Fri, Nov 27 · 06:15 PM CSTCVE-2017-15681
9.8/10 · Must read/watchNVDvuln
Summary
In Crafter CMS Crafter Studio 3.0.1 a directory traversal vulnerability exists which allows unauthenticated attackers to overwrite files from the operating system which can lead to RCE.
CVECVE-2017-15681
SeverityCRITICAL
TypeUPDATED
PublishedFri, Nov 27 · 06:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Wed, Sep 30 · 06:15 PM CDTCVE-2018-5353
9.8/10 · Must read/watchNVDvuln
Summary
The custom GINA/CP module in Zoho ManageEngine ADSelfService Plus before 5.5 build 5517 allows remote attackers to execute code and escalate privileges via spoofing. It does not authenticate the intended server before opening a browser window. An unauthenticated attacker capable of conducting a spoofing attack can redi
CVECVE-2018-5353
SeverityCRITICAL
TypeUPDATED
PublishedWed, Sep 30 · 06:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Thu, Sep 03 · 06:15 PM CDTCVE-2020-24193
9.8/10 · Must read/watchNVDvuln
Summary
A SQL injection vulnerability in login in Sourcecodetester Daily Tracker System 1.0 allows unauthenticated user to execute authentication bypass with SQL injection via the email parameter.
CVECVE-2020-24193
SeverityCRITICAL
TypeUPDATED
PublishedThu, Sep 03 · 06:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Tue, Feb 16 · 01:15 PM CSTCVE-2020-24841
9.8/10 · Must read/watchNVDvuln
Summary
PNPSCADA 2.200816204020 allows SQL injection via parameter 'interf' in /browse.jsp. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
CVECVE-2020-24841
SeverityCRITICAL
TypeUPDATED
PublishedTue, Feb 16 · 01:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Thu, Mar 04 · 01:15 PM CSTCVE-2020-24913
9.8/10 · Must read/watchNVDvuln
Summary
A SQL injection vulnerability in qcubed (all versions including 3.1.1) in profile.php via the strQuery parameter allows an unauthenticated attacker to access the database by injecting SQL code via a crafted POST request.
CVECVE-2020-24913
SeverityCRITICAL
TypeUPDATED
PublishedThu, Mar 04 · 01:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Thu, Mar 04 · 01:15 PM CSTCVE-2020-24914
9.8/10 · Must read/watchNVDvuln
Summary
A PHP object injection bug in profile.php in qcubed (all versions including 3.1.1) unserializes the untrusted data of the POST-variable "strProfileData" and allows an unauthenticated attacker to execute code via a crafted POST request.
CVECVE-2020-24914
SeverityCRITICAL
TypeUPDATED
PublishedThu, Mar 04 · 01:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Fri, Oct 23 · 03:15 PM CDTCVE-2020-25466
9.8/10 · Must read/watchNVDvuln
Summary
A SSRF vulnerability exists in the downloadimage interface of CRMEB 3.0, which can remotely download arbitrary files on the server and remotely execute arbitrary code.
CVECVE-2020-25466
SeverityCRITICAL
TypeUPDATED
PublishedFri, Oct 23 · 03:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, Dec 21 · 03:15 PM CSTCVE-2020-35276
9.8/10 · Must read/watchNVDvuln
Summary
EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user.
CVECVE-2020-35276
SeverityCRITICAL
TypeUPDATED
PublishedMon, Dec 21 · 03:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Sat, Feb 27 · 06:15 AM CSTCVE-2021-27132
9.8/10 · Must read/watchNVDvuln
Summary
SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header.
CVECVE-2021-27132
SeverityCRITICAL
TypeUPDATED
PublishedSat, Feb 27 · 06:15 AM CST
ModifiedSun, Jul 05 · 01:17 AM CDT
Mon, May 03 · 12:15 PM CDTCVE-2021-28860
9.1/10 · Must read/watchNVDvuln
Summary
In Node.js mixme, prior to v0.5.1, an attacker can add or alter properties of an object via '__proto__' through the mutate() and merge() functions. The polluted attribute will be directly assigned to every object in the program. This will put the availability of the program at risk causing a potential denial of service
CVECVE-2021-28860
SeverityCRITICAL
TypeUPDATED
PublishedMon, May 03 · 12:15 PM CDT
ModifiedSun, Jul 05 · 12:17 AM CDT
Wed, Sep 30 · 06:15 PM CDTCVE-2018-5354
8.8/10 · Worth your timeNVDvuln
Summary
The custom GINA/CP module in ANIXIS Password Reset Client before version 3.22 allows remote attackers to execute code and escalate privileges via spoofing. When the client is configured to use HTTP, it does not authenticate the intended server before opening a browser window. An unauthenticated attacker capable of cond
CVECVE-2018-5354
SeverityHIGH
TypeUPDATED
PublishedWed, Sep 30 · 06:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 07:15 PM CDTCVE-2020-21814
8.8/10 · Worth your timeNVDvuln
Summary
A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlwescape ../../programs/escape.c:97.
