Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2021-27332 Cross-Site Scripting (XSS) in casap-automated-enrollment-system-project (CVE-2021-27332)
cross-site scripting in casap-automated-enrollment-system-project (CVE-2021-27332). Risk of unauthorized operations or information disclosure.
CVE-2021-22779 Vulnerability in schneider-electric (CVE-2021-22779)
vulnerability in schneider-electric (CVE-2021-22779). Confidential information can be exposed externally.
CVE-2021-27033 Vulnerability in autodesk (CVE-2021-27033)
vulnerability in autodesk (CVE-2021-27033). Confidential information can be exposed externally.
CVE-2021-34110 Vulnerability in csharp (CVE-2021-34110)
vulnerability in csharp (CVE-2021-34110). Successful exploitation can lead to full system takeover.
CVE-2020-20586 Cross-Site Request Forgery (CSRF) in csrf (CVE-2020-20586)
vulnerability in csrf (CVE-2020-20586). Data can be tampered with by attackers.
CVE-2020-20584 Cross-Site Scripting (XSS) in baigo (CVE-2020-20584)
cross-site scripting in baigo (CVE-2020-20584). Risk of unauthorized operations or information disclosure.
CVE-2020-20363 Crossi Site Scripting (XSS) vulnerability in PbootCMS 2.0.3 in admin.php.
Crossi Site Scripting (XSS) vulnerability in PbootCMS 2.0.3 in admin.php.
CVE-2021-36212 Cross-Site Scripting (XSS) in misp-project (CVE-2021-36212)
cross-site scripting in misp-project (CVE-2021-36212). Risk of unauthorized operations or information disclosure.
CVE-2021-35451 Cross-Site Scripting (XSS) in teradici (CVE-2021-35451)
cross-site scripting in teradici (CVE-2021-35451). Risk of unauthorized operations or information disclosure.
CVE-2021-31721 Cross-Site Scripting (XSS) in chevereto (CVE-2021-31721)
cross-site scripting in chevereto (CVE-2021-31721). Risk of unauthorized operations or information disclosure.
CVE-2021-28993 SQL Injection in sqli (CVE-2021-28993)
SQL injection in sqli (CVE-2021-28993). Confidential information can be exposed externally.
CVE-2020-19511 Cross-Site Scripting (XSS) in typesettercms (CVE-2020-19511)
cross-site scripting in typesettercms (CVE-2020-19511). Risk of unauthorized operations or information disclosure.
CVE-2020-21517 Cross Site Scripting (XSS) vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php.
Cross Site Scripting (XSS) vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php.
CVE-2021-34204 Vulnerability in dlink (CVE-2021-34204)
vulnerability in dlink (CVE-2021-34204). Successful exploitation can lead to full system takeover.
CVE-2021-31659 Cross-Site Request Forgery (CSRF) in csrf (CVE-2021-31659)
vulnerability in csrf (CVE-2021-31659). Successful exploitation can lead to full system takeover.
CVE-2020-26678 Unrestricted File Upload in vfairs (CVE-2020-26678)
vulnerability in vfairs (CVE-2020-26678). Successful exploitation can lead to full system takeover.
CVE-2020-26680 Cross-Site Scripting (XSS) in vfairs (CVE-2020-26680)
cross-site scripting in vfairs (CVE-2020-26680). Risk of unauthorized operations or information disclosure.
CVE-2017-17678 Cross-Site Scripting (XSS) in bmc (CVE-2017-17678)
cross-site scripting in bmc (CVE-2017-17678). Risk of unauthorized operations or information disclosure.
CVE-2017-17675 Vulnerability in bmc (CVE-2017-17675)
vulnerability in bmc (CVE-2017-17675). Risk of unauthorized operations or information disclosure.
CVE-2020-21831 Out-of-Bounds Write in c (CVE-2020-21831)
out-of-bounds write in c (CVE-2020-21831). Successful exploitation can lead to full system takeover.
CVE-2020-21842 Out-of-Bounds Write in c (CVE-2020-21842)
out-of-bounds write in c (CVE-2020-21842). Successful exploitation can lead to full system takeover.
CVE-2020-21835 Vulnerability in c (CVE-2020-21835)
vulnerability in c (CVE-2020-21835). Risk of unauthorized operations or information disclosure.
CVE-2020-21838 Out-of-Bounds Write in c (CVE-2020-21838)
out-of-bounds write in c (CVE-2020-21838). Successful exploitation can lead to full system takeover.
CVE-2020-21832 Out-of-Bounds Write in c (CVE-2020-21832)
out-of-bounds write in c (CVE-2020-21832). Successful exploitation can lead to full system takeover.
