Tools 2021

IDTitleNessusOpenVASSnortSuricataTippingPoint
173153vscode-bazel JSON Config File file inclusion [CVE-2021-22539]
173152vscode-rpm-spec Extension Workspace Configuration Remote Code Execution
173151Tenda G1/G3 umountUSBPartition formSetUSBPartitionUmount os command injection
173150Tenda G0/G1/G3 setDebugCfg formSetDebugCfg os command injection
173149Atlassian Connect Spring Boot Lifecycle Endpoint improper authentication
173148Atlassian Connect Express Lifecycle Endpoint improper authentication
173147Synology QTS/QuTS Hero/QuTScloud File Station cross site scripting
173146Wfilter ICF User-Agent Header cross site scripting [CVE-2021-3243]
173145dio Package HTTP Method injection [CVE-2021-31402]
173144Apache OpenOffice Hyperlink Remote Code Execution [CVE-2021-30245]
173143WordPress Editor information disclosure [CVE-2021-29450]
173142Pi-hole Admin Portal cross site scripting [CVE-2021-29448]
173141WordPress Media Library Parser xml external entity reference
173140Matrix Sydent resource consumption [CVE-2021-29433]
173139Matrix Sydent Email input validation [CVE-2021-29432]
173138Matrix Sydent HTTP GET Request server-side request forgery [CVE-2021-29431]
173137Matrix Sydent HTTP Request resource consumption [CVE-2021-29430]
173136Centreon Centreon Web cross-site request forgery [CVE-2021-28055]
173135LightCMS External Image NEditorController.php Remote Privilege Escalation
173134HPE IceWall SSO Domain Gateway Option Module cross site scripting
173133Fielcoin Lotus BLS Signature Validation VerifyCompressed signature verification
173132QED ResourceXpress URL input validation [CVE-2020-28898]
173131GNU Binutils BFD Library memory allocation [CVE-2021-3487]
173130ezXML XML File Parser libezxml.a ezxml_internal_dtd out-of-bounds write
173129Textpattern Plug-In unrestricted upload [CVE-2021-30209]
173128Adobe Photoshop JSX File Parser buffer overflow [CVE-2021-28549]
173127Adobe Photoshop JSX File Parser buffer overflow [CVE-2021-28548]
173126b2evolution evoadm.php sql injection
173125Tribal Systems Zenario CMS admin_boxes.ajax.php cross site scripting
173124Tribal Systems Zenario CMS admin_boxes.ajax.php sql injection
173123Adobe Bridge Genuine Software Service improper authorization
173122Adobe Bridge out-of-bounds write [CVE-2021-21095]
173121Adobe Bridge out-of-bounds write [CVE-2021-21094]
173120Adobe Bridge memory corruption [CVE-2021-21093]
173119Adobe Bridge buffer overflow [CVE-2021-21092]
173118Adobe Bridge out-of-bounds read [CVE-2021-21091]
173117Adobe ColdFusion cross site scripting [CVE-2021-21087]
173116Ceph CEPHX_GET_AUTH_SESSION_KEY Request improper authentication
173115Cosori Smart Air Fryer CS158-AF JSON Object backdoor [CVE-2020-28593]
173114Cosori Smart Air Fryer CS158-AF JSON Object heap-based overflow
173113OpenClinic GA getAssets.jsp sql injection
173112Tilde OpenClinic GA getAssets.jsp sql injection
173111OpenClinic GA getAssets.jsp sql injection
173110Apache Tapestry AppModule.class deserialization
173109PHPGurukul Beauty Parlour Management System add-services.php sql injection
173108PHPGurukul Beauty Parlour Management Syste add-services.php cross site scripting
173107CASAP Automated Enrollment System Students cross site scripting
173106McAfee Data Loss Prevention hdlphook Driver privileges management
173105McAfee Data Loss Prevention hdlphook Driver denial of service
173104McAfee Content Security Reporter ePO Extension cleartext transmission
173103Google Android pb_encode.c pb_write out-of-bounds write
173102McAfee Endpoint Security/Global Threat Intelligence DNS cleartext transmission
173101McAfee Advanced Threat Defense HTTP Request Parameter information disclosure
173100McAfee Advanced Threat Defense HTTP Request Parameter information disclosure
173099Adobe Digital Editions access control [CVE-2021-21100]
173098Zulip Server Topic Moving API unknown vulnerability [CVE-2021-30487]
173097Zulip Server all_public_streams API access control [CVE-2021-30479]
173096Zulip Server permission [CVE-2021-30478]
173095Zulip Server Webhook access control [CVE-2021-30477]
173094Jazzband Django Debug Toolbar SQL Panel sql injection [CVE-2021-30459]
173093Intelbras WIN 300/WRN 342 source code [CVE-2021-3017]
173092AjaxSearchPro Administration Panel deserialization [CVE-2021-29654]
173091Pi-hole privileges management [CVE-2021-29449]
173090Deark fmtutil.c divide by zero
173089Deark deark-dbuf.c dbuf_write null pointer dereference
173088TIBCO Messaging Eclipse Mosquitto Distribution Installation access control
173087TIBCO Messaging Eclipse Mosquitto Distribution Installation access control
173086YubiHSM yubihsm-connector Endpoint infinite loop
173085Devolutions Server/Server LTS delete sql injection
173084Group Office URL Parameter upload.php server-side request forgery
173083Devolutions Server/Server LTS HTML Page unknown vulnerability
173082TOTOLINK X5000R/A720R HTTP Request os command injection [CVE-2021-27710]
173081TOTOLINK X5000R/A720R HTTP Request os command injection [CVE-2021-27708]
173080Parallels Desktop Toolgate out-of-bounds read [CVE-2021-27260]
173079Parallels Desktop Toolgate integer overflow [CVE-2021-27259]
173078SolarWinds Orion Platform SaveUserSetting Endpoint access control
173077Netgear Nighthawk R7800 apply_bind.cgi heap-based overflow
173076Netgear R7800 DHCP os command injection [CVE-2021-27252]
173075Netgear Nighthawk R7800 Update cleartext transmission [CVE-2021-27251]
173074D-Link DAP-2020 CGI Script file inclusion [CVE-2021-27250]
173073D-Link DAP-2020 CGI Script os command injection [CVE-2021-27249]
173072D-Link DAP-2020 CGI Script stack-based overflow [CVE-2021-27248]
173071Tencent WeChat Desktop out-of-bounds read [CVE-2021-27247]
173070TP-LINK Archer A7 AC1750 tdpServer Endpoint stack-based overflow
173069Alt-N MDaemon Remote Privilege Escalation [CVE-2021-27183]
173068Alt-N MDaemon Worldclient injection [CVE-2021-27182]
173067Alt-N MDaemon cross-site request forgery [CVE-2021-27181]
173066Alt-N MDaemon Worldclient cross site scripting [CVE-2021-27180]
173065Atlassian JIRA Server/Data Center Cookie missing secure attribute
173064Atlassian JIRA Server/Data Center Jira Importers Plugin information disclosure
173063Joomla! Module Layout Settings unknown vulnerability [CVE-2021-26031]
173062Joomla! Error Page cross site scripting [CVE-2021-26030]
173061Atlassian JIRA Server/Data Center Issue Navigation/Search View cross site scripting
173060Monica Journal Page cross site scripting [CVE-2020-35660]
173059Group Office Parameter cross site scripting [CVE-2020-35419]
173058Group Office Contact Page cross site scripting [CVE-2020-35418]
173057LavaLite cross site scripting [CVE-2020-28124]
173056Backdoor.Win32.Zombam.h HTTP GET Request buffer overflow
173055Multilaser AC1200 cross-site request forgery [CVE-2021-31152]
173054Razer Synapse File Name unknown vulnerability [CVE-2021-30494]
173053Razer Synapse File Name unknown vulnerability [CVE-2021-30493]
173052OpenJPEG Command Line Option integer overflow [CVE-2021-29338]
173051GPAC MP4 File track.c MergeTrack null pointer dereference
173050Forescout CounterACT SecureConnector symlink [CVE-2021-28098]
173049Appspace mail.aspx improper authentication
173048libexif JPG File actions.c denial of service
173047Tenda G1/G3 formDelPortMapping buffer overflow
173046Tenda G1/G3 formIPMacBindDel buffer overflow
173045Tenda G1/G3 formQOSRuleDel buffer overflow
173044SAP Setup Installation unquoted search path [CVE-2021-27608]
173043SAP NetWeaver ABAP Server/ABAP Platform Process Integration xml external entity reference
173042SAP NetWeaver ABAP Server/ABAP Platform Process Integration access control
173041X2Engine X2CRM activity cross site scripting
173040Online Reviewer System sql injection [CVE-2021-27130]
173039D-Link DIR-816 A2 addassignment stack-based overflow
173038D-Link DIR-816 A2 HTTP Request addRouting os command injection
173037Priority Enterprise Management System Reset Password Page cross site scripting
173036TP-LINK WR2041 v1/TL-WR2041+ HTTP Request popupSiteSurveyRpm.html buffer overflow
173035Jitsi Meet Plugin sessionpriv.php cross site scripting
173034tsMuxer WAV File add_a_user buffer overflow
173033SUSE Linux Enterprise hawk2 temp file [CVE-2021-25314]
173032libsixel sixel_encoder_encode_bytes buffer overflow
173031Orchard File Type cross site scripting [CVE-2020-29593]
173030Orchard TinyMCE HTML Editor File Upload unrestricted upload [CVE-2020-29592]
173029X2engine X2CRM create cross site scripting
173028X2Engine X2CRM Rename a Module Tool cross site scripting [CVE-2020-21087]
173027Shopxo index.php access control
173026Appspace sgcontentset.aspx cross site scripting
173025Nextcloud Desktop Client URL Validation resource injection [CVE-2021-22879]
173024SUSE Linux Enterprise Server s390-tools temp file [CVE-2021-25316]
173023Standard Library from_iter double free
173022QNAP NAS Surveillance Station stack-based overflow [CVE-2021-28797]
173021Facebook Thrift release of reference [CVE-2021-24028]
173020Standard Library String Join uninitialized pointer [CVE-2020-36323]
173019Linux Kernel Filesystem fuse_do_getattr denial of service
173018Standard Library get_mut race condition
173017Standard Library MutexGuard Object race condition [CVE-2017-20004]
173016Lenovo XClarity Controller XCC Configuration Backup restore cleartext transmission
173015Lenovo Power Management Driver null pointer dereference [CVE-2021-3463]
173014Lenovo Power Management Driver Device Object default permission
173013Motorola MH702x Communication Channel certificate validation
173012Grav Twig Processing code injection [CVE-2021-29440]
173011Grav Admin Plugin admin authorization
173010Nextcloud Dialogs Library Toast cross site scripting [CVE-2021-29438]
173009ScratchOAuth2 authorization [CVE-2021-29437]
173008Anuko Time Tracker common.php.lib ttMitigateCSRF cross-site request forgery
173007trestle-auth cross-site request forgery [CVE-2021-29435]
173006Gradle temp file [CVE-2021-29428]
173005Gradle unknown vulnerability [CVE-2021-29427]
173004Thanos-Soft Cheetah Browser Intent Scheme cross site scripting
173003mongo-express Collection Exception denial of service [CVE-2021-23372]
173002Ampache Subsonic API access control [CVE-2021-21399]
173001Xerox AltaLink C8070 hard-coded password [CVE-2019-10881]
173000HEUR.Hoax.Win32.FrauDrop.gen permission
172999Trojan.Win32.Agent.zfgh permission
172998Trojan.Win32.Jorik.qje permission
172997SAP Focused RUN oData Service improper authorization [CVE-2021-27609]
172996SAP HCM Travel Management Fiori Apps information disclosure [CVE-2021-27605]
172995SAP NetWeaver AS ABAP SPI_WAIT_MILLIS denial of service [CVE-2021-27603]
172994SAP Commerce Backoffice Application injection [CVE-2021-27602]
172993SAP NetWeaver AS JAVA File cross site scripting [CVE-2021-27601]
172992SAP Manufacturing Execution HTTP Parameter cross site scripting
172991SAP NetWeaver AS JAVA Servlet access control [CVE-2021-27598]
172990Eaton Intelligent Power Manager Packet meta_driver_srv.js coverterCheckList code injection
172989Eaton Intelligent Power Manager File Upload maps_srv.js uploadBackgroud unrestricted upload
172988Eaton Intelligent Power Manager meta_driver_srv.js saveDriverData input validation
172987Eaton Intelligent Power Manager Packet maps_srv.js removeBackground input validation
172986Eaton Intelligent Power Manager Code Syntax utils.js loadUserFile code injection
172985Eaton Intelligent Power Manager Packet sql injection [CVE-2021-23276]
172984Schneider Electric C-Bus Toolkit Project Restore path traversal
172983Schneider Electric C-Bus Toolkit File Upload path traversal [CVE-2021-22719]
172982Schneider Electric C-Bus Toolkit Project File Restore path traversal
172981Schneider Electric C-Bus Toolkit Config File path traversal [CVE-2021-22717]
172980Schneider Electric C-Bus Toolkit privileges management [CVE-2021-22716]
172979AccuSoft ImageGear JPG File out-of-bounds write [CVE-2021-21784]
172978SAP NetWeaver Application Server Java authentication spoofing
172977SAP NetWeaver Application Server for Java NTLM Hash information disclosure
172976SAP Solution Manager information disclosure [CVE-2021-21483]
172975SAP NetWeaver Master Data Management information disclosure [CVE-2021-21482]
172974Google Android CryptoPlugin.cpp decrypt_1_2 out-of-bounds read
172973Google Android LK Local Privilege Escalation [CVE-2021-0468]
172972Google Android ImportVCardActivity improper restriction of rendered ui layers
172971Google Android WelcomeActivity.java start Local Privilege Escalation
172970Google Android Contacts QuickContactActivity.java onActivityResult information disclosure
172969Google Android Screenshot ScreenshotHelper.java information disclosure
172968Google Android InputApplicationHandle.cpp updateInfo use after free
172967Google Android com_android_server_power_PowerManagerService.cpp setPowerModeWithHandle out-of-bounds write
172966Google Android InputDispatcher.cpp improper restriction of rendered ui layers
172965Google Android DrmPlugin.cpp setPlayPolicy double free
172964Google Android CryptoPlugin.cpp decrypt out-of-bounds read
172963Google Android avrc_api.cc avrc_proc_vendor_command information disclosure
172962Google Android Bluetooth DeviceChooserActivity.java onCreate improper restriction of rendered ui layers
172961Google Android StatsPullerManager.cpp ForceClearPullerCache use after free
172960Google Android avrc_api.cc avrc_msg_cback out-of-bounds read
172959Google Android NFC rw_mfc.cc rw_mfc_handle_read_op out-of-bounds write
172958Google Android ALooper.cpp pollOnce memory corruption
172957Google Android TelephonyManager.java getSimSerialNumber information disclosure
172956Google Android LogEvent.cpp parseExclusiveStateAnnotation out-of-bounds write
172955Google Android LogEvent.cpp parsePrimaryFieldFirstUidAnnotation out-of-bounds write
172954Google Android GnssLocationProvider.java handleUpdateLocation input validation
172953Slic3r libslic3r OBJ File TriangleMesh out-of-bounds read
172952Windriver Helix ALM Administration Console xml external entity reference
172951Microsoft Azure DevOps Server/Team Foundation Server information disclosure
172950Microsoft Windows Win32k Local Privilege Escalation [CVE-2021-27072]
172949Microsoft Windows Media Photo Codec information disclosure [CVE-2021-27079]
172948Microsoft Windows Event Tracing Local Privilege Escalation [CVE-2021-27088]
172947Microsoft Windows Internet Messaging API Remote Code Execution
172946Microsoft Windows Secure Kernel Mode Local Privilege Escalation
172945Microsoft Windows RPC Endpoint Mapper Service Local Privilege Escalation
172944Microsoft Windows Azure AD Web Sign-in Local Privilege Escalation
172943Microsoft Windows Kernel information disclosure [CVE-2021-27093]
172942Microsoft Windows Early Launch Antimalware Driver unknown vulnerability
172941Microsoft Windows Media Video Decoder Remote Code Execution [CVE-2021-27095]
172940Microsoft Windows NTFS Local Privilege Escalation [CVE-2021-27096]
172939Microsoft Windows Installer unknown vulnerability [CVE-2021-26413]
172938Microsoft Windows Installer Local Privilege Escalation [CVE-2021-26415]
172937Microsoft Windows Hyper-V denial of service [CVE-2021-26416]
172936Microsoft Windows Overlay Filter information disclosure [CVE-2021-26417]
172935Microsoft Windows Kernel information disclosure [CVE-2021-28309]
172934Microsoft Windows Win32k Local Privilege Escalation [CVE-2021-28310]
172933Microsoft Windows Application Compatibility Cache denial of service
172932Microsoft Windows NTFS denial of service [CVE-2021-28312]
172931Microsoft Windows Diagnostics Hub Standard Collector Service Local Privilege Escalation
172930Microsoft Windows Hyper-V Local Privilege Escalation [CVE-2021-28314]
172929Microsoft Windows Media Video Decoder Remote Code Execution [CVE-2021-28315]
172928Microsoft Windows WLAN AutoConfig Service information disclosure
172927Microsoft Windows Codecs Library information disclosure [CVE-2021-28317]
172926Microsoft Windows GDI+ information disclosure [CVE-2021-28318]
172925Microsoft Windows TCP/IP Driver denial of service [CVE-2021-28319]
172924Microsoft Windows esource Manager PSM Service Extension Local Privilege Escalation
172923Microsoft Windows Diagnostics Hub Standard Collector Service Local Privilege Escalation
172922Microsoft Windows Diagnostics Hub Standard Collector Service privileges management
172921Microsoft Windows DNS information disclosure [CVE-2021-28323]
172920Microsoft Windows SMB information disclosure [CVE-2021-28324]
172919Microsoft Windows SMB information disclosure [CVE-2021-28325]
172918Microsoft Windows AppX Deployment Server denial of service [CVE-2021-28326]
172917Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172916Microsoft Windows DNS information disclosure [CVE-2021-28328]
172915Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172914Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172913Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172912Microsoft Windows Remote Privilege Escalation [CVE-2021-28332]
172911Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172910Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172909Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172908Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172907Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172906Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172905Microsoft Windows Remote Privilege Escalation [CVE-2021-28339]
172904Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172903Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172902Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172901Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172900Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172899Microsoft Windows Remote Procedure Call Runtime Remote Remote Privilege Escalation
172898Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172897Microsoft Windows Speech Runtime Local Privilege Escalation [CVE-2021-28347]
172896Microsoft Windows GDI+ Remote Code Execution [CVE-2021-28348]
172895Microsoft Windows GDI+ Remote Code Execution [CVE-2021-28349]
172894Microsoft Windows GDI+ Remote Code Execution [CVE-2021-28350]
172893Microsoft Windows Speech Runtime Local Privilege Escalation [CVE-2021-28351]
172892Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172891Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172890Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172889Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172888Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172887Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172886Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172885Microsoft Windows Remote Procedure Call Runtime Remote Privilege Escalation
172884Microsoft Windows Event Tracing information disclosure [CVE-2021-28435]
172883Microsoft Windows Speech Runtime Local Privilege Escalation [CVE-2021-28436]
172882Microsoft Windows Installer information disclosure [CVE-2021-28437]
172881Microsoft Windows Console Driver denial of service [CVE-2021-28438]
172880Microsoft Windows TCP/IP Driver denial of service [CVE-2021-28439]
172879Microsoft Windows Installer Local Privilege Escalation [CVE-2021-28440]
172878Microsoft Windows Hyper-V information disclosure [CVE-2021-28441]
172877Microsoft Windows TCP/IP information disclosure [CVE-2021-28442]
172876Microsoft Windows Console Driver denial of service [CVE-2021-28443]
172875Microsoft Windows Hyper-V unknown vulnerability [CVE-2021-28444]
172874Microsoft Windows Network File System unknown vulnerability [CVE-2021-28445]
172873Microsoft Windows Early Launch Antimalware Driver unknown vulnerability
172872Microsoft Windows Early Launch Antimalware Driver unknown vulnerability
172871Microsoft Kubernetes Tools Remote Code Execution [CVE-2021-28448]
172870Microsoft Office Excel Remote Code Execution [CVE-2021-28449]
172869Microsoft SharePoint Update denial of service [CVE-2021-28450]
172868Microsoft Office Excel Remote Code Execution [CVE-2021-28451]
172867Microsoft Outlook memory corruption [CVE-2021-28452]
172866Microsoft Word/Office/SharePoint Remote Code Execution [CVE-2021-28453]
172865Microsoft Office Excel Remote Code Execution [CVE-2021-28454]
172864Microsoft Office Excel information disclosure [CVE-2021-28456]
172863Microsoft Visual Studio Code Remote Code Execution [CVE-2021-28457]
172862Microsoft @azure-ms-rest-nodeauth Local Privilege Escalation
172861Microsoft Azure DevOps Server unknown vulnerability [CVE-2021-28459]
172860Microsoft Azure Sphere Local Privilege Escalation [CVE-2021-28460]
172859Microsoft Visual Studio Code Remote Code Execution [CVE-2021-28469]
172858Microsoft GitHub Pull Requests and Issues Extension Remote Code Execution
172857Microsoft Visual Studio Code Remote Development Extension Remote Code Execution
172856Microsoft Maven for Java Extension Remote Code Execution [CVE-2021-28472]
172855Microsoft Visual Studio Code Remote Code Execution [CVE-2021-28475]
172854Microsoft Visual Studio Code Remote Code Execution [CVE-2021-28477]
172853Microsoft Exchange Server Remote Code Execution [CVE-2021-28480]
172852Microsoft Exchange Server Remote Code Execution [CVE-2021-28481]
172851Microsoft Exchange Server Remote Privilege Escalation [CVE-2021-28482]
172850Microsoft Exchange Server unknown vulnerability [CVE-2021-28483]
172849Microsoft Visual Studio Installer Local Privilege Escalation
172848Microsoft Windows Services/Controller App Local Privilege Escalation
172847Microsoft VP9 Video Extensions Remote Code Execution [CVE-2021-28464]
172846Microsoft Raw Image Extension Remote Code Execution [CVE-2021-28466]
172845Microsoft Raw Image Extension Remote Code Execution [CVE-2021-28468]
172844Microsoft Visual Studio Code Remote Code Execution [CVE-2021-28473]
172843Wind River VxWorks dhcp Server stack-based overflow [CVE-2021-29999]
172842Wind River VxWorks dhcp Client heap-based overflow [CVE-2021-29998]
172841Perforce Helix ALM XML Import xml external entity reference [CVE-2021-28973]
172840ZTE ZXCLOUD iRAI Management Page cross-site request forgery [CVE-2021-21731]
172839ZTE ZXHN H168N CLI access control [CVE-2021-21730]
172838ZTE ZXHN H168N/ZXHN H108N cross-site request forgery [CVE-2021-21729]
172837ZEROF Expert Pro Authorization Header add sql injection
172836ZEROF Web Server Login Page HandleEvent sql injection
172835Trend Micro Password Manager DLL uncontrolled search path [CVE-2021-28647]
172834Trend Micro Apex One/Apex One as a Service/OfficeScan XG SP1 Log File permission
172833Trend Micro OfficeScan XG SP1 access control [CVE-2021-28645]
172832FluidSynth soundfont2 File fluid_sffile.c use after free
172831Trend Micro Apex One/Apex One as a Service/OfficeScan XG SP1 access control
172830Trend Micro Apex One/Apex One as a Service/OfficeScan XG SP1 access control
172829Micro Focus Operations Agent access control [CVE-2021-22505]
172828OpenClinic GA getAssets.jsp sql injection
172827OpenClinic GA getAssets.jsp sql injection
172826OpenClinic GA getAssets.jsp sql injection
172825OpenClinic GA getAssets.jsp sql injection
172824OpenClinic GA Installation permission [CVE-2020-27228]
172823OpenClinic GA Web Request command injection [CVE-2020-27227]
172822phpGACL POST Parameter edit_group.php sql injection
172821phpGACL POST Parameter edit_group.php sql injection
172820HTMLy config.html.php cross site scripting
172819GLSL Linting Extension Workspace Configuration injection [CVE-2021-30503]
172818Remote Clinic register.php cross site scripting
172817Remote Clinic register.php cross site scripting
172816Remote Clinic register-report.php cross site scripting
172815Remote Clinic register-report.php cross site scripting
172814Remote Clinic register-patient.php cross site scripting
172813Apache Solr ConfigurableInternodeAuthHadoopPlugin authorization
172812Apache Commons IO FileNameUtils.normalize path traversal
172811Apache Solr VMParamsAllAndReadonlyDigestZkACLProvider insufficiently protected credentials
172810Papoo CMS Light/CMS Pro Admin Interface cross-site request forgery
172809Genexis Platinum 4410 os command injection [CVE-2021-29003]
172808Siren Federate Thread information disclosure [CVE-2021-28938]
172807Apache Solr replication server-side request forgery
172806Slab Quill HTML Editor cross site scripting [CVE-2021-3163]
172805ASUS RT-AX3000/ZenWiFi AX/RT-AX88U IPv6 Router Advertisement infinite loop
172804TP-Link TL-XDR5430 Router Advertisement infinite loop [CVE-2021-3125]
172803Gradle Download temp file [CVE-2021-29429]
172802OutSystems Platform Server ECT Provider server-side request forgery
172801TP-Link TL-WR802N/Archer_C50v5_US httpd buffer overflow [CVE-2021-29302]
172800Gargoyle OS Router Advertisement infinite loop [CVE-2021-23270]
172799NetIQ Advanced Authentication user session [CVE-2021-22497]
172798Dell Peripheral Manager uncontrolled search path [CVE-2021-21545]
172797Dell SRM deserialization [CVE-2021-21524]
172796Synapse resource consumption [CVE-2021-21394]
172795Synapse resource consumption [CVE-2021-21393]
172794Synapse IPv6 redirect [CVE-2021-21392]
172793IBM Jazz Team Server Web UI cross site scripting [CVE-2021-20519]
172792MongoDB Database Tools certificate validation [CVE-2020-7924]
172791IBM Jazz Team Server inadequate encryption [CVE-2020-4965]
172790IBM Jazz Team Server Message injection [CVE-2020-4964]
172789IBM Jazz Team Server Web UI cross site scripting [CVE-2020-4920]
172788Bitdefender Safepay File Upload origin validation [CVE-2020-15734]
172787Pega Platform pyActivity access control [CVE-2020-15390]
172786Liberty lisPBX Configuration Backup lispbx-CONF-YYYY-MM-DD.tar improper authentication
172785Fatek Automation WinProladder out-of-bounds write [CVE-2021-27486]
172784SiCKRAGE Quicksearch cross site scripting [CVE-2021-25926]
172783SiCKRAGE cross site scripting [CVE-2021-25925]
172782Patreon Plugin cross-site request forgery [CVE-2021-24231]
172781Patreon Plugin cross-site request forgery [CVE-2021-24230]
172780Patreon Plugin AJAX Action patreon_save_attachment_patreon_level cross site scripting
172779Patreon Plugin Login Form wp-login.php cross site scripting
172778Patreon Plugin wp-config.php information disclosure
172777AccessAlly Plugin product-shortcode.php information disclosure
172776Advanced Booking Calendar Plugin GET Parameter cross site scripting
172775Easy Form Builder Plugin AJAX Action EFBP_verify_upload_file unrestricted upload
172774N5 Upload Form Plugin unrestricted upload [CVE-2021-24223]
172773WP-Curriculo Vitae Free Plugin Profile Picture unrestricted upload
172772Quiz And Survey Master Plugin sql injection [CVE-2021-24221]
172771Thrive Legacy Rise Theme REST API Endpoint unrestricted upload
172770Thrive Optimize Plugin REST API access control [CVE-2021-24219]
172769Facebook for WordPress Plugin AJAX Action wp_ajax_delete_fbe_settings cross-site request forgery
172768Facebook for WordPress Plugin Function run_action deserialization
172767Controlled Admin Access Plugin customization.php access control
172766GiveWP cross site scripting [CVE-2021-24213]
172765wpDataTables sql injection [CVE-2021-24200]
172764wpDataTables sql injection [CVE-2021-24199]
172763wpDataTables access control [CVE-2021-24198]
172762wpDataTables access control [CVE-2021-24197]
172761Fortinet FortiADCManager/FortiADC log file [CVE-2021-24024]
172760chrono-node Date String denial of service [CVE-2021-23371]
172759swiper denial of service [CVE-2021-23370]
172758handlebars Template Compile Remote Code Execution [CVE-2021-23369]
172757postcss Map Parser incorrect regex [CVE-2021-23368]
172756GitLab JWT Token path traversal [CVE-2021-22190]
172755Monitorr _register.php authorization
172754Fortinet FortiWeb Web Vulnerability Scan Profile information disclosure
172753Fortinet FortiOS/FortiProxy HTTP Daemon stack-based overflow
172752Intelbras Tip 200 cgiServer.exx information disclosure
172751D-Link DIR-802 A1 UPnP command injection [CVE-2021-29379]
172750Standard Library ZIP integer overflow [CVE-2021-28879]
172749Standard Library __iterator_get_unchecked memory corruption
172748Standard Library __iterator_get_unchecked memory corruption
172747Standard Library __iterator_get_unchecked memory corruption
172746Standard Library read_to_end buffer overflow
172745Standard Library make_contiguous use after free
172744Standard Library UTF-8 Encoding retain memory corruption
172743Standard Library Comparison sift_down_range memory corruption
172742ezXML XML File libezxml.a ezxml_internal_dtd null pointer dereference
172741Valve Steam Source Engine Game buffer overflow [CVE-2021-30481]
172740SonicWall GMS improper authentication [CVE-2021-20020]
172739Zoom Chat Remote Privilege Escalation [CVE-2021-30480]
172738Samsung Account Pendingetent improper authorization [CVE-2021-25381]
172737Samsung Bixby Exception Remote Code Execution [CVE-2021-25380]
172736Samsung Gallery Intents information disclosure [CVE-2021-25379]
172735Samsung SmartThings Port denial of service [CVE-2021-25378]
172734Samsung Experience Service Intent improper authentication [CVE-2021-25377]
172733Samsung Email Synchronization information disclosure [CVE-2021-25376]
172732Samsung Email Attachment information disclosure [CVE-2021-25375]
172731Samsung Members samsungrewards Scheme for Deeplink improper authorization
172730Samsung Customization Service Pendingetent improper authorization
172729Samsung softsimd API privileges management [CVE-2021-25365]
172728Samsung Secure Folder Contact Information information disclosure
172727Samsung ActivityManagerService privileges management [CVE-2021-25363]
172726Samsung CertInstaller privileges management [CVE-2021-25362]
172725Samsung StickerCenter access control [CVE-2021-25361]
172724Samsung libswmfextractor heap-based overflow [CVE-2021-25360]
172723Samsung SELinux Policy AP Information permission [CVE-2021-25359]
172722Samsung Smart Phone IMSI Value permission [CVE-2021-25358]
172721Samsung Create Movie Contact Information information disclosure
172720Samsung Managed Provisioning permission [CVE-2021-25356]
172719ZTE ZXA10 C300M Configuration Error resource consumption [CVE-2021-21728]
172718Discord Recon Server code injection [CVE-2021-21433]
172717Vela .netrc improper authorization
172716Google Chrome Aura use after free [CVE-2021-21199]
172715Google Chrome IPC out-of-bounds read [CVE-2021-21198]
172714Google Chrome TabStrip heap-based overflow [CVE-2021-21197]
172713Google Chrome TabStrip heap-based overflow [CVE-2021-21196]
172712Google Chrome v8 use after free [CVE-2021-21195]
172711Google Chrome Screen Sharing use after free [CVE-2021-21194]
172710Zoho ManageEngine ServiceDesk Plus/AssetExplorer XML Asset File cross site scripting
172709SonicWALL Email Security unrestricted upload [CVE-2021-20022]
172708SonicWALL Email Security HTTP Request privileges management [CVE-2021-20021]
172707Online Book Store admin.php sql injection
172706Larsens Calender Plugin cross site scripting [CVE-2020-23762]
172705Subrion CMS Payment Gateway cross site scripting [CVE-2020-23761]
172704Rukovoditel Project Management App choices sql injection
172703Rukovoditel Project Management App rules_form sql injection
172702Rukovoditel Project Management App rules cross-site request forgery
172701Dreamreport Dream Report CLSID access control [CVE-2020-13534]
172700Dreamreport Dream Report Binary backdoor [CVE-2020-13533]
172699Dreamreport Dream Report Syncfusion Dashboard Service access control
172698IBM Spectrum Scale Filesystem Audit Log unknown vulnerability
172697Erlang OTP erlsrv.exe access control
172696Skyworth Digital Technology RN510 app-staticIP.asp unknown vulnerability
172695Skyworth Digital Technology RN510 net-routeadd.asp cross-site request forgery
172694Skyworth Digital Technology RN510 Wi-Fi test_version.asp access control
172693sopel-channelmgnt Kick Command access control [CVE-2021-21431]
172692Unibox SMB/Enterprise Series/Campus Series network-trace cross-site request forgery
172691Unibox U-50/Enterprise Series/Campus Series ping os command injection
172690Wikimedia Parsoid Wikitext WTUtils.php cross site scripting
172689MediaWiki isValidMoveTarget denial of service
172688MediaWiki Special:Contributions information disclosure
172687MediaWiki ContentModelChange permission
172686MediaWiki API permission [CVE-2021-30152]
172685Atlassian JIRA Server/Data Center Dashboard Gadgets Preference Resource authorization
172684Exiv2 JPG Image jp2image.cpp readMetadata heap-based overflow
172683dnsmasq Port security check for standard [CVE-2021-3448]
172682Red Hat Satellite tfm-rubygem-foreman_azure_rm information disclosure
172681Aprelium Abyss Web Server HTTP Request out-of-bounds read [CVE-2021-3328]
172680Dolby Audio X2 API Remote Privilege Escalation [CVE-2021-3146]
172679Linux Kernel BPF JIT Compiler Remote Privilege Escalation [CVE-2021-29154]
172678Micro Focus Application Automation Tools Plugin authorization
172677Micro Focus Application Automation Tools Plugin cross-site request forgery
172676Micro Focus Application Automation Tools Plugin certificate validation
172675Micro Focus Application Automation Tools Plugin cross site scripting
172674Micro Focus Operations Bridge Manager improper authentication
172673Huawei Secospace USG9500 Message memory leak [CVE-2021-22312]
172672Cloud Foundry Cloud Controller API Service Broker Credential log file
172671Forcepoint Web Security Content Gateway XML information disclosure
172670Xiaomi Mobile Phone MIUI information disclosure [CVE-2020-14106]
172669Xiaomi AX3600 XQBackup race condition [CVE-2020-14104]
172668Xiaomi 10 MIUI SNO information disclosure [CVE-2020-14103]
172667Xiaomi AX1800/RM1800 Backup hard-coded key [CVE-2020-14099]
172666Squirro Insights Engine cross site scripting [CVE-2021-27945]
172665Learnsite Cookie index.aspx JudgIsAdmin access control
172664Realtek rtl8723de BLE Stack CONNECT_REQ Message denial of service
172663VestaCP user.conf permission
172662VestaCP sudo Configuration bin access control
172661zzcms adv.php access control
172660Web-School ERP Voucher Payment create cross-site request forgery
172659Web-School ERP Event cross site scripting [CVE-2021-30113]
172658Web-School ERP create student_leave_application cross-site request forgery
172657Web-School ERP Event injection [CVE-2021-30111]
172656Nagios Network Analyzer sql injection [CVE-2021-28925]
172655Nagios Network Analyzer queries cross site scripting
172654IBM WebSphere Application Server server-side request forgery
172653ESRI ArcGIS Online onerror cross site scripting [CVE-2021-3012]
172652ASUS GPUTweak II AsIO2_64.sys DeviceIoControl denial of service
172651ASUS GPUTweak II Physical Memory AsIO2_64.sys Remote Privilege Escalation
172650ClamAV Antivirus PDF Parser buffer overflow [CVE-2021-1405]
172649ClamAV Antivirus parsing module denial of service [CVE-2021-1404]
172648ClamAV Antivirus Excel XLM Macro Parsing Module denial of service
172647Mitake Smart Stock Selection System URL improper authentication
172646Cisco IOS XR CLI argument injection [CVE-2021-1485]
172645Cisco SD-WAN vManage Software memory corruption [CVE-2021-1480]
172644Cisco SD-WAN vManage Software memory corruption [CVE-2021-1479]
172643Cisco Umbrella Scheduled Report csv injection [CVE-2021-1475]
172642Cisco Umbrella Scheduled Report csv injection [CVE-2021-1474]
172641Cisco Small Business RV Series Router Web-based Management Interface memory corruption
172640Cisco Small Business RV Series Router Web-based Management Interface memory corruption
172639Cisco Webex Meetings Client Avatar access control [CVE-2021-1467]
172638Cisco Unified Intelligence Center Web-based Management Interface cross site scripting
172637Cisco RV110W/RV130/RV130W/RV215W Web-based Management Interface memory corruption
172636Cisco Webex Meetings cross site scriting [CVE-2021-1420]
172635Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization
172634Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization
172633Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization
172632Cisco Unified Communications Manager Web-based Management Interface cross site scripting
172631Cisco Unified Communications Manager Web-based Management Interface cross site scripting
172630Cisco Unified Communications Manager Web-based Management Interface cross site scripting
172629Cisco Unified Communications Manager file information disclosure
172628Cisco Unified Communications Manager Self Care Portal improper authentication
172627Cisco Advanced Malware Protection/Immunet DLL Loader uncontrolled search path
172626Cisco Unified Communications Manager Web-based Management Interface cross site scripting
172625Cisco Unified Communications Manager SOAP API Endpoint code injection
172624Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption
172623Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption
172622Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption
172621Cisco SD-WAN vManage Software memory corruption [CVE-2021-1137]
172620id-map Crate remove_set double free
172619id-map Crate get_or_insert double free
172618id-map Crate Clone clone clone_from double free
172617outer_cgi Crate KeyValueReader uninitialized pointer
172616jsrsasign Package RSA PKCS#1 v1.5 Signature Verification signature verification
172615FFmpeg libavcodec buffer overflow [CVE-2021-30123]
172614Directus Upload Directory unrestricted upload [CVE-2021-29641]
172613Eclipse Mosquitto MQTT v5 null pointer dereference [CVE-2021-28166]
172612Litespeed Technologies OpenLiteSpeed access control [CVE-2021-26758]
172611Grav Admin Plugin access control [CVE-2021-21425]
172610RELIC PKCS Signature signature verification [CVE-2020-36316]
172609RELIC RSA PKCS Signature certificate validation [CVE-2020-36315]
172608Wcms html.php server-side request forgery
172607Wcms cssjs.php server-side request forgery
172606Wcms cssjs.php pathname traversal
172605Wcms cssjs.php cross site scripting
172604Ps Project Management Team unity-firefox-extension denial of service
172603Ps Project Management Team unity-firefox-extension denial of service
172602Backdoor.Win32.Small.n Service Port 1337 backdoor
172601Backdoor.Win32.Hupigon.das Service Port 8080 winserv.com backdoor
172600Trojan-Downloader.Win32.Genome.omht permission
172599Trojan-Downloader.Win32.Genome.qiw tmp permission
172598Trojan.Win32.Hotkeychick.d Sniperscan permission
172597Trojan.Win32.Hosts2.yqf mlekaocYUmaae permission
172596Trojan-Downloader.Win32.FraudLoad.xevn permission
172595Trojan.Win32.Sharer.h HFS HTTP File Server buffer overflow [CVE-2020-13432]
172594Trojan.Win32.Sharer.h FTP Server backdoor
172593Trojan.Win32.Sharer.h FTP Server improper authentication
172592CERN Indico Host Header password recovery [CVE-2021-30185]
172591FreeBSD Listening Socket accf_create use after free
172590FreeBSD Shared Memory Page use after free [CVE-2021-29626]
172589libretro RetroArch PowerShell platform_win32.c accessibility_speak_windows command injection
172588Jenkins Promoted Builds Plugin cross-site request forgery [CVE-2021-21641]
172587Jenkins View permission [CVE-2021-21640]
172586Jenkins REST API Endpoint config.xml permission
172585FreeBSD jail race condition [CVE-2020-25584]
172584Wcms html.php cross site scripting
172583Wcms html.php pathname traversal
172582GNU Chess PGN cmd.cc cmd_pgnreplay buffer overflow
172581GNOME file-roller Extraction fr-archive-libarchive.c pathname traversal
172580PHP-Nuke User Registration sql injection [CVE-2021-30177]
172579D-Link DSL-320B-D1 login.xgi buffer overflow
172578EikiSoft Archive Collectively Operation Utility ZIP Archive pathname traversal
172577Yomi-Search cross site scripting [CVE-2021-20691]
172576Yomi-Search cross site scripting [CVE-2021-20690]
172575Yomi-Search cross site scripting [CVE-2021-20689]
172574Click Ranker cross site scripting [CVE-2021-20688]
172573Kagemai cross-site request forgery [CVE-2021-20687]
172572Kagemai cross site scripting [CVE-2021-20686]
172571Kagemai cross site scripting [CVE-2021-20685]
172570MagazinegerZ cross site scripting [CVE-2021-20684]
172569Qualcomm Snapdragon Compute IO Control memory corruption [CVE-2021-1892]
172568Qualcomm Snapdragon Auto RTCP Packet denial of service [CVE-2020-11255]
172567Qualcomm Snapdragon Auto TrustZone information disclosure [CVE-2020-11252]
172566Qualcomm Snapdragon Auto DTMF Payload out-of-bounds read [CVE-2020-11251]
172565Qualcomm Snapdragon Auto out-of-bounds read [CVE-2020-11247]
172564Qualcomm Snapdragon Auto Suspend Mode double free [CVE-2020-11246]
172563Qualcomm Snapdragon Auto NS EL2 access control [CVE-2020-11245]
172562Qualcomm Snapdragon Auto RRC denial of service [CVE-2020-11243]
172561Qualcomm Snapdragon Industrial IOT/Snapdragon Mobile SDI Local Privilege Escalation
172560Qualcomm Snapdragon Auto Histogram memory corruption [CVE-2020-11237]
172559Qualcomm Snapdragon Auto Dimensions memory corruption [CVE-2020-11236]
172558Qualcomm Snapdragon Auto Socket Event use after free [CVE-2020-11234]
172557Qualcomm Snapdragon Compute Thread heap-based overflow [CVE-2020-11231]
172556Qualcomm Snapdragon Connectivity RPM memory corruption [CVE-2020-11210]
172555Qualcomm Snapdragon Auto SDP out-of-bounds read [CVE-2020-11191]
172554Linux Kernel SynIC Hyper-V hyperv.c synic_get null pointer dereference
172553DMA Softlab Radius Manager admin.php cross-site request forgery
172552Linux Kernel KVM Subsystem kvm-s390.c unknown vulnerability
172551Linux Kernel kvm_main.c kvm_io_bus_unregister_dev memory leak
172550Linux Kernel SEV VM sev.c denial of service
172549Linux Kernel svm.c set_memory_region_test infinite loop
172548Proofpoint Insider Threat Management Server Web Console improper authorization
172547Proofpoint Insider Threat Management Agents channel accessible
172546Teradici PCoIP Connection Manager and Security Gateway log file
172545Proofpoint Insider Threat Management Server Web Console xml external entity reference
172544Proofpoint Insider Threat Management Server cross site scripting
172543projen Project Configuration Remote Privilege Escalation [CVE-2021-21423]
172542Syncthing Relay Messages denial of service [CVE-2021-21404]
172541ngx_http_lua_module API unknown vulnerability [CVE-2020-36309]
172540OpenIAM permission [CVE-2020-13422]
172539OpenIAM access control [CVE-2020-13421]
172538OpenIAM Groovy Script Remote Privilege Escalation [CVE-2020-13420]
172537OpenIAM Batch pathname traversal [CVE-2020-13419]
172536OpenIAM Add New User cross site scripting [CVE-2020-13418]
172535Seafile Share of Library cross site scripting [CVE-2021-30146]
172534LiquidFiles Send Email cross site scripting [CVE-2021-30140]
172533phpseclib RSA PKCS#1 v1.5 Signature Verification signature verification
172532VIGRA Computer Vision Library File impex.hxx read_image_band denial of service
172531SerenityOS read buffer overflow
172530Net::Netmask Zero access control [CVE-2021-29424]
172529Open Container Initiative umoci Image symlink [CVE-2021-29136]
172528SerenityOS LibTextCode buffer overflow [CVE-2021-28874]
172527Django MultiPartParser pathname traversal [CVE-2021-28658]
172526Vangene deltaFlow E-Platform unrestricted upload [CVE-2021-28173]
172525Vangene deltaFlow E-Platform File Download path traversal [CVE-2021-28172]
172524Vangene deltaFlow E-Platform Cookie insufficiently protected credentials
172523CITSmart Filtro de Autocomplete unknown vulnerability [CVE-2021-28142]
172522iKuaiOS information disclosure [CVE-2021-28075]
172521RIOT-OS gnrc_rpl_control_messages.c _parse_options buffer overflow
172520RIOT-OS gnrc_rpl_validation.c gnrc_rpl_validation_options buffer overflow
172519RIOT-OS gnrc_rpl_control_messages.c buffer overflow
172518SerenityOS ASN.1 DER.h der_decode_sequence buffer overflow
172517TimelyBills JWT Token Storage cleartext storage [CVE-2021-26833]
172516Facebook WhatsApp/WhatsApp Business Cache Configuration information disclosure
172515Facebook WhatsApp/WhatsApp Business Decoding Pipeline out-of-bounds write
172514MongoDB Compass privileges management [CVE-2021-20334]
172513Union Pay signature verification [CVE-2020-36285]
172512Union Pay signature verification [CVE-2020-36284]
172511Union Pay Shopping signature verification [CVE-2020-23533]
172510Red Hat Enterprise Linux QEMU out-of-bounds read [CVE-2021-20295]
172509Redmine Issues API permission [CVE-2021-30164]
172508Redmine Project information disclosure [CVE-2021-30163]
172507LG Mobile Devices ISMS Services access control [CVE-2021-30162]
172506LG Mobile Device Lockscreen protection mechanism [CVE-2021-30161]
172505MediaWiki Special:ResetTokens improper authentication
172504MediaWiki ChangesList Special Pages cross site scripting [CVE-2021-30157]
172503MediaWiki Special:NewFiles cross site scripting
172502Sidekiq Live-Poll cross site scripting [CVE-2021-30151]
172501Composr XML Script cross site scripting [CVE-2021-30150]
172500Composr unrestricted upload [CVE-2021-30149]