CVECVE-2020-21814
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 07:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 07:15 PM CDTCVE-2020-21816
8.8/10 · Worth your timeNVDvuln
Summary
A heab based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:46.
CVECVE-2020-21816
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 07:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 07:15 PM CDTCVE-2020-21818
8.8/10 · Worth your timeNVDvuln
Summary
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:48.
CVECVE-2020-21818
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 07:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 07:15 PM CDTCVE-2020-21819
8.8/10 · Worth your timeNVDvuln
Summary
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10.2641via htmlescape ../../programs/escape.c:51.
CVECVE-2020-21819
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 07:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 09:15 PM CDTCVE-2020-21830
8.8/10 · Worth your timeNVDvuln
Summary
A heap based buffer overflow vulneraibility exists in GNU LibreDWG 0.10 via bit_calc_CRC ../../src/bits.c:2213.
CVECVE-2020-21830
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 09:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 09:15 PM CDTCVE-2020-21832
8.8/10 · Worth your timeNVDvuln
Summary
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2417.
CVECVE-2020-21832
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 09:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, May 17 · 09:15 PM CDTCVE-2020-21833
8.8/10 · Worth your timeNVDvuln
Summary
A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read_2004_section_classes ../../src/decode.c:2440.
CVECVE-2020-21833
SeverityHIGH
TypeUPDATED
PublishedMon, May 17 · 09:15 PM CDT
ModifiedSun, Jul 05 · 01:17 AM CDT
Fri, Apr 09 · 01:15 PM CDTCVE-2020-21883
8.8/10 · Worth your timeNVDvuln
Summary
Unibox U-50 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a OS command injection vulnerability in /tools/ping, which can leads to complete device takeover.
CVECVE-2020-21883
SeverityHIGH
TypeUPDATED
PublishedFri, Apr 09 · 01:15 PM CDT
ModifiedSun, Jul 05 · 01:17 AM CDT
Fri, Apr 09 · 01:15 PM CDTCVE-2020-21884
8.8/10 · Worth your timeNVDvuln
Summary
Unibox SMB 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a cross-site request forgery (CSRF) vulnerability in /tools/network-trace, /list_users, /list_byod?usertype=raduser, /dhcp_leases, /go?rid=202 in which a specially crafted HTTP request may reconfigure the device.
CVECVE-2020-21884
SeverityHIGH
TypeUPDATED
PublishedFri, Apr 09 · 01:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Tue, Sep 15 · 02:15 PM CDTCVE-2020-23451
8.8/10 · Worth your timeNVDvuln
Summary
Spiceworks Version <= 7.5.00107 is affected by CSRF which can lead to privilege escalation via "/settings/v1/users" function.
CVECVE-2020-23451
SeverityHIGH
TypeUPDATED
PublishedTue, Sep 15 · 02:15 PM CDT
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, Jan 11 · 03:15 PM CSTCVE-2020-23630
8.8/10 · Worth your timeNVDvuln
Summary
A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).
CVECVE-2020-23630
SeverityHIGH
TypeUPDATED
PublishedMon, Jan 11 · 03:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Thu, Mar 04 · 01:15 PM CSTCVE-2020-24036
8.8/10 · Worth your timeNVDvuln
Summary
PHP object injection in the Ajax endpoint of the backend in ForkCMS below version 5.8.3 allows an authenticated remote user to execute malicious code.
CVECVE-2020-24036
SeverityHIGH
TypeUPDATED
PublishedThu, Mar 04 · 01:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, Mar 08 · 09:15 PM CSTCVE-2020-27574
8.8/10 · Worth your timeNVDvuln
Summary
Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site request forgery (CSRF). If an authenticated user visits a malicious page, unintended actions could be performed in the web application as the authenticated user.
CVECVE-2020-27574
SeverityHIGH
TypeUPDATED
PublishedMon, Mar 08 · 09:15 PM CST
ModifiedSun, Jul 05 · 12:16 AM CDT
Mon, Mar 08 · 10:15 PM CSTCVE-2020-27575
8.8/10 · Worth your timeNVDvuln
Summary
Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web administration contains functionality in which administrators are able to manage users. The edit users form contains a parameter vulnerable to command injection due to insufficient validation.
CVECVE-2020-27575
SeverityHIGH
TypeUPDATED
PublishedMon, Mar 08 · 10:15 PM CST
ModifiedSun, Jul 05 · 01:17 AM CDT