CVE-2020-21830 Out-of-Bounds Write in c (CVE-2020-21830)
out-of-bounds write in c (CVE-2020-21830). Successful exploitation can lead to full system takeover.
CVE-2020-21836 Out-of-Bounds Write in c (CVE-2020-21836)
out-of-bounds write in c (CVE-2020-21836). Successful exploitation can lead to full system takeover.
CVE-2020-21833 Out-of-Bounds Write in c (CVE-2020-21833)
out-of-bounds write in c (CVE-2020-21833). Successful exploitation can lead to full system takeover.
CVE-2020-21841 Out-of-Bounds Write in c (CVE-2020-21841)
out-of-bounds write in c (CVE-2020-21841). Successful exploitation can lead to full system takeover.
CVE-2020-27518 Privilege Escalation in privilege-escalation (CVE-2020-27518)
vulnerability in privilege-escalation (CVE-2020-27518). Successful exploitation can lead to full system takeover.
CVE-2020-21883 OS Command Injection in indionetworks (CVE-2020-21883)
OS command injection in indionetworks (CVE-2020-21883). Successful exploitation can lead to full system takeover.
CVE-2021-28927 OS Command Injection in c (CVE-2021-28927)
OS command injection in c (CVE-2021-28927). Successful exploitation can lead to full system takeover.
CVE-2021-28936 Authorization Flaw in acexy (CVE-2021-28936)
vulnerability in acexy (CVE-2021-28936). Data can be tampered with by attackers.
CVE-2021-28937 Vulnerability in acexy (CVE-2021-28937)
vulnerability in acexy (CVE-2021-28937). Confidential information can be exposed externally.
CVE-2021-26216 SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditFolder.php.
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditFolder.php.
CVE-2021-26215 SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditDocument.php.
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditDocument.php.
CVE-2021-27695 Cross-Site Scripting (XSS) in openmaint (CVE-2021-27695)
cross-site scripting in openmaint (CVE-2021-27695). Risk of unauthorized operations or information disclosure.
CVE-2021-27132 Vulnerability in sercomm (CVE-2021-27132)
vulnerability in sercomm (CVE-2021-27132). Successful exploitation can lead to full system takeover.
CVE-2021-21974 Out-of-Bounds Write in vmware (CVE-2021-21974)
out-of-bounds write in vmware (CVE-2021-21974). Successful exploitation can lead to full system takeover.
CVE-2020-24175 Out-of-Bounds Write in yz1 (CVE-2020-24175)
out-of-bounds write in yz1 (CVE-2020-24175). Successful exploitation can lead to full system takeover.
CVE-2021-27328 Path Traversal in path-traversal (CVE-2021-27328)
path traversal in path-traversal (CVE-2021-27328). Confidential information can be exposed externally.
CVE-2020-25493 Vulnerability in oclean (CVE-2020-25493)
vulnerability in oclean (CVE-2020-25493). Confidential information can be exposed externally.
CVE-2021-3294 Cross-Site Scripting (XSS) in casap-automated-enrollment-system-project (CVE-2021-3294)
cross-site scripting in casap-automated-enrollment-system-project (CVE-2021-3294). Risk of unauthorized operations or information disclosure.
CVE-2020-35854 Textpattern 4.8.4 is affected by cross-site scripting (XSS) in the Body parameter.
Textpattern 4.8.4 is affected by cross-site scripting (XSS) in the Body parameter.
CVE-2020-24085 Cross-Site Scripting (XSS) in misp-project (CVE-2020-24085)
cross-site scripting in misp-project (CVE-2020-24085). Risk of unauthorized operations or information disclosure.
CVE-2021-3184 Cross-Site Scripting (XSS) in misp-project (CVE-2021-3184)
cross-site scripting in misp-project (CVE-2021-3184). Risk of unauthorized operations or information disclosure.
CVE-2021-25325 Cross-Site Scripting (XSS) in misp-project (CVE-2021-25325)
cross-site scripting in misp-project (CVE-2021-25325). Risk of unauthorized operations or information disclosure.
CVE-2021-25324 Cross-Site Scripting (XSS) in misp-project (CVE-2021-25324)
cross-site scripting in misp-project (CVE-2021-25324). Risk of unauthorized operations or information disclosure.
CVE-2020-23630 A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).
A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).
CVE-2018-8725 Vulnerability in k7computing (CVE-2018-8725)
vulnerability in k7computing (CVE-2018-8725). Successful exploitation can lead to full system takeover.
CVE-2018-8726 Vulnerability in k7computing (CVE-2018-8726)
vulnerability in k7computing (CVE-2018-8726). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →