CVE-2020-21836). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21833 |
|
Out-of-Bounds Write in c (CVE-2020-21833)
out-of-bounds write in c (CVE-2020-21833). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21841 |
|
Out-of-Bounds Write in c (CVE-2020-21841)
out-of-bounds write in c (CVE-2020-21841). Successful exploitation can lead to full system takeover.
|
| CVE-2020-27518 |
|
Privilege Escalation in privilege-escalation (CVE-2020-27518)
vulnerability in privilege-escalation (CVE-2020-27518). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21883 |
|
OS Command Injection in indionetworks (CVE-2020-21883)
OS command injection in indionetworks (CVE-2020-21883). Successful exploitation can lead to full system takeover.
|
| CVE-2021-28927 |
|
OS Command Injection in c (CVE-2021-28927)
OS command injection in c (CVE-2021-28927). Successful exploitation can lead to full system takeover.
|
| CVE-2021-28936 |
|
Authorization Flaw in acexy (CVE-2021-28936)
vulnerability in acexy (CVE-2021-28936). Data can be tampered with by attackers.
|
| CVE-2021-28937 |
|
Vulnerability in acexy (CVE-2021-28937)
vulnerability in acexy (CVE-2021-28937). Confidential information can be exposed externally.
|
| CVE-2021-26216 |
|
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditFolder.php.
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditFolder.php.
|
| CVE-2021-26215 |
|
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditDocument.php.
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditDocument.php.
|
| CVE-2021-27695 |
|
Cross-Site Scripting (XSS) in openmaint (CVE-2021-27695)
cross-site scripting in openmaint (CVE-2021-27695). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-27132 |
|
Vulnerability in sercomm (CVE-2021-27132)
vulnerability in sercomm (CVE-2021-27132). Successful exploitation can lead to full system takeover.
|
| CVE-2021-21974 |
|
Out-of-Bounds Write in vmware (CVE-2021-21974)
out-of-bounds write in vmware (CVE-2021-21974). Successful exploitation can lead to full system takeover.
|
| CVE-2020-24175 |
|
Out-of-Bounds Write in yz1 (CVE-2020-24175)
out-of-bounds write in yz1 (CVE-2020-24175). Successful exploitation can lead to full system takeover.
|
| CVE-2021-27328 |
|
Path Traversal in path-traversal (CVE-2021-27328)
path traversal in path-traversal (CVE-2021-27328). Confidential information can be exposed externally.
|
| CVE-2020-25493 |
|
Vulnerability in oclean (CVE-2020-25493)
vulnerability in oclean (CVE-2020-25493). Confidential information can be exposed externally.
|
| CVE-2021-3294 |
|
Cross-Site Scripting (XSS) in casap-automated-enrollment-system-project (CVE-2021-3294)
cross-site scripting in casap-automated-enrollment-system-project (CVE-2021-3294). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-35854 |
|
Textpattern 4.8.4 is affected by cross-site scripting (XSS) in the Body parameter.
Textpattern 4.8.4 is affected by cross-site scripting (XSS) in the Body parameter.
|
| CVE-2020-24085 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2020-24085)
cross-site scripting in misp-project (CVE-2020-24085). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-3184 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2021-3184)
cross-site scripting in misp-project (CVE-2021-3184). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25325 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2021-25325)
cross-site scripting in misp-project (CVE-2021-25325). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25324 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2021-25324)
cross-site scripting in misp-project (CVE-2021-25324). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-23630 |
|
A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).
A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).
|
| CVE-2018-8725 |
|
Vulnerability in k7computing (CVE-2018-8725)
vulnerability in k7computing (CVE-2018-8725). Successful exploitation can lead to full system takeover.
|
| CVE-2018-8726 |
|
Vulnerability in k7computing (CVE-2018-8726)
vulnerability in k7computing (CVE-2018-8726). Successful exploitation can lead to full system takeover.
|