172499Dashboard Plugin main2.php access control
172498ASUS BMC Web Management Page path traversal [CVE-2021-28209]
172497ASUS BMC Web Management Page path traversal [CVE-2021-28208]
172496ASUS BMC Web Management Page path traversal [CVE-2021-28207]
172495ASUS BMC Web Management Page path traversal [CVE-2021-28206]
172494ASUS BMC Web Management Page path traversal [CVE-2021-28205]
172493ASUS BMC Web Management Page os command injection [CVE-2021-28204]
172492ASUS BMC Web Set Media Image os command injection [CVE-2021-28203]
172491ASUS BMC Web Management Page buffer overflow [CVE-2021-28202]
172490ASUS BMC Web Management Page buffer overflow [CVE-2021-28201]
172489ASUS BMC CD Media Configuration buffer overflow [CVE-2021-28200]
172488ASUS BMC Web Management Page buffer overflow [CVE-2021-28199]
172487ASUS BMC Firmware Protocol Configuration buffer overflow [CVE-2021-28198]
172486ASUS BMC Active Directory Configuration buffer overflow [CVE-2021-28197]
172485ASUS BMC SSL Certificate buffer overflow [CVE-2021-28196]
172484ASUS BMC Web Management Page buffer overflow [CVE-2021-28195]
172483ASUS BMC Web Management Page buffer overflow [CVE-2021-28194]
172482ASUS BMC SMTP Configuration buffer overflow [CVE-2021-28193]
172481ASUS BMC Web Management Page buffer overflow [CVE-2021-28192]
172480ASUS BMC Web Management Page buffer overflow [CVE-2021-28191]
172479ASUS BMC Web Management Page buffer overflow [CVE-2021-28190]
172478ASUS BMC Web Management Page buffer overflow [CVE-2021-28189]
172477ASUS BMC Web Management Page buffer overflow [CVE-2021-28188]
172476ASUS BMC SSL Certificate buffer overflow [CVE-2021-28187]
172475ASUS BMC Web Management Page buffer overflow [CVE-2021-28186]
172474ASUS BMC Web Management Page buffer overflow [CVE-2021-28185]
172473ASUS BMC Active Directory Configuration buffer overflow [CVE-2021-28184]
172472ASUS BMC Web Management Page buffer overflow [CVE-2021-28183]
172471ASUS BMC Web Service Configuration buffer overflow [CVE-2021-28182]
172470ASUS BMC Web Management Page buffer overflow [CVE-2021-28181]
172469ASUS BMC Web Management Page buffer overflow [CVE-2021-28180]
172468ASUS BMC Web Management Page buffer overflow [CVE-2021-28179]
172467ASUS BMC UEFI Configuration buffer overflow [CVE-2021-28178]
172466ASUS BMC Web Management Page buffer overflow [CVE-2021-28177]
172465ASUS BMC Web Management Page buffer overflow [CVE-2021-28176]
172464ASUS BMC Web Management Page buffer overflow [CVE-2021-28175]
172463Redmine CSV Export information disclosure [CVE-2020-36308]
172462Redmine Textile cross site scripting [CVE-2020-36307]
172461Redmine cross site scripting [CVE-2020-36306]
172460Redmine Textile unknown vulnerability [CVE-2019-25026]
172459Friendica UserExport.php memory allocation [Disputed]
172458WooCommerce Help Scout Plugin hstmp unrestricted upload
172457Related Posts Plugin Settings Page cross site scripting [CVE-2021-24211]
172456PhastPress Plugin redirect [CVE-2021-24210]
172455WP Super Cache Plugin Cache Settings wp-cache-config.php code injection
172454WP Page Builder Plugin Raw HTML Widget/Custom HTML Widget cross site scripting
172453WP Page Builder Plugin Subscriber access control [CVE-2021-24207]
172452Elementor Website Builder Plugin image-box.php cross site scripting
172451Elementor Website Builder Plugin icon-box.php cross site scripting
172450Elementor Website Builder Plugin Saved Pages accordion.php cross site scripting
172449Elementor Website Builder Plugin Saved Pages divider.php cross site scripting
172448Elementor Website Builder Plugin Saved Pages heading.php cross site scripting
172447Elementor Website Builder Plugin column.php cross site scripting
172446Social Slider Widget Plugin Settings Page cross site scripting
172445SEO Redirection Plugin 301 Redirect cross site scripting [CVE-2021-24187]
172444Tutor LMS Plugin get_answer_by_id sql injection
172443Tutor LMS AJAX tutor_place_rating sql injection
172442Tutor LMS AJAX Endpoint privileges management [CVE-2021-24184]
172441Tutor LMS Plugin AJAX tutor_quiz_builder_get_question_form sql injection
172440Tutor LMS Plugin AJAX tutor_quiz_builder_get_answers_by_question sql injection
172439Tutor LMS tutor_mark_answer_as_correct sql injection
172438Related Posts Plugin GET Parameter cross site scripting [CVE-2021-24180]
172437File Manager Plugin cross site scripting [CVE-2021-24177]
172436JH 404 Logger Plugin Path cross site scripting [CVE-2021-24176]
172435Plus Addons for Elementor Page Builder Plugin improper authentication
172434Database Backups Plugin cross-site request forgery [CVE-2021-24174]
172433VM Backups Plugin cross-site request forgery [CVE-2021-24173]
172432VM Backups Plugin cross-site request forgery [CVE-2021-24172]
172431WooCommerce Upload Files Plugin Blacklist unrestricted upload
172430User Profile Picture Plugin REST API Endpoint get_users information disclosure
172429Advanced Order Export for WooCommerce Plugin Admin Panel cross site scripting
172428Easy Contact Form Pro Plugin cross site scripting [CVE-2021-24168]
172427Web-Stat XMLHttpRequest wts_web_stat_load_init information disclosure
172426Ninja Forms Contact Form Drag/Drop Form Builder wp_ajax_nf_oauth_disconnect cross-site request forgery
172425Ninja Forms Contact Form Plugin wp_ajax_nf_oauth_connect redirect
172424Ninja Forms Contact Form Plugin wp_ajax_nf_oauth information disclosure
172423SendWP Ninja Forms Contact Form Plugin AJAX wp_ajax_ninja_forms_sendwp_remote_install_handler information disclosure
172422Reponsive Menu Plugin Setting cross-site request forgery [CVE-2021-24162]
172421Reponsive Menu Plugin ZIP cross-site request forgery [CVE-2021-24161]
172420Reponsive Menu Plugin unrestricted upload [CVE-2021-24160]
172419Contact Form 7 Style Plugin Custom CSS cross site scripting [CVE-2021-24159]
172418ThemeIsle Orbit Fox Registration privileges management [CVE-2021-24158]
172417ThemeIsle Orbit Fox Header cross site scripting [CVE-2021-24157]
172416Testimonial Rotator cross site scripting [CVE-2021-24156]
172415Backup and Migrate Plugin Privileges unrestricted upload [CVE-2021-24155]
172414Theme Editor Plugin passwd download_file file access
172413Yoast SEO Plugin Blacklist cross site scripting [CVE-2021-24153]
172412Popup Builder All Subscribers Setting Page cross site scripting
172411LikeBtn Like Button Rating server-side request forgery [CVE-2021-24150]
172410HTMLDOC integer overflow [CVE-2021-20308]
172409libpano13 panoFileOutputNamesCreate format string
172408Nettle signature verification [CVE-2021-20305]
172407Core FTP Server buffer overflow [CVE-2020-19596]
172406Core FTP Server buffer overflow [CVE-2020-19595]
172405WSO2 Management Console login.jsp cross site scripting
172404IBM InfoSphere Information Server Web UI cross site scripting
172403IBM Edge Web UI cross site scripting [CVE-2020-4792]
172402Froala Editor Hyperlink Creation Module cross site scripting
172401Knowage Suite execute cross site scripting
172400Knowage Suite analyticalDrivers cross site scripting
172399Knowage Suite publish cross site scripting
172398Knowage Suite URL Analytics Driver sql injection [CVE-2021-30055]
172397Mark Text md File cross site scripting [CVE-2021-29996]
172396Svelte Extension Workspace Configuration unknown vulnerability
172395VSCodeVim Workspace Configuration unknown vulnerability [CVE-2021-28832]
172394TerraMaster F2-210 UPnP information disclosure [CVE-2021-30127]
172393Dell Wyse Management Suite Job Status Retrieval Page denial of service
172392Dell Wyse ThinOS Management Server certificate validation [CVE-2021-21532]
172391Dell System Update resource consumption [CVE-2021-21529]
172390RStudio Shiny Server pathname traversal [CVE-2021-3374]
172389Lightmeter ControlCenter Setting HTTP Query information disclosure
172388Webiness Jamf Pro Inventory History cross site scripting [CVE-2021-30125]
172387docsify Code Block cross site scripting [CVE-2021-30074]
172386D-Link DIR-878 prog.cgi strcat stack-based overflow
172385Softing OPC Toolbox Trace File diag_values.html cross site scripting
172384Softing OPC Toolbox cfg_setpwd.html cross-site request forgery
172383Scripts MagpieRSS HTTPS Request Snoopy.class.inc information disclosure
172382Scripts MagpieRSS HTTPS URL Snoopy.class.inc exec command injection
172381Piwigo sql injection [CVE-2021-27973]
172380GitHub Enterprise Server REST API improper authorization [CVE-2021-22865]
172379Apple tvOS ImageIO state issue [CVE-2021-1818]
172378Apple watchOS ImageIO state issue [CVE-2021-1818]
172377Apple iOS/iPadOS ImageIO state issue [CVE-2021-1818]
172376Apple macOS iCloud Document permission [CVE-2021-1803]
172375Apple tvOS WebKit access control [CVE-2021-1801]
172374Apple watchOS WebKit access control [CVE-2021-1801]
172373Apple iOS/iPadOS WebKit access control [CVE-2021-1801]
172372Apple Safari WebRTC redirect [CVE-2021-1799]
172371Apple tvOS WebRTC redirect [CVE-2021-1799]
172370Apple watchOS WebRTC redirect [CVE-2021-1799]
172369Apple iOS/iPadOS WebRTC redirect [CVE-2021-1799]
172368Apple tvOS APFS permission [CVE-2021-1797]
172367Apple watchOS APFS permission [CVE-2021-1797]
172366Apple iOS/iPadOS APFS permission [CVE-2021-1797]
172365Apple iOS/iPadOS out-of-bounds write [CVE-2021-1796]
172364Apple iOS/iPadOS out-of-bounds write [CVE-2021-1795]
172363Apple iOS/iPadOS out-of-bounds read [CVE-2021-1794]
172362Apple tvOS ImageIO Remote Code Execution [CVE-2021-1793]
172361Apple watchOS ImageIO Remote Code Execution [CVE-2021-1793]
172360Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2021-1793]
172359Apple tvOS CoreText out-of-bounds read [CVE-2021-1792]
172358Apple watchOS CoreText out-of-bounds read [CVE-2021-1792]
172357Apple iOS/iPadOS CoreText out-of-bounds read [CVE-2021-1792]
172356Apple tvOS FairPlay out-of-bounds read [CVE-2021-1791]
172355Apple watchOS FairPlay out-of-bounds read [CVE-2021-1791]
172354Apple iOS/iPadOS FairPlay out-of-bounds read [CVE-2021-1791]
172353Apple tvOS WebKit type confusion [CVE-2021-1789]
172352Apple watchOS WebKit type confusion [CVE-2021-1789]
172351Apple iOS/iPadOS WebKit type confusion [CVE-2021-1789]
172350Apple watchOS WebKit use after free [CVE-2021-1788]
172349Apple tvOS WebKit use after free [CVE-2021-1788]
172348Apple iOS/iPadOS WebKit use after free [CVE-2021-1788]
172347Apple tvOS Crash Reporter behavioral workflow [CVE-2021-1787]
172346Apple watchOS Crash Reporter behavioral workflow [CVE-2021-1787]
172345Apple iOS/iPadOS Crash Reporter behavioral workflow [CVE-2021-1787]
172344Apple watchOS Crash Reporter state issue [CVE-2021-1786]
172343Apple tvOS Crash Reporter state issue [CVE-2021-1786]
172342Apple iOS/iPadOS Crash Reporter state issue [CVE-2021-1786]
172341Apple tvOS ImageIO out-of-bounds read [CVE-2021-1785]
172340Apple watchOS ImageIO out-of-bounds read [CVE-2021-1785]
172339Apple iOS/iPadOS ImageIO out-of-bounds read [CVE-2021-1785]
172338Apple watchOS ImageIO memory corruption [CVE-2021-1783]
172337Apple tvOS ImageIO memory corruption [CVE-2021-1783]
172336Apple iOS/iPadOS ImageIO memory corruption [CVE-2021-1783]
172335Apple iOS/iPadOS Contact Card information disclosure [CVE-2021-1781]
172334Apple macOS Contact Card information disclosure [CVE-2021-1781]
172333Apple iOS/iPadOS memory corruption [CVE-2021-1780]
172332Apple tvOS ImageIO out-of-bounds read [CVE-2021-1778]
172331Apple watchOS ImageIO out-of-bounds read [CVE-2021-1778]
172330Apple iOS/iPadOS ImageIO out-of-bounds read [CVE-2021-1778]
172329Apple tvOS ImageIO Remote Code Execution [CVE-2021-1777]
172328Apple watchOS ImageIO Remote Code Execution [CVE-2021-1777]
172327Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2021-1777]
172326Apple tvOS CoreGraphics out-of-bounds write [CVE-2021-1776]
172325Apple watchOS CoreGraphics out-of-bounds write [CVE-2021-1776]
172324Apple iOS/iPadOS CoreGraphics out-of-bounds write [CVE-2021-1776]
172323Apple tvOS ImageIO Remote Code Execution [CVE-2021-1774]
172322Apple watchOS ImageIO Remote Code Execution [CVE-2021-1774]
172321Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2021-1774]
172320Apple tvOS denial of service [CVE-2021-1773]
172319Apple watchOS denial of service [CVE-2021-1773]
172318Apple iOS/iPadOS denial of service [CVE-2021-1773]
172317Apple tvOS CoreText stack-based overflow [CVE-2021-1772]
172316Apple watchOS CoreText stack-based overflow [CVE-2021-1772]
172315Apple iOS/iPadOS CoreText stack-based overflow [CVE-2021-1772]
172314Apple tvOS Swift memory corruption [CVE-2021-1769]
172313Apple watchOS Swift memory corruption [CVE-2021-1769]
172312Apple iOS/iPadOS Swift memory corruption [CVE-2021-1769]
172311Apple iOS/iPadOS Model IO out-of-bounds read [CVE-2021-1768]
172310Apple iOS/iPadOS Model IO heap-based overflow [CVE-2021-1767]
172309Apple tvOS ImageIO denial of service [CVE-2021-1766]
172308Apple watchOS ImageIO denial of service [CVE-2021-1766]
172307Apple iOS/iPadOS ImageIO denial of service [CVE-2021-1766]
172306Apple watchOS Kernel use after free [CVE-2021-1764]
172305Apple tvOS Kernel use after free [CVE-2021-1764]
172304Apple iOS/iPadOS Kernel use after free [CVE-2021-1764]
172303Apple iOS/iPadOS Model IO buffer overflow [CVE-2021-1763]
172302Apple tvOS Crash Reporter denial of service [CVE-2021-1761]
172301Apple watchOS Crash Reporter denial of service [CVE-2021-1761]
172300Apple iOS/iPadOS Crash Reporter denial of service [CVE-2021-1761]
172299Apple tvOS CoreAnimation memory corruption [CVE-2021-1760]
172298Apple watchOS CoreAnimation memory corruption [CVE-2021-1760]
172297Apple iOS/iPadOS CoreAnimation memory corruption [CVE-2021-1760]
172296Apple tvOS CoreMedia out-of-bounds read [CVE-2021-1759]
172295Apple watchOS CoreMedia out-of-bounds read [CVE-2021-1759]
172294Apple iOS/iPadOS CoreMedia out-of-bounds read [CVE-2021-1759]
172293Apple watchOS FontParser out-of-bounds read [CVE-2021-1758]
172292Apple tvOS FontParser out-of-bounds read [CVE-2021-1758]
172291Apple iOS/iPadOS FontParser out-of-bounds read [CVE-2021-1758]
172290Apple tvOS IOSkywalkFamily out-of-bounds read [CVE-2021-1757]
172289Apple watchOS IOSkywalkFamily out-of-bounds read [CVE-2021-1757]
172288Apple iOS/iPadOS IOSkywalkFamily out-of-bounds read [CVE-2021-1757]
172287Apple iOS/iPadOS Lock Screen access control [CVE-2021-1756]
172286Apple macOS Lock Screen access control [CVE-2021-1755]
172285Apple tvOS ImageIO Remote Code Execution [CVE-2021-1754]
172284Apple watchOS ImageIO Remote Code Execution [CVE-2021-1754]
172283Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2021-1754]
172282Apple iOS/iPadOS Model I/O out-of-bounds read [CVE-2021-1753]
172281Apple watchOS Kernel behavioral workflow [CVE-2021-1750]
172280Apple tvOS Kernel behavioral workflow [CVE-2021-1750]
172279Apple iOS/iPadOS Kernel behavioral workflow [CVE-2021-1750]
172278Apple tvOS URL cross site scripting [CVE-2021-1748]
172277Apple watchOS URL cross site scripting [CVE-2021-1748]
172276Apple iOS/iPadOS URL cross site scripting [CVE-2021-1748]
172275Apple watchOS CoreAudio out-of-bounds write [CVE-2021-1747]
172274Apple tvOS CoreAudio out-of-bounds write [CVE-2021-1747]
172273Apple iOS/iPadOS CoreAudio out-of-bounds write [CVE-2021-1747]
172272Apple tvOS ImageIO Remote Code Execution [CVE-2021-1746]
172271Apple watchOS ImageIO Remote Code Execution [CVE-2021-1746]
172270Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2021-1746]
172269Apple iOS/iPadOS Model IO out-of-bounds read [CVE-2021-1745]
172268Apple watchOS ImageIO out-of-bounds write [CVE-2021-1744]
172267Apple tvOS ImageIO out-of-bounds write [CVE-2021-1744]
172266Apple iOS/iPadOS ImageIO out-of-bounds write [CVE-2021-1744]
172265Apple watchOS ImageIO out-of-bounds read [CVE-2021-1743]
172264Apple tvOS ImageIO out-of-bounds read [CVE-2021-1743]
172263Apple iOS/iPadOS ImageIO out-of-bounds read [CVE-2021-1743]
172262Apple watchOS ImageIO Remote Code Execution [CVE-2021-1742]
172261Apple tvOS ImageIO Remote Code Execution [CVE-2021-1742]
172260Apple iOS/iPadOS ImageIO Remote Code Execution [CVE-2021-1742]
172259Apple tvOS ImageIO out-of-bounds read [CVE-2021-1741]
172258Apple watchOS ImageIO out-of-bounds read [CVE-2021-1741]
172257Apple iOS/iPadOS ImageIO out-of-bounds read [CVE-2021-1741]
172250Apple tvOS XPC Service launchd access control
172249Apple watchOS XPC Service launchd access control
172236Apple tvOS Image out-of-bounds write [CVE-2020-9955]
172235Apple watchOS Image out-of-bounds write [CVE-2020-9955]
172234Apple macOS Image out-of-bounds write [CVE-2020-9955]
172233Apple iOS/iPadOS Image out-of-bounds write [CVE-2020-9955]
172232Apple macOS out-of-bounds read [CVE-2020-9930]
172231Apple iCloud XML use after free [CVE-2020-9926]
172230Apple tvOS XML use after free [CVE-2020-9926]
172229Apple watchOS XML use after free [CVE-2020-9926]
172228Apple macOS XML use after free [CVE-2020-9926]
172227Apple iOS/iPadOS XML use after free [CVE-2020-9926]
172226Apple iOS/iPadOS Font out-of-bounds read [CVE-2020-29639]
172225Apple macOS Image Remote Code Execution [CVE-2020-29625]
172224Apple tvOS Font File memory corruption [CVE-2020-29624]
172223Apple macOS Font File memory corruption [CVE-2020-29624]
172222Apple iOS/iPadOS Font File memory corruption [CVE-2020-29624]
172221Apple tvOS Clear History information disclosure [CVE-2020-29623]
172220Apple macOS Clear History information disclosure [CVE-2020-29623]
172219Apple iOS/iPadOS Clear History information disclosure [CVE-2020-29623]
172218Apple tvOS Image out-of-bounds read [CVE-2020-29615]
172217Apple watchOS Image out-of-bounds read [CVE-2020-29615]
172216Apple macOS Image out-of-bounds read [CVE-2020-29615]
172215Apple iOS/iPadOS Image out-of-bounds read [CVE-2020-29615]
172214Apple tvOS Model IO Remote Code Execution [CVE-2020-29614]
172213Apple iOS/iPadOS Model IO Remote Code Execution [CVE-2020-29614]
172212Apple tvOS Audio File out-of-bounds read [CVE-2020-29610]
172211Apple watchOS Audio File out-of-bounds read [CVE-2020-29610]
172210Apple macOS Audio File out-of-bounds read [CVE-2020-29610]
172209Apple iOS/iPadOS Audio File out-of-bounds read [CVE-2020-29610]
172208Apple watchOS FontParser out-of-bounds read [CVE-2020-29608]
172207Apple iOS/iPadOS FontParser out-of-bounds read [CVE-2020-29608]
172206Apple tvOS FontParser out-of-bounds read [CVE-2020-29608]
172205Apple macOS Image Remote Code Execution [CVE-2020-27939]
172204Apple macOS Kernel Memory out-of-bounds read [CVE-2020-27936]
172203Apple tvOS sandbox [CVE-2020-27935]
172202Apple watchOS sandbox [CVE-2020-27935]
172201Apple macOS sandbox [CVE-2020-27935]
172200Apple iOS/iPadOS sandbox [CVE-2020-27935]
172199Apple macOS Image memory corruption [CVE-2020-27933]
172198Apple tvOS Image memory corruption [CVE-2020-27933]
172197Apple watchOS Image memory corruption [CVE-2020-27933]
172196Apple iCloud Image memory corruption [CVE-2020-27933]
172195Apple iOS/iPadOS Image memory corruption [CVE-2020-27933]
172176Apple tvOS use after free [CVE-2020-27899]
172175Apple watchOS use after free [CVE-2020-27899]
172174Apple macOS use after free [CVE-2020-27899]
172173Apple iOS/iPadOS use after free [CVE-2020-27899]
172172Apple macOS Screen Sharing state issue [CVE-2020-27893]
172171D-Link DIR-846 SetMasterWLanSettings.php os command injection
172170WUZHI CMS index.php pathname traversal
172169Core FTP LE Username Editbox buffer overflow [CVE-2020-21588]
172168emlog ZIP Plugin Module unrestricted upload [CVE-2020-21585]
172167WiZ Colors A60 WiFi Credential cleartext storage [CVE-2020-11924]
172166WiZ Colors A60 API Credential log file [CVE-2020-11923]
172165Apple macOS access control [CVE-2020-10008]
172164Apple macOS memory corruption [CVE-2020-10001]
172163Pomerium Sign-in/Sign-out redirect [CVE-2021-29652]
172162Pomerium redirect [CVE-2021-29651]
172161DMA Softlab Radius Manager Session Cookie improper authorization
172160DMA Softlab Radius Manager admin.php cross site scripting
172159Cohesity DataPlatform Support Channel channel accessible [CVE-2021-28124]
172158Cohesity DataPlatform SSH Key hard-coded key [CVE-2021-28123]
172157Okta Access Gateway os command injection [CVE-2021-28113]
172156Magnolia CMS login.html cross site scripting
172155Magnolia CMS cross site scripting [CVE-2021-25893]
172154GitLab Community Edition/Enterprise Edition Wiki Page information disclosure
172153GitLab Community Edition/Enterprise Edition API cross-site request forgery
172152GitLab Community Edition/Enterprise Edition Import File information disclosure
172151GitLab Community Edition/Enterprise Edition Public Project information disclosure
172150GitLab Community Edition/Enterprise Edition Public Project denial of service
172149GitLab Community Edition/Enterprise Edition Branch infinite loop
172148GitLab Community Edition/Enterprise Edition Merge Request cross site scripting
172147wire-webapp Input Element information disclosure [CVE-2021-21400]
172146Luvion Grand Elite 3 Connect hard-coded credentials [CVE-2020-11925]
172145WiZ Colors A60 information disclosure [CVE-2020-11922]
172144Sannce Smart HD Wifi Security Camera EAN 2 Password passwd credentials storage
172143Sannce Smart HD Wifi Security Camera EAN 2 Telnet missing authentication
172142Sannce Smart HD Wifi Security Camera EAN 2 Streaming authentication bypass
172141Sannce Smart HD Wifi Security Camera EAN 2 Service Port 20188 denial of service
172140wpa_supplicant/hostapd pkcs1.c unknown vulnerability [CVE-2021-30004]
172139Nokia G-120W-F Administrative Interface cross site scripting
172138Linux Kernel Webcam v4l2-ioctl.c video_usercopy memory leak
172137LATRIX inandout.php sql injection
172136Apache CXF JWT Token server-side request forgery [CVE-2021-22696]
172135Devolutions Server Type Document cross site scripting [CVE-2021-23925]
172134Devolutions Server Diagnostic File information disclosure [CVE-2021-23924]
172133Devolutions Server Windows Domain User improper authentication
172132Devolutions Remote Desktop Manager Webviews cross site scripting
172131Devolutions SERVER Password List Entry access control [CVE-2021-23921]
172130node-etsy-client REST API information disclosure [CVE-2021-21421]
172129vscode-stripe Repository injection [CVE-2021-21420]
172128django-registration User Registration information exposure [CVE-2021-21416]
172127Ansible Tower Modules log file [CVE-2021-3447]
172126pikepdf Package XMP Metadata metadata.py xml external entity reference
172125eMPS Central Management sql injection [CVE-2021-28970]
172124eMPS Email Search sql injection [CVE-2021-28969]
172123Devolutions Remote Desktop Manager Administrative Reports cross site scripting
172122Pega Chat Access Group Portal access control [CVE-2021-27653]
172121Kaspersky Internet Security Anti-Virus Protection protection mechanism
172120HPE Superdome Flex Server BMC Web Interface denial of service
172119HPE iLO Amplifier Pack cross site scripting [CVE-2021-26580]
172118Atlassian Confluence Server/Confluence Data Center WidgetConnector Plugin server-side request forgery
IDTitleNessusOpenVASSnortSuricataTippingPoint
172117GoCD backup cross-site request forgery
172116cURL/libcURL TLS 1.3 Handshake certificate validation [CVE-2021-22890]
172115GitLab gitlab-vscode-extension Local Privilege Escalation [CVE-2021-22195]
172114VMware Carbon Black Cloud Workload Appliance Administrative Interface information disclosure
172113Containers Storage Container Image locking [CVE-2021-20291]
172112Zoho ManageEngine OpManager Spark Gateway denial of service [CVE-2021-20078]
172111Huawei Smartphone Interface unknown vulnerability [CVE-2020-9149]
172110Huawei Smartphone Interface denial of service [CVE-2020-9148]
172109Huawei Smartphone Interface out-of-bounds read [CVE-2020-9147]
172108Huawei Smartphone Interface memory leak [CVE-2020-9146]
172107mblog profile cross site scripting
172106mblog editing cross site scripting
172105mblog profile cross site scripting
172104mblog Header Field editing cross site scripting
172103sunkaifei FlyCMS ImagesService.java saveUrlAs server-side request forgery
172102Trojan-Downloader.Win32.Delf.nzg Arquivos de Programas permission
172101Trojan-Downloader.Win32.Delf.oxz RECYCLER permission
172100Trojan-Downloader.Win32.Delf.ur Messenger permission
172099PostgreSQL UPDATE Permission information exposure [CVE-2021-3393]
172098Adobe Acrobat Reader PDF File improper validation of integrity check value
172097Adobe Acrobat Reader PDF File improper validation of integrity check value
172096Eclipse Jetty TLS Frame resource consumption [CVE-2021-28165]
172095Eclipse Jetty Default Compliance Mode web.xml information disclosure
172094Eclipse Jetty Directory information disclosure [CVE-2021-28163]
172093GitLab Community Edition/Enterprise Edition gitlab-shell denial of service
172092Academy Software Foundation OpenEXR Dwa Decompression null pointer dereference
172091ZeroMQ Server Decoder decoder_allocators.hpp out-of-bounds write
172090ZeroMQ Client pipe.cpp resource consumption
172089Backdoor.Win32.Burbul.b FTP Server information disclosure
172088IRC-Worm.Win32.Silentium.a Games permission
172087netmask Package input validation [CVE-2021-28918]
172086reorder Crate swap_index uninitialized pointer
172085reorder Crate swap_index out-of-bounds write
172084through Crate through_and double free
172083stackvector Crate extend out-of-bounds write
172082slice-deque Crate Predicate drain_filter denial of service
172081telemetry Crate vec_with_size uninitialized pointer
172080adtensor Crate FromIterator uninitialized pointer
172079rocket Crate Formatter use after free
172078uu_od Crate PartialReader uninitialized pointer
172077insert_many Crate a .next denial of service
172076parse_duration Crate Exponent memory allocation [CVE-2021-29932]
172075arenavec Crate drop denial of service
172074arenavec Crate default uninitialized pointer
172073endian_trait Crate double free [CVE-2021-29929]
172072BTCPay Server Policy Setting unknown vulnerability [CVE-2021-29251]
172071Synology DiskStation Manager SYNO.Core.Network.PPPoE os command injection
172070Atlassian JIRA Server/Data Center SetFeatureEnabled.jspa cross-site request forgery
172069Atlassian JIRA Server/Data Center JQL Search membersOf information disclosure
172068Atlassian JIRA Server/Data Center render information disclosure
172067cURL/libcURL Referer information disclosure [CVE-2021-22876]
172066Citrix Hypervisor resource consumption [CVE-2021-28688]
172065Xen resource consumption [CVE-2021-28688]
172064CourseMS Job Title add_jobs.php cross site scripting
172063Data::Validate::IP Module IP Address String access control [CVE-2021-29662]
172062vscode-rufo Extension Binary Remote Code Execution [CVE-2021-29658]
172061Mahara Inbox-Mail inbox.php pieform_delete_all_notifications cross-site request forgery
172060Kopano Groupware Core kopano-ical memory allocation [CVE-2021-28994]
172059Advanced Order Export cross site scripting [CVE-2021-27349]
172058PRTG Network Monitor Screenshot information disclosure [CVE-2021-27220]
172057ASUS UX360CA BIOS SMM Local Privilege Escalation [CVE-2021-26943]
172056F5 BIG-IP Traffic Management Microkernel denial of service [CVE-2021-23007]
172055Google Exposure Notification Verification Server permission [CVE-2021-22538]
172054VMware vRealize Operations Manager API unknown vulnerability
172053VMware vRealize Operations Manager API server-side request forgery
172052ps_emailsubscription Newsletter cross site scripting [CVE-2021-21418]
172051DICOM Server command injection [CVE-2020-35308]
172050EPiServer Find _click redirect
172049Academy Software Foundation OpenEXR Scanline API resource consumption
172048Academy Software Foundation OpenEXR Scanline Input File resource consumption
172047Academy Software Foundation OpenEXR Deep Tile Sample Size Calculator integer overflow
172046Redis out-of-bounds write [CVE-2021-3470]
172045PbootCMS index.php sql injection
172044Mozilla Firefox memory corruption [CVE-2021-23988]
172043Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2021-23987]
172042Mozilla Firefox Extension information disclosure [CVE-2021-23986]
172041Mozilla Firefox Devtools Remote Debugging information disclosure
172040Mozilla Firefox/Firefox ESR/Thunderbird Popup Window clickjacking
172039Mozilla Firefox CSS Rule memory corruption [CVE-2021-23983]
172038Mozilla Firefox/Firefox ESR/Thunderbird WebRTC Connection information disclosure
172037Mozilla Firefox/Firefox ESR/Thunderbird WebGL memory corruption
172036portprocesses killProcess command injection
172035AccuSoft ImageGear SGI Format out-of-bounds write [CVE-2021-21782]
172034AccuSoft ImageGear SGI Format out-of-bounds write [CVE-2021-21776]
172033AccuSoft ImageGear TIFF Header out-of-bounds write [CVE-2021-21773]
172032Simple College Website Image Upload unrestricted upload [CVE-2020-28173]
172031Simple College Website sql injection [CVE-2020-28172]
172030Apache Tika MP3Parser infinite loop [CVE-2021-28657]
172029Academy Software Foundation OpenEXR B44 Uncompression integer overflow
172028Academy Software Foundation OpenEXR File integer overflow [CVE-2021-3475]
172027Academy Software Foundation OpenEXR Input File FastHufDecoder buffer overflow
172026Linux Kernel Netfilter Subsystem x_tables.c denial of service
172025Linux Kernel User Mode Driver usermode_driver.c copy_process memory leak
172024Linux Kernel BPF Subsystem syscall.c map_create denial of service
172023Linux Kernel qrtr.c qrtr_recvmsg uninitialized pointer
172022Linux Kernel node.c tipc_nl_retrieve_key buffer overflow
172021GistPad Gist API information disclosure [CVE-2021-29642]
172020HPE Unified Data Management hard-coded key [CVE-2021-26579]
172019isolated-vm API dynamically-managed code resources [CVE-2021-21413]
172018@thi.ng egf os command injection [CVE-2021-21412]
172017FFmpeg aacdec_template.c sniff_channel_order buffer overflow
172016mongo-express Advanced Syntax unknown vulnerability [CVE-2020-24391]
172015PrestaShop Grid Column Type DataColumn cross site scripting [CVE-2021-21398]
172014IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20520]
172013IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20518]
172012IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20504]
172011IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20503]
172010IBM Jazz Foundation xml external entity reference [CVE-2021-20502]
172009IBM Cloud Pak for Automation xml external entity reference [CVE-2021-20482]
172008IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20447]
172007IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20352]
172006IBM UrbanCode Deploy Manual Edit credentials storage [CVE-2020-4944]
172005IBM UrbanCode Deploy credentials storage [CVE-2020-4884]
172004IBM UrbanCode Deploy Plugin access control [CVE-2020-4848]
172003Foxit PhantomPDF U3D Object memory corruption [CVE-2021-27271]
172002Foxit PhantomPDF JPEG2000 Images out-of-bounds read [CVE-2021-27270]
172001Foxit PhantomPDF U3D Object out-of-bounds write [CVE-2021-27269]
172000Foxit PhantomPDF U3D Object use after free [CVE-2021-27268]
171999Foxit PhantomPDF U3D Object use after free [CVE-2021-27267]
171998Foxit PhantomPDF U3D Object out-of-bounds read [CVE-2021-27266]
171997Foxit PhantomPDF U3D Object out-of-bounds read [CVE-2021-27265]
171996Foxit PhantomPDF U3D Object out-of-bounds read [CVE-2021-27264]
171995Foxit PhantomPDF U3D Object out-of-bounds read [CVE-2021-27263]
171994Foxit PhantomPDF U3D Object out-of-bounds read [CVE-2021-27262]
171993Foxit PhantomPDF U3D Object out-of-bounds read [CVE-2021-27261]
171992D-Link DIR-816 A2 dir_setWanWifi command injection
171991kill-by-port killByPort command injection
171990Netty Content-Length Header request smuggling [CVE-2021-21409]
171989OpenVPN Connect Installer tmp symlink
171988Ovidentia CMS index.php sql injection
171987CMS Made Simple Title Field addbookmark.php cross site scripting
171986Team Foundation Server Plugin cross-site request forgery [CVE-2021-21638]
171985Jenkins Team Foundation Server Plugin authorization [CVE-2021-21637]
171984Team Foundation Server Plugin authorization [CVE-2021-21636]
171983REST List Parameter Plugin cross site scripting [CVE-2021-21635]
171982Jabber Notifier and Control Plugin Configuration File credentials storage
171981Jenkins OWASP Dependency-Track Plugin cross-site request forgery
171980OWASP Dependency-Track Plugin permission [CVE-2021-21632]
171979Cloud Statistics Plugin HTTP Endpoint authorization [CVE-2021-21631]
171978Extra Columns Plugin cross site scripting [CVE-2021-21630]
171977Build with Parameters Plugin Parameter cross-site request forgery
171976Build with Parameters Plugin cross site scripting [CVE-2021-21628]
171975netmask Package IP Address String access control [CVE-2021-29418]
171974ircII CTCP UTC Message denial of service [CVE-2021-29376]
171973Apache Druid JDBC permission [CVE-2021-26919]
171972Aruba Instant Access Point command injection [CVE-2021-25162]
171971Aruba Instant Access Point cross site scripting [CVE-2021-25161]
171970Aruba Instant Access Point unknown vulnerability [CVE-2021-25160]
171969Aruba Instant Access Point unknown vulnerability [CVE-2021-25159]
171968Aruba Instant Access Point information disclosure [CVE-2021-25158]
171967Aruba Instant Access Point information disclosure [CVE-2021-25157]
171966Aruba Instant Access Point Remote Privilege Escalation [CVE-2021-25156]
171965Aruba Instant Access Point unknown vulnerability [CVE-2021-25155]
171964Aruba Instant Access Point command injection [CVE-2021-25150]
171963Aruba Instant Access Point buffer overflow [CVE-2021-25149]
171962Aruba Instant Access Point unknown vulnerability [CVE-2021-25148]
171961Aruba Instant Access Point command injection [CVE-2021-25146]
171960Aruba Instant Access Point information disclosure [CVE-2021-25145]
171959Zhiyuan G6 Government Collaboration System hrSalary.do cross site scripting
171958INSMA Wifi Mini Spy 1080P HD Security IP Camera FTP Settings Page formSetFtpCfg cross site scripting
171957INSMA Wifi Mini Spy 1080P HD Security IP Camera SD Card recdata.db unrestricted upload
171956INSMA Wifi Mini Spy 1080P HD Security IP Camera formUserMng privileges management
171955INSMA Wifi Mini Spy 1080P HD Security IP Camera denial of service
171954INSMA Wifi Mini Spy 1080P HD Security IP Camera WebUI cross-site request forgery
171953Aruba Instant buffer overflow [CVE-2019-5319]
171952knot-resolver DNS Message denial of service [CVE-2018-1110]
171951Braces incorrect regex [CVE-2018-1109]
171950is-my-json-valid Regular Expression resource consumption [CVE-2018-1107]
171949MobileIron Mobile@Work Lockout information exposure [CVE-2021-3391]
171948gitjacker .git Directory pathname traversal [CVE-2021-29417]
171947PortSwigger Burp Suite Proxy Configuration information disclosure
171946Xerox VersaLink C9000 Web User Interface Remote Privilege Escalation
171945Xerox Phaser 6510 Parameter buffer overflow [CVE-2021-28672]
171944Xerox Phaser 6510 Web User Interface Remote Privilege Escalation
171943Xerox AltaLink C8070 Scan to Mailbox denial of service [CVE-2021-28670]
171942Xerox AltaLink C8070 Configuration Attribute authorization [CVE-2021-28669]
171941Xerox Xerox AltaLink C8070 sql injection [CVE-2021-28668]
171940Netgear ProSAFE Network Management System MibController path traversal
171939Netgear ProSAFE Network Management System ConfigFileController path traversal
171938Netgear ProSAFE Network Management System MFileUploadController unrestricted upload
171937Netgear ProSAFE Network Management System SettingConfigController os command injection
171936Netgear ProSAFE Network Management System ReportTemplateController path traversal
171935TP-LINK Archer A7/Archer C7 IPv6 SSH protection mechanism [CVE-2021-27245]
171934Parallels Desktop Toolgate out-of-bounds read [CVE-2021-27244]
171933Parallels Desktop Toolgate integer overflow [CVE-2021-27243]
171932Parallels Parallels Desktop Toolgate memory corruption [CVE-2021-27242]
171931Avast Premium Security AvastSvc.exe link following
171930SolarWinds Patch Manager DataGridService WCF Service deserialization
171929Netgear R6400/R6700 upnpd stack-based overflow [CVE-2021-27239]
171928Mitel MiContact Center Enterprise Enterprise License Manager Portal pathname traversal
171927Aruba Instant Access Point buffer overflow [CVE-2021-25144]
171926Aruba Instant Access Point denial of service [CVE-2021-25143]
171925MobileIron Agent hard-coded key [CVE-2020-35138]
171924MobileIron Agent API Key RegisterActivity.java hard-coded credentials
171923FreeBSD DNSSL Option buffer overflow [CVE-2020-25583]
171922Aruba Instant Access Point command injection [CVE-2020-24636]
171921Aruba Instant Access Point command injection [CVE-2020-24635]
171920IRC-Worm.Win32.Jane.a Remote Code Execution
171919IRC-Worm.Win32.Jane.a FTP Server backdoor
171918SherlockIM Chatbot Attachment cross site scripting
171917Ilch CMS redirect [CVE-2021-27352]
171916ZTE ZXHN F623 IPv6 denial of service [CVE-2021-21727]
171915NBBDownloader.ocx ActiveX Control argument injection [CVE-2020-7850]
171914Grandstream GRP261x Administrative Web Interface improper authentication
171913Grandstream GRP261x Administrative Web Interface command injection
171912Aruba Instant Access Point improper authentication [CVE-2019-5317]
171911underscore Template Remote Code Execution [CVE-2021-23358]
171910Redmine Issue Subject cross site scripting [CVE-2021-29274]
171909Acexy Wireless-N WiFi Repeater Web Management Interface password.html cleartext transmission
171908Acexy Wireless-N WiFi Repeater Web Management Administrator Password password recovery
171907bluemonday Cyrillic Character cross site scripting [CVE-2021-29272]
171906remark42 comment.go cross site scripting
171905Apple iOS/iPadOS WebKit cross site scripting [CVE-2021-1879]
171904Apple watchOS WebKit cross site scripting [CVE-2021-1879]
171903SolarWinds Orion Platform Custom Menu Item Options Page unknown vulnerability
171902Linux Kernel Character Device vdpa.c use after free
171901Linux Kernel Stub-up Sequence stub_dev.c usbip_sockfd_store denial of service
171900Linux Kernel Freescale Gianfar Ethernet Driver gianfar.c denial of service
171899MicroSeven MYM71080i-B pnp.microseven.com cleartext transmission
171898BTCPay Server Payment Button unknown vulnerability [CVE-2021-29249]
171897Samsung DSP Driver out-of-bounds read [CVE-2021-25372]
171896Samsung DSP Driver ELF Library backdoor [CVE-2021-25371]
171895Samsung DPU Driver memory corruption [CVE-2021-25370]
171894Samsung sec_log information disclosure [CVE-2021-25369]
171893App Rocket.Chat Nested Markdown cross site scripting [CVE-2021-22886]
171892Micro Focus Access Manager Configuration information disclosure
171891GitLab Community Edition Redis credentials storage [CVE-2021-22194]
171890GitLab Community Edition log file [CVE-2021-22184]
171889GitLab Community Edition Analytic Page access control [CVE-2021-22180]
171888GitLab Community Edition Private Project improper authorization
171887OAuth2-Proxy authorization [CVE-2021-21411]
171886kongchuanhujiao Server improper authentication [CVE-2021-21403]
171885wire-server The endpoint list-clients information disclosure
171884BuddyPress REST API authorization [CVE-2021-21389]
171883Nimble Nim Refresh certificate validation [CVE-2021-21374]
171882Nimble Refresh cleartext transmission [CVE-2021-21373]
171881Nim Nimble doCmd injection
171880Matrix Synapse Notification injection [CVE-2021-21333]
171879Matrix Synapse Password Reset Endpoint cross site scripting [CVE-2021-21332]
171878RESTEasy Endpoint Class information exposure [CVE-2021-20289]
171877UPX ELF File p_lx_elf.cpp buffer overflow
171876GNU Binutils elf.c _bfd_elf_slurp_secondary_reloc_section heap-based overflow
171875GNU RPM Signature Check insufficient verification of data authenticity
171874containernetworking cni Network Configuration path traversal
171873GNU Binutils ar/objcopy/strip/ranlib link following
171872GNU Tar Input File list.c memory leak
171871SalesForce Tableau Server URL redirect [CVE-2021-1629]
171870MuleSoft Mule Runtime xml external entity reference [CVE-2021-1628]
171869MuleSoft Mule Runtime server-side request forgery [CVE-2021-1627]
171868MuleSoft Mule Runtime Remote Privilege Escalation [CVE-2021-1626]
171867SolarWinds Orion Platform Customize View Page cross site scripting
171866389-ds-base DN Reply information disclosure [CVE-2020-35518]
171865Linux Kernel Signal initialization [CVE-2020-35508]
171864Askey Fiber Router RTF3505VW-N1 Dashboard/SSH log file [CVE-2020-28695]
171863ImageMagick tiff.c heap-based overflow
171862Micro Focus Access Manager cross site scripting [CVE-2020-25840]
171861FreeBSD Jail access control [CVE-2020-25582]
171860FreeBSD jail_remove race condition
171859FreeBSD login.access Rule Processor access control [CVE-2020-25580]
171858FreeBSD msdosfs information disclosure [CVE-2020-25579]
171857FreeBSD File System information disclosure [CVE-2020-25578]
171856Craft CMS new cross site scripting
171855Oria GridX test_grid_filter.php Remote Privilege Escalation
171854Backdoor.Win32.Delf.zs Service Port 2005 backdoor
171853Backdoor.Win32.Kwak.12 FTP Server command injection
171852Backdoor.Win32.Kwak.12 FTP Server channel accessible
171851Backdoor.Win32.Kwak.12 Service Port 37885 improper authentication
171850Backdoor.Win32.Kwak.12 Service Port 37885 denial of service
171849Backdoor.Win32.DarkKomet.gozu AQIpWUAQIpWU permission
171848Worm.Win32.Ngrbot.acno ffffd76 permission
171847Worm.Win32.Recyl.dp RECYCLER permission
171846Worm.Win32.Ngrbot.abpr Win.Msi permission
171845Virus.Win32.Sality.gen z_Drivers permission
171844Trojan-Dropper.Win32.Dycler.yhb RECYCLER permission
171843Worm.Win32.Detnat.c Recycled permission
171842Trojan-Dropper.Win32.Demp.rft tmp permission
171841Trojan-Dropper.Win32.Delf.da Service Port 37031 stack-based overflow
171840TP-LINK Archer C3150v2 dhcp.htm setDefaultHostname cross site scripting
171839McAfee ePolicy Orchestrator Agent information disclosure [CVE-2021-23890]
171838McAfee ePolicy Orchestrator cross site scripting [CVE-2021-23889]
171837McAfee ePolicy Orchestrator redirect [CVE-2021-23888]
171836CA eHealth Performance Manager runpicEhealth unnecessary privileges
171835CA eHealth Performance Manager Shared Object access control [CVE-2021-28249]
171834CA eHealth Performance Manager excessive authentication [CVE-2021-28248]
171833CA eHealth Performance Manager nhWeb cross site scripting
171832CA eHealth Performance Manager Shared Object untrusted search path
171831BaserCMS Blog Article cross site scripting [CVE-2021-20683]
171830BaserCMS os command injection [CVE-2021-20682]
171829BaserCMS cross site scripting [CVE-2021-20681]
171828NEC SL2100 Command denial of service [CVE-2021-20677]
171827Hashicorp Terraform Enterprise Two-factor Authentication improper authentication
171826Zetetic SQLCipher crypto.c sqlcipher_export denial of service
171825LibrIT PaSSHport user.py ldap injection
171824Esri ArcReader/ArcGIS Desktop/ArcGIS Engine/ArcGIS Pro File uninitialized pointer
171823Esri ArcReader/ArcGIS Desktop/ArcGIS Engine/ArcGIS Pro File Parser stack-based overflow
171822Esri ArcGIS Server uninitialized pointer [CVE-2021-29095]
171821Esri ArcGIS Server buffer overflow [CVE-2021-29094]
171820Esri ArcGIS Server use after free [CVE-2021-29093]
171819Seo Panel archive.php cross site scripting
171818Seo Panel archive.php cross site scripting
171817Seo Panel webmaster-tools.php cross site scripting
171816GE Reason DR60 unnecessary privileges [CVE-2021-27454]
171815GE MU320E hard-coded password [CVE-2021-27452]
171814GE MU320E SSH Configuration File inadequate encryption [CVE-2021-27450]
171813GE MU320E File System unnecessary privileges [CVE-2021-27448]
171812GE Reason DR60 hard-coded password [CVE-2021-27440]
171811GE Reason DR60 hard-coded password [CVE-2021-27438]
171810Realtek xPON RTL9601D SDK Build-In Network Monitoring Tool insufficiently protected credentials
171809Revive Adserver stats.php cross site scripting
171808Revive Adserver campaign-zone-zones.php cross site scripting
171807ACRN virtio.c paddr_guest2host null pointer dereference
171806Aryanic HighMail Login Form cross site scripting [CVE-2020-23517]
171805Invigo Automatic Device Management search_by.php pathname traversal
171804Invigo Automatic Device Management admapi.php os command injection
171803Invigo Automatic Device Management display_errors.php sql injection
171802Invigo Automatic Device Management information disclosure [CVE-2020-10581]
171801Invigo Automatic Device Management broadcast.php command injection
171800Invigo Automatic Device Management sysmon.php path traversal
171799HEUR.Trojan.Win32.Generic RECYCLER permission
171798Trojan-Dropper.Win32.Dycler.vrp Drivers permission
171797Backdoor.Win32.Agent.mzn Service Port 80 aspimgr.exe buffer overflow
171796Trojan-Dropper.Win32.Delf.p Service Port 3080 mmtask.exe stack-based overflow
171795Trojan-Dropper.Win32.Delf.p TCP Service mmtask.exe server-side request forgery
171794Trojan-Proxy.Win32.Wimain TCP Services stack-based overflow
171793Trojan-Dropper.Win32.Delf.xk Service Port 30005 server.exe memory corruption
171792Backdoor.Win32.Zombam.l HTTP GET Request httpserver.exe buffer overflow
171791Trojan.Win32.Scar.dxir P2 permission
171790Trojan.Win32.Siscos.bqe Windupdt permission
171789Trojan-Banker.Win32.Delf.ac BancoBrasil permission
171788Trojan-Dropper.Win32.Hamer.10 Service Port 80 winlogon.exe memory corruption
171787Trojan-Spy.Win32.KeyLogger.qt config permission
171786Backdoor.Win32.Agent.bjev Windupdt permission
171785Backdoor.Win32.GTbot.c WINNT permission
171784Backdoor.Win32.Antilam.14.o Service Port 47891 backdoor
171783Backdoor.Win32.BO2K.09.b Service Port 707 Remote Code Execution
171782Backdoor.Win32.BO2K.ab PsyConf buffer overflow
171781Backdoor.Win32.DarkKomet.irv updt.exe access control
171780Trojan-Spy.Win32.Stealer.osh DESKTOP-2C3IQHO access control
171779Backdoor.Win32.RemoteManipulator.fdo vp8encoder.dll access control
171778Trojan-Proxy.Win32.Delf.ai HTTP TRACE Request buffer overflow
171777Trojan.Win32.Hotkeychick.am Korektor_MPiPS-01 access control
171776Backdoor.Win32.Azbreg.amw MSDCSC access control
171775Trojan-Spy.Win32.SpyEyes.elr 40404504504 access control
171774Trojan-Dropper.Win32.Daws.etlm Service Port 139 MSWDM.EXE denial of service
171773Jasper JP2 Image Format Decoder null pointer dereference [CVE-2021-3467]
171772GNU libmicrohttpd post_process_urlencoded buffer overflow
171771OpenSSL Certificate Chain Verification certificate validation
171770OpenSSL TLS Server denial of service [CVE-2021-3449]
171769libtpms OpenSSL initialization [CVE-2021-3446]
171768Jasper JP2 Image Format Decoder null pointer dereference [CVE-2021-3443]
171767Esri ArcReader/ArcGIS Desktop/ArcGIS Engine/ArcGIS Pro use after free
171766Netop Vision Pro authentication replay [CVE-2021-27195]
171765Netop Vision Pro cleartext transmission [CVE-2021-27194]
171764Netop Vision Pro API permission [CVE-2021-27193]
171763Netop Vision Pro Windows Client access control [CVE-2021-27192]
171762Nokia NetAct Site Configuration Tool Web Site sct unrestricted upload
171761Nokia NetAct File Upload cross site scripting [CVE-2021-26596]
171760Samsung Cloud Provider improper authentication [CVE-2021-25368]
171759Samsung Notes path traversal [CVE-2021-25367]
171758Samsung Internet Secret Mode improper authentication [CVE-2021-25366]
171757Ssamsung Notes Pendingetent permission [CVE-2021-25355]
171756Samsung Internet Deeplink improper authorization [CVE-2021-25354]
171755Samsung Galaxy Themes Pendingetent improper authorization [CVE-2021-25353]
171754Samsung Bixby Voice Pendingetent information disclosure [CVE-2021-25352]
171753Samsung Account EmailValidationView improper authorization
171752Samsung Account log file [CVE-2021-25350]
171751Samsung Slow Motion Editor Pendingetent permission [CVE-2021-25349]
171750Rockwell Automation MicroLogix 1400 ModBus Packet buffer overflow
171749Micro Focus Access Manager information disclosure [CVE-2021-22496]
171748Genivia gSOAP WS-Addressing Plugin integer overflow [CVE-2021-21783]
171747Privoxy CGI Request denial of service [CVE-2021-20217]
171746Privoxy Decompression resource consumption [CVE-2021-20216]
171745Privoxy show-status CGI memory leak [CVE-2021-20215]
171744Privoxy client-tags CGI handler memory leak [CVE-2021-20214]
171743Privoxy accept-intercepted-requests null pointer dereference
171742Privoxy PCRE memory leak [CVE-2021-20212]
171741Privoxy memory leak [CVE-2021-20211]
171740Privoxy show-status CGI memory leak [CVE-2021-20210]
171739Duo Authentication Proxy Installer symlink [CVE-2021-1492]
171738Bosch Video Streaming Gateway Installer uncontrolled search path
171737Bosch Monitor Wall Installer uncontrolled search path [CVE-2020-6789]
171736Bosch Configuration Manager Installer uncontrolled search path
171735Bosch Video Client Installer uncontrolled search path [CVE-2020-6787]
171734Bosch Video Recording Manager Installer uncontrolled search path
171733Bosch BVMS/BVMS Viewer DLL uncontrolled search path [CVE-2020-6785]
171732Bosch IP Helper DLL uncontrolled search path [CVE-2020-6771]
171731Privoxy Response Buffer memory leak [CVE-2020-35502]
171730Apache SpamAssassin Rule Configuration os command injection [CVE-2020-1946]
171729ForgeRock OpenAM Webfinger Protocol ldap injection [CVE-2021-29156]
171728MITREid Connect Server OpenID Connect Server server-side request forgery
171727Fuji Xerox DocuCentre-VII/ApeosPort-VII/ApeosPort/DocuPrint Command denial of service
171726APKLeaks Package Name os command injection [CVE-2021-21386]
171725Mifos-Mobile App certificate validation [CVE-2021-21385]
171724Cisco Japper null termination [CVE-2021-1471]
171723Cisco Jabber null termination [CVE-2021-1469]
171722Cisco 809 Industrial ISR IOx Application Framework resource consumption
171721Cisco IOS XE SD-WAN CLI input validation [CVE-2021-1454]
171720Cisco IOS XE Software Image insufficient verification of data authenticity
171719Cisco IOS XE ROM Monitor insufficient verification of data authenticity
171718Cisco IOS XE Easy Virtual Switching System memory corruption
171717Cisco Aironet/Catalyst Boot Logic insufficient verification of data authenticity
171716Cisco IOS XE DNS ALG denial of service [CVE-2021-1446]
171715Cisco IOS XE Web UI command injection [CVE-2021-1443]
171714Cisco IOS XE UPnP Subsystem log file [CVE-2021-1442]
171713Cisco IOS XE Hardware Initialization os command injection [CVE-2021-1441]
171712Cisco Aironet mDNS Gateway denial of service [CVE-2021-1439]
171711Cisco Aironet TFTP information disclosure [CVE-2021-1437]
171710Cisco IOS XE SD-WAN CLI path traversal [CVE-2021-1436]
171709Cisco IOS XE Web UI path traversal [CVE-2021-1435]
171708Cisco IOS XE SD-WAN CLI Command file access [CVE-2021-1434]
171707Cisco IOS XE SD-WAN vDaemon memory corruption [CVE-2021-1433]
171706Cisco IOS XE SD-WAN CLI command injection [CVE-2021-1432]
171705Cisco IOS XE SD-WAN vDaemon denial of service [CVE-2021-1431]
171704Cisco Aironet CLI Command exposure of resource [CVE-2021-1423]
171703Cisco Jabber null termination [CVE-2021-1418]
171702Cisco Jabber null termination [CVE-2021-1417]
171701Cisco Jabber null termination [CVE-2021-1411]
171700Cisco IOS XE Websocket insufficient verification of data authenticity
171699Cisco IOS XE Unified Extensible Firmware Interface insufficient verification of data authenticity
171698Cisco IOS XE Web Management Interface denial of service [CVE-2021-1394]
171697Cisco IOS/IOS XE CLI insufficiently protected credentials [CVE-2021-1392]
171696Cisco IOS XE Dragonite Debugger Local Privilege Escalation [CVE-2021-1391]
171695Cisco IOS XE Diagnostic Test CLI Command write-what-where condition
171694Cisco IOS/IOS XE IOx Application path traversal [CVE-2021-1385]
171693Cisco IOS XE IOx Application command injection [CVE-2021-1384]
171692Cisco IOS XE SD-WAN CLI input validation [CVE-2021-1383]
171691Cisco IOS XE SD-WAN CLI command injection [CVE-2021-1382]
171690Cisco IOS XE Debugging Console improper authorization [CVE-2021-1381]
171689Cisco IOS/IOS XE ARP resource management [CVE-2021-1377]
171688Cisco IOS XE Fast Reload signature verification [CVE-2021-1376]
171687Cisco IOS XE Fast Reload signature verification [CVE-2021-1375]
171686Cisco IOS XE Wireless Controller Web-based Management Interface cross site scripting
171685Cisco IOS XE Wireless Controller CAPWAP Packet buffer overflow
171684Cisco IOS XE SD-WAN Role-Based Access Control privileges management
171683Cisco IOS XE Web UI denial of service [CVE-2021-1356]
171682Cisco IOS XE DECnet denial of service [CVE-2021-1352]
171681Cisco IOS XE SD-WAN CLI Management resource management [CVE-2021-1281]
171680Cisco IOS XE Web UI denial of service [CVE-2021-1220]
171679Tobesoft XPlatform out-of-bounds write [CVE-2020-7853]
171678DaviewIndy ex.j2c Format File Daview.exe heap-based overflow
171677go-ipfs Console Output escape output [CVE-2020-26283]
171676go-ipfs DAG path traversal [CVE-2020-26279]
171675GitLab Community Edition Private Project information disclosure
171674GitLab Community Edition/Enterprise Edition Remote Privilege Escalation
171673GitLab Community Edition/Enterprise Edition CI CD improper authorization
171672GitLab Community Edition Wiki cross site scripting [CVE-2021-22185]
171671GitLab Community Edition Outbound Requests server-side request forgery
171670GitLab Community Edition Prometheus Integration information disclosure
171669GitLab Community Edition Merge Request access control [CVE-2021-22176]
171668GitLab Enterprise Edition information exposure [CVE-2021-22169]
171667MaEPSBroker command injection [CVE-2020-7839]
171666HID OMNIKEY 5427/OMNIKEY 5127 EEM Driver cross-site request forgery
171665ThinkSAAS topic.php sql injection
171664SpinetiX HMP350/HMP300/HMP400/HMP400W/DiVA spxmanage server-side request forgery
171663Red Hat OpenShift operator-framework/hadoop passwd privileges assignment
171662Red Hat OpenShift operator-framework/hive passwd privileges assignment
171661Red Hat OpenShift operator-framework/presto passwd privileges assignment
171660Red Hat OpenShift ansible-service-broker passwd privileges assignment
171659Red Hat Openshift operator-framework/operator-metering passwd privileges assignment
171658Plone CMS site-controlpanel cross site scripting [CVE-2021-29002]
171657Contiki ICMPv6 Error Message rpl-ext-header.c integer underflow
171656Doctor Appointment System contactus.php sql injection
171655Doctor Appointment System contactus.php sql injection
171654Doctor Appointment System contactus.php sql injection
171653Doctor Appointment System contactus.php sql injection
171652IBM Elastic Storage System/Elastic Storage Server UDP Request denial of service
171651Bitweaver edit_group.php cross site scripting
171650Bitweaver preferences.php cross site scripting
171649Bitweaver users_import.php cross site scripting
171648Bitweaver index.php cross site scripting
171647Bitweaver edit_personal_page.php cross site scripting
171646Bitweaver user_activity.php cross site scripting
171645Bitweaver index.php cross site scripting
171644Bitweaver permissions.php cross site scripting
171643Bitweaver my_images.php cross site scripting
171642Alpine Linux Configuration Framework haserl information disclosure
171641MATLAB Extension Lint Configuration injection [CVE-2021-28967]
171640Linux Kernel bpf Verifier out-of-bounds write [CVE-2021-3444]
171639QEMU SDHCI Controller Emulation out-of-bounds write [CVE-2021-3409]
171638TIBCO ActiveSpaces Community Edition access control [CVE-2021-28824]
171637TIBCO eFTL Community Edition access control [CVE-2021-28823]
171636TIBCO Enterprise Message Service access control [CVE-2021-28822]
171635TIBCO Enterprise Message Service access control [CVE-2021-28821]
171634TIBCO FTP Community Edition Server/C API/Golang API/Java API/.Net API access control
171633TIBCO FTP Community Edition or access control
171632TIBCO Rendezvous/Rendezvous Developer Edition Routing Daemon privileges management
171631TIBCO Rendezvous/Rendezvous Developer Edition or access control
171630Netflix Priam Filesystem File.createTempFile permission
171629Netflix OSS Hollow Files.exists(parent) permission
171628Dolphin CMS Page Builder cross site scripting [CVE-2021-27969]
171627Mautic information disclosure [CVE-2021-27908]
171626DynPG cross site scripting [CVE-2021-27531]
171625DynPG index.php cross site scripting
171624DynPG cross site scripting [CVE-2021-27529]
171623DynPG cross site scripting [CVE-2021-27528]
171622DynPG cross site scripting [CVE-2021-27527]
171621DynPG cross site scripting [CVE-2021-27526]
171620Clansphere CMS cross site scripting [CVE-2021-27310]
171619Clansphere CMS cross site scripting [CVE-2021-27309]
171618hosted-git-info fromUrl incorrect regex
171617TIBCO API Exchange Gateway Config UI clickjacking [CVE-2021-23274]
171616GitHub Enterprise Server Configuration command injection [CVE-2021-22864]
171615Jellyfin path traversal [CVE-2021-21402]
171614Nanopb Message Type realloc release of reference
171613XWiki Ratings API sql injection [CVE-2021-21380]
171612OMERO.web URL Validation redirect [CVE-2021-21377]
171611OMERO.web information disclosure [CVE-2021-21376]
171610Pygments SMLLexer infinite loop [CVE-2021-20270]
171609SQLite SELECT Query select.c use after free
171608Keycloak Account Console input validation [CVE-2021-20222]
171607Linux Kernel n_tty.c n_tty_receive_char_special denial of service
171606McAfee Data Loss Prevention privileges management [CVE-2020-7346]
171605libass ass_parse.c parse_tag stack-based overflow
171604Vivo AppStore Parameter redirect [CVE-2020-12483]
171603Undertow HttpOpenListener resource consumption
171602Netgear RBS850 information disclosure [CVE-2021-29082]
171601Netgear RBR750 stack-based overflow [CVE-2021-29081]
171600Netgear RBS750 password recovery [CVE-2021-29080]
171599Netgear RBK852/RBK853/RBK854/RBR850/RBS850 command injection
171598Netgear RBS750 command injection [CVE-2021-29078]
171597Netgear RBS750 command injection [CVE-2021-29077]
171596Netgear RBK852/RBK853/RBK854/RBR850/RBS850 command injection
171595Netgear RBS750 stack-based overflow [CVE-2021-29075]
171594Netgear RBS750 stack-based overflow [CVE-2021-29074]
171593Netgear RAX200 stack-based overflow [CVE-2021-29073]
171592Netgear RBK852/RBK853/RBK854/RBR850/RBS850 command injection
171591Netgear RBS750 command injection [CVE-2021-29071]
171590Netgear RBK852/RBK853/RBK854/RBR850/RBS850 command injection
171589Netgear XR450/XR500/WNR2000v5 command injection [CVE-2021-29069]
171588Netgear XR300 buffer overflow [CVE-2021-29068]
171587Netgear RBS750 improper authentication [CVE-2021-29067]
171586Netgear RBK852/RBK853/RBK854/RBR850/RBS850 improper authentication
171585Netgear RBR850 improper authentication [CVE-2021-29065]
171584copy-props Prototype code injection [CVE-2020-28503]
171583OpenEMR cross site scripting [CVE-2021-25922]
171582OpenEMR Allergies cross site scripting [CVE-2021-25921]
171581OpenEMR Create New User access control [CVE-2021-25920]
171580OpenEMR Create New User cross site scripting [CVE-2021-25919]
171579OpenEMR Create New User cross site scripting [CVE-2021-25918]
171578OpenEMR Create New User cross site scripting [CVE-2021-25917]
171577Huawei Secospace USG9500 use after free [CVE-2021-22321]
171576Huawei ManageOne access control [CVE-2021-22314]
171575TYPO3 Page Module cross site scripting [CVE-2021-21370]
171574TYPO3 information exposure [CVE-2021-21359]
171573TYPO3 Form Designer Backend Module cross site scripting [CVE-2021-21358]
171572TYPO3 Form Designer Backend Module unrestricted upload [CVE-2021-21357]
171571TYPO3 unrestricted upload [CVE-2021-21355]
171570XStream deserialization [CVE-2021-21351]
171569XStream deserialization [CVE-2021-21350]
171568XStream deserialization [CVE-2021-21349]
171567XStream deserialization [CVE-2021-21348]
171566XStream deserialization [CVE-2021-21347]
171565XStream deserialization [CVE-2021-21346]
171564XStream deserialization [CVE-2021-21345]
171563XStream deserialization [CVE-2021-21344]
171562XStream deserialization [CVE-2021-21343]
171561XStream server-side request forgery [CVE-2021-21342]
171560XStream denial of service [CVE-2021-21341]
171559TYPO3 Database Field cross site scripting [CVE-2021-21340]
171558TYPO3 User Session cleartext storage [CVE-2021-21339]
171557TYPO3 Login Handling redirect [CVE-2021-21338]
171556Linux Kernel RPA PCI Hotplug Driver rpadlpar_sysfs.c buffer overflow
171555Linux Kernel PEBS Status ds.c intel_pmu_drain_pebs_nhm denial of service
171554PunBB BBcode Tag cross site scripting [CVE-2021-28968]
171553Grafana Enterprise Usage Insights HTTP API Endpoint denial of service
171552Grafana Enterprise Team Sync HTTP API improper authentication
171551Grafana Enterprise HTTP API access control [CVE-2021-28146]
171550Grafana Enterprise Dashboard permission [CVE-2021-27962]
171549SAP 3D Visual Enterprise Viewer 3DS File denial of service [CVE-2021-27596]
171548SAP 3D Visual Enterprise Viewer PDF File denial of service [CVE-2021-27595]
171547SAP 3D Visual Enterprise Viewer BMP File denial of service [CVE-2021-27594]
171546SAP 3D Visual Enterprise Viewer GIF File denial of service [CVE-2021-27593]
1715454images Admin Login Panel cross site scripting [CVE-2021-27308]
171544HPE Network Orchestrator sql injection [CVE-2021-26578]
171543Apache OFBiz deserialization [CVE-2021-26295]
171542Sophos Connect Client Website Remote Code Execution [CVE-2021-25265]
171541Huawei Secospace USG6600 Message denial of service [CVE-2021-22320]
171540Huawei ManageOne permission [CVE-2021-22311]
171539Huawei Secospace USG9500 log file [CVE-2021-22310]
171538Huawei USG9500/USG9520/USG9560/USG9580 random values [CVE-2021-22309]
171537Huawei Secospace SG9500 Packet denial of service [CVE-2020-9213]
171536Huawei USG9500 information disclosure [CVE-2020-9212]
171535Huawei eUDC660 information disclosure [CVE-2020-9206]
171534IBM Planning Analytics server-side request forgery [CVE-2020-4882]
171533es6-crawler-detect User Agent incorrect regex [CVE-2020-28501]
171532Linux Kernel Cloning Operation ctree.c get_old_root denial of service
171531Shibboleth Service Provider Template injection [CVE-2021-28963]
171530vscode-sass-lint Workspace Remote Code Execution [CVE-2021-28956]
171529git-bug git.bat uncontrolled search path
171528Atlassian JIRA Server/Data Center behind-the-firewall Protection improper authentication
171527Atlassian JIRA Server/Data Center API Endpoint ActionsAndOperations information disclosure
171526OTRS FAQ Category access control [CVE-2021-21438]
171525OTRSCIsInCustomerFrontend General Catalog access control [CVE-2021-21437]
171524killport Package child_process command injection
171523SOPlanning improper authentication [CVE-2020-13963]
171522OpenWrt DDNS Package detail.lua command injection
171521lxml HTML5 defs.py cross site scripting
171520Chris Walz Bit code injection [CVE-2021-28954]
171519C Flylint Exension Repository code injection [CVE-2021-28953]
171518Linux Kernel Soundwire Device Driver sdm845.c buffer overflow
171517Linux Kernel Thread io_uring.c deadlock
171516Linux Kernel Inode fuse_i.h infinite loop
171515KDE Discover URL KNSResource.cpp Remote Privilege Escalation
171514Linux Kernel Spectre Mitigation verifier.c integer underflow
171513Linux Kernel Spectre Mitigation verifier.c out-of-bounds read
171512FUDForum index.php cross site scripting
171511FUDForum index.php cross site scripting
171510NetApp Cloud Manager denial of service [CVE-2021-26992]
171509NetApp Cloud Manager unknown vulnerability [CVE-2021-26991]
171508NetApp Cloud Manager authorization [CVE-2021-26990]
171507schema-inspector Email Validation resource consumption [CVE-2021-21267]
171506Tenable Nessus Agent IAM Role Security Token information disclosure
171505Moodle Forum Subscribe Link redirect [CVE-2019-14831]
171504Moodle Mobile Launch Endpoint redirect [CVE-2019-14830]
171503Moodle Activity Creation unknown vulnerability [CVE-2019-14829]
171502Moodle Course improper authorization [CVE-2019-14828]
171501Openshift Container Platform GlusterFS StorageClass insufficiently protected credentials
171500Openshift Container Platform access control [CVE-2019-10200]
171499http-proxy-agent resource consumption [CVE-2019-10196]
171498PostgreSQL Windows Installer access control [CVE-2019-10128]
171497PostgreSQL Windows Installer access control [CVE-2019-10127]
171496Apache PDFbox memory allocation [CVE-2021-27906]
171495Apache PDFbox PDF File iteration [CVE-2021-27807]
171494Stormshield Network Security ClamAV Service denial of service
171493FTAPI Background Image Upload cross site scripting [CVE-2021-25278]
171492FTAPI File Submission cross site scripting [CVE-2021-25277]
171491MinIO PUT Request improper enforcement of message integrity [CVE-2021-21390]
171490wrongthink inadequate encryption [CVE-2021-21387]
171489IBM Resilient SOAR information disclosure [CVE-2020-4635]
171488Ovation Dynamic Content cross site scripting [CVE-2021-3327]
171487Kramdown Route Formatter Formatters unknown vulnerability
171486BusyBox gzip Data decompress_gunzip.c huft_build exceptional condition
171485Western Digital ArmorLock App improper authentication [CVE-2021-28653]
171484TranzWare e-Commerce Payment Gateway index.jsp cross site scripting
171483TranzWare e-Commerce Payment Gateway XML Parser exec xml external entity reference
171482TranzWare FIMI login_tw.php cross site scripting
171481Tor Proxy assertion [CVE-2021-28090]
171480Tor Proxy Directory Protocol resource consumption [CVE-2021-28089]
171479MariaDB untrusted search path [CVE-2021-27928]
171478MikroTik RouterOS RSC File export command injection [Disputed]
171477ozum eslint-fixer os command injection [CVE-2021-26275]
171476Pillow SGIRleDecode.c out-of-bounds read
171475Pillow PDF Parser incorrect regex [CVE-2021-25292]
171474Pillow TiffDecode.c TiffreadRGBATile out-of-bounds read
171473Pillow Offset TiffDecode.c memcpy out-of-bounds write
171472Pillow YCbCr File TiffDecode heap-based overflow
171471shescape _Shescape_ argument injection
171470Zen Cart tpl_main_page.php cross site scripting
171469IT-Recht Kanzlei Plugin itrk-api.php rechtstext_language sql injection
171468Squid Web Proxy Config Setting uri_whitespace request smuggling
171467QEMU NIC stack-based overflow [CVE-2021-3416]
171466transformers Markdown cross site scripting
171465ShellCheck shellcheck.executablePath unknown vulnerability
171464Swift Development Environment Extension Workspace Remote Code Execution
171463SwiftFormat Workspace Remote Code Execution [CVE-2021-28791]
171462Microsoft Workspace Remote Code Execution [CVE-2021-28790]
171461Apple swift-format Workspace Remote Code Execution [CVE-2021-28789]
171460Acexy Wireless-N WiFi Repeater SSID cross site scripting [CVE-2021-28160]
171459Concrete CMS Survey Block cross site scripting [CVE-2021-28145]
171458Exacq exacqVision Web Service information disclosure [CVE-2021-27656]
171457Advantech WebAccess/SCADA cross site scripting [CVE-2021-27436]
171456Grafana Snapshot denial of service [CVE-2021-27358]
171455SeedDMS out.EditFolder.php cross-site request forgery
171454SeedDMS out.EditDocument.php cross-site request forgery
171453JetBrains PhpStorm Debug Log source code [CVE-2021-25764]
171452Rockwell Automation DriveTools SP/Drives AOP uncontrolled search path
171451ExWiki.js Mustache Expression cross site scripting [CVE-2021-21383]
171450Cisco RV132W ADSL2+/RV134W VDSL2 Web-based Management Interface stack-based overflow
171449Zoho ManageEngine Desktop Central MSP DLL dcinventory.exe uncontrolled search path
171448Redash ldap injection [CVE-2020-36144]
171447Cairo image-compositor image-compositor.c out-of-bounds write
171446openvswitch LLDP Packet resource consumption [CVE-2020-27827]
171445Softaculous Data Store access control [CVE-2020-26886]
171444MediaArea MediaInfo ChooseParser_ChannelGrouping heap-based overflow
171443Utimaco SecurityServer Environment Variable permission [CVE-2020-26155]
171442Rockwell Automation FactoryTalk Services Platform unknown vulnerability
171441Red Hat Quay Web Application session expiration [CVE-2019-3867]
171440Red Hat 3scale API Management Platform apicast inadequate encryption
171439nbdkit denial of service [CVE-2019-14851]
171438nbdkit Backend Plugin resource consumption [CVE-2019-14850]
171437Seo Panel alerts.php cross site scripting
171436Seo Panel archive.php sql injection
171435Seo Panel settings.php cross site scripting
171434Seo Panel archive.php cross site scripting
171433Zoom Screen Sharing information disclosure [CVE-2021-28133]
171432Kong Gateway JWT Plugin access control [CVE-2021-27306]
171431WoWonder sql injection [CVE-2021-26935]
171430FastStone Image Viewer CUR File FSViewer.exe memory corruption
171429FastStone Image Viewer CUR File buffer overflow [CVE-2021-26236]
171428FastStone Image Viewer CUR File FSViewer.exe memory corruption
171427FastStone Image Viewer CUR File FSViewer.exe memory corruption
171426FastStone Image Viewer CUR File FSViewer.exe memory corruption
171425Modern Events Calendar Lite Plugin POST Parameter mec_fes_form sql injection
171424MStore API Plugin Authentication Cookies improper authentication
171423Modern Events Calendar Lite Plugin cross site scripting [CVE-2021-24147]
171422Modern Events Calendar Lite Plugin Export access control [CVE-2021-24146]
171421Modern Events Calendar Lite Plugin File Import unrestricted upload
171420Contact Form 7 Database Addon Plugin csv injection [CVE-2021-24144]
171419AccessPress Social Icons Plugin Widget Attribute sql injection
171418301 Redirects - Easy Redirect Manager Plugin WordPress sql injection
171417Advanced Database Cleaner Plugin sql injection [CVE-2021-24141]
171416Ajax Load More Plugin admin-ajax.php sql injection
17141510Web Photo Gallery Plugin model.php sql injection
171414AdRotate Plugin sql injection [CVE-2021-24138]
171413Blog2Social Plugin Post Re-Share sql injection [CVE-2021-24137]
171412Testimonials Widget Plugin cross site scripting [CVE-2021-24136]
171411WP Customer Reviews Plugin cross site scripting [CVE-2021-24135]
171410Constant Contact Forms Plugin Post cross site scripting [CVE-2021-24134]
171409ActiveCampaign Plugin Settings cross-site request forgery [CVE-2021-24133]
171408Slider by 10Web Plugin save_slider_db sql injection
171407Anti-Spam by CleanTalk Plugin sql injection [CVE-2021-24131]
171406WP Google Map Plugin Manage Locations Page sql injection [CVE-2021-24130]
171405Themify Portfolio Post Plugin Custom Panel cross site scripting
171404Team Members Plugin cross site scripting [CVE-2021-24128]
171403ThirstyAffiliates Affiliate Link Manager Plugin cross site scripting
171402Envira Gallery Lite Plugin cross site scripting [CVE-2021-24126]
171401Contact Form Submissions Plugin sql injection [CVE-2021-24125]
171400WP Shieldon Plugin CAPTCHA Page cross site scripting [CVE-2021-24124]
171399PowerPress Plugin unrestricted upload [CVE-2021-24123]
171398port-killer child_process input validation
171397Libvirt Agents Plugin Hypervisor Domain cross-site request forgery
171396Warnings Next Generation Plugin authorization [CVE-2021-21626]
171395CloudBees AWS Credentials Plugin authorization [CVE-2021-21625]
171394Role-based Authorization Strategy Plugin Read authorization
171393Matrix Authorization Strategy Plugin authorization [CVE-2021-21623]
171392Unisys Stealth Management Server information disclosure [CVE-2021-3141]
171391Hgiga MailSherlock URL Parameter sql injection [CVE-2021-22848]
171390Pion WebRTC DTLS Connection certificate validation [CVE-2021-28681]
171389StackStorm Python 3 infinite loop [CVE-2021-28667]
171388Paid Memberships Pro sql injection [CVE-2021-20678]
171387M-System DL8-A/DL8-B/DL8-C/DL8-D/DL8-E Access Restriction access control
171386M-System DL8-A/DL8-B/DL8-C/DL8-D/DL8-E denial of service [CVE-2021-20675]
171385Cybozu Office Custom App access control [CVE-2021-20634]
171384Cybozu Office Cabinet access control [CVE-2021-20633]
171383Cybozu Office Bulletin Board access control [CVE-2021-20632]
171382Cybozu Office Custom App input validation [CVE-2021-20631]
171381Cybozu Office Phone Message access control [CVE-2021-20630]
171380Cybozu Office E-Mail cross site scripting [CVE-2021-20629]
171379Cybozu Office Address Book cross site scripting [CVE-2021-20628]
171378Cybozu Office Address Book cross site scripting [CVE-2021-20627]
171377Cybozu Office Workflow access control [CVE-2021-20626]
171376Cybozu Office Bulletin Board access control [CVE-2021-20625]
171375Cybozu Office Scheduler access control [CVE-2021-20624]
171374Advantech Spectre RT ERT351 excessive authentication [CVE-2019-18235]
171373Advantech Spectre RT Industrial Routers ERT351 Error Response cross site scripting
171372Advantech Spectre RT ERT351 cleartext transmission [CVE-2019-18231]
171371Linux Kernel ioctl_linux.c rtw_wx_set_scan buffer overflow
171370ua-parser-js Header denial of service [CVE-2021-27292]
171369pygments Lexer denial of service [CVE-2021-27291]
171368Taidii Diibear App logcat log file [CVE-2020-35456]
171367Taidii Diibear App Shared Preferences insufficiently protected credentials
171366Taidii Diibear App Configuration information disclosure [CVE-2020-35454]
171365Fluxbb Login Form resource consumption [CVE-2020-28873]
171364Apache Subversion mod_authz_svn null pointer dereference [CVE-2020-17525]
171363Fujitsu ServerView Suite iRMC Save Configuration XML Document cross site scripting
171362GNOME gnome-autoar Symlink autoar-extractor.c pathname traversal
171361EIC E-Document System permission [CVE-2021-22860]
171360EIC E-Document System sql injection [CVE-2021-22859]
171359Apache Ambari pathname traversal [CVE-2020-13924]
171358Qualcomm Snapdragon Auto GPU Memory use after free [CVE-2020-11309]
171357Qualcomm Snapdragon Auto Unicode String buffer overflow [CVE-2020-11308]
171356Qualcomm Snapdragon Consumer IOT Argument integer overflow [CVE-2020-11305]
171355Qualcomm Snapdragon Auto Video buffer overflow [CVE-2020-11299]
171354Qualcomm Snapdragon Auto msm ioctl Event use after free [CVE-2020-11290]
171353Qualcomm Snapdragon Auto qseecom Driver memory corruption [CVE-2020-11230]
171352Qualcomm Snapdragon Auto RPM Region privileges management [CVE-2020-11228]
171351Qualcomm Snapdragon Auto RTT TTY Packet Parser out-of-bounds write
171350Qualcomm Snapdragon Auto Data Modem out-of-bounds read [CVE-2020-11226]
171349Qualcomm Snapdragon Auto MT SMS buffer overflow [CVE-2020-11222]
171348Qualcomm Snapdragon Auto QTEE Diagnostic information disclosure
171347Qualcomm Snapdragon Auto SCM Command toctou [CVE-2020-11220]
171346Qualcomm Snapdragon Auto Baseband denial of service [CVE-2020-11218]
171345Qualcomm Snapdragon Auto EL3 Stack access control [CVE-2020-11199]
171344Qualcomm Snapdragon Auto SDP String out-of-bounds write [CVE-2020-11192]
171343Qualcomm Snapdragon Auto SDP Value buffer overflow [CVE-2020-11190]
171342Qualcomm Snapdragon Auto SDP Value buffer overflow [CVE-2020-11189]
171341Qualcomm Snapdragon Auto SDP Value buffer overflow [CVE-2020-11188]
171340Qualcomm Snapdragon Auto Histogram Dimension infinite loop [CVE-2020-11186]
171339Qualcomm Snapdragon Auto SDP Value buffer overflow [CVE-2020-11171]
171338Qualcomm Snapdragon Auto ROHC Header out-of-bounds read [CVE-2020-11166]
171337shadow Physical Terminal securetty access control
171336Openshift Builder Container Image or insufficiently protected credentials
171335NATS Server/JWT Library Import Token access control [CVE-2021-3127]
171334VHS sql injection [CVE-2021-28381]
171333Aimeos Backend cross site scripting [CVE-2021-28380]
171332Online Ordering System design.php sql injection
171331Online Ordering System initiateorder.php unrestricted upload
171330Fabric8 Kubernetes Client copy Command path traversal [CVE-2021-20218]
171329Red Hat Certification rhcert file access
171328varnish-modules Configuration null pointer dereference [CVE-2021-28543]
171327Silverstripe CMS silverstripe-queuedjobs cross site scripting
171326patchmerge Prototype code injection [CVE-2021-25916]
171325Juniper Pulse Secure PSA5000/Pulse Secure PSA7000 BIOS Firmware unknown vulnerability
171324Google Chrome Blink use after free [CVE-2021-21193]
171323Google Chrome Tab Groups heap-based overflow [CVE-2021-21192]
171322Google Chrome WebRTC use after free [CVE-2021-21191]
171321IBM Spectrum Scale REST API excessive authentication [CVE-2020-4891]
171320IBM Spectrum Scale REST API denial of service [CVE-2020-4890]
171319IBM Spectrum Scale Log File injection [CVE-2020-4851]
171318ZyXEL LTE4506-M606 JSON gui.cgi improper authentication
171317Portainer access control [CVE-2020-24264]
171316Portainer permission [CVE-2020-24263]
171315Apache Hive Cookie Signature Verification timing discrepancy
171314grub2 improper validation of integrity check value [CVE-2021-3418]
171313Cloudera Data Engineering JWT Authentication information disclosure
171312Cryptshare Server Delete Personal Data Page cross site scripting
171311urllib3 Library certificate validation [CVE-2021-28363]
171310MyBB Custom Moderator Tools cross site scripting [CVE-2021-27949]
171309MyBB User Group sql injection [CVE-2021-27948]
171308MyBB Forum Management sql injection [CVE-2021-27947]
171307MyBB Poll Vote Count sql injection [CVE-2021-27946]
171306MyBB Theme XML File sql injection [CVE-2021-27890]
171305MyBB Message Parser cross site scripting [CVE-2021-27889]
171304ShopXO phar File unrestricted upload [CVE-2021-27817]
171303openMAINT Add Card Building cross site scripting [CVE-2021-27695]
171302Siemens Solid Edge SE2020/Solid Edge SE2021 PAR File Parser out-of-bounds read
171301Siemens Solid Edge SE2020/Solid Edge SE2021 PAR File Parser out-of-bounds write
171300ExpressionEngine _lang.php save code injection
171299NetApp Element Plug-In for vCenter Server SpringBoot Framework Remote Code Execution
171298Siemens SCALANCE SC-600 SSH Authentication excessive authentication
171297Siemens SIMATIC S7-PLCSIM divide by zero [CVE-2021-25675]
171296Siemens SIMATIC S7-PLCSIM null pointer dereference [CVE-2021-25674]
171295Siemens SIMATIC S7-PLCSIM infinite loop [CVE-2021-25673]
171294Medix orgot Password Appstore Module access control [CVE-2021-25672]
171293Siemens RUGGEDCOM RM1224 STP BPDU Frame stack-based overflow
171292Facebook mvfst QUIC Session assertion [CVE-2021-24029]
171291McAfee Endpoint Product Removal Tool unquoted search path [CVE-2021-23879]
171290Tyk Gateway Management API handleAddOrUpdateApi pathname traversal
171289kill-process-by-name child_process command injection
171288ps-kill command injection [CVE-2021-23355]
171287Wireshark URL Handling injection [CVE-2021-22191]
171286IBM API Connect Registration Remote Privilege Escalation [CVE-2021-20440]
171285libnbd opt.c nbd_unlocked_opt_go denial of service
171284Moodle Web Service authorization [CVE-2021-20283]
171283Moodle Verification authorization [CVE-2021-20282]
171282Moodle Online Users Block information disclosure [CVE-2021-20281]
171281Moodle Feedback Answer cross site scripting [CVE-2021-20280]
171280Moodl User Profile Field cross site scripting [CVE-2021-20279]
171279IBM Security Guardium privileges management [CVE-2020-4184]
171278Grav CMS Backup path traversal [CVE-2020-29556]
171277Grav CMS path traversal [CVE-2020-29555]
171276Grav CMS Scheduler cross-site request forgery [CVE-2020-29553]
171275Siemens Solid Edge SE2020/Solid Edge SE2021 SEECTCXML File xml external entity reference
171274Siemens Solid Edge SE2020/Solid Edge SE2021 DFT File Parser out-of-bounds write
171273myDBR CSRF Token cross site scripting [CVE-2020-28149]
171272Hamilton Medical T1-Ventillator Configuration Interface information disclosure
171271Hamilton Medical T1-Ventillator XML Validation denial of service
171270Hamilton Medical T1-Ventillator Configuration Interface hard-coded credentials
171269Siemens SIMATIC MV400 TCP Stack denial of service [CVE-2020-25241]
171268Siemens SINEMA Remote Connect Server URL authorization [CVE-2020-25240]
171267Siemens SINEMA Remote Connect Server UMC Authorization Server authorization
171266Siemens LOGO! 8 BM exceptional condition [CVE-2020-25236]
171265Quadbase EspressReports ES MenuPage Section input validation
171264Quadbase ExpressDashboard cross-site request forgery [CVE-2020-24982]
171263zzzcms zzzphp sql injection [CVE-2020-24877]
171262Barracuda Web Application Firewall Online Demo Certificate FFM-SSLInspect denial of service
171261SSH Tectia Client ConnectSecure privileges management [CVE-2021-27893]
171260SSH Tectia Client ConnectSecure privileges management [CVE-2021-27892]
171259SSH Tectia Client ConnectSecure entropy [CVE-2021-27891]
171258Argo CD cross site scripting [CVE-2021-26924]
171257Argo CD Endpoint version improper authentication
171256Xilinx Zynq-7000 nand Driver buffer overflow [CVE-2021-27208]
171255Valid pki-core Key authorization [CVE-2021-20179]
171254DomainMod session expiration [CVE-2020-35358]
171253Vesta Control Panel/myVesta UploadHandler.php unrestricted upload
171252Gitea Issue cross site scripting [CVE-2021-28378]
171251Linux Kernel RPC Message fastrpc.c fastrpc_internal_invoke privileges management
171250courier-authlib authdaemon permission
171249Apache OpenMeetings NetTest Web Service resource consumption
171248Tiny Tiny RSS OTP Code improper authentication [CVE-2021-28373]
171247Storage Performance Development Kit PDU null pointer dereference
171246Zoho ManageEngine ServiceDesk Plus SAML Login improper authentication
171245SonicWALL SMA100 Configuration File information disclosure [CVE-2021-20018]
171244SonicWALL SMA100 os command injection [CVE-2021-20017]
171243pupnp Parser_parseDocument denial of service
171242Eclipse Theia Notification Message cross site scripting [CVE-2021-28162]
171241Eclipse Theia Debug Console cross site scripting [CVE-2021-28161]
171240is-svg Package Regular Expression denial of service [CVE-2021-28092]
171239ssri Regular Expression denial of service [CVE-2021-27290]
171238printf Package Regular Expression printf.js denial of service
171237ZTE ZXONE 9700 /ZXONE 8700/ZXONE 19700 Diagnostic Function Interface input validation
171236Dell SupportAssist Client Costura Fody Plugin uncontrolled search path
171235XWiki Wiki Macro permissions [CVE-2021-21379]
171234msgpack5 Prototype code injection [CVE-2021-21368]
171233Elementary Switchboard Bluetooth Plug authorization [CVE-2021-21367]
171232xmldom System Identifier deserialization [CVE-2021-21366]
171231Adobe Connect Registration Form injection [CVE-2021-21085]
171230Adobe Photoshop memory corruption [CVE-2021-21082]
171229Adobe Connect cross site scripting [CVE-2021-21080]
171228Adobe Connect cross site scripting [CVE-2021-21079]
171227Adobe Creative Cloud Desktop Application CCXProcess untrusted search path
171226Adobe Animate heap-based overflow [CVE-2021-21077]
171225Adobe Animate out-of-bounds read [CVE-2021-21076]
171224Adobe Animate out-of-bounds read [CVE-2021-21075]
171223Adobe Animate out-of-bounds read [CVE-2021-21074]
171222Adobe Animate out-of-bounds read [CVE-2021-21073]
171221Adobe Animate out-of-bounds read [CVE-2021-21072]
171220Adobe Animate memory corruption [CVE-2021-21071]
171219Adobe Creative Cloud Desktop Application Installer access control
171218Adobe Creative Cloud Desktop Application temp file [CVE-2021-21068]
171217Adobe Photoshop CoolType Library out-of-bounds write [CVE-2021-21067]
171216Adobe Framemaker out-of-bounds read [CVE-2021-21056]
171215GnuTLS pre_shared_key.c client_send_params use after free
171214GnuTLS key_share Extension use after free [CVE-2021-20231]
171213IBM DataPower Gateway inadequate encryption [CVE-2020-4831]
171212fltk Crate Constructor out-of-bounds read [CVE-2021-28308]
171211fltk Crate Window Icon null pointer dereference [CVE-2021-28307]
171210fltk Crate Image null pointer dereference [CVE-2021-28306]
171209diesel Crate SQLite Backend sqlite3_column_name use after free
171208Synology DiskStation Manager Web Request iscsi_snapshot_comm_core out-of-bounds read
171207Synology DiskStation Manager Web Request iscsi_snapshot_comm_core use after free
171206Synology DiskStation Manager Thread iscsi_snapshot_comm_core race condition
171205Barracuda Web Application Firewall Online Demo lookup.cgi ldap injection
171204Apple Safari WebKit memory corruption [CVE-2021-1844]
171203Apple macOS WebKit memory corruption [CVE-2021-1844]
171202Apple watchOS WebKit memory corruption [CVE-2021-1844]
171201Apple iOS/iPadOS WebKit memory corruption [CVE-2021-1844]
171200F5 BIG-IQ REST services cross site scripting [CVE-2021-23006]
171199F5 BIG-IQ High Availability missing encryption [CVE-2021-23005]
171198F5 BIG-IP TCP  Profile unknown vulnerability [CVE-2021-23004]
171197F5 BIG-IP TCP  Profile denial of service [CVE-2021-23003]
171196F5 BIG-IP APM/BIG-IP APM Clients VPN information disclosure [CVE-2021-23002]
171195F5 BIG-IP ASM iControl REST unrestricted upload [CVE-2021-23001]
171194F5 BIG-IP TMM denial of service [CVE-2021-23000]
171193F5 BIG-IP HTTP2 Profile resource consumption [CVE-2021-22999]
171192F5 BIG-IP SNAT resource consumption [CVE-2021-22998]
171191F5 BIG-IP Advanced WAF/ASM TMUI Remote Privilege Escalation [CVE-2021-22990]
171190F5 BIG-IQ High Availability unknown vulnerability [CVE-2021-22997]
171189F5 BIG-IQ Data Collection denial of service [CVE-2021-22996]
171188F5 BIG-IQ High Availability unknown vulnerability [CVE-2021-22995]
171187F5 BIG-IP iControl REST cross site scripting [CVE-2021-22994]
171186F5 BIG-IP Advanced WAF/ASM TMUI cross site scripting [CVE-2021-22993]
171185F5 BIG-IP Advanced WAF/ASM TMUI unknown vulnerability [CVE-2021-22989]
171184F5 BIG-IP TMUI Remote Privilege Escalation [CVE-2021-22988]
171183F5 BIG-IP Advanced WAF/ASM Data Plane buffer overflow [CVE-2021-22992]
171182F5 BIG-IP Data Plane buffer overflow [CVE-2021-22991]
171181F5 BIG-IP TMUI Remote Privilege Escalation [CVE-2021-22987]
171180F5 BIG-IP/BIG-IQ iControl REST Remote Code Execution [CVE-2021-22986]
171179Camunda Modeler IPC Message writeFile state issue [Disputed]
171178GNOME GLib g_file_replace symlink
171177D-Link DIR-841 ping/ping6/traceroute jsonrpc command injection
171176Schneider Electric PowerLogic ION9000 memory corruption [CVE-2021-22714]
171175Schneider Electric PowerLogic ION8600 memory corruption [CVE-2021-22713]
171174Schneider Electric Interactive Graphical SCADA System Configuration Group File Def.exe buffer overflow
171173Schneider Electric Interactive Graphical SCADA System Configuration Group File Def.exe buffer overflow
171172Schneider Electric Interactive Graphical SCADA System Configuration Group File Def.exe buffer overflow
171171Schneider Electric Interactive Graphical SCADA System Configuration Group File Def.exe buffer overflow
171170MagicConnect Client untrusted search path [CVE-2021-20674]
171169Linux Kernel Floppy Disk Drive Controller Driver fd0 race condition
171168JMS Client for RabbitMQ StreamMessage Data deserialization [CVE-2020-36282]
171167Dan Bloomberg Leptonica colorquant1.c pixFewColorsOctcubeQuantMixed heap-based overflow
171166Dan Bloomberg Leptonica tiffio.c pixReadFromTiffStream heap-based overflow
171165Dan Bloomberg Leptonica adaptmap_reg.c rasteropGeneralLow heap-based overflow
171164Dan Bloomberg Leptonica ccbord.c findNextBorderPixel heap-based overflow
171163Dan Bloomberg Leptonica pixconv.c pixConvert2To8 denial of service
171162Quadbase EspressReports ES File Upload cross-site request forgery
171161Quadbase EspressReports ES POST Request cross-site request forgery
171160Wind River VxWorks DNS ipdnsc_decode_name stack-based overflow
171159food-and-drink-menu Plugin fdm_cart Cookie class-cart-manager.php load_cart_from_cookie deserialization
171158Bloomreach Experience Manager cross-site request forgery [CVE-2020-14989]
171157Bloomreach Experience Manager Login Page unrestricted upload
171156D-Link DIR-3060 prog.cgi SetVirtualServerSettings command injection
171155Progress Telerik UI for ASP.NET AJAX Telerik.Web.UI.WebResource.axd command injection
171154ImpressCMS Profile content.php cross site scripting
171153Batflat CMS Navigation cross site scripting [CVE-2021-27679]
171152Batflat CMS Snippets cross site scripting [CVE-2021-27678]
171151Batflat CMS Galleries cross site scripting [CVE-2021-27677]
171150CSZ CMS cross site scripting [CVE-2021-26776]
171149Flatpak File Forwarding injection [CVE-2021-21381]
171148IBM Tivoli Netcool/OMNIbus_GUI Web UI cross site scripting [CVE-2021-20336]
171147IBM DB2/DB2 Connect Server buffer overflow [CVE-2020-5025]
171146IBM DB2/DB2 Connect Server SSL Handshake denial of service [CVE-2020-5024]
171145IBM DB2/DB2 Connect Server permission [CVE-2020-4976]
171144Bloomreach Experience Manager Updater Editor permission assignment
171143LUCY Security Awareness Software Migration Tool static unrestricted upload
171142Envoy JWT Token improper authentication [CVE-2021-21378]
171141swagger-codegen Directory temp file [CVE-2021-21364]
171140swagger-codegen temp file [CVE-2021-21363]
171139Facebook HHVM Dynamic Property use after free [CVE-2020-1900]
171138Facebook HHVM Type Code unserialize uninitialized pointer
171137Facebook HHVM fb_unserialize recursion
171136cszcms new cross site scripting
171135Palo Alto Cortex XSOAR SSO log file [CVE-2021-3034]
171134Clipper IPC Message Remote Privilege Escalation [CVE-2021-28134]
171133Open5GS WebUI improper authentication [CVE-2021-28122]
171132Web Based Quiz System register.php cross site scripting
171131Google Go ZIP Archive denial of service [CVE-2021-27919]
171130Google Go Token Reader Skip infinite loop
171129Facebook Gameroom fbgames Protocol argument injection [CVE-2021-24030]
171128Facebook HHVM preg_quote integer overflow
171127lib3mf 3MF File releaseZIP use after free
171126SAP NetWeaver Application Server Java redirect [CVE-2021-21491]
171125PJSIP INVITE denial of service [CVE-2021-21375]
171124Tenable for Jira Cloud yaml.load deserialization
171123containerd Environment Variable exposure of resource [CVE-2021-21334]
171122October CMS Host Header Remote Privilege Escalation [CVE-2021-21265]
171121Linux Kernel Signal unix_stream_recvmsg resource consumption
171120libjpeg-turbo GIF Image divide by zero [CVE-2021-20205]
171119Google Android face.cc GenerateFaceMask out-of-bounds write
171118Google Android platform.h sound_trigger_event_alloc out-of-bounds write
IDTitleNessusOpenVASSnortSuricataTippingPoint
171117Google Android convert.cpp convertToHidl out-of-bounds read
171116Google Android NXP NFC Firmware privileges management [CVE-2021-0462]
171115Google Android iaxxx-module.c iaxxx_core_sensor_change_state out-of-bounds write
171114Google Android FingerTipS Touch Screen Driver out-of-bounds read
171113Google Android fts_proc.c fts_driver_test_write out-of-bounds read
171112Google Android FingerTipS Touch Screen Driver out-of-bounds read
171111Google Android FingerTipS Touch Screen Driver out-of-bounds write
171110Google Android Citadel Chip Firmware out-of-bounds write [CVE-2021-0456]
171109Google Android Citadel Chip Firmware out-of-bounds write [CVE-2021-0455]
171108Google Android Citadel Chip Firmware out-of-bounds write [CVE-2021-0454]
171107Google Android Titan M Chip Firmware information disclosure [CVE-2021-0453]
171106Google Android Titan M Chip Firmware information disclosure [CVE-2021-0452]
171105Google Android Titan M Chip Firmware information disclosure [CVE-2021-0451]
171104Google Android Titan M Chip Firmware information disclosure [CVE-2021-0450]
171103Google Android Titan M Chip Firmware information disclosure [CVE-2021-0449]
171102Google Android xt_qtaguid.c qtaguid_untag use after free
171101Google Android Foreground ActiveServices.java bindServiceLocked Local Privilege Escalation
171100Google Android sdp_discovery.cc sdp_copy_raw_data double free
171099Google Android builtins-arm.cc Generate_ArgumentsAdaptorTrampoline out-of-bounds write
171098Google Android reboot.cpp StopServicesAndLogViolations use after free
171097Google Android android_os_Parcel.cpp android_os_Parcel_readString8 out-of-bounds read
171096Google Android PAC File scanner.cc NewCapacity out-of-bounds write
171095Google Android main.cpp main double free
171094Google Android Privileges ChooseTypeAndAccountActivity.java onCreate information disclosure
171093Google Android WifiNetworkSuggestionsManager.java permission
171092Google Android UiModeManagerService.java setNightModeActivated permission
171091Google Android Broadcast ImsPhoneCallTracker.java onReceive privileges management
171090Google Android QuotaUtils.cpp FindQuotaDeviceForUuid use after free
171089Google Android UsbConfirmActivity improper restriction of rendered ui layers
171088Google Android WiFi ConnectToNetworkNotificationBuilder.java createConnectToAvailableNetworkNotification privileges management
171087Google Android jdapistd.c read_and_discard_scanlines denial of service
171086Google Android CaptivePortalLoginActivity.java done privileges management
171085Google Android SliceManagerService.java checkSlicePermission information disclosure
171084Google Android Pendingetent DeviceStorageMonitorService.java updateNotifications information disclosure
171083Google Android Provisioning URL DcTracker.java onReceive permission
171082Google Android pvmp3_getbits.cpp getUpTo17bits out-of-bounds read
171081Google Android pvmp3_getbits.cpp getNbits out-of-bounds read
171080Google Android delta_performer.cc Write input validation
171079Google Android MediaProvider.java checkUriPermission permission
171078Google Android VoiceInteractionManagerService.java onPackageModified random values
171077Google Android IAudioPolicyService.cpp onTransact out-of-bounds read
171076Google Android Pendingetent RemoteMediaSlice.java getMediaOutputSliceAction permission
171075Google Android nci_hrcv.cc nci_proc_rf_management_ntf out-of-bounds read
171074Google Android NFC Server NxpMfcReader.cc Write out-of-bounds write
171073Google Android Setting UI CrossProfileAppsServiceImpl.java state issue
171072Google Android bitwise.c oggpack_look out-of-bounds read
171071IBM WebSphere Application Server JAX-RPC Application path traversal
171070IBM SPSS Modeler Subscription Installer symlink [CVE-2020-4717]
171069Baby Care System Edit Page Tab cross site scripting [CVE-2020-35752]
171068Netgear JGS516PE/GS116Ev2 TFTP Server denial of service [CVE-2020-35233]
171067Netgear JGS516PE/GS116Ev2 TFTP Firmware Update Remote Privilege Escalation
171066Netgear JGS516PE/GS116Ev2 NSDP Protocol improper authentication
171065Netgear JGS516PE/GS116Ev2 Web Administration Panel integer overflow
171064Netgear JGS516PE/GS116Ev2 NSDP improper authentication [CVE-2020-35229]
171063Netgear JGS516PE/GS116Ev2 Administration Web Panel cross site scripting
171062Netgear JGS516PE/GS116Ev2 Administration Web Panel buffer overflow
171061Netgear JGS516PE/GS116Ev2 DHCP Configuration injection [CVE-2020-35226]
171060Netgear JGS516PE/GS116Ev2 NSDP Protocol denial of service [CVE-2020-35225]
171059Netgear JGS516PE/GS116Ev2 NSDP Protocol buffer overflow [CVE-2020-35224]
171058Netgear JGS516PE/GS116Ev2 Web Administration Panel cross-site request forgery
171057Netgear GS516PE/GS116Ev2 NSDP Protocol information disclosure
171056Netgear JGS516PE/GS116Ev2 NSDP Passwort unknown vulnerability
171055Netgear JGS516PE/GS116Ev2 TFTP Server Remote Privilege Escalation
171054Fuel CMS 3 cross-site request forgery
171053Siemens SIMATIC MV400 ISN Generator initialization [CVE-2020-27632]
171052Fuel CMS 1 sql injection
171051Fuel CMS privileges management [CVE-2020-23722]
171050Fuel CMS cross site scripting [CVE-2020-23721]
171049Emerson Smart Wireless Gateway 1420 Administrator Console improper authentication
171048Emerson Smart Wireless Gateway 1420 Administrative Task privileges management
171047Facebook HHVM crypt stack-based overflow
171046Facebook HHVM substr_compare out-of-bounds read
171045Facebook HHVM In-Memory File buffer overflow [CVE-2020-1918]
171044Facebook HHVM xbuf_format_converter heap-based overflow
171043Facebook HHVM ldap_escape heap-based overflow
171042PJSIP certificate validation [CVE-2020-15260]
171041Google Android PackageManagerService.java deletePackageVersionedInternal permission
171040GROWI cross site scripting [CVE-2021-20673]
171039GROWI cross site scripting [CVE-2021-20672]
171038GROWI File Validation input validation [CVE-2021-20671]
171037GROWI or access control
171036GROWI path traversal [CVE-2021-20669]
171035GROWI path traversal [CVE-2021-20668]
171034GROWI Content Security Policy cross site scripting [CVE-2021-20667]
171033Apache Velocity Tools VelocityView cross site scripting [CVE-2020-13959]
171032Apache Velocity Engine Template command injection [CVE-2020-13936]
171031Western Digital My Cloud OS SMB/AFP symlink [CVE-2021-3310]
171030ExpressVPN Router Nginx Webserver integer overflow [CVE-2020-29238]
171029Microsoft Edge memory corruption [CVE-2021-26411]
171028Microsoft Windows Win32k privileges management [CVE-2021-26900]
171027Microsoft Windows Win32k privileges management [CVE-2021-26875]
171026Microsoft Windows Win32k privileges management [CVE-2021-26863]
171025Microsoft Windows Win32k privileges management [CVE-2021-27077]
171024Microsoft Windows WalletService privileges management [CVE-2021-26885]
171023Microsoft Windows WalletService privileges management [CVE-2021-26871]
171022Microsoft Windows Virtual Registry Provider privileges management
171021Microsoft Windows User Profile Service privileges management
171020Microsoft Windows Update Stack Setup privileges management [CVE-2021-1729]
171019Microsoft Windows Update Stack privileges management [CVE-2021-26889]
171018Microsoft Windows Update Service privileges management [CVE-2021-26866]
171017Microsoft Windows UPnP Device Host privileges management [CVE-2021-26899]
171016Microsoft Windows Projected File System privileges management
171015Microsoft Windows Print Spooler privileges management [CVE-2021-26878]
171014Microsoft Windows Print Spooler privileges management [CVE-2021-1640]
171013Microsoft Windows Overlay Filter privileges management [CVE-2021-26874]
171012Microsoft Windows NAT denial of service [CVE-2021-26879]
171011Microsoft Windows Media Photo Codec information disclosure [CVE-2021-26884]
171010Microsoft Windows Installer privileges management [CVE-2021-26862]
171009Microsoft Windows Hyper-V Remote Privilege Escalation [CVE-2021-26867]
171008Microsoft Windows Graphics Local Privilege Escalation [CVE-2021-26861]
171007Microsoft Windows Graphics privileges management [CVE-2021-26868]
171006Microsoft Windows Extensible Firmware Interface unknown vulnerability
171005Microsoft Windows Event Tracing information disclosure [CVE-2021-24107]
171004Microsoft Windows Event Tracing privileges management [CVE-2021-26901]
171003Microsoft Windows Event Tracing privileges management [CVE-2021-26898]
171002Microsoft Windows Event Tracing privileges management [CVE-2021-26872]
171001Microsoft Windows Error Reporting privileges management [CVE-2021-24090]
171000Microsoft Windows DNS Server Remote Code Execution [CVE-2021-26897]
170999Microsoft Windows DNS Server Remote Code Execution [CVE-2021-26895]
170998Microsoft Windows DNS Server Remote Code Execution [CVE-2021-26894]
170997Microsoft Windows DNS Server Remote Code Execution [CVE-2021-26893]
170996Microsoft Windows DNS Server code injection [CVE-2021-26877]
170995Microsoft Windows DNS Server denial of service [CVE-2021-27063]
170994Microsoft Windows DNS Server denial of service [CVE-2021-26896]
170993Microsoft Windows Container Execution Agent privileges management
170992Microsoft Windows Container Execution Agent privileges management
170991Microsoft Windows App-V Overlay Filter privileges management
170990Microsoft Windows Admin Center information disclosure [CVE-2021-27066]
170989Microsoft Windows ActiveX Installer Service information disclosure
170988Microsoft Windows Update Assistant privileges management [CVE-2021-27070]
170987Microsoft Visual Studio Code Remote Code Execution [CVE-2021-27060]
170986Microsoft Visual Studio Code Java Extension Pack Remote Code Execution
170985Microsoft Visual Studio Code ESLint Extension Remote Code Execution
170984Microsoft Windows User Profile Service denial of service [CVE-2021-26886]
170983Microsoft Windows Storage Spaces Controller privileges management
170982Microsoft Visual Studio Code Remote Containers Extension Remote Code Execution
170981Microsoft Windows Remote Access API privileges management [CVE-2021-26882]
170980Microsoft Quantum Development Kit for Visual Studio Code Remote Code Execution
170979Microsoft Windows OpenType Font Parser code injection [CVE-2021-26876]
170978Microsoft Windows Media Foundation Remote Privilege Escalation
170977Microsoft Windows 10 Version 2004 for 32-bit Systems privileges management
170976Microsoft Office/Visio/365 Apps for Enterprise Local Privilege Escalation
170975Microsoft Word input validation [CVE-2021-24104]
170974Microsoft SharePoint Server/Office Web Apps Remote Privilege Escalation
170973Microsoft SharePoint Server/Office Web Apps information disclosure
170972Microsoft Office PowerPoint Remote Code Execution [CVE-2021-27056]
170971Microsoft Power BI Report Server information disclosure [CVE-2021-26859]
170970Microsoft Office Remote Code Execution [CVE-2021-27059]
170969Microsoft Office Remote Code Execution [CVE-2021-27057]
170968Microsoft Office Remote Code Execution [CVE-2021-24108]
170967Microsoft 365 Apps for Enterprise ClickToRun Remote Code Execution
170959Microsoft Office Excel Remote Code Execution [CVE-2021-27054]
170958Microsoft Office Excel Remote Code Execution [CVE-2021-27053]
170957Microsoft Internet Explorer Remote Code Execution [CVE-2021-27085]
170956Microsoft Internet Explorer memory corruption [CVE-2021-26411]
170955Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27062]
170954Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27061]
170953Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27051]
170952Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27050]
170951Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27049]
170950Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27048]
170949Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-27047]
170948Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-26902]
170947Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-24110]
170946Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-24089]
170945Microsoft Visual Studio Git link following [CVE-2021-21300]
170944Microsoft Windows DirectX privileges management [CVE-2021-24095]
170943Microsoft Edge uninitialized resource [CVE-2021-21190]
170942Microsoft Edge Payments improper authentication [CVE-2021-21189]
170941Microsoft Edge Blink use after free [CVE-2021-21188]
170940Microsoft Edge URL Formatting Remote Code Execution [CVE-2021-21187]
170939Microsoft Edge QR Scanning authorization [CVE-2021-21186]
170938Microsoft Edge Extensions Remote Code Execution [CVE-2021-21185]
170937Microsoft Edge Performance API origin validation [CVE-2021-21184]
170936Microsoft Edge Performance API origin validation [CVE-2021-21183]
170935Microsoft Edge Navigations authorization [CVE-2021-21182]
170934Microsoft Edge Autofill information disclosure [CVE-2021-21181]
170933Microsoft Edge Tab Search use after free [CVE-2021-21180]
170932Microsoft Edge Network Internals use after free [CVE-2021-21179]
170931Microsoft Edge Remote Code Execution [CVE-2021-21178]
170930Microsoft Edge Autofill improper authentication [CVE-2021-21177]
170929Microsoft Edge Full Screen Mode Remote Code Execution [CVE-2021-21176]
170928Microsoft Edge Site Isolation origin validation [CVE-2021-21175]
170927Microsoft Edge Referrer information disclosure [CVE-2021-21174]
170926Microsoft Edge Network Inter Network Internals information disclosure
170925Microsoft Edge File System API Remote Code Execution [CVE-2021-21172]
170924Microsoft Edge TabStrip/Navigation Remote Code Execution [CVE-2021-21171]
170923Microsoft Edge Loader Remote Code Execution [CVE-2021-21170]
170922Microsoft Edge V8 out-of-bounds read [CVE-2021-21169]
170921Microsoft Edge appcache Remote Code Execution [CVE-2021-21168]
170920Microsoft Edge Bookmarks use after free [CVE-2021-21167]
170919Microsoft Edge Audio information disclosure [CVE-2021-21166]
170918Microsoft Edge Audio information disclosure [CVE-2021-21165]
170917Microsoft Edge information disclosure [CVE-2021-21164]
170916Microsoft Edge Reader Mode information disclosure [CVE-2021-21163]
170915Microsoft Edge WebRTC use after free [CVE-2021-21162]
170914Microsoft Edge TabStrip heap-based overflow [CVE-2021-21161]
170913Microsoft Edge WebAudio heap-based overflow [CVE-2021-21160]
170912Microsoft Edge TabStrip heap-based overflow [CVE-2021-21159]
170911Microsoft Edge OpenJPEG heap-based overflow [CVE-2020-27844]
170910Microsoft Azure Spring Cloud information disclosure [CVE-2021-27075]
170909Microsoft Azure Sphere Local Privilege Escalation [CVE-2021-27080]
170908Microsoft Azure Sphere unknown vulnerability [CVE-2021-27074]
170907Microsoft Windows Application Virtualization code injection [CVE-2021-26890]
170906Lenovo LXCO FFDC Service Log log file [CVE-2021-3417]
170905Linux Kernel Linking State code injection [CVE-2021-3411]
170904Twinkle Tray IPC Message Remote Privilege Escalation [CVE-2021-28119]
170903Squid Web Proxy WCCP Protocol out-of-bounds read [CVE-2021-28116]
170902OUGC Feedback Plugin Edit cross site scripting [CVE-2021-28115]
170901Web Based Quiz System admin.php cross site scripting
170900SAP 3D Visual Enterprise Viewer U3D File denial of service [CVE-2021-27592]
170899SAP 3D Visual Enterprise Viewer PDF File denial of service [CVE-2021-27591]
170898SAP 3D Visual Enterprise Viewer TIFF File denial of service [CVE-2021-27590]
170897SAP 3D Visual Enterprise Viewer SVG File denial of service [CVE-2021-27589]
170896SAP 3D Visual Enterprise Viewer HPGL File denial of service [CVE-2021-27588]
170895SAP 3D Visual Enterprise Viewer JT File denial of service [CVE-2021-27587]
170894SAP 3D Visual Enterprise Viewer IFF File denial of service [CVE-2021-27586]
170893SAP 3D Visual Enterprise Viewer CGM File denial of service [CVE-2021-27585]
170892SAP 3D Visual Enterprise Viewer PSD File denial of service [CVE-2021-27584]
170891changeset Prototype code injection [CVE-2021-25915]
170890jspdf addImage incorrect regex
170889madge dot sql injection
170888TIBCO Spotfire Analyst Spotfire Client cross site scripting [CVE-2021-23273]
170887SAP 3D Visual Enterprise Viewer GIF File denial of service [CVE-2021-21493]
170886IBM Knowledge Management deserialization [CVE-2021-21488]
170885SAP Payment Engine improper authorization [CVE-2021-21487]
170884SAP Enterprise Financial Services improper authorization [CVE-2021-21486]
170883SAP HANA Database LDAP Authentication improper authentication
170882SAP NetWeaver MigrationService improper authorization [CVE-2021-21481]
170881SAP MII Dashboard access control [CVE-2021-21480]
170880Hyperledger Besu HTTP JSON-RPC API Service resource consumption
170879Git Symbolic Links link following [CVE-2021-21300]
170878Netty Content-Length Header request smuggling [CVE-2021-21295]
170877IBM Cloud Pak for Multicloud Management Monitoring Header information disclosure
170876Privoxy pcre_compile memory corruption
170875Privoxy chunked_body_is_complete memory corruption
170874Privoxy Socks Server null pointer dereference [CVE-2021-20274]
170873Privoxy CGI Request denial of service [CVE-2021-20273]
170872Privoxy CGI Request assertion [CVE-2021-20272]
170871Linux Kernel eBPF Code Verifier sock_map_alloc out-of-bounds read
170870QEMU virtio-fs Shared File System Daemon permissions [CVE-2021-20263]
170869Keycloak Password Update missing authentication [CVE-2021-20262]
170868QEMU eepro100 i8255x Device Emulator infinite loop [CVE-2021-20255]
170867ansible-tower Job Isolation file access [CVE-2021-20253]
170866ImageMagick resample.c divide by zero
170865ImageMagick webp.c divide by zero
170864ImageMagick visual-effects.c divide by zero
170863ImageMagick resize.c divide by zero
170862ImageMagick jp2.c divide by zero
170861Lenovo PCManager Configuration denial of service [CVE-2020-8357]
170860Lenovo LXCO FFDC Service Log log file [CVE-2020-8356]
170859LibTIFF TIFF2PDF heap-based overflow [CVE-2020-35524]
170858LibTIFF tif_getimage.c integer overflow
170857LibTIFF tif_pixarlog.c memory corruption
170856LibTIFF tif_read.c memory corruption
170855Apache Oozie OozieSharelibCLI temp file [CVE-2020-35451]
170854Athom Homey/Homey Pro hard-coded key [CVE-2020-28952]
170853i-net Clear Reports redirect [CVE-2020-28150]
170852Eclipse Help Subsystem missing authentication [CVE-2020-27225]
170851Time in Status App cross site scripting [CVE-2021-27222]
170850Oryx Embedded CycloneTCP TCP Packet denial of service [CVE-2021-26788]
170849Facebook react-dev-utils getProcessForPort os command injection
170848Elasticsearch Field Level Security information disclosure [CVE-2021-22134]
170847Dell iDRAC8 Host Header injection [CVE-2021-21510]
170846Dell EMC PowerScale OneFS API input validation [CVE-2021-21506]
170845Dell EMC PowerScale OneFS os command injection [CVE-2021-21503]
170844MinIO MC Share Upload URL improper authorization [CVE-2021-21362]
170843gradle-vagrant-plugin Environment information disclosure [CVE-2021-21361]
170842Products.GenericSetup Generic Setup Tool information disclosure
170841Pollbot redirect [CVE-2021-21354]
170840Products.PluggableAuthService redirect [CVE-2021-21337]
170839Frappe Products.PluggableAuthService information disclosure [CVE-2021-21336]
170838SPNEGO HTTP Authentication Module Username improper authentication
170837RATCF Multi-Factor Authentication improper authentication [CVE-2021-21329]
170836GLPI Self-Service Interface authorization [CVE-2021-21326]
170835GLPI cross site scripting [CVE-2021-21325]
170834GLPI resource injection [CVE-2021-21324]
170833IBM DataPower Gateway server-side request forgery [CVE-2020-5014]
170832IBM API Connect Registration Invitation Link information disclosure
170831IBM API Connect Database Replication cleartext transmission [CVE-2020-4695]
170830KeyCloak Client Registration Endpoint missing authentication
170829Maxum Rumpus Folder Name cross site scripting [CVE-2020-27576]
170828Maxum Rumpus Web Administration command injection [CVE-2020-27575]
170827Maxum Rumpus cross-site request forgery [CVE-2020-27574]
170826Dr.Web Security Space Autoupdate signature verification [CVE-2020-23967]
170825Pires go-proxyproto parseVersion1 resource consumption
170824MantisBT session expiration [CVE-2009-20001]
170823NATS nats-server NATS Service denial of service [CVE-2020-28466]
170822Linux Kernel iSCSI Data Structure iscsi_host_get_param information disclosure
170821Linux Kernel Netlink Message scsi_transport_iscsi.c iscsi_if_recv_msg out-of-bounds read
170820Linux Kernel iSCSI Transport scsi_transport_iscsi.c information disclosure
170819AfterLogic Aurora/WebMail Pro settings.xml path traversal
170818Wazuh API files input validation
170817newlib nano_pvalloc heap-based overflow
170816ansi_up ANSI Escape Code cross site scripting [CVE-2021-3377]
170815Deutsche Post Mailoptimizer ZIP Archive path traversal [CVE-2021-28042]
170814OpenSSH ssh-agent double free [CVE-2021-28041]
170813OSSEC XML Tag os_xml.c _ReadElem recursion
170812Xen Dom0/Driver Domain denial of service [CVE-2021-28039]
170811Xen Netback Driver denial of service [CVE-2021-28038]
170810jpeg-xl JXL File coeff_order.cc ReadPermutation heap-based overflow
170809Kentico CMS Blog Module sql injection [CVE-2021-27581]
170808Netgear R7800 FTP certificate validation [CVE-2021-27257]
170807Netgear R7800 apply_save.cgi improper authentication
170806Netgear R7800 Endpoint refresh_status.aspx missing authentication
170805Netgear R7800 Endpoint apply_save.cgi hard-coded key
170804SPIFFE SPIRE Node Attestor authorization [CVE-2021-27099]
170803SPIFFE SPIRE FetchX509SVID RPC certificate validation [CVE-2021-27098]
170802Aruba AirWave Management Platform Web-based Management Interface os command injection
170801Aruba AirWave Management Platform Web-based Management Interface os command injection
170800Aruba AirWave Management Platform Web-based Management Interface xml entity expansion
170799Aruba AirWave Management Platform Web-based Management Interface cross site scripting
170798Aruba AirWave Management Platform Web-based Management Interface cross site scripting
170797Aruba AirWave Management Platform API sql injection [CVE-2021-26966]
170796Aruba AirWave Management Platform sql injection [CVE-2021-26965]
170795Aruba AirWave Management Platform Web-based Management Interface improper authentication
170794Aruba AirWave Management Platform CLI Remote Privilege Escalation
170793Aruba AirWave Management Platform CLI command injection [CVE-2021-26962]
170792Aruba AirWave Management Platform Web-based Management Interface cross-site request forgery
170791Aruba AirWave Management Platform Web-based Management Interface cross-site request forgery
170790SquareBox CatDV Server RMI getConnections improper authentication
170789ZTE H196Q Product information disclosure [CVE-2021-21725]
170788Zoho ManageEngine ADManager Plus cross site scripting [CVE-2020-35594]
170787TOTVS Fluig Lake path traversal [CVE-2020-29134]
170786Secomea GateManager Firmware improper validation of integrity check value
170785Secomea GateManager Web GUI cross-site request forgery [CVE-2020-29030]
170784Secomea GateManager Web GUI cross site scripting [CVE-2020-29029]
170783Secomea GateManager Web GUI cross site scripting [CVE-2020-29028]
170782Secomea SiteManager Web UI access control [CVE-2020-29020]
170781xmlhttprequest/xmlhttprequest-ssl XMLHttpRequest injection [CVE-2020-28502]
170780Zoho ManageEngine Desktop Central Authentication Secret improper authentication
170779Apache Superset Dashboard cross site scripting [CVE-2021-27907]
170778internment Crate memory corruption [CVE-2021-28037]
170777quinn Crate SocketAddrV6 memory corruption
170776stack_dst Crate push_inner uninitialized pointer
170775stack_dst Crate push_inner double free
170774byte_struct Crate deserialization [CVE-2021-28033]
170773nano_arena Crate split_at out-of-bounds write
170772scratchpad Crate move_elements double free
170771truetype Crate take_bytes uninitialized pointer
170770toodee Crate Row Insert uninitialized pointer [CVE-2021-28029]
170769toodee Crate Row Insert double free [CVE-2021-28028]
170768bam Crate bgzip Block Load out-of-bounds write [CVE-2021-28027]
170767SUSE Rancher cross site scripting [CVE-2021-25313]
170766Movable Type Add Asset Screen cross site scripting [CVE-2021-20665]
170765Movable Type Asset Registration Screen cross site scripting [CVE-2021-20664]
170764Movable Type Role Authority Setting cross site scripting [CVE-2021-20663]
170763Zoho ManageEngine Application Control Plus Nginx Configuration Setting access control
170762activerecord-session_store timing discrepancy [CVE-2019-25025]
170761MSI Dragon Center IOCTL Request MsIo64.sys buffer overflow
170760SonLogger POST Request SaveUploadedHotspotLogoFile unrestricted upload
170759SonLogger POST Request saveUser improper authentication
170758SonicWALL Directory Services Connector SSO Agent improper authentication
170757IdentityModel Branca improper authentication [CVE-2020-36255]
170756Sangoma Asterisk SIP Request chan_sip.c improper authentication
170755ytnef File ytnef.c SwapWord heap-based overflow
170754ytnef ytnef.c TNEFSubjectHandler double free
170753Doctor Appointment System admin.php sql injection
170752Yubico yubihsm-shell _send_secure_msg out-of-bounds read
170751NetApp Clustered Data ONTAP SMB Access denial of service [CVE-2021-26989]
170750NetApp Clustered Data ONTAP information disclosure [CVE-2021-26988]
170749AfterLogic Aurora/WebMail Pro DAV DAVServer.php pathname traversal
170748Joomla! Form Filter input validation [CVE-2021-26029]
170747Joomla! ZIP Package path traversal [CVE-2021-26028]
170746Joomla! Category exposure of resource [CVE-2021-26027]
170745Samsung Internet Permission permission [CVE-2021-25348]
170744Samsung Mobile Device Email App improper authentication [CVE-2021-25347]
170743Samsung Mobile Device quram Library memory corruption [CVE-2021-25346]
170742Samsung Mobile Device hwcomposer denial of service [CVE-2021-25345]
170741Samsung Mobile Device knox_custom Service permission [CVE-2021-25344]
170740Samsung Mobile Device memory corruption [CVE-2021-25343]
170739Samsung SMP SDK Provider denial of service [CVE-2021-25342]
170738Samsung S Assistant denial of service [CVE-2021-25341]
170737Samsung Mobile Device Keyboard access control [CVE-2021-25340]
170736Samsung Mobile Devices HArx memory corruption [CVE-2021-25339]
170735Samsung Mobile Devices RKP access control [CVE-2021-25338]
170734Samsung Mobile Devices Clipboard Service access control [CVE-2021-25337]
170733Samsung Mobile Devices NotificationManagerService privileges management
170732Samsung Mobile Devices Lockscreen access control [CVE-2021-25335]
170731Samsung Mobile Devices Application denial of service [CVE-2021-25334]
170730Samsung Pay Mini Application Lockscreen access control [CVE-2021-25333]
170729Samsung Pay Mini Application Lockscreen access control [CVE-2021-25332]
170728Samsung Pay Mini Application Lockscreen access control [CVE-2021-25331]
170727Facebook Zstandard permission [CVE-2021-24032]
170726Facebook Zstandard permission [CVE-2021-24031]
170725html-parse-stringify Regex resource consumption [CVE-2021-23346]
170724total.js set code injection
170723Joomla! com_media path traversal [CVE-2021-23132]
170722Joomla! Template Manager input validation [CVE-2021-23131]
170721Joomla! Feed Field cross site scripting [CVE-2021-23130]
170720Joomla! Message cross site scripting [CVE-2021-23129]
170719Joomla! FOFEncryptRandval random values
170718Joomla! 2FA Secret random values [CVE-2021-23127]
170717Joomla! 2FA Secret rand random values
170716GitLab Community Edition/Enterprise Edition improper authentication
170715GitLab Community Edition/Enterprise Edition Epics Page cross site scripting
170714Fortinet FortiProxy SSL VPN Portal access control [CVE-2021-22128]
170713IBM Engineering Web UI cross site scripting [CVE-2021-20351]
170712IBM Engineering Web UI cross site scripting [CVE-2021-20350]
170711IBM Engineering Web UI cross site scripting [CVE-2021-20340]
170710fs-path removeSync command injection
170709IBM Engineering Web UI cross site scripting [CVE-2020-4975]
170708IBM Engineering Web UI cross site scripting [CVE-2020-4866]
170707IBM Engineering Web UI cross site scripting [CVE-2020-4863]
170706IBM Engineering Web UI cross site scripting [CVE-2020-4857]
170705IBM Engineering Web UI cross site scripting [CVE-2020-4856]
170704CGAL libcgal Nef polygon-parsing SNC_io_parser.h read_sface out-of-bounds read
170703CGAL libcgal Nef polygon-parsing SNC_io_parser.h read_sloop out-of-bounds read
170702Courier Management System sql injection [CVE-2020-35329]
170701Courier Management System cross site scripting [CVE-2020-35328]
170700Courier Management System admin_class.php sql injection
170699CGAL libcgal Nef polygon-parsing SNC_io_parser.h read_sloop out-of-bounds read
170698CGAL libcgal Nef polygon-parsing PM_io_parser.h read_vertex out-of-bounds read
170697Linux Kernel GPU Nouveau Driver DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC null pointer dereference
170696Fortinet FortiGate HTTP Header unknown vulnerability [CVE-2020-15938]
170695Xerox AltaLink C8070 Drive Encryption cleartext storage [CVE-2019-18630]
170694GLPI dropdownConnect.php getItemForItemtype injection
170693QCubed POST Request profile.php deserialization
170692QCubed profile.php sql injection
170691QCubed profile.php cross site scripting
170690ForkCMS Ajax endpoint injection [CVE-2020-24036]
170689Google Chrome PDFium uninitialized pointer [CVE-2021-21190]
170688Google Chrome Payments improper authentication [CVE-2021-21189]
170687Google Chrome Blink use after free [CVE-2021-21188]
170686Google Chrome URL Format unknown vulnerability [CVE-2021-21187]
170685Google Chrome QR Scanning authorization [CVE-2021-21186]
170684Google Chrome Extensions Remote Code Execution [CVE-2021-21185]
170683Google Chrome Performance API origin validation [CVE-2021-21184]
170682Google Chrome Performance API origin validation [CVE-2021-21183]
170681Google Chrome Navigation authorization [CVE-2021-21182]
170680Google Chrome Autofill information disclosure [CVE-2021-21181]
170679Google Chrome OpenJPEG heap-based overflow [CVE-2020-27844]
170678Google Chrome Tab Search use after free [CVE-2021-21180]
170677Google Chrome Network Internals use after free [CVE-2021-21179]
170676Google Chrome Compositing Remote Code Execution [CVE-2021-21178]
170675Google Chrome Autofill improper authentication [CVE-2021-21177]
170674Google Chrome Full Screen Mode Remote Code Execution [CVE-2021-21176]
170673Google Chrome Site Isolation sandbox [CVE-2021-21175]
170672Google Chrome Referrer Remote Code Execution [CVE-2021-21174]
170671Google Chrome Network Internals information disclosure [CVE-2021-21173]
170670Google Chrome File System API Remote Code Execution [CVE-2021-21172]
170669Google Chrome TabStrip/Navigation Remote Code Execution [CVE-2021-21171]
170668Google Chrome Loader Remote Code Execution [CVE-2021-21170]
170667Google Chrome V8 out-of-bounds read [CVE-2021-21169]
170666Google Chrome AppCache Remote Code Execution [CVE-2021-21168]
170665Google Chrome Bookmarks use after free [CVE-2021-21167]
170664Google Chrome Audio memory corruption [CVE-2021-21166]
170663Google Chrome Audio memory corruption [CVE-2021-21165]
170662Google Chrome origin validation [CVE-2021-21164]
170661Google Chrome Reader Mode origin validation [CVE-2021-21163]
170660Google Chrome WebRTC use after free [CVE-2021-21162]
170659Google Chrome TabStrip heap-based overflow [CVE-2021-21161]
170658Google Chrome WebAudio heap-based overflow [CVE-2021-21160]
170657Google Chrome TabStrip heap-based overflow [CVE-2021-21159]
170656Xerox AltaLink C8070 Clone Install unknown vulnerability [CVE-2019-18629]
170655Xerox AltaLink C8070 cleartext transmission [CVE-2019-18628]
170654openark Orchestrator orchestrator.js cross site scripting
170653AdGuard inadequate encryption [CVE-2021-27935]
170652LumisXP API PageControllerXml.jsp xml external entity reference
170651Zabbix CControllerAuthenticationUpdate cross-site request forgery
170650BigProf Online Invoicing System csv injection [CVE-2021-27839]
170649genugate Web Interface improper authentication [CVE-2021-27215]
170648markdown2 Regular Expression denial of service [CVE-2021-26813]
170647Trend Micro Visua Scan API/Advanced Threat Scan Engine File denial of service
170646Node.js DNS Server hosts dns rebinding
170645Node.js File Descriptor Limit resource consumption [CVE-2021-22883]
170644Nextcloud Server Notification cross site scripting [CVE-2021-22878]
170643NextCloud access control [CVE-2021-22877]
170642Fatek FvDesigner Project File out-of-bounds write [CVE-2021-22683]
170641Rockwell Automation Studio 5000 Logix Designer/RSLogix 5000 insufficiently protected credentials
170640Fatek FvDesigner Project File uninitialized pointer [CVE-2021-22670]
170639Fatek FvDesigner Project File stack-based overflow [CVE-2021-22666]
170638Fatek FvDesigner Project File use after free [CVE-2021-22662]
170637Fatek FvDesigner Project File out-of-bounds read [CVE-2021-22638]
170636GitLab Community Edition/Enterprise Edition Branch Log information disclosure
170635GitLab Community Edition/Enterprise Edition Merge Request cross site scripting
170634Bitnami Docker Container .env random values
170633VMware View Planner logupload Web Application improper authorization
170632DataDog API Client Java Temporary Files prepareDownloadFilecreates temp file
170631GLPI Ticket Update cross site scripting [CVE-2021-21314]
170630GLPI common.tabs.php cross site scripting
170629GLPI Document Upload document.form.php cross site scripting
170628IBM Security Verify Bridge external hard-coded credentials [CVE-2021-20442]
170627IBM Security Verify Bridge inadequate encryption [CVE-2021-20441]
170626grub2 Calculation Setparam_prefix out-of-bounds write
170625grub2 Options out-of-bounds write [CVE-2021-20225]
170624Tenable Tenable.sc/Tenable.sc Core Hypertext Preprocessor deserialization
170623Nextcloud Server credentials storage [CVE-2020-8296]
170622zoujingli ThinkAdmin Dashboard hard-coded credentials [CVE-2020-35296]
170621wp-hotel-booking Plugin Cookie class-wphb-sessions.php deserialization
170620Epignosis EfrontPro password recovery [CVE-2020-28597]
170619Slic3r libslic3r AMF File endElement out-of-bounds read
170618grub2 cutmem Command memory corruption [CVE-2020-27779]
170617grub2 Command Line stack-based overflow [CVE-2020-27749]
170616grub2 USB Device Initialization memory corruption [CVE-2020-25647]
170615grub2 rmmod use after free [CVE-2020-25632]
170614Fortinet FortiGate Log Dashboard cross site scripting [CVE-2020-15937]
170613grub2 ACPI Command memory corruption [CVE-2020-14372]
170612WebKit WebKitGTK Web Page AudioSourceProviderGStreamer use after free
170611Advantech WebAccess/SCADA access control [CVE-2020-13554]
170610Pillow ICO Container memory allocation [CVE-2021-27923]
170609Pillow Image memory allocation [CVE-2021-27922]
170608Pillow BLP Container memory allocation [CVE-2021-27921]
170607SuSE Linux Enterprise Server salt improper authentication [CVE-2021-25315]
170606Argo CD SSO Provider cross site scripting [CVE-2021-23347]
170605GitHub Enterprise Server GraphQL API improper authorization [CVE-2021-22863]
170604GitHub Enterprise Server Fork improper authorization [CVE-2021-22862]
170603GitHub Enterprise Server REST API improper authorization [CVE-2021-22861]
170602Oracle Cloud Infrastructure Data Science Notebook Sessions Local Privilege Escalation
170601pug Template injection [CVE-2021-21353]
170600Anuko Time Tracker Password Reset password recovery [CVE-2021-21352]
170599GitHub Enterprise Server Parser Configuration command injection
170598Stormshield Network Security Table Management denial of service
170597e107 CMS usersettings.php protection mechanism
170596Microsoft Exchange Server Remote Privilege Escalation [CVE-2021-27078]
170595Microsoft Exchange Server Remote Code Execution [CVE-2021-27065]
170594Microsoft Exchange Server Remote Code Execution [CVE-2021-26858]
170593Microsoft Exchange Server Remote Code Execution [CVE-2021-26857]
170592Microsoft Exchange Server unknown vulnerability [CVE-2021-26855]
170591Microsoft Exchange Server Remote Privilege Escalation [CVE-2021-26854]
170590Microsoft Exchange Server Remote Privilege Escalation [CVE-2021-26412]
170589Samsung MobileWips App denial of service [CVE-2021-25330]
170588HarmonyOS Filesystem denial of service [CVE-2021-22296]
170587HarmonyOS Component API permission [CVE-2021-22294]
170586GitLab Community Edition/Enterprise Edition Project resource consumption
170585Dell EMC OpenManage Server Administrator path traversal [CVE-2021-21514]
170584Dell EMC OpenManage Server Administrator Distributed Web Server improper authentication
170583GLPI kanban.php cross site scripting
170582GLPI resource injection [CVE-2021-21255]
170581IBM Cloud APM information disclosure [CVE-2020-4726]
170580IBM Cloud APM APM UI cross site scripting [CVE-2020-4725]
170579IBM Cloud APM DNS Query name resolution [CVE-2020-4719]
170578bPanel Administrative Ajax Endpoint aj_*.php sql injection
170577BlackBoard Collaborate Ultra Class Room cross site scripting
170576UltimateKode Neo Billing cross site scripting [CVE-2020-23518]
170575MB Connect Line mymbCONNECT24/mbCONNECT24 GET Parameter redirect.php cross site scripting
170574MB Connect Line mymbCONNECT24/mbCONNECT24 LDAP server-side request forgery
170573MB Connect Line mymbCONNECT24/mbCONNECT24 web2go Session privileges management
170572MB Connect Line mymbCONNECT24/mbCONNECT24 privileges management
170571MISP SharingGroupServer.php access control
170570LG Mobile Device Fingerprint unknown vulnerability [CVE-2021-27901]
170569Apache Ambari Views cross site scripting [CVE-2020-1936]
170568ZendTo Filename cross site scripting [CVE-2021-27888]
170567JPEG XL memory corruption [CVE-2021-27804]
170566Accellion FTA User Endpoint cross site scripting [CVE-2021-27731]
170565Accellion FTA Admin Endpoint argument injection [CVE-2021-27730]
170564Gigaset DX600A Telnet Administrator Service excessive authentication
170563Gigaset DX600A AT Command buffer overflow [CVE-2021-25306]
170562fastify-http-proxy escape output [CVE-2021-21322]
170561fastify-reply-from HTTP Request escape output [CVE-2021-21321]
170560matrix-react-sdk insufficient verification of data authenticity
170559EPrints Latex os command injection [CVE-2021-3342]
170558WPS Hide Login post_password protection mechanism
170557rakibtg Docker Dashboard API terminal.js os command injection
170556YMFE YApi JSON Web Token random values [CVE-2021-27884]
170555Veritas Backup Exec TLS Communication improper authentication
170554Veritas Backup Exec SHA Authentication improper authentication
170553Veritas Backup Exec TLS Communication improper authentication
170552Doctor Appointment System contactus.php cross site scripting
170551Doctor Appointment System contactus.php cross site scripting
170550EPrints toolbox os command injection
170549EPrints JSON phrase xml external entity reference
170548EPrints dataset_dictionary cross site scripting
170547EPrints Latex os command injection [CVE-2021-26476]
170546EPrints cal cross site scripting
170545object-collider Prototype code injection [CVE-2021-25914]
170544ONLYOFFICE DocumentServer Server Module Remote Privilege Escalation
170543ONLYOFFICE DocumentServer Core Module heap-based overflow [CVE-2021-25832]
170542ONLYOFFICE DocumentServer Core Module Remote Privilege Escalation
170541ONLYOFFICE DocumentServer Core Module Remote Privilege Escalation
170540ONLYOFFICE DocumentServer Code Module denial of service [CVE-2021-25829]
170539VMware Spring-integration-zip Incomplete Fix CVE-2018-1263 path traversal
170538Dell EMC SRS Policy Manager XML Parser xml external entity reference
170537Dell EMC SourceOne cross site scripting [CVE-2021-21515]
170536Apache AsterixDB UDF Deployment path traversal [CVE-2020-9479]
170535MongoDB Regex denial of service [CVE-2020-7929]
170534Crowd ResourceDownloadRewriteRule path traversal
170533MongoDB Generic Explain Command denial of service [CVE-2018-25004]
170532Apache Tomcat Incomplete Fix CVE-2020-9484 deserialization [CVE-2021-25329]
170531Apache Tomcat h2c Connection information disclosure [CVE-2021-25122]
170530Dataiku DSS Project access control [CVE-2021-27225]
170529SerComm Combo VD625 HTTP Header injection [CVE-2021-27132]
170528SaltStack Salt SSH Client os command injection [CVE-2021-3197]
170527i-doit cross site scripting [CVE-2021-3151]
170526SaltStack Salt API thin.py salt.utils.thin.gen_thin command injection
170525SaltStack Salt eauth Token session expiration [CVE-2021-3144]
170524wpa_supplicant P2P Provision Discovery Request p2p_pd.c denial of service
170523Zint Barcode Generator C API upcean.c ean_leading_zeroes buffer overflow
170522Visualware MyConnection Server Web Service unrestricted upload
170521Synology DiskStation Manager faad path traversal [CVE-2021-26567]
170520Synology DiskStation Manager synorelayd insertion of sensitive information into sent data
170519Synology DiskStation Manager HTTP Session cleartext transmission
170518Synology DiskStation Manager HTTP Session channel accessible
170517Synology DiskStation Manager Kernel Module access control [CVE-2021-26563]
170516Synology DiskStation Manager HTTP Header out-of-bounds write
170515Synology DiskStation Manager HTTP Header stack-based overflow
170514Synology DiskStation Manager HTTP Session channel accessible
170513SaltStack Salt salt.modules.cmdmod log file
170512SaltStack Salt Jinja Renderer injection [CVE-2021-25283]
170511SaltStack Salt salt.wheel.pillar_roots.write pathname traversal
170510SaltStack Salt salt-api improper authentication [CVE-2021-25281]
170509Redis integer overflow [CVE-2021-21309]
170508PrestaShop Soft Logout System improper authentication [CVE-2021-21308]
170507PrestaShop Admin Panel csv injection [CVE-2021-21302]
170506Google Android cameraisp out-of-bounds write [CVE-2021-0406]
170505Google Android Performance Driver out-of-bounds write [CVE-2021-0405]
170504Google Android mobile_log_d information disclosure [CVE-2021-0404]
170503Google Android netdiag information disclosure [CVE-2021-0403]
170502Google Android jpeg out-of-bounds write [CVE-2021-0402]
170501Google Android vow memory corruption [CVE-2021-0401]
170500Google Android vpu memory corruption [CVE-2021-0367]
170499Google Android vpu memory corruption [CVE-2021-0366]
170498Zenphoto CMS Uploader Plugin unrestricted upload [CVE-2020-36079]
170497SaltStack Salt certificate validation [CVE-2020-35662]
170496SaltStack Salt certificate validation [CVE-2020-28972]
170495SaltStack Salt Process Name command injection [CVE-2020-28243]
170494GNU C Library Mutlibyte iconv infinite loop
170493Eclipse Jetty Accept Header algorithmic complexity [CVE-2020-27223]
170492Scytl sVote X-Forwarded-For Header injection [CVE-2019-25023]
170491Scytl sVote Event Alias Runtime.getRuntime.exec code injection
170490Scytl sVote Database Manager hard-coded password [CVE-2019-25021]
170489Scytl sVote sdm-ws-rest API preconfiguration improper authentication
170488OpenText Content Server cross site scripting [CVE-2021-3010]
170487LMA ISIDA Retriever sql injection [CVE-2021-26904]
170486LMA ISIDA Retriever cross site scripting [CVE-2021-26903]
170485Mozilla Firefox memory corruption [CVE-2021-23979]
170484Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2021-23978]
170483Mozilla Firefox memory corruption [CVE-2021-23965]
170482Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2021-23964]
170481thecodingmachine Gotenberg html server-side request forgery
170480ProSoft ICX35-HWC-A/ICX35-HWC-E Module Webpage access control
170479Node-Red Projects API path traversal [CVE-2021-21298]
170478Node-Red Admin API dynamically-determined object attributes [CVE-2021-21297]
170477Synapse .well-known resource consumption
170476Synapse redirect [CVE-2021-21273]
170475ownCloud Client DLL injection [CVE-2020-28646]
170474best it Amazon Pay Plugin information disclosure [CVE-2020-28199]
170473Kaspersky Rescue Disk/Endpoint Security UEFI Module improper authentication
170472ABB AC500 V2 Web Visualization resource consumption [CVE-2020-24686]
170471Bosch DIVAR IP 5000 access control [CVE-2019-11684]
170470Keylime Agent/Registrar signature verification [CVE-2021-3406]
170469Custom Global Variables Plugin Form Field cross site scripting
170468Triconsole Datepicker Calendar calendar_form.php cross site scripting
170467Microsoft Edge unknown vulnerability [CVE-2021-24113]
170466Mozilla Firefox toctou [CVE-2021-23977]
170465Mozilla Firefox Fullscreen improper restriction of rendered ui layers
170464Mozilla Firefox Developer Page allocation of resources [CVE-2021-23975]
170463Mozilla Firefox DOMParser API cross site scripting [CVE-2021-23974]
170462Mozilla Firefox/Firefox ESR/Thunderbird Decoding unknown vulnerability
170461Mozilla Firefox HTTP Authentication improper restriction of rendered ui layers
170460Mozilla Firefox Referer Policy information disclosure [CVE-2021-23971]
170459Mozilla Firefox Shared Jump Table assertion [CVE-2021-23970]
170458Mozilla Firefox/Firefox ESR/Thunderbird Content Security Policy information disclosure
170457Mozilla Firefox/Firefox ESR/Thunderbird Content Security Policy unknown vulnerability
170456Mozilla Firefox WebRTC Share permission [CVE-2021-23963]
170455Mozilla Firefox RowCountChanged denial of service
170454Mozilla Firefox information disclosure [CVE-2021-23961]
170453Mozilla Firefox/Firefox ESR/Thunderbird Garbage Collector denial of service
170452Mozilla Firefox Error Page cross site scripting [CVE-2021-23959]
170451Mozilla Firefox Screen Sharing information disclosure [CVE-2021-23958]
170450Mozilla Firefox intent Scheme sandbox [CVE-2021-23957]
170449Mozilla Firefox File Picker unrestricted upload [CVE-2021-23956]
170448Mozilla Firefox Pointer Lock clickjacking [CVE-2021-23955]
170447Mozilla Firefox/Firefox ESR/Thunderbird Javascript Switch memory corruption
170446Mozilla Firefox/Firefox ESR/Thunderbird PDF Reader unknown vulnerability
170445ZTE ZXR10 8900E memory leak [CVE-2021-21724]
170444aiohttp redirect [CVE-2021-21330]
170443Vapor Bootstrap denial of service [CVE-2021-21328]
170442mongo-java-driver certificate validation [CVE-2021-20328]
170441mongodb-client-encryption certificate validation [CVE-2021-20327]
170440QEMU vmxnet3 NIC Emulator integer overflow [CVE-2021-20203]
170439restify-paginate HTTP Host Header denial of service [CVE-2020-27543]
170438tpm2-tss Initialization initialization [CVE-2020-24455]
170437gopeak masterlab Upgrade.php server-side request forgery
170436Microsoft Windows Extended Protection for Authentication improper authentication
170435Micro Focus Solutions Business Manager information disclosure
170434Micro Focus Solutions Business Manager session fixiation [CVE-2019-18946]
170433Micro Focus Solutions Business Manager access control [CVE-2019-18945]
170432Micro Focus Solutions Business Manager cross site scriting [CVE-2019-18944]
170431Micro Focus Solutions Business Manager xml external entity reference
170430Micro Focus Solutions Business Manager cross site scripting [CVE-2019-18942]
170429Trojan.Win32.Gofot.htx SkinH.dll buffer overflow
170428Backdoor.Win32.Wollf.h Service Port 7614 wrm.exe improper authentication
170427Backdoor.Win32.Delf.adag FTP Server hard-coded credentials
170426Backdoor.Win32.Agent.xw HTTP GET Request null pointer dereference
170425Backdoor.Win32.Agent.xs Recycler permission
170424Backdoor.Win32.DarkKomet.irv Windupdt permission
170423Trojan.Win32.Pincav.cmfl Windupdt permission
170422Trojan.Win32.Pluder.o z_Drivers permission
170421Trojan-Proxy.Win32.Daemonize.i Service Port 5823 memory corruption
170420Backdoor.Win32.Ketch.h Web Server buffer overflow
170419Backdoor.Win32.Inject.tyq hotfix permission
170418Backdoor.Win32.Bionet.10 Service Port 12348 missing authentication
170417Backdoor.Win32.DarkKomet.apcc msdcsc.exe permission
170416Backdoor.Win32.DarkKomet.bhfh permission
170415Backdoor.Win32.Agent.aak HTTP Service Port 8080 buffer overflow
170414Backdoor.Win32.Agent.aak HTTP Server cross-site request forgery
170413Backdoor.Win32.Agent.aak Web Service Port 8080 hard-coded credentials
170412Backdoor.Win32.Burbul.b Service Port 2121 missing authentication
170411Backdoor.Win32.Indexer.a Service Port 47885 denial of service
170410Backdoor.Win32.Indexer.a Service Port 47885 hard-coded credentials
170409Backdoor.Win32.Bifrose.ahvb Temp permission
170408Backdoor.Win32.Azbreg.aant RECYCLER permission
170407Backdoor.Win32.Cabrotor.21 ROBADO permission
170406Trojan-Spy.Win32.WinSpy.wlt Service Port 443 dlink.exe permission
170405Backdoor.Win32.Cafeini.08.b Service Port 51966 improper authentication
170404Backdoor.Win32.Backlash.101 Service Port 11831 d3d8thk.exe improper authentication
170403Nagios XI Web System graphtemplates.php code injection
170402Adobe Bridge TTF File out-of-bounds write [CVE-2021-21066]
170401Adobe Bridge TTF File out-of-bounds write [CVE-2021-21065]
170400Magento UPWARD-php/UPWARD Connector YAML File path traversal
170399openSUSE cyrus-sasl temp file [CVE-2020-8032]
170398Dropbear Filename scp.c unknown vulnerability
170397comrak Crate cross site scripting [CVE-2021-27671]
170396Appspace jsonprequest server-side request forgery
170395Cisco AnyConnect Secure Mobility Client Interprocess Communication denial of service
170394Cisco Application Services Engine missing authentication [CVE-2021-1396]
170393Cisco Application Services Engine missing authentication [CVE-2021-1393]
170392Cisco ACI Multi-Site Orchestrator API Endpoint privileges management
170391Cisco NX-OS IPv6 memory leak [CVE-2021-1387]
170390Cisco FXOS/NX-OS UDLD out-of-bounds write [CVE-2021-1368]
170389Cisco NX-OS Protocol Independent Multicast denial of service
170388Cisco NX-OS Service Port 9075 file access [CVE-2021-1361]
170387Cisco Nexus 9000 SFP Interface access control [CVE-2021-1231]
170386Cisco Nexus 9000 BGP UPDATE Message denial of service [CVE-2021-1230]
170385Cisco NX-OS ICMPv6 memory leak [CVE-2021-1229]
170384Cisco Nexus 9000 ACI Mode access control [CVE-2021-1228]
170383Cisco NX-OS NX-API cross-site request forgery [CVE-2021-1227]
170382LightCMS SensitiveWords cross site scripting
170381GNU C Library nscd netgroupcache.c double free
170380Advantech BB-ESWGP506-2SFP-T hard-coded credentials [CVE-2021-22667]
170379OpenSLP Service Port 427 heap-based overflow [CVE-2021-21974]
170378VMware vCenter Server/Cloud Foundation vSphere Client server-side request forgery
170377VMware vCenter Server/Cloud Foundation vSphere Client Remote Privilege Escalation
170376Artifact Repository Parameter Plugin cross site scripting [CVE-2021-21622]
170375Jenkins Support Core Plugin insertion of sensitive information into sent data
170374Claim Plugin cross-site request forgery [CVE-2021-21620]
170373Claim Plugin Display Name cross site scripting [CVE-2021-21619]
170372Repository Connector Plugin Permission cross site scripting [CVE-2021-21618]
170371Configuration Slicing Plugin cross-site request forgery [CVE-2021-21617]
170370Active Choices Plugin cross site scripting [CVE-2021-21616]
170369Helpcom hard-coded key [CVE-2020-7846]
170368Voiceye WSActiveBridgeES stack-based overflow [CVE-2020-7836]
170367IBM MQ Message denial of service [CVE-2020-4931]
170366Openscad STL File import_stl.cc import_stl stack-based overflow
170365Eclipse Theia Markdown cross site scripting [CVE-2020-27224]
170364CoolKit eWeLink Quick Pairing Mode inadequate encryption [CVE-2020-12702]
170363Apache XmlGraphics Commons XMPParser server-side request forgery
170362Apache Batik NodePickerPanel server-side request forgery [CVE-2020-11987]
170361Contec SolarView Compact SV-CPT-MC310 improper authentication
170360Contec SolarView Compact SV-CPT-MC310 pathname traversal [CVE-2021-20661]
170359Contec SolarView Compact SV-CPT-MC310 cross site scripting [CVE-2021-20660]
170358Contec SolarView Compact SV-CPT-MC310 PHP Script unrestricted upload
170357Contec SolarView Compact SV-CPT-MC310 Web Server os command injection
170356Contec SolarView Compact SV-CPT-MC310 access control [CVE-2021-20657]
170355Contec SolarView Compact SV-CPT-MC310 information disclosure
170354libcaca canvas.c caca_resize buffer overflow
170353Artifex MuPDF memory corruption [CVE-2021-3407]
170352libEBML ReadData heap-based overflow
170351Directus Password Reset information disclosure [CVE-2021-27583]
170350Jasper jp2_dec.c jp2_decode null pointer dereference
170349Aruba ClearPass Policy Manager Web-based Management Interface command injection
170348Aruba ClearPass Policy Manager Web-based Management Interface command injection
170347Aruba ClearPass Policy Manager OnGuard privileges management
170346Directus api-aa information disclosure [CVE-2021-26595]
170345Directus PATCH Method privileges management [CVE-2021-26594]
170344Directus API {id} information disclosure
170343UniFi Protect Controller denial of service [CVE-2021-22882]
170342VMware Spring Security security check for standard [CVE-2021-22112]
170341Brave Web Browser Proxy information disclosure [CVE-2021-21323]
170340Red Hat Satellite BMC Interface information disclosure [CVE-2021-20256]
170339Red Hat 3scale API Management Platform Backend resource consumption
170338mbsync Mailbox Name Validator path traversal [CVE-2021-20247]
170337Linux Kernel BPF __cgroup_bpf_run_filter_getsockopt heap-based overflow
170336Openshift ose-docker-builder file access [CVE-2021-20182]
170335Nextcloud Deck resource injection [CVE-2020-8297]
170334Aruba ClearPass Policy Manager OnGuard buffer overflow [CVE-2020-7120]
170333SoftMaker Office PlanMaker Document heap-based overflow [CVE-2020-28587]
170332Undertow AJP Connector denial of service [CVE-2020-27782]
170331KACO New Energy XP100U information disclosure [CVE-2021-3252]
170330MITREid Connect OpenID Connect Server OAuthConfirmationController.java improper authorization
170329Snow Inventory Agent Configuration privileges management [CVE-2021-27579]
170328Polaris Office PDF File PolarisOffice.exe divide by zero
170327Jasper jp2_decode out-of-bounds read
170326Aruba ClearPass Policy Manager Web-based Management Interface sql injection
170325Aruba ClearPass Policy Manager Web-based Management Interface sql injection
170324Aruba ClearPass Policy Manager Web-based Management Interface command injection
170323Aruba ClearPass Policy Manager Web-based Management Interface command injection
170322Aruba ClearPass Policy Manager cross site scripting [CVE-2021-26682]
170321Aruba ClearPass Policy Manager command injection [CVE-2021-26681]
170320Aruba ClearPass Policy Manager Web-based Management Interface cross site scripting
170319Collabora Online loolforkit privileges management [CVE-2021-25630]
170318Luxion KeyShot Extraction path traversal [CVE-2021-22651]
170317VMware Spring Cloud Netflix Zuul Sensitive Headers authorization
170316stunnel certificate validation [CVE-2021-20230]
170315PostgreSQL Query authorization [CVE-2021-20229]
170314Linux Kernel Object io_uring use after free
170313Undertow HTTP Request 1.x request smuggling
170312Openshift Installer Kublet missing authentication [CVE-2021-20198]
170311ipTIME NAS-I Bulletin Manage unrestricted upload [CVE-2020-7847]
170310IBM Planning Analytics information disclosure [CVE-2020-4953]
170309theme-core utils.js command injection [CVE-2020-28432]
170308wc-cmd index.js command injection
170307nuance-gulp-build-common index.js command injection
170306geojson2kml index.js command injection
170305fastadmin cross site scripting [CVE-2020-26609]
170304Advantech WebAccess/SCADA WADashboard external reference [CVE-2020-25161]
170303WECON LeviStudioU Project File buffer overflow [CVE-2020-16243]
170302Keycloak HTTP Header authentication bypass [CVE-2020-14359]
170301Rendertron Screenshot server-side request forgery [CVE-2020-8902]
170300NanoHTTPD HTTP GET RouterNanoHTTPD.java GeneralHandler cross site scripting
170299netplex json-smart-v1/json-smart-v2 unusual condition [CVE-2021-27568]
170298CIRA Canadian Shield App certificate validation [CVE-2021-27189]
170297Nozomi Guardian/CMC Web GUI path traversal [CVE-2021-26725]
170296Nozomi Guardian/CMC Web GUI os command injection [CVE-2021-26724]
170295Atlassian JIRA Server for Slack Plugin Endpoint injection [CVE-2021-26068]
170294Keybase Desktop Client Cache information disclosure [CVE-2021-23827]
170293Luxion KeyShot Project File null pointer dereference [CVE-2021-22649]
170292Luxion KeyShot Project File out-of-bounds write [CVE-2021-22647]
170291Luxion KeyShot Network Share dll Remote Privilege Escalation
170290Luxion KeyShot Project File out-of-bounds read [CVE-2021-22643]
170289Google Chrome Web Sockets use after free [CVE-2021-21157]
170288Google Chrome V8 heap-based overflow [CVE-2021-21156]
170287Google Chrome Tab Strip heap-based overflow [CVE-2021-21155]
170286Google Chrome Tab Strip heap-based overflow [CVE-2021-21154]
170285Google Chrome GPU Process stack-based overflow [CVE-2021-21153]
170284Google Chrome Media heap-based overflow [CVE-2021-21152]
170283Google Chrome Payments use after free [CVE-2021-21151]
170282Google Chrome HTML Page use after free [CVE-2021-21150]
170281Google Chrome Data Transfer buffer overflow [CVE-2021-21149]
170280Atlassian atlassian-gadgets HTTP Request MessageBundleWhiteList server-side request forgery
170279Gist Chatbot Chatbox cross site scripting [CVE-2020-35852]
170278Atlassian JIRA Server/Data Center CachingResourceDownloadRewriteRule information disclosure
170277Atlassian Confluence Server/Confluence Data Center ConfluenceResourceDownloadRewriteRule information disclosure
170276libxls XLS Cell Parser xls2csv.c null pointer dereference
170275ImageMagick quantum-private.h integer overflow
170274FontForge SFD File Parser out-of-bounds write [CVE-2020-25690]
170273YITH WooCommerce Gift Cards Premium Plugin Shopping Cart php unrestricted upload
170272Appspace Network Tab cross site scripting [CVE-2021-27564]
170271Monica Contact Page cross site scripting [CVE-2021-27559]
170270Genymotion Desktop Clipboard information disclosure [CVE-2021-27549] [Disputed]
170269Monica Contact Page cross site scripting [CVE-2021-27371]
170268Monica Contact Page cross site scripting [CVE-2021-27370]
170267Monica Contact Page cross site scripting [CVE-2021-27369]
170266Monica Contact Page cross site scripting [CVE-2021-27368]
170265MyBB MyCode cross site scripting [CVE-2021-27279]
170264Shinobi auth.js names access control
170263Yz1 Filename buffer overflow [CVE-2020-24175]
170262Astrid Tasks VoiceCommandActivity permission [CVE-2020-22475]
170261webERP ManualContents.php file inclusion
170260Inspur ClusterEngine Control Server command injection [CVE-2020-21224]
170259Automated Logic WebCTRL GET Request failuremessage.jsp cross site scripting
170258Qualcomm Snapdragon Auto Hypervisor out-of-bounds read [CVE-2020-3664]
170257Qualcomm Snapdragon Auto WLAN module denial of service [CVE-2020-11297]
170256Qualcomm Snapdragon Auto NOA IE integer overflow [CVE-2020-11296]
170255Qualcomm Snapdragon Auto RTT Frame information disclosure [CVE-2020-11287]
170254Qualcomm Snapdragon Auto USB Control Transfer null pointer dereference
170253Qualcomm Snapdragon Auto MKV Clip buffer overflow [CVE-2020-11283]
170252Qualcomm Snapdragon Auto kgsl Driver access control [CVE-2020-11282]
170251Qualcomm Snapdragon Auto RTT Frame information disclosure [CVE-2020-11281]
170250Qualcomm Snapdragon Auto FTMR denial of service [CVE-2020-11280]
170249Qualcomm Snapdragon Auto Host WMI Command denial of service [CVE-2020-11278]
170248Qualcomm Snapdragon Compute RPC Message race condition [CVE-2020-11277]
170247Qualcomm Snapdragon Auto P2P IE buffer overflow [CVE-2020-11276]
170246Qualcomm Snapdragon Auto Beacon Frame buffer overflow [CVE-2020-11275]
170245Qualcomm Snapdragon Auto Hash Table use after free [CVE-2020-11272]
170244Qualcomm Snapdragon Auto Global Control Element out-of-bounds read
170243Qualcomm Snapdragon Auto RTT Responder denial of service [CVE-2020-11270]
170242Qualcomm Snapdragon Auto EAPOL Frame memory corruption [CVE-2020-11269]
170241Qualcomm Snapdragon Auto Video Driver buffer overflow [CVE-2020-11253]
170240Qualcomm Snapdragon Auto Camera Driver array index [CVE-2020-11223]
170239Qualcomm Snapdragon Auto Sub-System memory corruption [CVE-2020-11204]
170238Qualcomm Snapdragon Auto GSM/WCDMA stack-based overflow [CVE-2020-11203]
170237Qualcomm Snapdragon Auto TZ information disclosure [CVE-2020-11198]
170236Qualcomm Snapdragon Auto out-of-bounds write [CVE-2020-11195]
170235Qualcomm Snapdragon Auto out-of-bounds read [CVE-2020-11194]
170234Qualcomm Snapdragon Auto BSI Module memory corruption [CVE-2020-11187]
170233Qualcomm Snapdragon Auto SPC unknown vulnerability [CVE-2020-11177]
170232Qualcomm Snapdragon Auto Music Playback out-of-bounds read [CVE-2020-11170]
170231Qualcomm Snapdragon Auto IKEv2 Parameter Update buffer overflow
170230Qualcomm Snapdragon Compute Audio Module use after free [CVE-2020-11147]
170229Netshield NANO 25 C Library manual_ping.cgi os command injection
170228URI.js Backslash path traversal [CVE-2021-27516]
170227url-parse Backslash path traversal [CVE-2021-27515]
170226EyesOfNetwork improper authentication [CVE-2021-27514]
170225EyesOfNetwork admin_ITSM xml.php unrestricted upload
170224Smarty Function code injection [CVE-2021-26120]
170223Smarty Sandbox Mode $smarty.template_object sandbox
170222Botan unknown vulnerability [CVE-2021-24115]
170221Django ASGI channels.http.AsgiHandler information disclosure
170220Acronis Cyber Protect Console cross site scripting [CVE-2020-35664]
170219MantisBT Custom Field manage_custom_field_update.php helper_ensure_confirmed unknown vulnerability
170218Acronis Cyber Protect Notification Service unknown vulnerability
170217OpenEnergyMonitor EmonCMS schedule.php cross site scripting
170216Digium Asterisk WebRTC Client res_rtp_asterisk.c stack-based overflow
170215BloodHound GenericAll.jsx command injection
170214Webware WebDesktop server-side request forgery [CVE-2021-3204]
170213slashify Package Localhost redirect [CVE-2021-3189]
170212Visualware MyConnection Server Reports access control [CVE-2021-27509]
170211Telegram App Terminate Session session expiration [CVE-2021-27351]
170210Yeastar NeoGate TG400 pathname traversal [CVE-2021-27328]
170209Zoho ManageEngine ADSelfService Plus Administrative Interface server-side request forgery
170208Sangoma Asterisk WebRTC Client res_rtp_asterisk.c stack-based overflow
170207Livy Server Session Name cross site scripting [CVE-2021-26544]
170206docsify cross site scripting [CVE-2021-23342]
170205Schneider Electric PowerLogic PM800 Network Traffic cleartext transmission
170204Schneider Electric PowerLogic PM800 Network Traffic cleartext transmission
170203Schneider Electric PowerLogic PM800 HTTP Web Interface cross-site request forgery
170202Dell EMC PowerProtect Cyber Recovery information disclosure [CVE-2021-21512]
170201Mitsubishi FA Engineering Software buffer overflow [CVE-2021-20588]
170200Mitsubishi FA Engineering Software buffer overflow [CVE-2021-20587]
170199Johnson Controls Metasys Reporting Engine Web Services path traversal
170198Linux Kernel Socket Connection sco.c sco_sock_getsockopt null pointer dereference
170197png-img PNG File InitStorage_ integer overflow
170196SmartStoreNET create cross-site request forgery
170195Mailtrain campaigns.js sql injection [CVE-2020-24617]
170194TweetStream Library Eventmachine certificate validation [CVE-2020-24393]
170193voloko twitter-stream certificate validation [CVE-2020-24392]
170192Sytech XL Reporter access control [CVE-2020-13549]
170191Alfresco Enterprise Content Management FreeMarker Template injection
170190Jinjava information disclosure [CVE-2020-12668]
170189Intel Server Boards/Server Systems/Compute Modules BMC Firmware buffer overflow
170188ModernFlow Search Screen/Profile Screen improper authentication
170187Apache MyFaces Core cross-site request forgery [CVE-2021-26296]
170186ownCloud Server Request information disclosure [CVE-2020-36252]
170185ownCloud Server Share denial of service [CVE-2020-36251]
170184ownCloud App Lock Protection time protection mechanism
170183ownCloud Server File Type information disclosure [CVE-2020-36249]
170182ownCloud App Backup Archive information disclosure [CVE-2020-36248]
170181Open OnDemand cross-site request forgery [CVE-2020-36247]
170180tribe29 Checkmk local Local Privilege Escalation
170179ownCloud Preview improper authentication [CVE-2020-10254]
170178ownCloud external server-side request forgery
170177progfay scrapbox-parser Regular Expression denial of service
170176Askey RTF8115VW HTTP Header injection [CVE-2021-27404]
170175Askey RTF8115VW te_acceso_router.cgi cross site scripting
170174Chamilo agenda_list.php cross site scripting
170173Amaze File Manager symlink [CVE-2020-36246]
170172OpenRepeater ajax_system.php os command injection
170171PressBooks cross site scripting [CVE-2021-3271]
170170Digium Asterisk SDP Negotiation res_pjsip_session.c denial of service
170169Netis WF2780/WF2411 Ping Command os command injection [CVE-2021-26747]
170168Sangoma Asterisk T.38 Negotiaton denial of service [CVE-2021-26717]
170167Sangoma Asterisk SRTP Packet res_srtp.c access control
170166Atlassian Bitbucket Server/Data Center Installer access control
170165Sangoma Asterisk SIP 181 Response res_pjsip_diversion.c buffer overflow
170164Pi-hole Options Header cross site scripting [CVE-2020-35592]
170163Pi-Hole Session Cookie session fixiation [CVE-2020-35591]
170162FinalWire AIDA64 Engineer SEH buffer overflow [CVE-2020-19513]
170161Xen IOMMU Update memory corruption [CVE-2021-27379]
170160KollectApps deserialization [CVE-2021-27335]
170159Friendica parse_url server-side request forgery
170158Opencast authorization [CVE-2021-21318]
170157GE Digital HMI-SCADA iFIX Registry access control [CVE-2019-18243]
170156prismjs prism-asciidoc/prism-rest/prism-tap/prism-eiffel resource consumption
170155Pimcore CustomReportController.php downloadCsvAction file inclusion
170154IBM Maximo for Civil Infrastructure Web UI cross site scripting
170153IBM Maximo for Civil Infrastructure information disclosure [CVE-2021-20445]
170152IBM Maximo for Civil Infrastructure Web UI cross site scripting
170151IBM Maximo for Civil Infrastructure Library unknown vulnerability
170150IBM WebSphere Application Server path traversal [CVE-2021-20354]
170149IBM Jazz Reporting Service Web UI cross site scripting [CVE-2020-4933]
170148Endalia Selection Portal Identification Number resource injection
170147DJI Mavic 2 Firmware Upgrade dji_sys command injection
170146merge Package Prototype _recursiveMerge code injection
170145three Package Color denial of service [CVE-2020-28496]
170144FasterXML jackson-dataformat-cbor memory corruption [CVE-2020-28491]
170143async-git command injection [CVE-2020-28490]
170142ReportLab server-side request forgery [CVE-2020-28463]
170141GE Digital HMI-SCADA iFIX Section Object access control [CVE-2019-18255]
170140rand_core Crate read_u64_into entropy
170139yottadb Crate ydb_subscript_prev_st use after free
170138nb-connect Crate SocketAddrV6 memory corruption
170137Traefik IFRAME origin validation [CVE-2021-27375]
170136Doctor Appointment System search_result.php sql injection
170135OpenNMS Meridian/Horizon/Newts Access Control access control
170134VertiGIS WebOffice access control [CVE-2021-27374]
170133Bolt FileEditController.php pathname traversal
170132Das U-Boot Boot Loader Local Privilege Escalation [CVE-2021-27138]
170131Das U-Boot Boot Loader Local Privilege Escalation [CVE-2021-27097]
170130Canary Mail IMAP MCIMAPSession.cpp certificate validation
170129avashi avahi-daemon-check-dns.sh symlink
170128Tesla SolarCity Solar Monitoring Gateway Digi ConnectPort X2e hard-coded credentials
170127ISC BIND GSS-TSIG denial of service [CVE-2020-8625]
170126GramAddict UIAutomator2/ATX-Agent code injection [CVE-2020-36245]
170125Agora Video SDK Network Traffic missing encryption [CVE-2020-25605]
170124Advantech WebAccess/SCADA COM Server access control [CVE-2020-13555]
170123Advantech WebAccess/SCADA Loaded Module access control [CVE-2020-13553]
170122Advantech WebAccess/SCADA Services access control [CVE-2020-13552]
170121Advantech WebAccess/SCADA access control [CVE-2020-13551]
170120Advantech WebAccess/SCADA HTTP Request information disclosure
170119Digi ConnectPort X2e Python S50dropbear.sh symlink
170118WPG Plugin memory corruption [CVE-2021-27362]
170117WPG Plugin memory corruption [CVE-2021-27224]
170116PHPGurukul Car Rental Project changeimage1.php unrestricted upload
170115Apache Airflow Lineage Endpoint improper authentication [CVE-2021-26697]
170114Apache Airflow Configurations Endpoint airflow.cfg access control
170113Baby Care System posts.php unrestricted upload
170112Baby Care System contentsectionpage.php sql injection
170111Feiteng HR Portal deserialization [CVE-2021-22855]
IDTitleNessusOpenVASSnortSuricataTippingPoint
170110Feiteng HR Portal sql injection [CVE-2021-22854]
170109Feiteng HR Portal access control [CVE-2021-22853]
170108Wireshark USB HID Dissector denial of service [CVE-2021-22174]
170107Wireshark USB HID Dissector denial of service [CVE-2021-22173]
170106Cisco Identity Services Engine Admin Portal privileges assignment
170105Cisco Identity Services Engine privileges assignment [CVE-2021-1412]
170104Cisco StarOS SSH Service resource consumption [CVE-2021-1378]
170103Cisco Webex Meetings Desktop App information disclosure [CVE-2021-1372]
170102Cisco AnyConnect Secure Mobility Client Interprocess Communication uncontrolled search path
170101Cisco Webex Meetings Web-based Interface cross site scriting
170100Intel SOC Driver Package for STK1A32SC permission [CVE-2021-0109]
170099Intel RealSense DCM permission [CVE-2020-8765]
170098Intel SSD Toolbox permission [CVE-2020-8701]
170097Intel Graphics Drivers access control [CVE-2020-8678]
170096uPrism.io CURIX URL input validation [CVE-2020-7849]
170095EFM ipTIME C200 IP Camera GET Request os command injection [CVE-2020-7848]
170094Online Book Store detail.php sql injection
170093Seat-Reservation-System index.php sql injection
17009274cms ConfigController.class.php permission
170091Intel 700-Series of Ethernet Controller denial of service [CVE-2020-24505]
170090Intel Ethernet E810 Adapter Driver resource consumption [CVE-2020-24504]
170089Intel Ethernet E810 Adapter Driver information disclosure [CVE-2020-24503]
170088Intel Ethernet E810 Adapter Driver denial of service [CVE-2020-24502]
170087Intel E810 Ethernet Controller <=1.4.1.12 denial of service [CVE-2020-24501]
170086Intel E810 Ethernet Controller buffer overflow [CVE-2020-24500]
170085Intel E810 Ethernet Controller buffer overflow [CVE-2020-24498]
170084Intel E810 Ethernet Controller denial of service [CVE-2020-24497]
170083Intel 722 Ethernet Controller denial of service [CVE-2020-24496]
170082Intel 700-Series of Ethernet Controller denial of service [CVE-2020-24495]
170081Intel 722 Ethernet Controller denial of service [CVE-2020-24494]
170080Intel 700-Series of Ethernet Controller denial of service [CVE-2020-24493]
170079Intel 722 Ethernet Controller denial of service [CVE-2020-24492]
170078Intel CPU Debug Message information disclosure [CVE-2020-24491]
170077Intel Trace Analyzer and Collector uncontrolled search path [CVE-2020-24485]
170076Intel 7360 Cell Modem denial of service [CVE-2020-24482]
170075Intel Quartus Prime Pro/Quartus Prime Standard Edition permission
170074Intel XTU out-of-bounds write [CVE-2020-24480]
170073Intel Graphics Driver out-of-bounds write [CVE-2020-24462]
170072Intel PROSet/Wireless WiFi Cleanup denial of service [CVE-2020-24458]
170071Intel EPID SDK input validation [CVE-2020-24453]
170070Intel SGX Platform Software denial of service [CVE-2020-24452]
170069Intel Optane DC Persistent Memory Installer uncontrolled search path
170068Intel Graphics Drivers unusual condition [CVE-2020-24450]
170067Intel Graphics Drivers Exception denial of service [CVE-2020-24448]
170066Intel Graphics Drivers out-of-bounds write [CVE-2020-12386]
170065Intel Graphics Drivers input validation [CVE-2020-12385]
170064Intel Graphics Drivers access control [CVE-2020-12384]
170063Intel Server Boards/Server Systems/Compute Modules BMC Firmware out-of-bounds read
170062Intel Server Boards/Server Systems/Compute Modules BMC Firmware input validation
170061Intel Server Boards/Server Systems/Compute Modules BMC Firmware hard-coded key
170060Intel Server Boards/Server Systems/Compute Modules heap-based overflow
170059Intel Server Boards/Server Systems/Compute Modules BMC Firmware buffer overflow
170058Intel Graphics Drivers denial of service [CVE-2020-12372]
170057Intel Graphics Drivers divide by zero [CVE-2020-12371]
170056Intel Graphics Drivers denial of service [CVE-2020-12370]
170055Intel Graphics Drivers out-of-bounds write [CVE-2020-12369]
170054Intel Graphics Drivers integer overflow [CVE-2020-12368]
170053Intel Graphics Drivers integer overflow [CVE-2020-12367]
170052Intel Graphics Drivers input validation [CVE-2020-12366]
170051Intel Graphics Drivers denial of service [CVE-2020-12365]
170050Intel Graphics Drivers null pointer dereference [CVE-2020-12364]
170049Intel Graphics Drivers denial of service [CVE-2020-12363]
170048Intel Graphics Drivers integer overflow [CVE-2020-12362]
170047Intel Graphics Drivers use after free [CVE-2020-12361]
170046Intel Collaboration Suite for WebRTC API control flow [CVE-2020-12339]
170045Intel Graphics Drivers Kernel Mode Driver control flow [CVE-2020-0544]
170044Intel Ethernet I210 Controller denial of service [CVE-2020-0525]
170043Intel Ethernet I210 Controller denial of service [CVE-2020-0524]
170042Intel Ethernet I210 Controller denial of service [CVE-2020-0523]
170041Intel Ethernet I210 Controller denial of service [CVE-2020-0522]
170040Intel Graphics Drivers Control Flow Management control flow [CVE-2020-0521]
170039Intel HD Graphics Control Panel access control [CVE-2020-0518]
170038CGE property management system Account Management improper authentication
170037CGE property management system pathname traversal [CVE-2021-22857]
170036CGE property management system Cookie sql injection [CVE-2021-22856]
170035Jetty git Operation resource consumption [CVE-2021-22553]
170034McAfee Web Gateway User Interface privileges management [CVE-2021-23885]
170033akka-http-core Transfer-Encoding request smuggling [CVE-2021-23339]
170032Accellion FTA Admin Endpoint os command injection [CVE-2021-27104]
170031Accellion FTA POST Request wmProgressstat.html server-side request forgery
170030Accellion FTA Web Service os command injection [CVE-2021-27102]
170029Accellion FTA Host Header document_root.html sql injection
170028Xen Backend drm_xen_front allocation of resources
170027Xen Cache memory corruption [CVE-2021-26933]
170026Xen Batch Hypercall unknown vulnerability [CVE-2021-26932]
170025Xen SCSI Backend blkback.c allocation of resources
170024Xen PV Backend blkback.c state issue
170023Soliton FileZen os command injection [CVE-2021-20655]
170022NEC Calsos CSDJ/Calsos CSDJ-D/Calsos CSDJ-A access control [CVE-2021-20653]
170021QNAP Photo Station cross site scripting [CVE-2020-2502]
170020QNAP NAS Surveillance Station stack-based overflow [CVE-2020-2501]
170019BlackCat CMS ajax_save.php cross site scripting
170018Dekart Private Disk Type3 null pointer dereference [CVE-2021-27203]
170017Racom MIDGE configd access control [CVE-2021-20075]
170016Racom MIDGE Command Line Interface os command injection [CVE-2021-20074]
170015Racom MIDGE cross-site request forgery [CVE-2021-20073]
170014Racom MIDGE path traversal [CVE-2021-20072]
170013Racom MIDGE sms.php cross site scripting
170012Racom MIDGE virtualization.php cross site scripting
170011Racom MIDGE regionalSettings.php cross site scripting
170010Racom MIDGE Error cross site scripting [CVE-2021-20068]
170009Racom MIDGE information disclosure [CVE-2021-20067]
170008JSDom unknown vulnerability [CVE-2021-20066]
170007OPC Foundation OPC UA .NET Standard certificate validation [CVE-2020-29457]
170006DualShield Login Form information exposure [CVE-2020-28918]
170005Zscaler Client Connector RPC privileges management [CVE-2020-11635]
170004Pelco Digital Sentry Server ActiveX Control RTSPLive555.dll SetCameraConnectionParameter buffer overflow
170003Testes de Codigo Administrative Interface access control [CVE-2021-25648]
170002OpenSSL EVP_DecryptUpdate return value
170001OpenSSL EVP_DecryptUpdate return value
170000OpenSSL RSA Signature inadequate encryption [CVE-2021-23839]
169999uap-core Regular Expression resource consumption [CVE-2021-21317]
169998less-openui5 Theming Resource File injection [CVE-2021-21316]
169997System Information Library si.processLoad os command injection
169996Hilscher EtherNet-IP Core Ethernet stack-based overflow
169995Hilscher PROFINET IO Device stack-based overflow [CVE-2021-20986]
169994MB connect line mymbCONNECT24/mbCONNECT24 information disclosure
169993MB connect line mymbCONNECT24/mbCONNECT24 Login Page cross site scripting
169992MB connect line mymbCONNECT24/mbCONNECT24 information disclosure
169991MB connect line mymbCONNECT24/mbCONNECT24 hard-coded credentials
169990MB connect line mymbCONNECT24/mbCONNECT24 JSON File file inclusion
169989MB connect line mymbCONNECT24/mbCONNECT24 Login excessive authentication
169988MB connect line mymbCONNECT24/mbCONNECT24 injection [CVE-2020-35564]
169987MB connect line mymbCONNECT24/mbCONNECT24 cross site scripting
169986MB connect line mymbCONNECT24/mbCONNECT24 HA Module server-side request forgery
169985MB connect line mymbCONNECT24/mbCONNECT24 redirect.php
169984MB connect line mymbCONNECT24/mbCONNECT24 resource consumption
169983MB connect line mymbCONNECT24/mbCONNECT24 MySQL Access Check server-side request forgery
169982MB connect line mymbCONNECT24/mbCONNECT24 access control [CVE-2020-35557]
169981Secomea SiteManager cross site scripting [CVE-2020-29027]
169980Secomea SiteManager-Embedded URL cross site scripting [CVE-2020-29025]
169979Secomea GateManager missing secure attribute [CVE-2020-29024]
169978Secomea GateManager CSV Report Generator csv injection [CVE-2020-29023]
169977Secomea GateManager Host Header request smuggling [CVE-2020-29022]
169976NFStream Module denial of service [CVE-2020-25340]
169975PNPSCADA browse.jsp sql injection
169974Apple macOS Sudo out-of-bounds write [CVE-2021-3156]
169973Apple macOS Intel Graphics Driver race condition [CVE-2021-1806]
169972Apple macOS Intel Graphics Driver out-of-bounds write [CVE-2021-1805]
169971ActivePresenter memory corruption [CVE-2021-3375]
169970E-Learning System sql injection [CVE-2021-3239]
169969Mutare Voice getfile.asp file inclusion
169968Mutare Voice Admin Portal diagzip.asp information disclosure
169967Mutare Voice Adminlog.asp sql injection
169966Mutare Voice Settings.asp missing encryption
169965Hestia Control Panel Domain Name Remote Privilege Escalation
169964Mumble Open Webpage Text link following [CVE-2021-27229]
169963GNOME GLib g_bytes_new memory corruption
169962GNOME GLib g_byte_array_new_take buffer overflow
169961steghide information disclosure [CVE-2021-27211]
169960Endian Firewall Community os command injection [CVE-2021-27201]
169959Teachers Record Management System POST Parameter search-teacher.php sql injection
169958CASAP Automated Enrollment System Login Panel improper authentication
169957Library System sql injection [CVE-2021-26200]
169956Nagios XI sshterm.php cross site scripting
169955Nagios XI HTTP Request cloud-vm.inc.php os command injection
169954Nagios XI HTTP Request switch.inc.php os command injection
169953Nagios XI HTTP Request windowswmi.inc.php os command injection
169952qlib CLI behavioral workflow [CVE-2021-23338]
169951lodash Template command injection [CVE-2021-23337]
169950cpython urllib.parse.parse_qs request smuggling
169949Dell EMC Avamar Server Web UI improper authorization [CVE-2021-21511]
169948IBM Spectrum Protect Operations Center RPC denial of service
169947IBM Spectrum Protect Operations Center Servlet Request unrestricted upload
169946IBM Spectrum Protect Operations Center Session improper authentication
169945CITSmart ldap injection [CVE-2020-35775]
169944Batflat User Tab Sruu.pl code injection
169943D-Bus Policy Rules use after free [CVE-2020-35512]
169942OpenEMR non_reported.php sql injection
169941OpenEMR usergroup_admin.php sql injection
169940OpenEMR immunization_report.php sql injection
169939OpenEMR patient_select.php sql injection
169938Secomea GateManager Web UI insufficient permissions or privileges
169937Secomea GateManager File Upload path traversal [CVE-2020-29026]
169936Microweber Unzip Module pathname traversal [CVE-2020-28337]
169935Nagios XI Webapp Query command injection [CVE-2020-24899]
169934Nagios XI Request command injection [CVE-2020-22427]
169933Centreon sql injection [CVE-2020-22425]
169932lodash Regular Expression denial of service [CVE-2020-28500]
169931PHP URL Validation filter_var input validation
169930Atlassian JIRA Server/Data Center Custom Field information disclosure
169929Atlassian JIRA Server/Data Center Endpoint ViewWorkflowSchemes.jspa cross site scripting
169928Atlassian JIRA Server/Data Center Custom Field information disclosure
169927Atlassian JIRA Server/Data Center Screens Modal View cross site scripting
169926Atlassian JIRA Server/Data Center Plugin Report Page information disclosure
169925pystemon YAML Deserialization config.py safe_load deserialization
169924OpenLDAP slapd schema_init.c issuerAndThisUpdateCheck denial of service
169923Horde Groupware Webmail Edition Text Filter Library Text2html.php preProcess cross site scripting
169922LimeSurvey Participant Model sql injection [CVE-2019-25019]
169921TP-LINK Archer C5v information disclosure [CVE-2021-27210]
169920TP-LINK Archer C5v missing encryption [CVE-2021-27209]
169919NeDi System Files System-Files.php injection
169918NeDi Nodes Traffic Nodes-Traffic.php os command injection
169917NeDi Monitoring History Monitoring-History.php sql injection
169916F5 BIG-IP APM VPN Traffic memory allocation [CVE-2021-22985]
169915F5 BIG-IP ASM/Advanced WAF Client Request redirect [CVE-2021-22984]
169914F5 BIG-IP AFM Configuration Utility cross site scripting [CVE-2021-22983]
169913F5 BIG-IP DNS/BIG-IP GTM big3d buffer overflow [CVE-2021-22982]
169912F5 BIG-IP TLS Protocol certificate validation [CVE-2021-22981]
169911F5 BIG-IP APM Client Troubleshooting Utility Edge Client untrusted search path
169910F5 BIG-IP Configuration utility cross site scripting [CVE-2021-22979]
169909F5 BIG-IP iControl REST Endpoint cross site scripting [CVE-2021-22978]
169908F5 BIG-IP TMM denial of service [CVE-2021-22977]
169907F5 BIG-IP ASM/Advanced WAF Websocket resource consumption [CVE-2021-22976]
169906F5 BIG-IP Traffic Management Microkernel denial of service [CVE-2021-22975]
169905F5 BIG-IP/BIG-IQ iControl REST race condition [CVE-2021-22974]
169904F5 BIG-IP JSON Parser out-of-bounds read [CVE-2021-22973]
169903Micro Focus Operations Bridge Manager Remote Privilege Escalation
169902IBM Security Verify Information Queue hard-coded credentials
169901IBM Security Verify Information Queue Session Identifier resource transfer
169900IBM Security Verify Information Queue cleartext storage [CVE-2021-20410]
169899IBM Security Verify Information Queue HSTS information disclosure
169898IBM Security Verify Information Queue Cryptographic Key cleartext storage
169897IBM Security Verify Information Queue Source Code cleartext storage
169896IBM Security Verify Information Queue risky encryption [CVE-2021-20406]
169895Apache Thrift Short Message denial of service [CVE-2020-13949]
169894OpenZFS NFS Share access control [CVE-2013-20001]
169893Pelco Digital Sentry Server DSUtility.dll AppendToTextFile origin validation
169892Telegram information disclosure [CVE-2021-27205]
169891Telegram Passcode credentials storage [CVE-2021-27204]
169890Sovremennye Delovye Tekhnologii FX Aggregator Terminal Client denial of service
169889Sovremennye Delovye Tekhnologii FX Aggregator Terminal Client login.sav credentials storage
169888Elecom File Manager pathname traversal [CVE-2021-20651]
169887Elecom NCC-EWF100RMWH2 cross-site request forgery [CVE-2021-20650]
169886Elecom WRC-300FEBK-S certificate validation [CVE-2021-20649]
169885Elecom WRC-300FEBK-S os command injection [CVE-2021-20648]
169884Elecom WRC-300FEBK-S cross-site request forgery [CVE-2021-20647]
169883Elecom WRC-300FEBK-A cross-site request forgery [CVE-2021-20646]
169882Elecom WRC-300FEBK-A cross site scripting [CVE-2021-20645]
169881Elecom WRC-1467GHBK-A Web Setup Page cross site scripting [CVE-2021-20644]
169880Elecom LD-PS-U1 access control [CVE-2021-20643]
169879Logitec LAN-W300N-RS URL denial of service [CVE-2021-20642]
169878Logitec LAN-W300N-RS cross-site request forgery [CVE-2021-20641]
169877Logitec LAN-W300N-PGRB buffer overflow [CVE-2021-20640]
169876Logitec LAN-W300N-PGRB os command injection [CVE-2021-20639]
169875Logitec LAN-W300N-PGRB os command injection [CVE-2021-20638]
169874Logitec LAN-W300N-PR5B URL denial of service [CVE-2021-20637]
169873Logitec LAN-W300N-PR5B cross-site request forgery [CVE-2021-20636]
169872Logitec LAN-WH450N-GR information disclosure [CVE-2021-20635]
169871Joe Schofield get-ip-range package resource consumption [CVE-2021-27191]
169870PEEL Shopping Cart change_params.php cross site scripting
169869Pelco Digital Sentry Server XML External Entity out-of-bounds read
169868Teradici PCoIP Soft Client null pointer dereference [CVE-2021-25690]
169867Teradici PCoIP Soft Client out-of-bounds write [CVE-2021-25689]
169866Teradici PCoIP Agent log file [CVE-2021-25688]
169865Action Pack Host Authorization Middleware redirect [CVE-2021-22881]
169864ActiveRecord PostgreSQL Adapter resource consumption [CVE-2021-22880]
169863Advantech iView sql injection [CVE-2021-22658]
169862Advantech iView pathname traversal [CVE-2021-22656]
169861Advantech iView sql injection [CVE-2021-22654]
169860Advantech iView Configuration missing authentication [CVE-2021-22652]
169859VMware vSphere Replication command injection [CVE-2021-21976]
169858Adminer adminer.php server-side request forgery
169857next-auth Prisma Database Adapter authentication spoofing [CVE-2021-21310]
169856Lucee Server Admin authorization [CVE-2021-21307]
169855Wire Video Capture information disclosure [CVE-2021-21301]
169854hyper Crate Transfer-Encoding request smuggling [CVE-2021-21299]
169853Adobe Acrobat Reader PDF File memory corruption [CVE-2021-21063]
169852Adobe Acrobat Reader PDF File memory corruption [CVE-2021-21062]
169851Adobe Acrobat PDF File use after free [CVE-2021-21061]
169850Adobe Acrobat information disclosure [CVE-2021-21060]
169849Adobe Acrobat Reader PDF File memory corruption [CVE-2021-21059]
169848Adobe Acrobat Reader PDF File memory corruption [CVE-2021-21058]
169847Adobe Acrobat Reader PDF File null pointer dereference [CVE-2021-21057]
169846Adobe Dreamweaver untrusted search path [CVE-2021-21055]
169845Adobe Illustrator out-of-bounds write [CVE-2021-21054]
169844Adobe Illustrator out-of-bounds write [CVE-2021-21053]
169843Adobe Animate out-of-bounds write [CVE-2021-21052]
169842Adobe Photoshop Javascript File buffer overflow [CVE-2021-21051]
169841Adobe Photoshop out-of-bounds read [CVE-2021-21050]
169840Adobe Photoshop out-of-bounds read [CVE-2021-21049]
169839Adobe Photoshop memory corruption [CVE-2021-21048]
169838Adobe Photoshop out-of-bounds write [CVE-2021-21047]
169837Adobe Acrobat Reader memory corruption [CVE-2021-21046]
169836Adobe Acrobat Reader access control [CVE-2021-21045]
169835Adobe Acrobat Reader JPEG File out-of-bounds write [CVE-2021-21044]
169834Adobe Acrobat Reader out-of-bounds read [CVE-2021-21042]
169833Adobe Acrobat Reader use after free [CVE-2021-21041]
169832Adobe Acrobat Reader use after free [CVE-2021-21040]
169831Adobe Acrobat Reader use after free [CVE-2021-21039]
169830Adobe Acrobat Reader JPEG File out-of-bounds write [CVE-2021-21038]
169829Adobe Acrobat Reader path traversal [CVE-2021-21037]
169828Adobe Acrobat Reader integer overflow [CVE-2021-21036]
169827Adobe Acrobat Reader use after free [CVE-2021-21035]
169826Adobe Acrobat Reader out-of-bounds read [CVE-2021-21034]
169825Adobe Acrobat Reader use after free [CVE-2021-21033]
169824Magento session expiration [CVE-2021-21032]
169823Magento session expiration [CVE-2021-21031]
169822Magento Customer Address Upload cross site scripting [CVE-2021-21030]
169821Magento Admin Console cross site scripting [CVE-2021-21029]
169820Adobe Acrobat Reader use after free [CVE-2021-21028]
169819Magento GraphQL API cross-site request forgery [CVE-2021-21027]
169818Magento Integrations Module improper authorization [CVE-2021-21026]
169817Magento Product Layout Update xml injection [CVE-2021-21025]
169816Magento Search Module sql injection [CVE-2021-21024]
169815Magento Admin Console cross site scripting [CVE-2021-21023]
169814Magento Product Module resource injection [CVE-2021-21022]
169813Adobe Acrobat Reader use after free [CVE-2021-21021]
169812Magento Login as Customer Module access control [CVE-2021-21020]
169811Magento Widgets Module xml injection [CVE-2021-21019]
169810Magento Scheduled Operation Module os command injection [CVE-2021-21018]
169809Adobe Acrobat Reader heap-based overflow [CVE-2021-21017]
169808Magento WebAPI os command injection [CVE-2021-21016]
169807Magento Customer Attribute os command injection [CVE-2021-21015]
169806Magento unrestricted upload [CVE-2021-21014]
169805IBM Security Verify Information Queue encoding error [CVE-2021-20405]
169804IBM Security Verify Information Queue Cookie denial of service
169803IBM Security Verify Information Queue cross-site request forgery
169802IBM Security Verify Information Queue information exposure [CVE-2021-20402]
169801podman Container authorization [CVE-2021-20188]
169800Hirschmann OS2/RSP/RSPE HSR Ring denial of service [CVE-2020-9307]
169799SuSE Open Build Service Web Page Generation cross site scripting
169798SuSE CaaS Platform temp file [CVE-2020-8030]
169797SuSE CaaS Platform permission assignment [CVE-2020-8029]
169796SUSE Linux Enterprise Server/OpenSUSE temp file [CVE-2020-8027]
169795IBM Case Manager/Business Automation Workflow Web UI cross site scripting
169794Open vSwitch Packet resource consumption [CVE-2020-35498]
169793SolarWinds Network Performance Monitor WriteToFile sql injection
169792Qognify Ocularis EventCoordinator Endpoint deserialization [CVE-2020-27868]
169791Netgear Nighthawk AC2400 mini_httpd command injection [CVE-2020-27867]
169790Netgear Nighthawk AC2400 mini_httpd authentication bypass [CVE-2020-27866]
169789D-Link DAP-1860 uhttpd authentication bypass [CVE-2020-27865]
169788D-Link DAP-1860 HNAP Service command injection [CVE-2020-27864]
169787D-Link DVA-2800/DSL-2888A dhttpd authentication bypass [CVE-2020-27863]
169786D-Link DVA-2800/DSL-2888A dhttpd command injection [CVE-2020-27862]
169785Netgear Orbi UA_Parser Utility os command injection [CVE-2020-27861]
169784Shenzhen Yunding Oclean App hard-coded key [CVE-2020-25493]
169783KeyCloak Email information exposure [CVE-2020-1717]
169782Teradici Cloud Access Connector Web Form cross-site request forgery
169781Teradici Cloud Access Connector Web Application Pages authentication bypass
169780Keycloak OIDC Logout Endpoint cross-site request forgery [CVE-2020-10734]
169779AutoTrace Bitmap Image main.c use after free
169778AutoTrace Bitmap Image input-bmp.c malloc integer overflow
169777is-user-valid ldap injection [CVE-2021-23335]
169776static-eval FunctionExpressions code injection
169775MongoDB Ops Manager SSL cleartext transmission [CVE-2021-20335]
169774Fluent Bit flb_avro.c flb_malloc null pointer dereference
169773samba-client Package process.exec command injection
169772FiberHome HG6245D Telnet Daemon denial of service [CVE-2021-27179]
169771FiberHome HG6245D NVRAM missing encryption [CVE-2021-27178]
169770FiberHome HG6245D Telnet Server improper authentication [CVE-2021-27177]
169769FiberHome HG6245D wifictl_5g.cfg permission
169768FiberHome HG6245D wifictl_2g.cfg permission
169767FiberHome HG6245D wifi_custom.cfg permission
169766FiberHome HG6245D API improper authentication [CVE-2021-27173]
169765FiberHome HG6245D system-config.sh hard-coded password
169764FiberHome HG6245D CLI out-of-bounds write [CVE-2021-27171]
169763FiberHome HG6245D Firewall access control [CVE-2021-27170]
169762FiberHome AN5506-04-FA hard-coded password [CVE-2021-27169]
169761FiberHome HG6245D hard-coded credentials [CVE-2021-27168]
169760FiberHome HG6245D libci_adaptation_layer.so init_3bb_password hard-coded credentials
169759FiberHome HG6245D hard-coded password [CVE-2021-27166]
169758FiberHome HG6245D Telnet Daemon hard-coded credentials [CVE-2021-27165]
169757FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27164]
169756FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27163]
169755FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27162]
169754FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27161]
169753FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27160]
169752FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27159]
169751FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27158]
169750FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27157]
169749FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27156]
169748FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27155]
169747FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27154]
169746FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27153]
169745FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27152]
169744FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27151]
169743FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27150]
169742FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27149]
169741FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27148]
169740FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27147]
169739FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27146]
169738FiberHome HG6245D Web Daemon hard-coded credentials [CVE-2021-27145]
169737FiberHome HG6245D Web Daemon hard-coded password [CVE-2021-27144]
169736FiberHome HG6245D Web Daemon hard-coded password [CVE-2021-27143]
169735FiberHome HG6245D Private Key permission [CVE-2021-27142]
169734FiberHome HG6245D umconfig.txt hard-coded key
169733FiberHome HG6245D web.log log file
169732FiberHome HG6245D info.asp information disclosure
169731Trend Micro Security code injection [CVE-2021-25251]
169730Elastic APM Agent for Go HTTP Header log file [CVE-2021-22133]
169729Fleet Request resource consumption [CVE-2021-21296]
169728Lenovo XClarity Administrator FFDC Service Log cleartext transmission
169727Elasticsearch Audit Logging log file [CVE-2020-7021]
169726Prusa Research PrusaSlicer OBJ File objparse buffer overflow
169725Prusa Research PrusaSlicer OBJ File Obj.cpp load_obj out-of-bounds write
169724Tencent WeChat WXAM Decoder memory corruption [CVE-2020-27874]
169723SolarWinds Orion Platform VulnerabilitySettings.aspx improper authentication
169722SolarWinds Orion Platform ExportToPDF.aspx information disclosure
169721SoftMaker Office PlanMaker Document Parser heap-based overflow
169720SDG Technologies Plug and Play SCADA cross site scripting [CVE-2020-24842]
169719Linux Kernel User Namespace ovl_path_open privileges assignment
169718AccuSoft ImageGear PSD Header out-of-bounds write [CVE-2020-13585]
169717Micrium uC-HTTP HTTP Request denial of service [CVE-2020-13583]
169716SoftMaker Office PlanMaker Document heap-based overflow [CVE-2020-13581]
169715Genivia gSOAP WS-Security Plugin denial of service [CVE-2020-13578]
169714Genivia gSOAP WS-Security Plugin denial of service [CVE-2020-13577]
169713Genivia gSOAP WS-Addressing Plugin integer overflow [CVE-2020-13576]
169712Genivia gSOAP WS-Addressing Plugin denial of service [CVE-2020-13575]
169711Genivia gSOAP SOAP Request denial of service [CVE-2020-13574]
169710AccuSoft ImageGear GIF Parser heap-based overflow [CVE-2020-13572]
169709AccuSoft ImageGear SGI RLE Decompression out-of-bounds write
169708phpGACL/OpenEMR HTTP Request return_page redirect
169707AccuSoft ImageGear TIFF Parser out-of-bounds write [CVE-2020-13561]
169706Backdoor.Win32.BackAttack.18 Service Port 80 improper authentication
169705Palo Alto Prisma Cloud Compute SAML Authentication signature verification
169704xterm UTF-8 Character memory corruption [CVE-2021-27135]
169703henriquedornas phpMyAdmin SQL information disclosure [CVE-2021-26939]
169702henriquedornas Online Live Chat cross site scripting [CVE-2021-26938]
169701ReplaySorcery access control [CVE-2021-26936]
169700IBM WebSphere Application Server xml external entity reference
169699Google Android OkHostnameVerifier.java verifyHostName certificate validation
169698Google Android IsoInterface.java parseNextBox information disclosure
169697Google Android WindowContainer.java loadAnimation unusual condition
169696Google Android SystemSettingsValidators denial of service
169695Google Android Metadata FileSystemProvider.java moveInMediaStore cleartext storage
169694Google Android BluetoothPermissionRequest.java onReceive permission
169693Google Android C2SoftHevcDec.cpp process out-of-bounds write
169692Google Android ResolverActivity.java onTargetSelected permission assignment
169691Google Android Bluetooth BluetoothPermissionActivity.java onCreate permission
169690Google Android SurfaceFlinger.cpp bootFinished use after free
169689Google Android Notification NotificationAccessConfirmationActivity.java onCreate improper restriction of rendered ui layers
169688Google Android storaged.cpp remove_user_ce use after free
169687Google Android Bluetooth AdvertiseManager.java out-of-bounds write
169686Google Android Bluetooth Scan GattService.java deliverBatchScan permission
169685Google Android ActivityManagerService.java getContentProviderImpl permission
169684Google Android WiFi-Direct p2p.c p2p_copy_client_info out-of-bounds write
169683Google Android ih264d_parse_pslice.c ih264d_parse_pslice out-of-bounds write
169682Google Android UninstallerActivity onCreate improper restriction of rendered ui layers
169681Google Android PackageInstaller permission [CVE-2021-0305]
169680Google Android PackageInstaller permission [CVE-2021-0302]
169679IBM Spectrum Protect Plus resource consumption [CVE-2020-5023]
169678Tips and Tricks HQ All In One WP Security & Firewall wp-security-blacklist-menu.php cross site scripting
169677ftp-srv Command pathname traversal [CVE-2020-26299]
169676Issuer integer overflow [CVE-2020-24838]
169675ZCFees Transaction integer underflow [CVE-2020-24837]
169674SoftMaker Office TextMaker Document Parser heap-based overflow
169673McAfee Endpoint Security ePO Extension cross site scripting [CVE-2021-23881]
169672McAfee Total Protection Remote Procedure Call privileges management
169671McAfee Total Protection MTP Self-Defense privileges management
169670McAfee Total Protection privileges management [CVE-2021-23873]
169669McAfee Endpoint Security null pointer dereference [CVE-2021-23883]
169668McAfee Endpoint Security ENS File privileges management [CVE-2021-23882]
169667McAfee Endpoint Security privileges management [CVE-2021-23880]
169666McAfee Endpoint Security cleartext storage [CVE-2021-23878]
169665Wekan Fieldbleed cross site scripting [CVE-2021-20654]
169664GENIVI Diagnostic Log and Trace dlt_common.c dlt_buffer_write_block heap-based overflow
169663Monitorr upload.php unrestricted upload
169662InoERP json_fp.php input validation
169661Backdoor.Win32.Aphexdoor.LiteSock Service Port 113 moo buffer overflow
169660Backdoor.Win32.NetTerrorist Service Port 785 improper authentication
169659Trojan.Win32.Cafelom.bu DNF-II.exe heap-based overflow
169658Backdoor.Win32.Wollf.15 Service Port 7614 improper authentication
169657Trojan-Spy.Win32.WinSpy.vwl Service Port 443 permission
169656Trojan-Spy.Win32.WebCenter.a Service Port 80 web.exe information disclosure
169655Trojan-Spy.Win32.SpyEyes.awow $Recycle$ permission
169654Trojan-Spy.Win32.SpyEyes.auwl cleansweep.exe permission
169653Trojan-Spy.Win32.SpyEyes.auqj wedfsadeex.exe permission
169652Trojan.Win32.Gentee.h Paltalk permission
169651Trojan.Win32.Gentee.b WINNT permission
169650Trojan.Win32.Delf.uq downsoft permission
169649Email-Worm.Win32.Sircam.eb winupdate.exe permission
169648Trojan.Win32.Cospet.abg Service Port 2185 dir permission
169647Trojan.Win32.Comei.pgo dir permission
169646Backdoor.Win32.RemoteManipulator.brr permission
169645Backdoor.Win32.NetBull.11.b Service Port 23456 mfc42.dll buffer overflow
169644Backdoor.Win32.Xyligan.blp FengYun.dll permission
169643HPE T0986H01 Idelji Web ViewPoint Suite access control [CVE-2021-3191]
169642Hyper Crate Transfer-Encoding request smuggling [CVE-2021-26959]
169641xcb Crate cast_event return value
169640xcb Crate change_property out-of-bounds read
169639xcb Crate value unknown vulnerability
169638xcb Crate name return value
169637qwutils Crate Clone insert_slice_clone double free
169636postscript Crate uninitialized pointer [CVE-2021-26953]
169635ms3d Crate read uninitialized pointer
169634calamine Crate set_len heap-based overflow
169633GNU Screen UTF-8 Encoding encoding.c denial of service
169632SmartFoxServer Console Module javashell.py protection mechanism
169631SmartFoxServer Password server.xml missing encryption
169630SmartFoxServer AdminTool Console cross site scripting [CVE-2021-26549]
169629Siemens SCALANCE W740/SCALANCE W780 ARP allocation of resources
169628HPE 3500/6200/8200 Management Interface denial of service [CVE-2021-25141]
169627HPE Moonshot Provisioning Manager khuploadfile.cgi pathname traversal
169626HPE Moonshot Provisioning Manager khuploadfile.cgi stack-based overflow
169625Cscape Project File Parser out-of-bounds read [CVE-2021-22663]
169624HPE T0662H01 Idelji Web ViewPoint Suite authentication replay
169623Dell EMC PowerScale OneFS privileges management [CVE-2021-21502]
169622SAP SCIMono Java Expression injection [CVE-2021-21479]
169621SAP Web Dynpro ABAP redirect [CVE-2021-21478]
169620SAP Commerce Cloud Drools Rule injection [CVE-2021-21477]
169619SAP UI5 redirect [CVE-2021-21476]
169618SAP Master Data Management File API pathname traversal [CVE-2021-21475]
169617SAP HANA Database SAML Token signature verification [CVE-2021-21474]
169616SAP Software Provisioning Manager missing authentication [CVE-2021-21472]
169615SAP Business Objects BI Platform X-Frame-Options Header clickjacking
169614NextGEN Gallery cross-site request forgery [CVE-2020-35943]
169613NextGEN Gallery cross-site request forgery [CVE-2020-35942]
169612Adminer cross site scripting [CVE-2020-35572]
169611Mautic cross site scripting [CVE-2020-35125]
169610ownCloud input validation [CVE-2020-28645]
169609ownCloud API Endpoint core cross-site request forgery
169608Siemens JT2Go/Teamcenter Visualization RAS File out-of-bounds read
169607Siemens SIMARIS Configuration Folder default permission [CVE-2020-28392]
169606Siemens Nucleus NET/Nucleus ReadyStart ISN predictable value
169605Foxit Studio Photo NEF File out-of-bounds write [CVE-2020-27857]
169604Foxit Studio Photo CR2 File out-of-bounds read [CVE-2020-27856]
169603Foxit Studio Photo SR2 File out-of-bounds read [CVE-2020-27855]
169602Siemens JT2Go/Teamcenter Visualization PLT File out-of-bounds read
169601Siemens JT2Go/Teamcenter Visualization HPG File out-of-bounds read
169600Siemens JT2Go/Teamcenter Visualization PCT File memory corruption
169599Siemens JT2Go/Teamcenter Visualization TGA File out-of-bounds write
169598Siemens JT2Go/Teamcenter Visualization CGM File out-of-bounds read
169597Siemens JT2Go/Teamcenter Visualization TIFF File null pointer dereference
169596Siemens JT2Go/Teamcenter Visualization PAR File out-of-bounds read
169595Siemens JT2Go/Teamcenter Visualization PAR File stack-based overflow
169594Siemens JT2Go/Teamcenter Visualization BMP File memory corruption
169593Siemens JT2Go/Teamcenter Visualization PAR File out-of-bounds read
169592Siemens JT2Go/Teamcenter Visualization PAR File out-of-bounds read
169591Dell EMC PowerScale OneFS File System permission assignment [CVE-2020-26196]
169590Dell EMC PowerScale OneFS Directory insufficient permissions or privileges
169589Dell EMC PowerScale OneFS permission assignment [CVE-2020-26194]
169588Dell EMC PowerScale OneFS os command injection [CVE-2020-26193]
169587Dell EMC PowerScale OneFS missing authentication [CVE-2020-26192]
169586Dell EMC PowerScale OneFS Job privileges management [CVE-2020-26191]
169585Siemens DIGSI 4 default permission [CVE-2020-25245]
169584Siemens PCS neo/TIA Portal access control [CVE-2020-25238]
169583Siemens SINEC NMS/SINEMA Server ZIP File path traversal [CVE-2020-25237]
169582b2evolution evoadm.php cross site scripting
169581PHPSHE admin.php sql injection
169580Foxit Studio Photo CMP File out-of-bounds read [CVE-2020-17436]
169579Foxit Studio Photo CR2 File out-of-bounds read [CVE-2020-17435]
169578Foxit Studio Photo ARW File out-of-bounds read [CVE-2020-17434]
169577Foxit Studio Photo CMP File out-of-bounds read [CVE-2020-17433]
169576Foxit Studio Photo CR2 File out-of-bounds read [CVE-2020-17432]
169575Foxit Studio Photo CR2 File out-of-bounds write [CVE-2020-17431]
169574Foxit Studio Photo CR2 File out-of-bounds write [CVE-2020-17430]
169573Foxit Studio Photo CMP File out-of-bounds read [CVE-2020-17429]
169572Foxit Studio Photo CMP File out-of-bounds read [CVE-2020-17428]
169571Foxit Studio Photo NEF File out-of-bounds read [CVE-2020-17427]
169570Foxit Studio Photo CR2 File memory corruption [CVE-2020-17426]
169569Foxit Studio Photo EPS File out-of-bounds write [CVE-2020-17425]
169568Foxit Studio Photo EZI File out-of-bounds write [CVE-2020-17424]
169567Foxit Studio Photo ARW File heap-based overflow [CVE-2020-17423]
169566Foxit Studio Photo EPS File out-of-bounds read [CVE-2020-17422]
169565Foxit Studio Photo NEF File out-of-bounds write [CVE-2020-17421]
169564Foxit Studio Photo NEF File out-of-bounds read [CVE-2020-17420]
169563Foxit Studio Photo NEF File out-of-bounds write [CVE-2020-17419]
169562Foxit Studio Photo EZIX File buffer overflow [CVE-2020-17418]
169561ownCloud File Store files_antivirus permission
169560Siemens SIMATIC HMI Comfort Panel Telnet Service missing authentication
169559PyYAML YAML File full_load input validation
169558WAVLINK WN575A4/WN579X3 Login command injection [CVE-2020-13117]
169557Siemens SIMATIC PCS 7/SIMATIC WinCC authentication bypass [CVE-2020-10048]
169556libzip ZIP Archive zip_dirent.c _zip_dirent_read use after free
169555Millennium Millewin access control [CVE-2021-3394]
169554Argo CD Token sessionmanager.go user session
169553Gradle gradle-enterprise-test-distribution-agent Registration pathname traversal
169552ConnMan gdhcp information disclosure [CVE-2021-26676]
169551ConnMan dnsproxy stack-based overflow [CVE-2021-26675]
169550Google Chrome Skia clickjacking [CVE-2021-21147]
169549Google Chrome Navigation use after free [CVE-2021-21146]
169548Google Chrome Font use after free [CVE-2021-21145]
169547Google Chrome Tab Group heap-based overflow [CVE-2021-21144]
169546Google Chrome Extension heap-based overflow [CVE-2021-21143]
169545Google Chrome Payment use after free [CVE-2021-21142]
169544Google Chrome File System API improper authentication [CVE-2021-21141]
169543Google Chrome USB Device uninitialized pointer [CVE-2021-21140]
169542Google Chrome iFrame Sandbox access control [CVE-2021-21139]
169541Google Chrome DevTools use after free [CVE-2021-21138]
169540Google Chrome DevTools information disclosure [CVE-2021-21137]
169539Google Chrome WebView unknown vulnerability [CVE-2021-21136]
169538Google Chrome Performance API unknown vulnerability [CVE-2021-21135]
169537Google Chrome Page Info authentication spoofing [CVE-2021-21134]
169536Google Chrome Download improper authentication [CVE-2021-21133]
169535Google Chrome DevTools sandbox [CVE-2021-21132]
169534Google Chrome File System API improper authentication [CVE-2021-21131]
169533Google Chrome File System API improper authentication [CVE-2021-21130]
169532Google Chrome File System API improper authentication [CVE-2021-21129]
169531Google Chrome Blink heap-based overflow [CVE-2021-21128]
169530Microsoft Windows Trust Verification API denial of service [CVE-2021-24080]
169529Microsoft Windows TCP/IP Remote Code Execution [CVE-2021-24094]
169528Microsoft Windows TCP/IP Remote Code Execution [CVE-2021-24074]
169527Microsoft Windows TCP/IP denial of service [CVE-2021-24086]
169526Microsoft Windows Remote Procedure Call information disclosure
169525Microsoft Windows Local Spooler Remote Privilege Escalation [CVE-2021-24088]
169524Microsoft Windows Microsoft.PowerShell.Utility Module protection mechanism
169523Microsoft Windows PKU2U Local Privilege Escalation [CVE-2021-25195]
169522Microsoft Windows PFX Encryption Security protection mechanism
169521Microsoft Windows Network File System denial of service [CVE-2021-24075]
169520Microsoft Windows Mobile Device Management information disclosure
169519Microsoft Windows Win32 Win32k Local Privilege Escalation
169518Microsoft Windows Win32k Local Privilege Escalation [CVE-2021-1732]
169517Microsoft Windows Kernel Local Privilege Escalation [CVE-2021-24096]
169516Microsoft Windows Installer Local Privilege Escalation [CVE-2021-1727]
169515Microsoft Windows Event Tracing Local Privilege Escalation [CVE-2021-24103]
169514Microsoft Windows Event Tracing Local Privilege Escalation [CVE-2021-24102]
169513Microsoft Windows DirectX information disclosure [CVE-2021-24106]
169512Microsoft Windows Defender Local Privilege Escalation [CVE-2021-24092]
169511Microsoft Windows Console Driver denial of service [CVE-2021-24098]
169510Microsoft Windows Backup Engine information disclosure [CVE-2021-24079]
169509Microsoft Windows Address Book Remote Code Execution [CVE-2021-24083]
169508Microsoft Visual Studio Code npm-script Extension Remote Code Execution
169507Microsoft Visual Studio Remote Code Execution [CVE-2021-1639]
169506Microsoft System Center Operations Manager Remote Privilege Escalation
169505Microsoft Sysinternals PsExec Local Privilege Escalation [CVE-2021-1733]
169504Microsoft Lync Server/Skype for Business Server denial of service
169503Microsoft Lync Server/Skype for Business Server unknown vulnerability
169502Microsoft Windows Fax Service Remote Code Execution [CVE-2021-1722]
169501Microsoft Windows Fax Service Remote Code Execution [CVE-2021-24077]
169500Microsoft Windows VMSwitch information disclosure [CVE-2021-24076]
169499Microsoft Windows DNS Server Remote Code Execution [CVE-2021-24078]
169498Microsoft Windows Remote Code Execution [CVE-2021-24091]
169497Microsoft Windows Codecs Library Remote Code Execution [CVE-2021-24081]
169496Microsoft Teams information disclosure [CVE-2021-24114]
169495Microsoft SharePoint Remote Privilege Escalation [CVE-2021-24072]
169494Microsoft SharePoint Remote Privilege Escalation [CVE-2021-24066]
169493Microsoft SharePoint Remote Privilege Escalation [CVE-2021-1726]
169492Microsoft SharePoint information disclosure [CVE-2021-24071]
169491Microsoft Office Remote Code Execution [CVE-2021-24070]
169490Microsoft Office Remote Code Execution [CVE-2021-24069]
169489Microsoft Office Remote Code Execution [CVE-2021-24068]
169488Microsoft Office Remote Code Execution [CVE-2021-24067]
169487Microsoft Windows Graphics Remote Code Execution [CVE-2021-24093]
169486Microsoft Exchange Server unknown vulnerability [CVE-2021-1730]
169485Microsoft Exchange Server Remote Privilege Escalation [CVE-2021-24085]
169484Microsoft Edge information disclosure [CVE-2021-24100]
169483Microsoft Dynamics NAV/Dynamics 365 Business Central cross site scripting
169482Microsoft Dynamics 365 information disclosure [CVE-2021-24101]
169481Microsoft Azure Kubernetes Service Remote Privilege Escalation
169480Microsoft Package Manager Configurations Local Privilege Escalation
169479Microsoft Azure IoT CLI Extension Local Privilege Escalation
169478Microsoft .NET Framework denial of service [CVE-2021-24111]
169477Microsoft .NET Core/Visual Studio denial of service [CVE-2021-1721]
169476Microsoft .NET Core Remote Code Execution [CVE-2021-24112]
169475Microsoft .NET Core Remote Code Execution [CVE-2021-26701]
169474Google Chrome Extension access control [CVE-2021-21127]
169473Google Chrome Policy Enforcement access control [CVE-2021-21126]
169472Google Chrome File System API improper authentication [CVE-2021-21125]
169470Google Chrome File System API input validation [CVE-2021-21123]
169469Google Chrome Blink use after free [CVE-2021-21122]
169468Google Chrome Omnibox use after free [CVE-2021-21121]
169467Google Chrome WebSQL use after free [CVE-2021-21120]
169466Google Chrome Media use after free [CVE-2021-21119]
169465Google Chrome V8 out-of-bounds read [CVE-2021-21118]
169464Google Chrome Cryptohome access control [CVE-2021-21117]
169463IBM Security Identity Governance and Intelligence Authentication information disclosure
169462IBM Security Identity Governance and Intelligence session expiration
169461IBM Security Identity Governance and Intelligence HTTP Request information disclosure
169460IBM Security Identity Governance and Intelligence certificate validation
169459IBM Security Identity Governance and Intelligence URL denial of service
169458Omron CX-One stack-based overflow [CVE-2020-27261]
169457Omron CX-One memory corruption [CVE-2020-27259]
169456Omron CX-One type confusion [CVE-2020-27257]
169455b2evolution Plugin Module cross site scripting [CVE-2020-22841]
169454b2evolution email_passthrough.php redirect
169453Google Chrome SCTP Packet use after free [CVE-2020-16044]
169452RoundCube CSS cross site scripting [CVE-2021-26925]
169451apexcharts Graph Legend Field cross site scripting [CVE-2021-23327]
169450Tufin SecureChange resource injection [CVE-2020-13462]
169449ProBot Send Image unrestricted upload [CVE-2021-26918]
169448ABB AC500 V2 PLC memory allocation [CVE-2020-24685]
169447Tufin SecureTrack information disclosure [CVE-2020-13461]
169446Tufin SecureTrack cross-site request forgery [CVE-2020-13460]
169445Tufin SecureTrack cross site scripting [CVE-2020-13409]
169444Tufin SecureTrack cross site scripting [CVE-2020-13408]
169443Tufin SecureTrack cross site scripting [CVE-2020-13407]
169442CASAP Automated Enrollment System users.php cross site scripting
169441emlog index.php information disclosure
169440Bitmessage PyBitmessage state issue [CVE-2021-26917] [Disputed]
169439Nop Solution Ltd nopCommerce Discount Coupon CheckDiscountCouponAttribute.cs cross site scripting
169438NetMotion Mobility Java deserialization [CVE-2021-26915]
169437NetMotion Mobility Java valueStringToObject deserialization
169436NetMotion Mobility Java deserialization [CVE-2021-26913]
169435NetMotion Mobility Java SupportRpcServlet deserialization
169434Firejail OverlayFS Mount toctou [CVE-2021-26910]
1694331Password SCIM Bridge Log File insufficiently protected credentials
169432Godot Engine TGA Image File stack-based overflow [CVE-2021-26826]
169431Godot Engine TGA Image File or load_image stack-based overflow
169430HPE Apollo 70 Baseboard Management Controller libifc.so uploadsshkey buffer overflow
169429HPE Apollo 70 Baseboard Management Controller libifc.so uploadsshkey command injection
169428HPE Apollo 70 Baseboard Management Controller libifc.so webdeletesolvideofile path traversal
169427HPE Apollo 70 Baseboard Management Controller libifc.so webdeletevideofile path traversal
169426HPE Apollo 70 Baseboard Management Controller libifc.so webgeneratesslcfg buffer overflow
169425HPE Apollo 70 Baseboard Management Controller libifc.so webgetactivexcfg buffer overflow
169424HPE Apollo 70 Baseboard Management Controller libifc.so webgetactivexcfg buffer overflow
169423HPE Apollo 70 Baseboard Management Controller libifc.so webifc_setadconfig buffer overflow
169422gitlog index.ts command injection
169421Apostrophe sanitize-html Whitelist access control [CVE-2021-26540]
169420Apostrophe sanitize-html Internationalized Domain Name access control
169419Cesanta Mongoose Connection Request mg_tls_init out-of-bounds write
169418Cesanta Mongoose Connection Request mg_tls_init out-of-bounds write
169417Cesanta Mongoose Connection Request mg_http_serve_file out-of-bounds write
169416ezXML XML File ezxml_new out-of-bounds write
169415ezXML XML File ezxml_new out-of-bounds write
169414ezXML XML File ezxml_toxml out-of-bounds write
169413set-or-get Prototype code injection [CVE-2021-25913]
169412Cosmos Ethermint EVM Module unknown vulnerability [CVE-2021-25837]
169411Cosmos Ethermint EVM Module state issue [CVE-2021-25836]
169410Cosmos Ethermint EVM Module authentication replay [CVE-2021-25835]
169409Cosmos Ethermint EVM Module authentication replay [CVE-2021-25834]
169408HPE Apollo 70 Baseboard Management Controller libifc.so websetdefaultlangcfg command injection
169407HPE Apollo 70 Baseboard Management Controller libifc.so websetlicensecfg buffer overflow
169406HPE Apollo 70 Baseboard Management Controller libifc.so websetremoteimageinfo buffer overflow
169405HPE Apollo 70 Baseboard Management Controller libifc.so websetservicecfg buffer overflow
169404HPE Apollo 70 Baseboard Management Controller libifc.so webupdatecomponent buffer overflow
169403HPE Apollo 70 Baseboard Management Controller libifc.so webstartflash buffer overflow
169402Micro Focus Operation Bridge Reporter OBR Server code injection
169401Fortinet FortiWeb API Endpoint cross site scripting [CVE-2021-22122]
169400marked Regex resource consumption [CVE-2021-21306]
169399CarrierWave manipulate code injection
169398Dynamoose set.ts dynamically-determined object attributes [CVE-2021-21304]
169397Netty temp file [CVE-2021-21290]
169396CarrierWave Download server-side request forgery [CVE-2021-21288]
169395httplib2 Authentication Header resource consumption [CVE-2021-21240]
169394IBM Cloud Pak for Automation Business Automation Application Designer log file
169393IBM Cloud Pak for Automation API Connection log file [CVE-2021-20358]
169392NetApp Clustered Data ONTAP AutoSupport Bundle information disclosure
169391NetApp OnCommand System Manager Cache unknown vulnerability [CVE-2020-8587]
169390NetApp Clustered Data ONTAP AutoSupport Bundle information disclosure
169389macfromip macfromip.js injection
169388node-ps index.js injection [CVE-2020-7785]
169387spritesheet-js generator.js injection [CVE-2020-7782]
169386Fortinet FortiIsolator session expiration [CVE-2020-6649]
169385libmysofa dataobject.c readDataVar buffer overflow
169384libmysofa mysofa_resampler_reset_mem heap-based overflow
169383libmysofa loudness heap-based overflow
169382libmysofa changeAttribute null pointer dereference
169381libmysofa verifyAttribute null pointer dereference
169380Secomea GateManager Web UI cross site scripting [CVE-2020-29021]
169379picoquic QUIC Frame picoquic_decode_stream_frame infinite loop
169378PHPOK Attachment Replacement api.php sql injection
169377GNOME Control Center Settings User Interface insufficiently protected credentials
169376Apache ActiveMQ Administration Console message.jsp cross site scripting
169375OTRS OTRSCIsInCustomerFrontend Config Item access control [CVE-2021-21436]
169374OTRS Ticket Print information disclosure [CVE-2021-21435]
169373OTRS Survey Agent Interface cross site scripting [CVE-2021-21434]
169372Online Marriage Registration System cross site scripting [CVE-2020-26052]
169371College Management System Php index.php sql injection
169370OTRS OTRSTicketForms Dynamic Template information disclosure
169369LibreNMS Top Devices Dashboard Widget TopDevicesController.php sql injection
169368Foxit PhantomPDF PDF File use after free [CVE-2020-13548]
169367Foxit PhantomPDF XFA Template out-of-bounds write [CVE-2020-27860]
169366PHP SoapClient query null pointer dereference
169365QEMU SCSI IO Request mptsas.c mptsas_process_scsi_io_request use after free
169364Signal TLS Proxy SNI information disclosure [Disputed]
169363NCR Command Center Agent CMCAgent os command injection [CVE-2021-3122] [Disputed]
169362sthttpd HTTP GET Request de_dotdot denial of service
169361wpDataTables sql injection [CVE-2021-26754]
169360OpenWrt IPv6 Router Advertisement infinite loop [CVE-2021-22161]
169359OpenEMR Patient Portal backup.php os command injection
169358cryptography Package Multi-GB Value Update integer overflow [CVE-2020-36242]
169357Svakom Siime Eye NFS Settings Menu IP os command injection
169356Svakom Siime Eye Web Server hard-coded password [CVE-2020-11915]
169355Jenzabar Search cross site scripting [CVE-2021-26723]
169354Micro Focus Application Performance Management cross-site request forgery
169353Micro Focus Application Performance Management cross site scripting
169352Huawei Mate 30 Module out-of-bounds read [CVE-2021-22306]
169351Huawei Mate 30 Module buffer overflow [CVE-2021-22305]
169350Huawei Taurus-AL00A Module use after free [CVE-2021-22304]
169349Huawei Taurus-AL00A Multi-Thread double free [CVE-2021-22303]
169348Huawei Taurus-AL00A Module out-of-bounds read [CVE-2021-22302]
169347Huawei eCNS280_TD Temporary Files information disclosure [CVE-2021-22300]
169346Huawei ManageOne/NFV_FusionSphere/SMC/iMaster MAE-M access control
169345Huawei ManageOne sql injection [CVE-2021-22298]
169344Huawei Campusesight/ManageOne/Taurus-AL00A HTTP Request information disclosure
169343Huawei eCNS280 Message resource consumption [CVE-2021-22292]
169342Huawei ManageOne CSV csv injection [CVE-2020-9205]
169341Huawei AIS-BW80H-00 improper validation of integrity check value
169340Asus RT-AX3000 Login Error denial of service [CVE-2021-3229]
169339LinkedIn Oncall Messages query cross site scripting
169338Huawei Mate 30 risky encryption [CVE-2021-22307]
169337Huawei Mate 30 buffer overflow [CVE-2021-22301]
169336Helm injection [CVE-2021-21303]
169335ImageMagick gem.c divide by zero
169334NVIDIA GeForce Experience GameStream rxdiag.dll denial of service
169333Epson iProjection Driver File EMP_MPAU.sys null pointer dereference
169332Epson iProjection Device Driver EMP_NSAU.sys denial of service
169331Tenable Nessus AMI certificate validation [CVE-2020-5812]
169330PDF2JSON PDF File buffer overflow [CVE-2020-18750]
169329Red Hat Enterprise Linux dnsmasq access control [CVE-2020-14312]
169328Max Secure Max Spyware Detector Driver MaxProc64.sys memory corruption
169327Oppo Phone information disclosure [CVE-2020-11836]
169326Zulip Desktop Request permission [CVE-2020-10858]
169325Zulip Desktop shell.openItem Remote Privilege Escalation
169324Psyprax Password inadequate encryption [CVE-2020-10554]
169323Psyprax Lockscreen PPScreen.ini permission
169322Psyprax Firebird Database access control [CVE-2020-10552]
169321New Media Smarty data.mdb inadequate encryption
169320IObit Advanced SystemCare Device Driver AscRegistryFilter.sys denial of service
169319Gitea denial of service [CVE-2021-3382]
169318Question2Answer Q2A Ultimate SEO cross site scripting [CVE-2021-3258]
169317IBM PowerHA Discovery information disclosure [CVE-2020-4832]
169316typora cross site scripting [CVE-2020-18737]
169315Opmantek Open-AudIT SQL Statement cross site scripting [CVE-2021-3333]
169314October CMS Manager.php improper authentication
169313Redwood Report2Web default.htm injection
169312Redwood Report2Web signIn.do cross site scripting
169311Linux Kernel VSOCK af_vsock.c race condition
169310Name Directory Plugin cross-site request forgery [CVE-2021-20652]
169309Panasonic Video Insight VMS code injection [CVE-2021-20623]
169308Electric Coin Company Zcashd Time Offset information disclosure
169307Electric Coin Company Zcashd Timestamp authorization [CVE-2020-8806]
169306GNOME gnome-autoar Extraction autoar-extractor.c pathname traversal
169305Zoho ManageEngine Applications Manager com.adventnet.appmanager.filter.UriCollector showresource.do sql injection
169304ZZZCMS zzzphp zzz_template.php sql injection
169303RockOA wordAction.php sql injection
169302RockOA wordModel.php getdata sql injection
169301RockOA customerAction.php sql injection
169300Epikur checkPasswort backdoor
169299Epikur hash without salt [CVE-2020-10538]
169298Epikur Service Port 4848 improper authentication [CVE-2020-10537]
169297Google Chrome V8 heap-based overflow [CVE-2021-21148]
169296Trend Micro Apex One out-of-bounds write [CVE-2021-25249]
169295Trend Micro Apex One/OfficeScan/Worry-Free Business Security Named Pipe out-of-bounds read
169294Trend Micro Apex One information disclosure [CVE-2021-25246]
169293Trend Micro Worry-Free Business Security access control [CVE-2021-25245]
169292Trend Micro Worry-Free Business Security access control [CVE-2021-25244]
169291Trend Micro Apex One access control [CVE-2021-25243]
169290Trend Micro Apex One access control [CVE-2021-25242]
169289Trend Micro Apex One/Worry-Free Business Security server-side request forgery
169288Trend Micro Apex One access control [CVE-2021-25240]
169287Trend Micro Apex One access control [CVE-2021-25239]
169286Trend Micro OfficeScan XG/Worry-Free Business Security information disclosure
169285Trend Micro Apex One access control [CVE-2021-25237]
169284Trend Micro OfficeScan XG/Worry-Free Business Security server-side request forgery
169283Trend Micro Apex One/OfficeScan XG Configuration File access control
169282Trend Micro Apex One Configuration File access control [CVE-2021-25234]
169281Trend Micro Apex One access control [CVE-2021-25233]
169280Trend Micro Apex One/OfficeScan XG access control [CVE-2021-25232]
169279Trend Micro Apex One access control [CVE-2021-25231]
169278Trend Micro Apex One/OfficeScan XG access control [CVE-2021-25230]
169277Trend Micro Apex One/OfficeScan XG access control [CVE-2021-25229]
169276Trend Micro Apex One access control [CVE-2021-25228]
169275Trend Micro Antivirus Scanning Engine memory allocation [CVE-2021-25227]
169274Cisco IOS XR/NX-OS IPv6 Access Control List access control [CVE-2021-1389]
169273Cisco IOS XR Command Line os command injection [CVE-2021-1370]
169272Cisco Unified Computing System Registration API certificate validation
169271Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169270Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169269Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169268Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169267Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169266Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169265Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169264Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169263Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169262Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169261Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169260Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169259Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169258Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169257Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169256Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169255Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169254Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169253Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169252Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169251Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169250Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169249Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169248Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169247Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169246Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169245Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169244Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169243Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169242Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface stack-based overflow
169241Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface command injection
169240Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface command injection
169239Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface command injection
169238Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface command injection
169237Cisco RV016/RV042/RV042G/RV082/RV320/RV325 Web-based Management Interface command injection
169236Cisco IOS XR resource management [CVE-2021-1313]
169235Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface pathname traversal
169234Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface pathname traversal
169233Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169232Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169231Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169230Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169229Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169228Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169227Cisco RV160/RV160W/RV260/RV260P/RV260W Web-based Management Interface Remote Code Execution
169226Cisco IOS XR denial of service [CVE-2021-1288]
169225Cisco IOS XR IPv6 denial of service [CVE-2021-1268]
169224Cisco Managed Services Accelerator REST API denial of service
169223Cisco IOS XR signature verification [CVE-2021-1244]
169222Cisco IOS XR SNMP access control [CVE-2021-1243]
169221Cisco WebEx Meetings/WebEx Meetings Server Meeting Invitation Email input validation
169220Cisco IOS XR signature verification [CVE-2021-1136]
169219Cisco IOS XR CLI Parser insertion of sensitive information into sent data
169218Google Android WLAN Driver denial of service [CVE-2021-0351]
169217Google Android ged denial of service [CVE-2021-0350]
169216Google Android Display Driver memory corruption [CVE-2021-0349]
169215Google Android vpu out-of-bounds write [CVE-2021-0348]
169214Google Android ccu out-of-bounds read [CVE-2021-0347]
169213Google Android vpu out-of-bounds write [CVE-2021-0346]
169212Google Android mobile_log_d privileges management
169211Google Android mtkpower memory corruption [CVE-2021-0344]
169210Google Android kisd out-of-bounds write [CVE-2021-0343]
169209IBM QRadar SIEM denial of service [CVE-2020-5032]
169208IBM API Connect HTTP Request input validation [CVE-2020-4828]
169207IBM API Connect cross-site request forgery [CVE-2020-4827]
169206IBM API Connect cross-site request forgery [CVE-2020-4826]
169205IBM API Connect Web UI cross site scripting [CVE-2020-4825]
169204IBM API Connect URL Fragment information disclosure [CVE-2020-4640]
169203Netgear R7450 SOAP API endpoint access control [CVE-2020-27873]
169202Netgear R7450 mini_httpd improper authorization [CVE-2020-27872]
169201Decal Package extend Remote Code Execution
169200Decal Package set Remote Code Execution
169199Opart Devis resource injection [CVE-2020-16194]
169198LG Mobile Devices USB laf Gadget use after free [CVE-2021-26689]
169197LG Wing Mobile Devices Biometric Sensor unknown vulnerability
169196LG Mobile Device unknown vulnerability [CVE-2021-26687]
169195SonicWall SSLVPN SMA100 sql injection [CVE-2021-20016]
169194Rockwell Automation Flex IO ENIP Request Path Network Segment denial of service
169193SoftMaker Office PlanMaker heap-based overflow [CVE-2020-27249]
169192SoftMaker Office PlanMaker heap-based overflow [CVE-2020-27248]
169191SoftMaker Office PlanMaker heap-based overflow [CVE-2020-27247]
169190HCL OneTest Performance excessive authentication [CVE-2020-14247]
169189HCL OneTest Performance Basic Authentication improper authentication
169188HCL OneTest UI resource consumption [CVE-2020-14245]
169187SoftMaker Office PlanMaker heap-based overflow [CVE-2020-13586]
169186SoftMaker Office PlanMaker heap-based overflow [CVE-2020-13580]
169185SoftMaker Office PlanMaker integer underflow [CVE-2020-13579]
169184Bitcoin Core bitcoin-qt state issue [CVE-2021-3401]
169183Favorites Component resource injection [CVE-2021-26024]
169182Favorites Component cross site scripting [CVE-2021-26023]
169181SquaredUp Dashboard cross site scripting [CVE-2020-9390]
169180SquaredUp Login timing discrepancy [CVE-2020-9389]
169179SquaredUp Dashboard cross-site request forgery [CVE-2020-9388]
169178SolarWinds Serv-U Home Directory permission [CVE-2021-25276]
169177SolarWinds Orion Platform SQL Server Backend access control [CVE-2021-25275]
169176SolarWinds Orion Platform MSMQ permission [CVE-2021-25274]
169175com.squareup:connect System Property prepareDownloadFilecreates temp file
169174NetApp Clustered Data ONTAP information disclosure [CVE-2020-8589]
169173NetApp Clustered Data ONTAP information disclosure [CVE-2020-8588]
169172Nextcloud Server Markdown cross site scripting [CVE-2020-8294]
169171Realtek RTL8195A WPA2 Handshake ClientEAPOLKeyRecvd stack-based overflow
169170Realtek RTL8195A WPA2 Handshake DecWPA2KeyData stack-based overflow
169169JetBrains YouTrack Project information disclosure [CVE-2021-25771]
169168Realtek RTL8195A WPA2 Handshake DecWPA2KeyData stack-based overflow
169167Realtek RTL8195A WPA2 Handshake CheckMic stack-based overflow
169166Alt-N MDaemon Webmail Contact List cross site scripting [CVE-2020-18724]
169165Alt-N MDaemon Webmail File Attachment cross site scripting [CVE-2020-18723]
169164Apache Shiro Spring Support improper authentication [CVE-2020-17523]
169163Apache Cassandra missing encryption [CVE-2020-17516]
169162Zoho ManageEngine Remote Access Plus User Administration Screen injection
169161JetBrains TeamCity User permission [CVE-2021-25778]
169160JetBrains TeamCity Token Removal permission [CVE-2021-25777]
169159JetBrains TeamCity ECR Token information disclosure [CVE-2021-25776]
169158JetBrains TeamCity Access Token access control [CVE-2021-25775]
169157JetBrains TeamCity GitHub Access Token information disclosure
169156JetBrains TeamCity cross site scripting [CVE-2021-25773]
169155JetBrains TeamCity Server Integration denial of service [CVE-2021-25772]
169154JetBrains YouTrack Project information disclosure [CVE-2021-25771]
169153JetBrains YouTrack Template injection [CVE-2021-25770]
169152JetBrains YouTrack Attachment unknown vulnerability [CVE-2021-25769]
169151JetBrains YouTrack Attachment permission [CVE-2021-25768]
169150JetBrains YouTrack Command information disclosure [CVE-2021-25767]
169149JetBrains YouTrack access control [CVE-2021-25766]
169148JetBrains YouTrack Attachment Upload cross-site request forgery
169147JetBrains Ktor risky encryption [CVE-2021-25763]
169146JetBrains Ktor HTTP Request request smuggling [CVE-2021-25762]
169145JetBrains Ktor SessionStorage Key inadequate encryption [CVE-2021-25761]
169144JetBrains Hub Public API information disclosure [CVE-2021-25760]
169143JetBrains Hub 2FA Settings denial of service [CVE-2021-25759]
169142JetBrains IntelliJ IDEA Workspace Model deserialization [CVE-2021-25758]
169141JetBrains Hub redirect [CVE-2021-25757]
169140JetBrains IntelliJ IDEA HTTP Links cleartext transmission [CVE-2021-25756]
169139JetBrains Code With Me Session ID random values [CVE-2021-25755]
169138JetBrains TeamCity Plugin server-side request forgery [CVE-2020-35667]
169137SolarWinds Serv-U cross site scripting [CVE-2020-35482]
169136SolarWinds Serv-U Macro injection [CVE-2020-35481]
169135JetBrains Kotlin Java API temp file [CVE-2020-29582]
169134RainbowFish PacsOne Server information disclosure [CVE-2020-29166]
169133HP Access Control access control [CVE-2020-29165]
169132RainbowFish PacsOne Server cross site scripting [CVE-2020-29164]
169131RainbowFish PacsOne Server sql injection [CVE-2020-29163]
169130Wind River VxWorks calloc memory corruption
169129Zoho ManageEngine OpManager Smart Update Manager Servlet Remote Privilege Escalation
169128Moxa EDR-810/EDR-G902/EDR-G903 Remote Privilege Escalation [CVE-2020-28144]
169127SolarWinds Serv-U cross site scripting [CVE-2020-28001]
169126SolarWinds Serv-U pathname traversal [CVE-2020-27994]
169125Eclipse Californium Certificate state issue [CVE-2020-27222]
169124JetBrains YouTrack REST API information disclosure [CVE-2020-25208]
169123QNAP QTS Helpdesk access control [CVE-2020-2507]
169122QNAP QTS Helpdesk os command injection [CVE-2020-2506]
169121Apple macOS WebRTC redirect [CVE-2021-1799]
169120Apple macOS WebKit Remote Code Execution [CVE-2021-1870]
169119Apple macOS WebKit Remote Code Execution [CVE-2021-1871]
169118Apple macOS WebKit type confusion [CVE-2021-1789]
169117Apple macOS WebKit access control [CVE-2021-1801]
169116Apple macOS WebKit access control [CVE-2021-1765]
169115Apple macOS WebKit use after free [CVE-2021-1788]
169114Apple macOS Swift memory corruption [CVE-2021-1769]
169113Apple macOS SQLite sql injection [CVE-2020-15358]
169112Apple macOS Screen Sharing unknown vulnerability [CVE-2020-14155]
169111Apple macOS Screen Sharing unknown vulnerability [CVE-2019-20838]
169110Apple macOS Power Management state issue [CVE-2020-27938]
IDTitleNessusOpenVASSnortSuricataTippingPoint
169109Apple macOS OpenLDAP denial of service [CVE-2020-25709]
169108Apple macOS NetFSFramework state issue [CVE-2021-1751]
169107Apple macOS Model IO out-of-bounds read [CVE-2021-1768]
169106Apple macOS Model I/O out-of-bounds read [CVE-2021-1753]
169105Apple macOS Model IO out-of-bounds read [CVE-2021-1745]
169104Apple macOS Model IO heap-based overflow [CVE-2021-1767]
169103Apple macOS Model IO buffer overflow [CVE-2021-1763]
169102Apple macOS Model IO Remote Code Execution [CVE-2020-29614]
169101Apple macOS Model IO out-of-bounds write [CVE-2021-1762]
169100Apple macOS Messages access control [CVE-2021-1771]
169099Apple macOS Login Window improper authentication [CVE-2020-29633]
169098Apple macOS Kernel behavioral workflow [CVE-2021-1750]
169097Apple macOS Kernel race condition [CVE-2021-1782]
169096Apple macOS Kernel use after free [CVE-2021-1764]
169095Apple macOS Kernel memory corruption [CVE-2020-27904]
169094Apple macOS IOSkywalkFamily out-of-bounds read [CVE-2021-1757]
169093Apple macOS IOKit state issue [CVE-2021-1779]
169092Apple macOS ImageIO out-of-bounds write [CVE-2021-1744]
169091Apple macOS ImageIO out-of-bounds write [CVE-2021-1738]
169090Apple macOS ImageIO out-of-bounds write [CVE-2021-1737]
169089Apple macOS ImageIO Remote Code Execution [CVE-2021-1793]
169088Apple macOS ImageIO Remote Code Execution [CVE-2021-1777]
169087Apple macOS ImageIO Remote Code Execution [CVE-2021-1774]
169086Apple macOS ImageIO Remote Code Execution [CVE-2021-1754]
169085Apple macOS ImageIO Remote Code Execution [CVE-2021-1746]
169084Apple macOS ImageIO Remote Code Execution [CVE-2021-1742]
169083Apple macOS ImageIO state issue [CVE-2021-1818]
169082Apple macOS ImageIO denial of service [CVE-2021-1766]
169081Apple macOS ImageIO out-of-bounds read [CVE-2021-1785]
169080Apple macOS ImageIO out-of-bounds read [CVE-2021-1736]
169079Apple macOS ImageIO out-of-bounds read [CVE-2021-1778]
169078Apple macOS denial of service [CVE-2021-1773]
169077Apple macOS ImageIO out-of-bounds read [CVE-2021-1743]
169076Apple macOS ImageIO out-of-bounds read [CVE-2021-1741]
169075Apple macOS ImageIO memory corruption [CVE-2021-1783]
169074Apple macOS FontParser out-of-bounds read [CVE-2021-1758]
169073Apple macOS FontParser out-of-bounds read [CVE-2020-29608]
169072Apple macOS FontParser Remote Code Execution [CVE-2021-1775]
169071Apple macOS FontParser out-of-bounds read [CVE-2021-1790]
169070Apple macOS FairPlay out-of-bounds read [CVE-2021-1791]
169069Apple macOS Endpoint Security state issue [CVE-2021-1802]
169068Apple macOS Directory Utility state issue [CVE-2020-27937]
169067Apple macOS Crash Reporter state issue [CVE-2021-1786]
169066Apple macOS Crash Reporter behavioral workflow [CVE-2021-1787]
169065Apple macOS Crash Reporter denial of service [CVE-2021-1761]
169064Apple macOS CoreText out-of-bounds read [CVE-2021-1792]
169063Apple macOS CoreText stack-based overflow [CVE-2021-1772]
169062Apple macOS CoreMedia out-of-bounds read [CVE-2021-1759]
169061Apple macOS CoreGraphics out-of-bounds write [CVE-2021-1776]
169060Apple macOS CoreAudio out-of-bounds write [CVE-2021-1747]
169059Apple macOS CoreAnimation memory corruption [CVE-2021-1760]
169058Apple macOS CFNetwork Cache integer overflow [CVE-2020-27945]
169057Apple macOS APFS permission [CVE-2021-1797]
169056Apple macOS Analytics denial of service [CVE-2021-1761]
169055Pryaniki Attachment cross site scripting [CVE-2021-3395]
169054dotty Prototype code injection [CVE-2021-25912]
169053TIBCO EBX Web Server cross site scripting [CVE-2021-23271]
169052Http4s Connection resource consumption [CVE-2021-21294]
169051blaze Connection resource consumption [CVE-2021-21293]
169050Traccar GPS Tracking System unquoted search path [CVE-2021-21292]
169049OAuth2 Proxy Domain Whitelist access control [CVE-2021-21291]
169048Mechanize FileResponse#read_body command injection
169047Adobe Consulting Services ACS Commons JCR Character page-compare cross site scripting
169046Podman improper authentication [CVE-2021-20199]
169045Google Android Display Driver use after free [CVE-2021-0365]
169044Google Android mobile_log_d command injection
169043Google Android mobile_log_d command injection
169042Google Android aee stack-based overflow [CVE-2021-0362]
169041Google Android kisd out-of-bounds read [CVE-2021-0361]
169040Google Android netdiag out-of-bounds write [CVE-2021-0360]
169039Google Android netdiag out-of-bounds write [CVE-2021-0359]
169038Google Android netdiag command injection [CVE-2021-0358]
169037Google Android netdiag out-of-bounds write [CVE-2021-0357]
169036Google Android netdiag command injection [CVE-2021-0356]
169035Google Android kisd out-of-bounds write [CVE-2021-0355]
169034Google Android ged out-of-bounds write [CVE-2021-0354]
169033Google Android kisd heap-based overflow [CVE-2021-0353]
169032Google Android RT Regmap Driver memory corruption [CVE-2021-0352]
169031Intel Server Board M10JNP2SB Firmware input validation [CVE-2020-8734]
169030Intel Core/Celeron Processor 4000 BIOS Firmware out-of-bounds read
169029freediskspace freediskspace.js neutralization
169028HCL Digital Experience WSRP Consumer cross site scripting [CVE-2020-4081]
169027Cloudflare WARP unquoted search path [CVE-2020-35152]
169026Harbor Registry API access control [CVE-2020-29662]
169025elliptic secp256k1 key.js cryptographic issues
169024BlueZ denial of service [CVE-2020-24490]
169023Facebook WhatsApp/WhatsApp Business Image out-of-bounds write
169022HCL Digital Experience Container information disclosure [CVE-2020-14255]
169021HCL Digital Experience information disclosure [CVE-2020-14221]
169020Belkin Linksys WRT160NL mini_httpd apply.cgi do_upgrade_post os command injection
169019Docker Docker Image Manifest resource consumption [CVE-2021-21285]
169018Docker Remapped Root path traversal
169017IBM Content Navigator URL Request path traversal [CVE-2020-4934]
169016D-Link DNS-320 system_mgr.cgi command injection
169015D-Link DSR-250/DSR-1000N UPnP Service command injection [CVE-2020-18568]
169014loklak API path traversal [CVE-2020-15097]
169013MIT krb5-appl rcp Client access control [CVE-2019-25018]
169012MIT krb5-appl rcp pathname traversal [CVE-2019-25017]
169011ADT LifeShield DIY HD Video Doorbell HTTP Interface command injection
169010total.js set code injection
169009total.js image.stream injection
169008Django Archive django.utils.archive.extract path traversal
169007UCOPIA Wi-Fi Appliance Administration Shell CLI sandbox [CVE-2020-25036]
169006UCOPIA Wi-Fi Appliance chroothole_client unknown vulnerability
169005uIP Domain Name memory corruption [CVE-2020-24335]
169004Facebook Hermes stack-based overflow [CVE-2020-1896]
169003UCOPIA Wi-Fi Appliance Command unrestricted upload [CVE-2020-25037]
169002FortiLogger SaveUploadedHotspotLogoFile unrestricted upload
169001Wikindx cross site scripting [CVE-2021-3340]
169000Hashicorp Nomad/Nomad Enterprise Java Task Driver unknown vulnerability
168999Hashicorp Vault/Vault Enterprise Rast Operator Command improper authentication
168998Hashicorp Vault/Vault Enterprise information disclosure [CVE-2021-3024]
168997Launchpad Stop command injection [CVE-2021-23330]
168996MinIO server-side request forgery [CVE-2021-21287]
168995AVideo Platform authorization [CVE-2021-21286]
168994angular-expressions expressions.compile injection
168993Polr Setup finish comparison
168992openHAB xml external entity reference [CVE-2021-21266]
168991Atlassian JIRA Server/Data Center Metadata resource injection
168990ASUS RT-AX86U httpd module blocking_request.cgi buffer overflow
168989jinja2 Markdown incorrect regex [CVE-2020-28493]
168988kill-process-on-port a.getProcessPortId command injection
168987accel-ppp Attribute packet.c integer underflow
168986Hashicorp Vault/Vault Enterprise Secrets Engine information disclosure
168985EasyCMS cross-site request forgery [CVE-2020-24271]
168984koa2-blog Signup Page sql injection [CVE-2020-21180]
168983koa2-blog Signin Page sql injection [CVE-2020-21179]
168982ThinkJS model.decrement sql injection
168981CMSWing rechargeAction sql injection
168980CMSWing updateAction sql injection
168979CMSWing Log sql injection [CVE-2020-20294]
168978yccms pathname traversal [CVE-2020-20290]
168977yccms no_top sql injection
168976yccms xhUp unrestricted upload
168975FishEye/Crucible Response Header information disclosure [CVE-2020-14192]
168974phpGACL HTTP Request cross site scripting [CVE-2020-13564]
168973phpGACL HTTP Request cross site scripting [CVE-2020-13563]
168972phpGACL Template cross site scripting [CVE-2020-13562]
168971TK-Star Q90 Junior GPS Horloge SIM Card PIN locking [CVE-2019-20473]
168970TK-Star Q90 Junior GPS Horloge hard-coded password [CVE-2019-20471]
168969TK-Star Q90 Junior GPS Horloge Communication Channel hard-coded password
168968TK-Star Q90 Junior GPS Horloge SeTracker2 permission [CVE-2019-20468]
168967Backdoor.Win32.Buterat.cxq permission
168966Backdoor.Win32.Celine Service Port 4523 improper authentication
168965Delete Account Plugin deleteaccount.php cross site scripting
168964GNOME Evolution Valid Signature signature verification [CVE-2021-3349] [Disputed]
168963Linux Kernel IO Request nbd.c nbd_add_socket use after free
168962Monal Message Carbon injection [CVE-2020-26547]
168961Mofi Network MOFI4500-4GXeLTE Authentication os command injection
168960Mofi Network MOFI4500-4GXeLTE improper authentication [CVE-2020-15835]
168959Mofi Network MOFI4500-4GXeLTE Web-Management Interface information disclosure
168958Mofi Network MOFI4500-4GXeLTE Dropbear SSH Daemon rom access control
168957Mofi Network MOFI4500-4GXeLTE Private Key poof.cgi denial of service
168956Mofi Network MOFI4500-4GXeLTE One-Time Password improper authentication
168955Mofi Network MOFI4500-4GXeLTE LuCI wizard access control
168954Mofi Network MOFI4500-4GXeLTE backdoor [CVE-2020-13858]
168953Mofi Network MOFI4500-4GXeLTE HTTP GET Request poof.cgi denial of service
168952Mofi Network MOFI4500-4GXeLTE Support File improper authentication
168951package nested-object-assign Prototype code injection [CVE-2021-23329]
168950Backdoor.Win32.Anaptix.bd permission
168949QEMU SDHCI Device Emulator sdhci.c sdhci_sdma_transfer_multi_blocks denial of service
168948Nim asyncftpclient injection [CVE-2020-15690]
168947madCodeHook toctou [CVE-2020-14418]
168946Apache Druid cross site scripting [CVE-2021-25646]
168945HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168944HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168943HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168942HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168941HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168940HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168939HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168938HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168937HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168936HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware path traversal
168935HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware path traversal
168934HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168933HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware buffer overflow
168932HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware path traversal
168931HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller cloudline_cl3100_gen10_server_firmware path traversal
168930Markdown plugin resource consumption [CVE-2021-21254]
168929D-Link DIR-825 R1 Web Interface buffer overflow [CVE-2020-29557]
168928Hitachi Vantara Pentaho Dashboard Editor dashboardXml cross site scripting
168927Hitachi Vantara Pentaho New Analysis Report cross site scripting
168926Hitachi Vantara Pentaho Analysis Report cross site scripting
168925Hitachi Vantara Pentaho Dashboard Editor xml external entity reference
168924Hitachi Vantara Pentaho Dashboard Editor cross site scripting
168923TerraMaster TOS Parameter exportUser.php code injection
168922Linux Kernel PI Futex use after free [CVE-2021-3347]
168921Foris Login Template cross site scriting [CVE-2021-3346]
168920Libgcrypt hash-common.c _gcry_md_block_write heap-based overflow
168919ZIV Automation 4CCT-EA6-334126BF improper authentication [CVE-2021-25910]
168918ZIV Automation 4CCT-EA6-334126BF Service Port 7919 denial of service
168917HPE Cloudline CL5800 Gen9 Server Baseboard Management Controller addlicense_func buffer overflow
168916ini_parser.js Prototype injection [CVE-2021-23328]
168915Mitsubishi Electric MELFA FR Communication denial of service
168914Collabtive Profile Edit Page cross site scripting [CVE-2021-3298]
168913Mitel BusinessCTI Enterprise Client Chat Window information disclosure
168912Sangoma Asterisk SIP Message res_pjsip_diversion.c denial of service
168911Mitel MiCollab NuPoint Messenger access control [CVE-2020-35547]
168910Acronis True Image DLL untrusted search path [CVE-2020-35145]
168909MantisBT Private Project bug_actiongroup_page.php access control
168908MantisBT Private Project bug_actiongroup.php access control
168907MantisBT Private Project manage_proj_edit_page.php access control
168906RSA Archer API access control [CVE-2020-29538]
168905RSA Archer redirect [CVE-2020-29537]
168904RSA Archer Service File information disclosure [CVE-2020-29536]
168903RSA Archer cross site scripting [CVE-2020-29535]
168902Push Extension API information disclosure [CVE-2020-29005]
168901Push Extension API ApiPushBase.php cross-site request forgery
168900Star Practice Management Web Job improper authorization [CVE-2020-28406]
168899Star Practice Management Web improper authorization [CVE-2020-28405]
168898Star Practice Management Web Billing Page improper authorization
168897Star Practice Management Web cross-site request forgery [CVE-2020-28403]
168896Star Practice Management Web Launcher Configuration Panel improper authorization
168895Star Practice Management Web WIP Detail improper authorization
168894Istio Pilot API Endpoint debug.go getResourceVersion null pointer dereference
168893DH2i DxEnterprise/DxOdyssey DxWebEngine path traversal [CVE-2021-3341]
168892Hide-Thread-Content Plugin Postbit authorization [CVE-2021-3337]
168891wolfSSL RSA Signature tls13.c DoTls13CertificateVerify certificate validation
168890ACA Assurex Rentes Assuweb deserialization [CVE-2021-3160]
168889marc Crate memory corruption [CVE-2021-26308]
168888raw-cpuid Crate __cpuid_count denial of service
168887raw-cpuid Crate as_string resource consumption
168886cdr Crate read_vec memory corruption
168885PHPGurukul Daily Expense Tracker System add-expense.php cross site scripting
168884PHPGurukul Daily Expense Tracker System user-profile.php cross site scripting
168883Testes de Codigo injection [CVE-2021-25647]
168882Revive Adserver stats.php cross site scripting
168881Revive Adserver userlog-index.php cross site scripting
168880Moodle Shibboleth Authentication code injection [CVE-2021-20187]
168879Moodle TeX Notation Filter cross site scripting [CVE-2021-20186]
168878Moodle Messaging resource consumption [CVE-2021-20185]
168877Moodle Web Services information disclosure [CVE-2021-20184]
168876Moodle Search Query cross site scripting [CVE-2021-20183]
168875NetApp OnCommand Unified Manager Core Package PuTTY Link information disclosure
168874IBM QRadar SIEM Serialized Java Object deserialization [CVE-2020-4888]
168873IBM MQ deserialization [CVE-2020-4682]
168872EGavilan Media CRUD Operation Add New Record Feature cross site scripting
168871Opensolution Quick.CMS/Quick.Cart Language Tab code injection
168870QEMU virtio-fs Shared File System Daemon access control [CVE-2020-35517]
168869Electron IPC Message exposure of resource [CVE-2020-26272]
168868Red Hat KeyCloak Access Token access control [CVE-2020-1725]
168867Red Hat Mobile Application Platform Logout Endpoint redirect
168866OpenEMR HTTP Request cross-site request forgery [CVE-2020-13569]
168865OpenDoas permission assignment [CVE-2019-25016]
168864Packed.Win32.Katusha.o C:\Users\\bkkYoIYg\BkkMEYcs.exe permission
168863Backdoor.Win32.MiniBlackLash Service Port 60000 denial of service
168862Backdoor.Win32.Mhtserv.b Service Port 1043 improper authentication
168861Backdoor.Win32.Zetronic Service Port 2090 denial of service
168860Backdoor.Win32.Zhangpo Service Port 9689 denial of service
168859NEC Aterm WG2600HP/Aterm WG2600HP2 cross site scripting [CVE-2021-20622]
168858NEC Aterm WG2600HP/Aterm WG2600HP2 cross-site request forgery
168857NEC Aterm WF800HP cross site scripting [CVE-2021-20620]
168856Logstorage/ELC Analytics Log File os command injection [CVE-2020-5626]
168855Mautic Referer Header cross site scripting [CVE-2020-35124]
168854Atlassian Bamboo Endpoint chart information disclosure
168853Accfly Wireless Security IR Camera System 720P Update Procedure FtpLogin stack-based overflow
168852Accfly Wireless Security IR Camera System 720P Message SubOprMsg stack-based overflow
168851Accfly Wireless Security IR Camera System 720P Message OprMsg heap-based overflow
168850Accfly Wireless Security IR Camera 720P Message ServerIP_Proto_Set stack-based overflow
168849WinSCP URL injection [CVE-2021-3331]
168848GNU C Library ISO-2022-JP-3 Encoding denial of service [CVE-2021-3326]
168847Monitorix Basic Authentication improper authentication [CVE-2021-3325]
168846DzzOffice ajax.php cross site scripting
168845GoDaddy node-config-shield set Command cli.js access control [Disputed]
168844Apache ActiveMQ Artemis OpenWire Protocol access control [CVE-2021-26118]
168843Apache ActiveMQ/ActiveMQ Artemis LDAP Login Module improper authentication
168842HTCondor Job improper authentication [CVE-2021-25312]
168841HTCondor condor_credd pathname traversal
168840Trend Micro HouseCall for Home Networks access control [CVE-2021-25247]
168839Trend Micro ServerProtect Scan Engine resource consumption [CVE-2021-25226]
168838Trend Micro ServerProtect Scheduled Scan denial of service [CVE-2021-25225]
168837Trend Micro ServerProtect Manual Scan denial of service [CVE-2021-25224]
168836Fuji Electric Tellus Lite V-Simulator/V-Server Lite Project File out-of-bounds read
168835Fuji Electric Tellus Lite V-Simulator/V-Server Lite Project File out-of-bounds write
168834Fuji Electric Tellus Lite V-Simulator/V-Server Lite Project File heap-based overflow
168833Fuji Electric Tellus Lite V-Simulator/V-Server Lite Project File uninitialized pointer
168832Fuji Electric Tellus Lite V-Simulator/V-Server Lite Project File stack-based overflow
168831IBM Jazz Foundation Web UI cross site scripting [CVE-2021-20357]
168830Vmware Spring Cloud Task TaskExplorer sql injection [CVE-2020-5428]
168829Vmware Spring Cloud Data Flow Task Execution sql injection [CVE-2020-5427]
168828IBM Cloud Pak for Security HTTP Header information disclosure
168827IBM Security Guardium access control [CVE-2020-4952]
168826IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4865]
168825IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4855]
168824IBM Cloud Pak for Security Web UI cross site scripting [CVE-2020-4820]
168823IBM Cloud Pak for Security cleartext transmission [CVE-2020-4816]
168822IBM Cloud Pak for Security HTTP Response Header information disclosure
168821IBM QRadar SIEM path traversal [CVE-2020-4789]
168820IBM QRadar SIEM server-side request forgery [CVE-2020-4787]
168819IBM QRadar SIEM server-side request forgery [CVE-2020-4786]
168818IBM Cloud Pak for Security information exposure [CVE-2020-4628]
168817IBM Jazz Foundation clickjacking [CVE-2020-4547]
168816IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4524]
168815IBM Security Guardium Response Header information disclosure
168814BDTASK Multi-Store Inventory Management System cross site scripting
168813PHPList Hash comparison [CVE-2020-23361]
168812osCommerce User Registration administrators.php comparison
168811WeBid Registration newuser.php comparison
168810Nibbleblog Hash login.class.phpin improper authentication
168809Codiad Hash class.user.php Authenticate improper authentication
168808Z-BlogPHP Hash include.php passwordvisit_input_password improper authentication
168807Apple Xcode IDE path traversal [CVE-2021-1800]
168806Apple iCloud ImageIO out-of-bounds read [CVE-2020-29619]
168805Apple iCloud ImageIO out-of-bounds read [CVE-2020-29617]
168804Apple iCloud ImageIO out-of-bounds read [CVE-2020-29618]
168803Apple iCloud ImageIO out-of-bounds write [CVE-2020-29611]
168802Apple tvOS Kernel race condition [CVE-2021-1782]
168801Apple watchOS Kernel race condition [CVE-2021-1782]
168800Apple iOS/iPadOS WebKit Remote Code Execution [CVE-2021-1870]
168799Apple iOS/iPadOS WebKit Remote Code Execution [CVE-2021-1871]
168798Apple iOS/iPadOS Kernel race condition [CVE-2021-1782]
168797JasPer libjasper jp2_dec.c jp2_decode heap-based overflow
168796KLog Server async.php shell_exec command injection
168795Wekan Connection ldap.js certificate validation
168794SmartAgent users permission assignment
168793CKeditor Autolink Plugin incorrect regex [CVE-2021-26272]
168792CKeditor Dialogs Plugin incorrect regex [CVE-2021-26271]
168791Flarum Sticky Extension cross site scripting [CVE-2021-21283]
168790RSSHub injection [CVE-2021-21278]
168789Tendermint Core resource consumption [CVE-2021-21271]
168788NVIDIA Jetson AGX Xavier INA3221 Driver access control [CVE-2021-1071]
168787NVIDIA Jetson AGX Xavier apply_binaries.sh access control
168786Winmail HTTP app.php server-side request forgery
168785Winmail convert.php cross site scripting
168784Backdoor.Win32.Wollf.14 Service Port 7614 improper authentication
168783Constructor.Win32.SpyNet.a information disclosure
168782Xen IDT Vector resource consumption [CVE-2021-3308]
168781TIBCO BPM Enterprise/BPM Enterprise Distribution cross site scripting
168780Proofpoint Insider Threat Management Windows Agent access control
168779Matrikon OPC UA Tunneller out-of-bounds read [CVE-2020-27299]
168778Matrikon OPC UA Tunneller heap-based overflow [CVE-2020-27297]
168777Matrikon OPC UA Tunneller resource consumption [CVE-2020-27295]
168776Matrikon OPC UA Tunneller Thread unusual condition [CVE-2020-27274]
168775Micrium uC-HTTP HTTP Request denial of service [CVE-2020-13582]
168774Sagemcom F@ST 3686 v2 login buffer overflow
168773ZyXEL NBG2105 Login Cookie access control [CVE-2021-3297]
168772Zen Cart Modules Edit Page os command injection [CVE-2021-3291]
168771Spotweb notAllowedCommands sql injection
168770Texas Instruments Code Composer Studio IDE X.509 certificate validation
168769Local Service Search Engine Management System Login Page sql injection
168768node-red-dashboard pathname traversal [CVE-2021-3223]
168767ONLYOFFICE Document Server JWT upload pathname traversal
168766Bitcoin Core dumpwallet RPC Call .bitcoin path traversal
168765Nagios XI Docker Config Wizard Remote Privilege Escalation [CVE-2021-3193]
168764async-git Package os command injection [CVE-2021-3190]
168763PHPList Export csv injection [CVE-2021-3188]
168762Tenda AC5 AC1200 main.html cross site scripting
168761gst-plugins-bad h264 Header stack-based overflow [CVE-2021-3185]
168760ChurchRota POST Request resources.php unrestricted upload
168759Home Assistant path traversal [CVE-2021-3152] [Disputed]
168758Google Go Fetch Module command injection [CVE-2021-3115]
168757Google Go p224.go calculation
168756cPanel Suspension access control [CVE-2021-26267]
168755cPanel Suspension Lock access control [CVE-2021-26266]
168754ACDSee Professional 2021 BMP Image IDE_ACDStd.apl memory corruption
168753ACDSee Professional 2021 BMP Image IDE_ACDStd.apl memory corruption
168752fil-ocl Crate double free [CVE-2021-25908]
168751containers Crate mutate2 double free
168750basic_dsp_matrix Crate unknown vulnerability
168749bra Crate uninitialized pointer [CVE-2021-25905]
168748av-data Crate null pointer dereference [CVE-2021-25904]
168747cache Crate null pointer dereference [CVE-2021-25903]
168746glsl-layout Crate map_array unknown vulnerability
168745lazy-init Crate race condition [CVE-2021-25901]
168744smallvec Crate insert_many heap-based overflow
168743node-red-contrib-huemagic API hue-magic.js res.sendFile path traversal
168742Open5GS Service Port 3000 hard-coded password [CVE-2021-25863]
168741Revive Adserver lg.php redirect
168740Revive Adserver afr.php cross site scripting
168739Revive Adserver affiliate-preview.php cross site scripting
168738Schneider Electric EcoStruxure Power Build Rapsody unrestricted upload
168737Schneider Electric EcoStruxure Power Build Rapsody unrestricted upload
168736ZTE ZXR10 9904 denial of service [CVE-2021-21723]
168735Jenkins toctou [CVE-2021-21615]
168734Apache Hadoop SPNEGO Authorization Header improper authorization
168733Nextcloud Server Password Reset resource consumption [CVE-2020-8295]
168732Nextcloud Server Workflow Rule resource consumption [CVE-2020-8293]
168731Rocket.Chat Server Drag/Drop cross site scripting [CVE-2020-8292]
168730Rocket.Chat Server specializedRendering cross site scripting
168729Bosch FSM-2500/FSM-5000 unknown vulnerability [CVE-2020-6780]
168728Bosch FSM-2500/FSM-5000 hard-coded credentials [CVE-2020-6779]
168727IBM WebSphere Application Server XML Data xml external entity reference
168726IBM Spectrum Scale injection [CVE-2020-4889]
168725OpenLDAP X.509 DN Parsing decode.c ber_next_element denial of service
168724OpenLDAP X.509 DN Parser ldap_X509dn2bv denial of service
168723OpenLDAP Certificate List Exact Assertion integer underflow [CVE-2020-36228]
168722OpenLDAP slapd cancel_extop denial of service
168721OpenLDAP bv_len denial of service
168720OpenLDAP slapd saslAuthzTo denial of service
168719OpenLDAP slapd saslAuthzTo denial of service
168718OpenLDAP out-of-bounds read [CVE-2020-36223]
168717OpenLDAP saslAuthzTo denial of service
168716OpenLDAP slapd schema_init.c serialNumberAndIssuerCheck integer underflow
168715va-ts Crate memory corruption [CVE-2020-36220]
168714atomic-option Crate unknown vulnerability [CVE-2020-36219]
168713buttplug Crate ButtplugFutureStateShared race condition
168712may_queue Crate memory corruption [CVE-2020-36217]
168711eventio Crate Thread memory corruption [CVE-2020-36216]
168710hashconsing Crate memory corruption [CVE-2020-36215]
168709multiqueue2 Crate unknown vulnerability [CVE-2020-36214]
168708abi_stable Crate UTF-8 String unknown vulnerability [CVE-2020-36213]
168707abi_stable Crate DrainFilter unknown vulnerability
168706gfwx Crate ImageChunkMut memory corruption
168705autorand Crate memory corruption [CVE-2020-36210]
168704late-static Crate unknown vulnerability [CVE-2020-36209]
168703conquer-once Crate Thread memory corruption [CVE-2020-36208]
168702aovec Crate memory corruption [CVE-2020-36207]
168701rusb Crate memory corruption [CVE-2020-36206]
168700xcb Crate Error use after free
168699im Crate TreeFocus race condition
168698reffers Crate memory corruption [CVE-2020-36203]
168697async-h1 Crate Reverse Proxy request smuggling [CVE-2020-36202]
168696Xerox WorkCentre credentials storage [CVE-2020-36201]
168695sudo sudoers_policy_main heap-based overflow
168694TinyCheck HTTP GET Request server-side request forgery [CVE-2020-36200]
168693TinyCheck command injection [CVE-2020-36199]
168692QDOCS Smart Hospital Management System Add Patient Form cross site scripting
168691Textpattern cross site scripting [CVE-2020-35854]
1686904images Image Gallery Management System Image URL cross site scripting
168689FastStone Image Viewer Image File FSViewer.exe out-of-bounds write
168688FastStone Image Viewer Image File FSViewer.exe out-of-bounds write
168687FastStone Image Viewer Image File FSViewer.exe out-of-bounds write
168686Persis Human Resource Management Portal Recommend Job Posting cross site scripting
168685TP-Link TL-WR841N V13 Traceroute os command injection [CVE-2020-35576]
168684Linux Kernel Network File System resource consumption [CVE-2020-35513]
168683Composr CMS Add Banners cross site scripting [CVE-2020-35310]
168682Bakeshop Online Ordering System Admin Dashboard cross site scripting
168681Student Result Management System Admin Panel sql injection [CVE-2020-35270]
168680EgavilanMedia User Registration & Login System Admin Panel sql injection
168679CakePHP CsrfProtectionMiddleware cross-site request forgery [CVE-2020-35239]
168678Online News Portal cross site scripting [CVE-2020-29241]
168677Geeni GNC-CW025/GNC-CW028 RESTful Services API hard-coded credentials
168676Geeni GNC-CW013 RTSP Service Remote Privilege Escalation [CVE-2020-29000]
168675Geeni GNC-CW013 Apexis Streaming Video Web Application libhipcam.so hard-coded credentials
168674Geeni GNC-CW013 Telnet Service hard-coded credentials [CVE-2020-28998]
168673ProjectSend reset-password.php password recovery
168672EcoStruxure Operator Terminal Expert/Pro-face BLUE Ethernet Download input validation
168671openjpeg2 PNG File heap-based overflow [CVE-2020-27814]
168670Wing FTP IFRAME cross site scripting [CVE-2020-27735]
168669IBM InfoSphere Information Server deserialization [CVE-2020-27583]
168668Rostelecom CS-C2SHW QR Code ip-static os command injection
168667Rostelecom CS-C2SHW AgentGreen Service denial of service [CVE-2020-27541]
168666Rostelecom CS-C2SHW Firmware Update version.json os command injection
168665Rostelecom CS-C2SHW HTTP Response out-of-bounds write [CVE-2020-27539]
168664Philips Interventional Workspot os command injection [CVE-2020-27298]
168663Delta Electronics TPEditor Project File null pointer dereference
168662Delta Electronics TPEditor Project File out-of-bounds write [CVE-2020-27284]
168661Delta Electronics ISPSoft Project File use after free [CVE-2020-27280]
168660Google Android UriGrantsManagerService.java checkGrantUriPermission information disclosure
168659Google Android UriGrantsManagerService.java checkGrantUriPermission information disclosure
168658ESET NOD32 Antivirus Installer permission [CVE-2020-26941]
168657Hackolade Uninstall privileges management [CVE-2020-25737]
168656Reolink RLC-4XX/RLC-5XX/RLN-X10 hard-coded key [CVE-2020-25173]
168655Reolink RLC-4XX/RLC-5XX/RLN-X10 cleartext transmission [CVE-2020-25169]
168654openMAINT Web Server unrestricted upload [CVE-2020-24549]
168653MISCP UserSettingsController.php SetHomePage cross site scripting
168652Yale WIPC-303W HTTP API command injection [CVE-2020-23826]
168651newbee-mall NewBeeMallIndexConfigServiceImpl.java access control
168650newbee-mall AdminLoginInterceptor.java AdminLoginInterceptor access control
168649newbee-mall Address Information settle cross site scripting
168648mingsoft MCMS view.do sql injection
168647Pyrescom Termod4 inadequate encryption [CVE-2020-23162]
168646Pyrescom Termod4 Logs Menu file inclusion [CVE-2020-23161]
168645Pyrescom Termod4 Remote Privilege Escalation [CVE-2020-23160]
168644APfell Administration Panel command_ payloadtypes_callback cross site scripting
168643Feehi CMS Image Upload unrestricted upload [CVE-2020-22643]
168642RockOA mode_emailmAction.php cross site scripting
168641Feehi CMS User Name cross site scripting [CVE-2020-21146]
168640Caret Editor Markdown Document Remote Code Execution [CVE-2020-20269]
168639Apache Traffic Control Config File ip_allow.config permission
168638Panasonic FPWIN Pro Project File out-of-bounds read [CVE-2020-16236]
168637Google Android A2DP_GetCodecType out-of-bounds read
168636OpenWrt LuCI cross site scripting [CVE-2019-25015]
168635Report Extension Special:Report cross-site request forgery
168634ORAS ZIP path traversal [CVE-2021-21272]
168633Backdoor.Win32.Wollf.c Service Port 7754 sysocm.exe hard-coded credentials
168632Backdoor.Win32.DarkKomet.bhfh ÚÈÏÇáÑÍãä.exe permission
168631Apache Nutch xml external entity reference [CVE-2021-23901]
168630Apache ServiceComb-Java-Chassis handler-router injection [CVE-2020-17532]
168629Trojan.Win32.Xocry.ff ProgData permission
168628Octopus Deploy Server/Tentacle Agent OctopusDSC cleartext transmission
168627BigProf Online Invoicing System items_view.php cross-site request forgery
168626HedgeDoc Note cross site scripting [CVE-2021-21259]
168625IBM MQ Internet Pass-Thru MQ Data denial of service [CVE-2020-4766]
168624vis-timeline Timeline Element cross site scripting [CVE-2020-28487]
168623M&M fdtCONTAINER Project Storage deserialization [CVE-2020-12525]
168622Pepperl+Fuchs P+F Comtrol IO-Link Master discoveryd null pointer dereference
168621Pepperl+Fuchs P+F Comtrol IO-Link Master os command injection
168620Pepperl+Fuchs P+F Comtrol IO-Link Master HTTP POST cross site scripting
168619Pepperl+Fuchs P+F Comtrol IO-Link Master Web Interface cross-site request forgery
168618jquery-ui Dialog injection [CVE-2020-28488]
168617Hyweb HyCMS-J1 Backend Edit cross site scripting [CVE-2021-22849]
168616Hyweb HyCMS-J1 API injection [CVE-2021-22847]
168615CSI snapshot-controller Volume Snapshot null pointer dereference
168614Secrets Store CSI Driver pods path traversal [CVE-2020-8568]
168613Secrets Store CSI Driver Vault Plugin pods path traversal [CVE-2020-8567]
168612Kubernetes API Server permission [CVE-2020-8554]
168611Backdoor.Win32.Hupigon.adef HTTP POST Request user32.dll buffer overflow
168610OnlineVotingSystem Password Hash hash without salt [CVE-2021-21253]
168609PySAML2 CryptoBackendXmlSec1 Backend xmlsec1 signature verification
168608PySAML2 XML Signature signature verification [CVE-2021-21238]
168607IBM Security Identity Governance and Intelligence HSTS cleartext transmission
168606IBM Security Identity Governance and Intelligence inadequate encryption
168605IBM Security Identity Governance and Intelligence Token missing secure attribute
168604IBM Security Identity Governance and Intelligence improper authentication
168603OpenMage Import/Export unrestricted upload [CVE-2020-26295]
168602OpenMage Import/Export unrestricted upload [CVE-2020-26285]
168601Qualcomm Snapdragon Auto Audio integer underflow [CVE-2020-3691]
168600Qualcomm Admin Services access control [CVE-2020-3687]
168599Qualcomm Snapdragon Auto Music Playback out-of-bounds read [CVE-2020-3686]
168598Qualcomm Snapdragon Auto memory corruption [CVE-2020-3685]
168597Qualcomm Snapdragon Auto WLAN Driver out-of-bounds read [CVE-2020-11225]
168596Qualcomm Snapdragon Compute Audio Driver double free [CVE-2020-11217]
168595Qualcomm Snapdragon Auto Video Driver buffer overflow [CVE-2020-11216]
168594Qualcomm Snapdragon Auto VSA Attribute out-of-bounds read [CVE-2020-11215]
168593Qualcomm Snapdragon Auto NDL Attribute buffer overflow [CVE-2020-11214]
168592Qualcomm Snapdragon Auto Service Descriptor out-of-bounds read
168591Qualcomm Snapdragon Auto NAN Beacon Attribute out-of-bounds read
168590Qualcomm Snapdragon Auto RPS Parser buffer overflow [CVE-2020-11200]
168589Qualcomm Snapdragon Auto Stream Info Update integer overflow
168588Qualcomm Snapdragon Auto WLAN Driver out-of-bounds read [CVE-2020-11185]
168587Qualcomm Snapdragon Auto Display Service buffer overflow [CVE-2020-11183]
168586Qualcomm Snapdragon Compute CVP Process out-of-bounds read [CVE-2020-11181]
168585Qualcomm Snapdragon Auto Command out-of-bounds read [CVE-2020-11180]
168584Qualcomm Snapdragon Auto buffer overflow [CVE-2020-11179]
168583Qualcomm Snapdragon Auto L2CAP Packet Length memory corruption
168582Qualcomm Snapdragon Auto HAL Layer race condition [CVE-2020-11152]
168581Qualcomm Snapdragon Auto IOCTL use after free [CVE-2020-11151]
168580Qualcomm Snapdragon Auto Camera Driver out-of-bounds read [CVE-2020-11150]
168579Qualcomm Snapdragon Auto Camera Driver out-of-bounds read [CVE-2020-11149]
168578Qualcomm Snapdragon Auto HIDL use after free [CVE-2020-11148]
168577Qualcomm Snapdragon Auto IOCTL array index [CVE-2020-11146]
168576Qualcomm Snapdragon Auto Delta Extension Header divide by zero
168575Qualcomm Snapdragon Auto DL ROHC Packet Decompression buffer overflow
168574Qualcomm Snapdragon Auto Music Playback out-of-bounds read [CVE-2020-11143]
168573Qualcomm Snapdragon Auto Music Playback out-of-bounds read [CVE-2020-11140]
168572Qualcomm Snapdragon Auto Frame out-of-bounds read [CVE-2020-11139]
168571Qualcomm Snapdragon Auto Music Playback uninitialized pointer
168570Qualcomm Snapdragon Auto Integer Multiplication out-of-bounds read
168569Qualcomm Snapdragon Auto Audio Driver buffer overflow [CVE-2020-11136]
168568Qualcomm Snapdragon Auto Response Header buffer overflow [CVE-2020-11119]
168567Cisco Unified Communications Manager & Presence Service path traversal
168566Cisco Unified Communications Manager & Presence Service path traversal
168565Cisco Unified Communications Manager IM & Presence Service path traversal
168564Cisco StarOS IPv4 Packet memory leak [CVE-2021-1353]
168563Cisco Umbrella Web UI allocation of resources [CVE-2021-1350]
168562Cisco SD-WAN vManage Software Web-based Management Interface injection
168561Cisco Elastic Services Controller Health Monitor API resource consumption
168560Cisco SD-WAN vManage Software Web-based Management Interface improper authorization
168559Cisco SD-WAN vManage Software Web-based Management Interface improper authorization
168558Cisco DNA Center Diagnostic privileges assignment [CVE-2021-1303]
168557Cisco SD-WAN vManage Software Web-based Management Interface improper authorization
168556Cisco SD-WAN memory corruption [CVE-2021-1301]
168555Cisco SD-WAN memory corruption [CVE-2021-1300]
168554Cisco SD-WAN command injection [CVE-2021-1299]
168553Cisco SD-WAN command injection [CVE-2021-1298]
168552Cisco Data Center Network Manager Web-based Management Interface cross site scripting
168551Cisco Data Center Network Manager System Logs log file [CVE-2021-1283]
168550Cisco Unified Communications Manager IM & Presence Service path traversal
168549Cisco Advanced Malware Protection DLL uncontrolled search path
168548Cisco SD-WAN memory corruption [CVE-2021-1279]
168547Cisco SD-WAN memory corruption [CVE-2021-1278]
168546Cisco Data Center Network Manager API certificate validation
168545Cisco Data Center Network Manager API certificate validation
168544Cisco SD-WAN memory corruption [CVE-2021-1274]
168543Cisco SD-WAN memory corruption [CVE-2021-1273]
168542Cisco Data Center Network Manager Device Manager Application server-side request forgery
168541Cisco Web Security Appliance Web-based Management Interface cross site scripting
168540Cisco Data Center Network Manager Web-based Management Interface improper authorization
168539Cisco Data Center Network Manager Web-based Management Interface improper authorization
168538Cisco DNA Center API Call cleartext storage [CVE-2021-1265]
168537Cisco DNA Center command injection [CVE-2021-1264]
168536Cisco SD-WAN command injection [CVE-2021-1263]
168535Cisco SD-WAN command injection [CVE-2021-1262]
168534Cisco SD-WAN command injection [CVE-2021-1261]
168533Cisco SD-WAN command injection [CVE-2021-1260]
168532Cisco SD-WAN vManage Software Web-based Management Interface path traversal
168531Cisco DNA Center Web-based Management Interface cross-site request forgery
168530Cisco Data Center Network Manager REST API Endpoint improper authorization
168529Cisco Data Center Network Manager Web-based Management Interface cross site scripting
168528Cisco Data Center Network Manager Web-based Management Interface cross site scripting
168527Cisco Data Center Network Manager Web-based Management Interface cross site scripting
168526Cisco Data Center Network Manager REST API Endpoint sql injection
168525Cisco Data Center Network Manager REST API Endpoint sql injection
168524Cisco SD-WAN memory corruption [CVE-2021-1241]
168523Cisco SD-WAN vManage Software CLI improper authorization [CVE-2021-1235]
168522Cisco SD-WAN iperf Tool input validation [CVE-2021-1233]
168521Cisco SD-WAN vManage Software Web-based Management Interface sql injection
168520Cisco Smart Software Manager Satellite Web-based Management Interface sql injection
168519Cisco Smart Software Manager Satellite hard-coded credentials
168518Cisco Smart Software Manager Satellite Web Management Interface redirect
168517Cisco Smart Software Manager Satellite Web UI input validation
168516Cisco Smart Software Manager Satellite Web UI input validation
168515Cisco Smart Software Manager Satellite Web UI input validation
168514Cisco Smart Software Manager Satellite Web UI input validation
168513Cisco Smart Software Manager Satellite input validation [CVE-2021-1138]
168512Cisco Data Center Network Manager REST API Endpoint improper authorization
168511Cisco Data Center Network Manager REST API Endpoint improper authorization
168510Cisco Email Security Appliance insertion of sensitive information into sent data
168509NVIDIA Shield TV NVHost null pointer dereference
168508NVIDIA Shield TV NVDEC buffer overflow [CVE-2021-1068]
168507NVIDIA Shield TV RPMB Command Status unknown vulnerability [CVE-2021-1067]
168506Check Point SmartConsole access control [CVE-2020-6024]
168505NEC ESMPRO Manager GetEuaLogDownloadAction path traversal
168504CA ARCserve D2D xml external entity reference [CVE-2020-27858]
168503Eclipse OpenJ9 UTF-8 Encoding stack-based overflow [CVE-2020-27221]
168502Weave Net unnecessary privileges [CVE-2020-26278]
168501OpenMage Update path traversal [CVE-2020-26252]
168500Backdoor.Win32.Onalf Service Port 2020 improper authentication
168499Backdoor.Win32.Zxman Service Port 2048 improper authentication
168498Backdoor.Win32.WinShell.30 Service Port 5277 buffer overflow
168497Keymaker Assets Endpoint join path traversal
168496gin X-Forwarded-For Header request smuggling [CVE-2020-28483]
168495Akka com.softwaremill.akka-http-session cross-site request forgery
168494Dnsmasq rfc1035.c extract_name heap-based overflow
168493Dnsmasq Pending Request security check for standard [CVE-2020-25686]
168492Dnsmasq rfc1035.c extract_name heap-based overflow
168491Dnsmasq RRSets Sort heap-based overflow [CVE-2020-25681]
168490Open-AudIT Web Interface information disclosure [CVE-2021-3130]
168489PrestaShop sql injection [CVE-2021-3110]
168488Ardatan graphql-tools load-git.ts execSync command injection
168487Oracle Argus Safety Letters information disclosure [CVE-2021-2110]
168486Oracle Argus Safety Case Form/Local Affiliate Form Remote Code Execution
168485IBM Spectrum LSF/Spectrum LSF Suite LSF Job command injection
168484IBM Security Guardium sql injection [CVE-2020-4921]
168483IBM AIX/VIOS Local Privilege Escalation [CVE-2020-4887]
168482IBM Security Guardium command injection [CVE-2020-4688]
168481Employee Performance Evaluation System Admin Portal cross site scripting
168480Employee Performance Evaluation System cross site scripting [CVE-2020-35271]
168479Vert.x Web Framework cross-site request forgery [CVE-2020-35217]
168478Dnsmasq DNS Cache forward.c reply_query unknown vulnerability
168477Dnsmasq DNS Cache forward.c reply_query security check for standard
168476Dnsmasq DNSSEC rfc1035.c extract_name heap-based overflow
168475STM32Cube PKCS Padding information disclosure [CVE-2020-20949]
168474X.Org Server XkbSetMap memory corruption
168473Oracle VM VirtualBox information disclosure [CVE-2021-2123]
168472Oracle VM VirtualBox denial of service [CVE-2021-2130]
168471Oracle VM VirtualBox denial of service [CVE-2021-2127]
168470Oracle VM VirtualBox denial of service [CVE-2021-2073]
168469Oracle VM VirtualBox unknown vulnerability [CVE-2021-2125]
168468Oracle VM VirtualBox unknown vulnerability [CVE-2021-2131]
168467Oracle VM VirtualBox unknown vulnerability [CVE-2021-2126]
168466Oracle VM VirtualBox information disclosure [CVE-2021-2120]
168465Oracle VM VirtualBox information disclosure [CVE-2021-2119]
168464Oracle VM VirtualBox denial of service [CVE-2021-2124]
168463Oracle VM VirtualBox denial of service [CVE-2021-2121]
168462Oracle VM VirtualBox denial of service [CVE-2021-2112]
168461Oracle VM VirtualBox denial of service [CVE-2021-2111]
168460Oracle VM VirtualBox denial of service [CVE-2021-2086]
168459Oracle VM VirtualBox information disclosure [CVE-2021-2128]
168458Oracle VM VirtualBox unknown vulnerability [CVE-2021-2129]
168457Oracle VM VirtualBox Local Privilege Escalation [CVE-2021-2074]
168456Oracle Utilities Framework General Remote Code Execution [CVE-2020-2555]
168455Oracle StorageTek Tape Analytics SW Tool information disclosure
168454Oracle ZFS Storage Appliance Kit RAS subsystems unknown vulnerability
168453Oracle StorageTek Tape Analytics SW Tool jQuery cross site scripting
168452Oracle ZFS Storage Appliance Kit Operating System Image buffer overflow
168451Oracle Transportation Management Install cross site scripting
168450Oracle Agile Product Lifecycle Management for Process Installation cross site scripting
168449Oracle Agile PLM Security cross site scripting [CVE-2020-9281]
168448Oracle Agile Engineering Data Management Install session fixiation
168447Oracle Agile PLM Security deserialization [CVE-2020-14195]
168446Oracle Configurator UI Servlet unknown vulnerability [CVE-2021-2080]
168445Oracle Configurator UI Servlet unknown vulnerability [CVE-2021-2079]
168444Oracle Configurator UI Servlet unknown vulnerability [CVE-2021-2078]
168443Oracle Complex Maintenance, Repair, and Overhaul Dialog Box unknown vulnerability
168442Oracle Complex Maintenance, Repair, and Overhaul Dialog Box unknown vulnerability
168441Oracle Complex Maintenance, Repair, and Overhaul Dialog Box unknown vulnerability
168440Oracle Siebel Core - Server BizLogic Script Integration - Scripting information disclosure
168439Oracle Siebel Mobile App Open UI cross site scripting [CVE-2020-11022]
168438Oracle Siebel UI Framework EAI deserialization [CVE-2020-9484]
168437Oracle Siebel Core - Server Framework Search unknown vulnerability
168436Oracle Retail Customer Management and Segmentation Foundation Promotions information disclosure
168435Oracle Retail Service Backbone RSB kernel information disclosure
168434Oracle Retail Integration Bus RIB Kernal information disclosure
168433Oracle Retail Financial Integration PeopleSoft Integration Bugs information disclosure
168432Oracle Retail Bulk Data Integration BDI Job Scheduler information disclosure
168431Oracle Retail Store Inventory Management SIM Integration cross site scripting
168430Oracle Retail Order Broker Cloud Service Supplier Direct Fulfillment cross site scripting
168429Oracle Retail Bulk Data Integration BDI Job Scheduler cross site scripting
168428Oracle Retail Customer Management and Segmentation Foundation Internal Operations Remote Privilege Escalation
168427Oracle Retail Service Backbone RSB kernel unknown vulnerability
168426Oracle Retail Invoice Matching Security unknown vulnerability
168425Oracle Retail Integration Bus RIB Kernal unknown vulnerability
168424Oracle Retail Financial Integration PeopleSoft Integration unknown vulnerability
168423Oracle Retail Assortment Planning Application Core unknown vulnerability
168422Oracle Retail Order Broker System Administration deserialization
168421Oracle Retail Service Backbone RSB kernel deserialization [CVE-2019-10086]
168420Oracle Retail Order Broker System Administration deserialization
168419Oracle Retail Integration Bus RIB Kernal deserialization [CVE-2019-10086]
168418Oracle Retail Financial Integration PeopleSoft Integration deserialization
168417Oracle Retail Store Inventory Management SIM Integration injection
168416Oracle Retail Service Backbone RSB kernel injection [CVE-2020-11979]
168415Oracle Retail Order Broker System Administration server-side request forgery
168414Oracle Retail Integration Bus RIB Kernal server-side request forgery
168413Oracle Retail Integration Bus RIB Kernal injection [CVE-2020-11979]
168412Oracle Retail Financial Integration PeopleSoft Integration injection
168411Oracle Retail Bulk Data Integration BDI Job Scheduler code download
168410Oracle Retail Invoice Matching Posting improper authentication
168409Oracle Retail Order Broker System Administration Remote Privilege Escalation
168408Oracle Retail Extract Transform and Load Mathematical Operators information disclosure
168407Oracle Retail Sales Audit Rule Wizards deserialization [CVE-2020-9546]
168406Oracle Retail Merchandising System Foundation deserialization
168405Oracle Retail Customer Management and Segmentation Foundation Segment xml external entity reference
168404Oracle PeopleSoft Enterprise PeopleTools Security information disclosure
168403Oracle PeopleSoft Enterprise PeopleTools Rich Text Editor cross site scripting
168402Oracle PeopleSoft Enterprise PeopleTools Portal unknown vulnerability
168401Oracle PeopleSoft Enterprise HCM Human Resources Company Dir/Org Chart Viewer/Employee Snapshot cross site scripting
168400Oracle PeopleSoft Enterprise FIN Payables Financial Sanctions information disclosure
168399Oracle PeopleSoft Enterprise HCM Human Resources Global Payroll for Switzerland server-side request forgery
168398Oracle PeopleSoft Enterprise PeopleTools Elastic Search Remote Code Execution
168397Oracle PeopleSoft Enterprise PeopleTools Portal Local Privilege Escalation
168396Oracle MySQL Server InnoDB information disclosure [CVE-2021-2042]
168395Oracle MySQL Server Privileges information disclosure [CVE-2021-2019]
168394Oracle MySQL Client C API information disclosure [CVE-2021-2007]
168393Oracle MySQL Server Optimizer unknown vulnerability [CVE-2021-1998]
168392Oracle MySQL Client C API unknown vulnerability [CVE-2021-2010]
168391Oracle MySQL Server Information Schema information disclosure
168390Oracle MySQL Server DML denial of service [CVE-2021-2088]
168389Oracle MySQL Server DML denial of service [CVE-2021-2087]
168388Oracle MySQL Server DML denial of service [CVE-2021-2056]
168387Oracle MySQL Server DDL denial of service [CVE-2021-2061]
168386Oracle MySQL Server Components Services denial of service [CVE-2021-2038]
168385Oracle MySQL Server InnoDB denial of service [CVE-2021-2022]
168384Oracle MySQL Server Stored Procedure denial of service [CVE-2021-2081]
168383Oracle MySQL Server Stored Procedure denial of service [CVE-2021-2072]
168382Oracle MySQL Server Roles denial of service [CVE-2021-2009]
168381Oracle MySQL Server Privileges denial of service [CVE-2021-2012]
168380Oracle MySQL Server Replication denial of service [CVE-2021-2002]
168379Oracle MySQL Server PAM Auth Plugin denial of service [CVE-2021-2014]
168378Oracle MySQL Server Optimizer denial of service [CVE-2021-2065]
168377Oracle MySQL Server Optimizer denial of service [CVE-2021-2076]
168376Oracle MySQL Server Optimizer denial of service [CVE-2021-2070]
168375Oracle MySQL Server Optimizer denial of service [CVE-2021-2060]
168374Oracle MySQL Server Optimizer denial of service [CVE-2021-2055]
168373Oracle MySQL Server Optimizer denial of service [CVE-2021-2036]
168372Oracle MySQL Server Optimizer denial of service [CVE-2021-2031]
168371Oracle MySQL Server Optimizer denial of service [CVE-2021-2030]
168370Oracle MySQL Server Optimizer denial of service [CVE-2021-2021]
168369Oracle MySQL Server Optimizer denial of service [CVE-2021-2016]
168368Oracle MySQL Server Optimizer denial of service [CVE-2021-2001]
168367Oracle MySQL Server Locking denial of service [CVE-2021-2058]
168366Oracle MySQL Server DDL denial of service [CVE-2021-2122]
168365Oracle MySQL Server InnoDB denial of service [CVE-2021-2028]
168364Oracle MySQL Server InnoDB unknown vulnerability [CVE-2021-2048]
168363Oracle MySQL Client C API denial of service [CVE-2021-2006]
168362Oracle MySQL Workbench denial of service [CVE-2020-1971]
168361Oracle MySQL Client C API denial of service [CVE-2021-2011]
168360Oracle MySQL Server Optimizer denial of service [CVE-2021-2024]
168359Oracle MySQL Server Optimizer denial of service [CVE-2021-2020]
168358Oracle MySQL Enterprise Monitor Service Manager information disclosure
168357Oracle MySQL Enterprise Monitor Service Manager unknown vulnerability
168356Oracle MySQL Server Stored Procedure denial of service [CVE-2021-2046]
168355Oracle MySQL Enterprise Monitor Service Manager deserialization
168354Oracle MySQL Workbench denial of service [CVE-2020-13871]
168353Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security information disclosure
168352Oracle JD Edwards EnterpriseOne Tools Web Runtime cross site scripting
168351Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud cross site scripting
168350Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security cross site scripting
168349Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service
168348Oracle Java SE Libraries information disclosure [CVE-2020-14803]
168347Oracle Insurance Insbridge Rating and Underwriting Framework Administrator IBFA cross site scripting
168346Oracle Insurance Rules Palette Architecture unknown vulnerability
168345Oracle Insurance Policy Administration Architecture unknown vulnerability
168344Oracle Hyperion Infrastructure Technology Common Security information disclosure
168343Oracle Hyperion Financial Reporting Installation cross site scripting
168342Oracle Hyperion Infrastructure Technology Installation/Configuration unknown vulnerability
168341Oracle Hyperion Infrastructure Technology Installation/Configuration denial of service
168340Oracle Hyperion Infrastructure Technology Common Security session fixiation
168339Oracle Hyperion Infrastructure Technology Installation/Configuration buffer overflow
168338Oracle Hyperion Infrastructure Technology Common Security xml external entity reference
168337Oracle GraalVM Enterprise Edition Java unknown vulnerability
168336Oracle GraalVM Enterprise Edition Node denial of service [CVE-2020-8277]
168335Oracle WebLogic Server Web Services information disclosure [CVE-2021-1996]
168334Oracle GoldenGate Application Adapters information disclosure
168333Oracle Data Integrator Install/config/upgrade information disclosure
168332Oracle WebLogic Server Core Components denial of service [CVE-2021-2033]
168331Oracle Business Intelligence Enterprise Edition BI Platform Security information disclosure
168330Oracle Data Integrator Centralized Thirdparty Jars information disclosure
168329Oracle Business Intelligence Enterprise Edition Analytics Web Dashboards unknown vulnerability
168328Oracle WebLogic Server Centralized Thirdparty Jars denial of service
168327Oracle Data Integrator Install/config/upgrade path traversal
168326Oracle WebLogic Server Sample apps cross site scripting [CVE-2020-11022]
168325Oracle WebCenter Sites cross site scripting [CVE-2020-11022]
168324Oracle Enterprise Data Quality General cross site scripting [CVE-2019-17091]
168323Oracle Business Intelligence Enterprise Edition Analytics Server cross site scripting
168322Oracle WebLogic Server Web Services unknown vulnerability [CVE-2021-1995]
168321Oracle WebLogic Server Sample apps unknown vulnerability [CVE-2020-5421]
168320Oracle GoldenGate Application Adapters unknown vulnerability
168319Oracle Data Integrator Rest Service sql injection [CVE-2018-9019]
168318Oracle Adaptive Access Manager Install/Config access control
168317Oracle WebLogic Server Console Remote Privilege Escalation [CVE-2021-2109]
168316Oracle WebLogic Server Console deserialization [CVE-2019-10086]
168315Oracle WebCenter Portal Security Framework deserialization [CVE-2019-10086]
168314Oracle Real-Time Decision Server Platform Installation deserialization
168313Oracle Fusion Middleware MapViewer Install deserialization [CVE-2019-10086]
168312Oracle Endeca Information Discovery Integrator Integrator ETL deserialization
168311Oracle Data Integrator Install/config/upgrade deserialization
168310Oracle Real-Time Decision Server Platform Installation server-side request forgery
168309Oracle Managed File Transfer MFT Runtime Server denial of service
168308Oracle Enterprise Repository Security Subsystem information disclosure
168307Oracle Enterprise Repository Security Subsystem server-side request forgery
168306Oracle Enterprise Repository Security Subsystem injection [CVE-2020-11979]
168305Oracle Enterprise Data Quality General denial of service [CVE-2017-12626]
168304Oracle Data Integrator Runtime Java agent for ODI denial of service
168303Oracle BI Publisher Web Server unknown vulnerability [CVE-2021-2062]
168302Oracle BI Publisher E-Business Suite - XDO Remote Privilege Escalation
168301Oracle BI Publisher E-Business Suite - XDO Remote Privilege Escalation
168300Oracle BI Publisher BI Publisher Security Remote Privilege Escalation
168299Oracle BI Publisher Administration Remote Privilege Escalation
168298Oracle Business Intelligence Enterprise Edition Installation Remote Code Execution
168297Oracle Business Intelligence Enterprise Edition Analytics Web General unknown vulnerability
168296Oracle Outside In Technology Outside In Filters Remote Code Execution
168295Oracle Outside In Technology Outside In Filters Remote Code Execution
168294Oracle Outside In Technology Outside In Filters Remote Code Execution
168293Oracle Outside In Technology Outside In Filters Remote Code Execution
168292Oracle Endeca Information Discovery Integrator Integrator ETL Remote Privilege Escalation
168291Oracle Real-Time Decision Server Decision Studio information disclosure
168290Oracle WebLogic Server Samples Remote Code Execution [CVE-2021-2075]
168289Oracle WebLogic Server Core Components Remote Code Execution
168288Oracle WebLogic Server Core Components Remote Code Execution
168287Oracle WebLogic Server Core Components Remote Code Execution
168286Oracle WebLogic Server Web Services Remote Code Execution [CVE-2021-1994]
168285Oracle WebLogic Server Core Components unusual condition [CVE-2019-17195]
168284Oracle WebCenter Portal Portlet Services xml external entity reference
168283Oracle Enterprise Repository Security Subsystem Remote Code Execution
168282Oracle Enterprise Data Quality General xml external entity reference
168281Oracle Enterprise Data Quality General access control [CVE-2016-1000031]
168280Oracle Data Integrator Runtime Java agent for ODI xml external entity reference
168279Oracle Data Integrator Install/config/upgrade access control
168278Oracle Coherence Core Components Remote Code Execution [CVE-2020-14756]
168277Oracle Business Process Management Suite Installer xml external entity reference
168276Oracle BAM (Business Activity Monitoring) General deserialization
168275Oracle Hospitality Reporting and Analytics Report unknown vulnerability
168274Oracle Hospitality Simphony Simphony Server xml external entity reference
168273Oracle Financial Services Revenue Management and Billing On Demand Billing unknown vulnerability
168272Oracle FLEXCUBE Universal Banking Infrastructure redirect [CVE-2019-11269]
168271Oracle Banking Virtual Account Management Common Core redirect
168270Oracle Banking Trade Finance Process Management Dashboard redirect
168269Oracle Banking Supply Chain Finance redirect [CVE-2019-11269]
168268Oracle Banking Payments Payments Core redirect [CVE-2019-11269]
168267Oracle Banking Liquidity Management Common redirect [CVE-2019-11269]
168266Oracle Banking Credit Facilities Process Management redirect
168265Oracle Banking Corporate Lending Process Management redirect
168264Oracle Financial Services Analytical Applications Infrastructure unknown vulnerability
168263Oracle Banking Virtual Account Management Common Core information disclosure
168262Oracle Banking Trade Finance Process Management Dashboard information disclosure
168261Oracle Banking Supply Chain Finance information disclosure [CVE-2020-5408]
168260Oracle Banking Liquidity Management Common information disclosure
168259Oracle Banking Credit Facilities Process Management information disclosure
168258Oracle Banking Corporate Lending Process Management information disclosure
168257Oracle Insurance Allocation Manager for Enterprise Profitability deserialization
168256Oracle Financial Services Profitability Management deserialization
168255Oracle Financial Services Market Risk Measurement and Management deserialization
168254Oracle Financial Services Funds Transfer Pricing deserialization
168253Oracle Financial Services Asset Liability Management deserialization
168252Oracle Financial Services Analytical Applications Infrastructure deserialization
168251Oracle FLEXCUBE Universal Banking Infrastructure information disclosure
168250Oracle Financial Services Analytical Applications Infrastructure information disclosure
168249Oracle Financial Services Analytical Applications Infrastructure injection
168248Oracle Banking Virtual Account Management Common Core information disclosure
168247Oracle Banking Trade Finance Process Management Dashboard information disclosure
168246Oracle Banking Supply Chain Finance information disclosure [CVE-2019-12399]
168245Oracle Banking Platform Product Manufacturing information disclosure
168244Oracle Banking Platform Party/Financials denial of service [CVE-2019-12402]
168243Oracle Banking Platform Installer injection [CVE-2020-11979]
168242Oracle Banking Payments Payments Core information disclosure
168241Oracle Banking Liquidity Management Common information disclosure
168240Oracle Banking Credit Facilities Process Management information disclosure
168239Oracle Banking Corporate Lending Process Management information disclosure
168238Oracle FLEXCUBE Core Banking Securities Local Privilege Escalation
168237Oracle Banking Liquidity Management Common information disclosure
168236Oracle FLEXCUBE Universal Banking Infrastructure memory corruption
168235Oracle Financial Services Market Risk Measurement and Management User Interface dynamically-determined object attributes
168234Oracle Financial Services Data Integration Hub User Interface dynamically-determined object attributes
168233Oracle Financial Services Analytical Applications Infrastructure xml external entity reference
168232Oracle Banking Virtual Account Management Common Core memory corruption
168231Oracle Banking Trade Finance Process Management Dashboard memory corruption
168230Oracle Banking Supply Chain Finance memory corruption [CVE-2020-11612]
168229Oracle Banking Payments Payments Core memory corruption [CVE-2020-11612]
168228Oracle Banking Liquidity Management Common memory corruption
168227Oracle Banking Extensibility Workbench memory corruption [CVE-2020-8174]
168226Oracle Banking Extensibility Workbench input validation [CVE-2019-10744]
168225Oracle Banking Credit Facilities Process Management memory corruption
168224Oracle Banking Corporate Lending Process Management memory corruption
168223Oracle Enterprise Manager Ops Center User Interface cryptographic issues
168222Oracle Application Testing Suite Load Testing for Web Apps cross site scripting
168221Oracle Enterprise Manager for Fusion Applications Topology Viewer denial of service
168220Oracle Application Testing Suite Load Testing for Web Apps xml external entity reference
168219Oracle Enterprise Manager Ops Center Control Proxy buffer overflow
168218Oracle Enterprise Manager Base Platform Reporting Framework access control
168217Oracle Enterprise Manager Base Platform Reporting Framework deserialization
168216Oracle Enterprise Manager Base Platform Connector Framework xml external entity reference
168215Oracle User Management Proxy User Delegation information disclosure
168214Oracle Installed Base APIs unknown vulnerability [CVE-2021-2023]
168213Oracle iStore Web interface information disclosure [CVE-2021-2059]
168212Oracle Common Applications Calendar Tasks unknown vulnerability
168211Oracle Workflow Worklist unknown vulnerability [CVE-2021-2015]
168210Oracle Scripting Miscellaneous unknown vulnerability [CVE-2021-2091]
168209Oracle One-to-One Fulfillment Print Server unknown vulnerability
168208Oracle Marketing Marketing Administration unknown vulnerability
168207Oracle Marketing Marketing Administration unknown vulnerability
168206Oracle Marketing Marketing Administration unknown vulnerability
168205Oracle iSupport User Responsibilities unknown vulnerability [CVE-2021-2083]
168204Oracle iSupport Profile unknown vulnerability [CVE-2021-2097]
168203Oracle iStore Shopping Cart unknown vulnerability [CVE-2021-2096]
168202Oracle iStore Shopping Cart unknown vulnerability [CVE-2021-2082]
168201Oracle iStore Shopping Cart unknown vulnerability [CVE-2021-2077]
168200Oracle iStore Runtime Catalog unknown vulnerability [CVE-2021-2089]
168199Oracle Email Center Message Display unknown vulnerability [CVE-2021-2098]
168198Oracle Email Center Message Display unknown vulnerability [CVE-2021-2090]
168197Oracle Customer Interaction History Outcome-Result unknown vulnerability
168196Oracle Customer Interaction History Outcome-Result unknown vulnerability
168195Oracle Customer Interaction History Outcome-Result unknown vulnerability
168194Oracle CRM Technical Foundation Preferences unknown vulnerability
168193Oracle CRM Technical Foundation Preferences unknown vulnerability
168192Oracle CRM Technical Foundation Preferences unknown vulnerability
168191Oracle CRM Technical Foundation Preferences unknown vulnerability
168190Oracle Common Applications Calendar Tasks unknown vulnerability
168189Oracle Common Applications Calendar unknown vulnerability [CVE-2021-2114]
168188Oracle Common Applications CRM User Management Framework unknown vulnerability
168187Oracle One-to-One Fulfillment Print Server unknown vulnerability
168186Oracle One-to-One Fulfillment Print Server unknown vulnerability
168185Oracle Scripting Miscellaneous Remote Code Execution [CVE-2021-2029]
168184Oracle Primavera P6 Enterprise Project Portfolio Management Web access unknown vulnerability
168183Oracle Primavera Gateway Admin unknown vulnerability [CVE-2020-5421]
168182Oracle Primavera Unifier deserialization [CVE-2019-10086]
168181Oracle Primavera Unifier Core/Config injection [CVE-2020-11979]
168180Oracle Primavera Gateway Admin injection [CVE-2020-11979]
168179Oracle Instantis EnterpriseTrack Dashboard module server-side request forgery
168178Oracle Primavera Unifier MPXJ xml external entity reference [CVE-2020-25020]
168177Oracle Communications Performance Intelligence Center Software OpenSSL information disclosure
168176Oracle Communications Session Report Manager Spring Framework unknown vulnerability
168175Oracle Enterprise Communications Broker DPDK integer overflow
168174Oracle SD-WAN Edge Apache Commons BeanUtils deserialization [CVE-2019-10086]
168173Oracle Communications Diameter Signaling Router IDIH deserialization
168172Oracle Enterprise Communications Broker nghttp2 denial of service
168171Oracle Communications Application Session Controller Apache Batik server-side request forgery
168170Oracle Communications Operations Monitor In-Memeory DB for FDP-VSP denial of service
168169Oracle Communications Element Manager REST API Local Privilege Escalation
168168Oracle Communications Application Session Controller Eclipse Jetty Local Privilege Escalation
168167Oracle Communications Diameter Signaling Router IDIH deserialization
168166Oracle Communications Operations Monitor ORMB DB Query in VSP sql injection
168165Oracle Communications ASAP Apache Ant information disclosure
168164Oracle Communications BRM Spring Framework unknown vulnerability
168163Oracle Communications MetaSolv Solution Online Help deserialization
168162Oracle Communications BRM Coherence Query deserialization [CVE-2019-10086]
168161Oracle Communications Network Charging and Control SQLite denial of service
168160Oracle Communications MetaSolv Solution Print Preview server-side request forgery
168159Oracle Communications Contacts Server REST API deserialization
168158Oracle Communications Calendar Server REST API deserialization
168157Oracle Database Server Unified Audit unknown vulnerability [CVE-2021-2000]
168156Oracle Database Server Oracle Text denial of service [CVE-2021-2045]
168155Oracle Database Server Java VM unknown vulnerability [CVE-2021-1993]
168154Oracle Database Server Oracle Application Express Survey Builder unknown vulnerability
168153Oracle Database Server Oracle Application Express Opportunity Tracker unknown vulnerability
168152Oracle Database Server RDBMS Sharding Remote Privilege Escalation
168151Oracle Database Server Advanced Networking Option Remote Code Execution
168150Oracle Database Server RDBMS Scheduler Remote Privilege Escalation
168149XWiki SVG Document cross site scripting [CVE-2021-3137]
168148Rocketgenius Gravity Forms Textarea cross site scripting [CVE-2020-27852]
168147Rocketgenius Gravity Forms Poll/Quiz cross site scripting [CVE-2020-27851]
168146Rocketgenius Gravity Forms Forms Import cross site scripting
168145Nagios Log Server create_snapshot cross site scripting
168144OpenEMR controller.php unrestricted upload
168143vTiger CRM libraries information disclosure
168142vTiger CRM index.php cross site scripting
168141Medintux CCAM.php cross site scripting
168140FHEM FileLog_logWrapper information disclosure
168139Tufin SecureChange cross site scripting [CVE-2020-13134]
168138Tufin SecureChange cross site scripting [CVE-2020-13133]
168137Apple iOS/iPadOS XPC Service launchd access control
168136Apple macOS XPC Service launchd access control
168135Laravel Iilluminate Database Package injection [CVE-2021-21263]
168134My AIA SG App logcat log file [CVE-2020-29598]
168133Stockdio Historical Chart Plugin stockdio_chart_historical-wp.js postMessage cross site scripting
168132SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE authentication replay
168131SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE privileges management
168130SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE improper authentication
168129SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE random values
168128SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE insufficiently protected credentials
168127SOOIL Diabecare RS/AnyDana-i/AnyDana-A Physician Menu hard-coded credentials
168126Simple DirectMedia Layer BMP File SDL_blit_N.c Blit_3or4_to_3or4__inversed_rgb heap-based overflow
168125Simple DirectMedia Layer BMP File SDL_blit_copy.c SDL_BlitCopy integer overflow
168124Apache Guacamole Connection History permission [CVE-2020-11997]
168123QEMU ATAPI Emulator out-of-bounds read [CVE-2020-29443]
168122Backdoor.Win32.Whisper.b Service Port 113 rundll32.exe stack-based overflow
168121Backdoor.Win32.Whirlpool.10 UDP Datagram user32.dll stack-based overflow
168120Backdoor.Win32.Zombam.geq HTTP GET Request stack-based overflow
168119FasterXML jackson-databind deserialization [CVE-2021-20190]
168118NetApp Clustered Data ONTAP VMware vStorage Support authorization
168117TinyCheck Installation hard-coded credentials [CVE-2020-35929]
168116SOOIL DiabecareRS/AnyDana-i/AnyDana-A Bluetooth LE authentication spoofing
168115SOOIL DiabecareRS/AnyDana-i/AnyDana-A Bluetooth LE inadequate encryption
168114SOOIL DiabecareRS/AnyDana-i/AnyDana-A Bluetooth LE insufficiently protected credentials
168113MISP global_menu.ctp cross site scripting
168112Files.com Fat Client improper authentication [CVE-2021-3183]
168111D-Link DCS-5220 buffer overflow [CVE-2021-3182]
168110Mutt Email Message rfc822.c memory allocation
IDTitleNessusOpenVASSnortSuricataTippingPoint
168109MISP Galaxy Cluster Element index.ctp cross site scripting
168108MISP Galaxy Cluster View view.ctp cross site scripting
168107MISP Password weak password [CVE-2021-25323]
168106Micro Focus Application Lifecycle Management xml external entity reference
168105IBM Planning Analytics TLS Communication certificate validation
168104IBM Planning Analytics unknown vulnerability [CVE-2020-4873]
168103IBM Planning Analytics information disclosure [CVE-2020-4871]
168102Mautic Social Monitoring cross site scripting [CVE-2020-35129]
168101Mautic Javascript File cross site scripting [CVE-2020-35128]
168100fastify-csrf Package cookie without 'httponly' flag [CVE-2020-28482]
168099socket.io Packet CORS unknown vulnerability [CVE-2020-28481]
168098jointjs Package util.setByPath code injection
168097jointjs Package unsetByPath denial of service
168096Zoho ManageEngine Applications Manager sql injection [CVE-2020-27733]
168095Pixelimity setting.php cross-site request forgery
168094CMS edit.php cross-site request forgery
168093Microchip Libraries for Applications PKCS information disclosure
168092gsap Package denial of service [CVE-2020-28478]
168091immer Package denial of service [CVE-2020-28477]
168090aws-sdk shared-ini-file-loader INI File Parser injection [CVE-2020-28472]
168089Linux Kernel NFS Export nfs3xdr.c no_subtree_check path traversal [Disputed]
168088Python callproc.c PyCArg_repr buffer overflow
168087Hgiga EIP Online Registration sql injection [CVE-2021-22852]
168086Hgiga EIP Document Management Page sql injection [CVE-2021-22851]
168085HGiga EIP permission assignment [CVE-2021-22850]
168084GROWI cross site scripting [CVE-2021-20619]
168083Atlassian Confluence Server/Data Center Avatar Upload denial of service
168082McAfee Agent Update denial of service [CVE-2020-7343]
168081Archive_Tar Tar.php pathname traversal
168080Source Integration Plugin Private Project view.php access control
168079Email-Worm.Win32.Agent.gi Microsoft ASPI Manager aspimgr.exe buffer overflow
168078Backdoor.Win32.NetBull.11.a Service Port 23444 infected.exe stack-based overflow
168077Constructor.Win32.SMWG.c VBS Script sucke.vbs permission
168076Constructor.Win32.SMWG.a VBS Script sucke.vbs permission
168075Newfuture Trojan Fast_sms Server permission
168074tornado Package request smuggling [CVE-2020-28476]
168073bottle Package request smuggling [CVE-2020-28473]
168072OpenCATS cross site scripting [CVE-2021-25295]
168071OpenCATS guzzlehttp DataGrid.php __destruct deserialization
168070Open Design Alliance Drawings SDK DXF File stack-based overflow
168069Open Design Alliance Drawings SDK DXF File null pointer dereference
168068Open Design Alliance Drawings SDK DXF File null pointer dereference
168067Open Design Alliance Drawings SDK DXF File null pointer dereference
168066Open Design Alliance Drawings SDK DGN File memory corruption
168065Open Design Alliance Drawings SDK DGN File denial of service
168064Asus DSL-N14U-B1 Firmware Update Settings_DSL-N14U-B1.trx denial of service
168063Atlassian FishEye/Crucible file access [CVE-2020-29446]
168062Quali CloudShell Login Page cross site scripting [CVE-2020-15864]
168061Netsia SEBA+ allActiveSession information disclosure
168060Backdoor.Win32.Mnets UDP Service buffer overflow
168059Backdoor.Win32.Whgrx HTTP Host Header wsocx.dll buffer overflow
168058Docker Desktop Community certificate validation [CVE-2021-3162]
168057OneDev KubernetesResource REST Endpoint path traversal [CVE-2021-21251]
168056OneDev XML Document XmlBuildSpecMigrator.migrate information disclosure
168055OneDev YAML Parser deserialization [CVE-2021-21249]
168054OneDev injection [CVE-2021-21248]
168053OneDev AJAX Event Listener improper authentication [CVE-2021-21247]
168052OneDev REST UserResource Endpoint {id} authorization
168051OneDev AttachmentUploadServlet request.getInputStream unrestricted upload
168050OneDev Bean Message injection [CVE-2021-21244]
168049OneDev Kubernetes REST Endpoint improper authentication [CVE-2021-21243]
168048OneDev AttachmentUploadServlet deserialization [CVE-2021-21242]
168047Git LFS git.exe untrusted search path
168046Juniper Junos telnetd.real unnecessary privileges
168045Juniper Junos Protocol Packet denial of service [CVE-2021-0222]
168044Juniper Junos IRB Interface denial of service [CVE-2021-0221]
168043Juniper Junos Space Network Management Platform credentials storage
168042Juniper Junos Package Validation Subsystem command injection
168041Juniper Junos License-Check Daemon command injection [CVE-2021-0218]
168040Juniper Junos DHCP Packet memory corruption [CVE-2021-0217]
168039Juniper Junos 802.1X Authenticator Port Interface resource consumption
168038Juniper Networks Contrail information disclosure [CVE-2021-0212]
168037Juniper Junos Routing Protocol denial of service [CVE-2021-0211]
168036Juniper Junos J-Web information disclosure [CVE-2021-0210]
168035Juniper Junos BGP UPDATE uninitialized pointer [CVE-2021-0209]
168034Juniper Junos Routing Protocol denial of service [CVE-2021-0208]
168033Juniper Junos denial of service [CVE-2021-0207]
168032Juniper Junos Packet Forwarding Engine denial of service [CVE-2021-0206]
168031Juniper MX IDS 32 access control
168030Juniper Junos dexp information disclosure [CVE-2021-0204]
168029Juniper EX/QFX5K RTG denial of service [CVE-2021-0203]
168028Juniper EX9200 IRB Interface memory leak [CVE-2021-0202]
168027Simple Board Job Plugin pathname traversal [CVE-2020-35749]
168026FV Flowplayer Video Player list-table.php fv_wp_fvvideoplayer_src cross site scripting
168025Erlang OTP X.509 Certificate certificate validation [CVE-2020-35733]
168024Malwarebytes Launch Daemon posix_spawn race condition
168023Aruba AirWave Glass server-side request forgery [CVE-2020-24641]
168022Aruba Airwave Glass Environment input validation [CVE-2020-24640]
168021Aruba Airwave Glass Java deserialization [CVE-2020-24639]
168020Aruba Airwave Glass glassadmin CLI Remote Privilege Escalation
168019ownCloud Forgot Password cross site scripting [CVE-2020-16255]
168018SolarWinds Web Help Desk Schedule Name cross site scripting [CVE-2019-16961]
168017Backdoor.Win32.Nucleroot.t MaskPE xmllite.dll buffer overflow
168016Backdoor.Win32.Nucleroot.bi MaskPE buffer overflow
168015flatCore ACP Interface cross site scripting [CVE-2021-23838]
168014flatCore ACP Interface sql injection [CVE-2021-23837]
168013flatCore ACP Interface cross site scripting [CVE-2021-23836]
168012flatCore HTTP Request information disclosure [CVE-2021-23835]
168011Envira Gallery Lite HTML cross site scripting
168010Envira Gallery Lite cross site scripting [CVE-2020-35581]
168009GitLab Community Edition/Enterprise Edition Package Name denial of service
168008GitLab Community Edition/Enterprise Edition NuGet API denial of service
168007GitLab Community Edition/Enterprise Edition Repository access control
168006GitLab Community Edition/Enterprise Edition HTTP Request denial of service
168005GitLab Community Edition/Enterprise Edition Pages information disclosure
168004Backdoor.Win32.Ncx.bt Web Server buffer overflow
168003Elasticsearch Async Search API information disclosure [CVE-2021-22132]
168002Flatpak flatpak-portal Service injection [CVE-2021-21261]
168001Google Chrome HTML Page use after free [CVE-2020-6572]
168000Dell EMC Avamar Server Fitness Analyzer os command injection
167999Dell EMC Avamar Server PDM path traversal [CVE-2020-29494]
167998Dell EMC Avamar Server Fitness Analyzer sql injection [CVE-2020-29493]
167997Eclipse Hono AMQP/MQTT authorization [CVE-2020-27220]
167996Eclipse Hawkbit JSON Response cross site scripting [CVE-2020-27219]
167995Google Chrome HTML Page cross site scripting [CVE-2020-16046]
167994Google Chrome HTML Page use after free [CVE-2020-16045]
167993Apache Tomcat NTFS File System File.getCanonicalPath information disclosure
167992XMLBeans XML Parser xml external entity reference [CVE-2021-23926]
167991ZTE ZXV10 B860A Log information disclosure [CVE-2021-21722]
167990acmailer/acmailer DB improper authentication [CVE-2021-20618]
167989acmailer/acmailer DB access control [CVE-2021-20617]
167988Bosch PRAESIDEO/PRAESENSA Web-based Management Interface cross site scripting
167987Bosch PRAESIDEO/PRAESENSA Web-based Management Interface cross-site request forgery
167986SimplCommerce Bootbox.js html cross site scripting
167985Fortinet FortiWeb httpd stack-based overflow [CVE-2020-29019]
167984Fortinet FortiWeb format string [CVE-2020-29018]
167983Fortinet FortiDeceptor Customization Page os command injection
167982Fortinet FortiWeb Request stack-based overflow [CVE-2020-29016]
167981Fortinet FortiWeb Authorization Header sql injection [CVE-2020-29015]
167980scullyio scully HTML Page JSON.stringify state issue
167979TOTOLINK A702R Directory Indexing information disclosure [CVE-2020-27368]
167978Skyworth GN542VF Configuration Page cross site scripting [CVE-2020-26733]
167977Skyworth GN542VF Boa Session Cookie missing secure attribute
167976Open-iSCSI tcmu-runner tcmur_cmd_handler.c xcopy_locate_udev pathname traversal
167975Discourse 2FA improper authentication [CVE-2021-3138]
1679741C:Enterprise URL Parameter information disclosure [CVE-2021-3131]
167973Palo-Alto PAN-OS log file [CVE-2021-3032]
167972Palo-Alto PAN OS Ethernet Packet information disclosure [CVE-2021-3031]
167971git-big-picture Branch Name input validation [CVE-2021-3028]
167970OWASP json-sanitizer JSON denial of service [CVE-2021-23900]
167969OWASP json-sanitizer Script Tag cross site scripting [CVE-2021-23899]
167968Bumblebee HP ALM Plugin Configuration File credentials storage
167967TICS Plugin cross site scripting [CVE-2021-21613]
167966TraceTronic ECU-TEST Plugin Configuration File credentials storage
167965Jenkins Display Name cross site scripting [CVE-2021-21611]
167964Jenkins Markup cross site scripting [CVE-2021-21610]
167963Jenkins URL handler authorization [CVE-2021-21609]
167962Jenkins cross site scripting [CVE-2021-21608]
167961Jenkins URL memory allocation [CVE-2021-21607]
167960Jenkins XML File information disclosure [CVE-2021-21606]
167959Jenkins Agent config.xml permission
167958Jenkins Old Data Monitor deserialization [CVE-2021-21604]
167957Jenkins Notification Bar cross site scripting [CVE-2021-21603]
167956Jenkins File Browser link following [CVE-2021-21602]
167955jQuery Validation Plugin resource consumption [CVE-2021-21252]
167954Adobe Bridge TTF File out-of-bounds write [CVE-2021-21013]
167953Adobe Bridge TTF File out-of-bounds write [CVE-2021-21012]
167952Adobe Captivate 2019 uncontrolled search path [CVE-2021-21011]
167951Adobe InCopy uncontrolled search path [CVE-2021-21010]
167950Adobe Campaign Classic server-side request forgery [CVE-2021-21009]
167949Adobe Animate uncontrolled search path [CVE-2021-21008]
167948Adobe Illustrator uncontrolled search path [CVE-2021-21007]
167947Adobe Photoshop Font File heap-based overflow [CVE-2021-21006]
167946Cisco Small Business Web-based Management Interface stack-based overflow
167945Cisco WebEx Meetings/WebEx Meetings Server Host Key excessive authentication
167944Cisco Webex Meetings Web-based Management Interface redirect
167943Cisco Small Business Web-based Management Interface stack-based overflow
167942Cisco FirePOWER Management Center Dashboard Widget xml entity expansion
167941Cisco AnyConnect Secure Mobility Client access control [CVE-2021-1258]
167940Cisco Finesse Web-based Management Interface cross site scripting
167939Cisco Finesse Web-based Management Interface cross site scripting
167938Cisco WebEx Teams Messaging Interface clickjacking [CVE-2021-1242]
167937Cisco Proximity Desktop DLL Loader uncontrolled search path [CVE-2021-1240]
167936Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
167935Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
167934Cisco AnyConnect Secure Mobility Client Network Access Manager/Web Security Agent uncontrolled search path
167933Cisco Integrated Services Router Snort Application Detection Engine control flow
167932Cisco Unified Communications Manager Audit Logging log file [CVE-2021-1226]
167931Cisco Integrated Services Router TCP Fast Open protection mechanism
167930Cisco Integrated Services Router Snort protection mechanism [CVE-2021-1223]
167929Cisco Small Business Web-based Management Interface stack-based overflow
167928Cisco Small Business Web-based Management Interface stack-based overflow
167927Cisco Small Business Web-based Management Interface stack-based overflow
167926Cisco Small Business Web-based Management Interface stack-based overflow
167925Cisco Small Business Web-based Management Interface stack-based overflow
167924Cisco Small Business Web-based Management Interface stack-based overflow
167923Cisco Small Business Web-based Management Interface stack-based overflow
167922Cisco Small Business Web-based Management Interface stack-based overflow
167921Cisco Small Business Web-based Management Interface stack-based overflow
167920Cisco Small Business Web-based Management Interface stack-based overflow
167919Cisco Small Business Web-based Management Interface stack-based overflow
167918Cisco Small Business Web-based Management Interface stack-based overflow
167917Apache Operating System Web-based Management Interface stack-based overflow
167916Cisco Small Business Web-based Management Interface stack-based overflow
167915Cisco Small Business Web-based Management Interface stack-based overflow
167914Cisco Small Business Web-based Management Interface stack-based overflow
167913Cisco Small Business Web-based Management Interface stack-based overflow
167912Cisco Small Business Web-based Management Interface stack-based overflow
167911Cisco Small Business Web-based Management Interface stack-based overflow
167910Cisco Small Business Web-based Management Interface stack-based overflow
167909Cisco Small Business Web-based Management Interface stack-based overflow
167908Cisco Small Business Web-based Management Interface stack-based overflow
167907Cisco Small Business Web-based Management Interface stack-based overflow
167906Cisco Small Business Web-based Management Interface stack-based overflow
167905Cisco Small Business Web-based Management Interface stack-based overflow
167904Cisco Small Business Web-based Management Interface stack-based overflow
167903Cisco Small Business Web-based Management Interface stack-based overflow
167902Cisco Small Business Web-based Management Interface stack-based overflow
167901Cisco Small Business Web-based Management Interface stack-based overflow
167900Cisco Small Business Web-based Management Interface stack-based overflow
167899Cisco Small Business Web-based Management Interface stack-based overflow
167898Cisco Small Business Web-based Management Interface stack-based overflow
167897Cisco Small Business Web-based Management Interface stack-based overflow
167896Cisco Small Business Web-based Management Interface stack-based overflow
167895Cisco Small Business Web-based Management Interface stack-based overflow
167894Cisco Small Business Web-based Management Interface stack-based overflow
167893Cisco Small Business Web-based Management Interface stack-based overflow
167892Cisco Small Business Web-based Management Interface stack-based overflow
167891Cisco Small Business Web-based Management Interface stack-based overflow
167890Cisco Small Business Web-based Management Interface stack-based overflow
167889Cisco Small Business Web-based Management Interface stack-based overflow
167888Cisco Small Business Web-based Management Interface stack-based overflow
167887Cisco Small Business Web-based Management Interface stack-based overflow
167886Cisco Small Business Web-based Management Interface stack-based overflow
167885Cisco Small Business Web-based Management Interface stack-based overflow
167884Apache Operating System Web-based Management Interface stack-based overflow
167883Cisco Small Business Web-based Management Interface stack-based overflow
167882Cisco Small Business Web-based Management Interface stack-based overflow
167881Cisco Small Business Web-based Management Interface stack-based overflow
167880Cisco Small Business Web-based Management Interface stack-based overflow
167879Cisco Small Business Web-based Management Interface stack-based overflow
167878Cisco Small Business Web-based Management Interface stack-based overflow
167877Cisco Small Business Web-based Management Interface stack-based overflow
167876Cisco Small Business Web-based Management Interface stack-based overflow
167875Cisco Small Business Web-based Management Interface stack-based overflow
167874Cisco Small Business Web-based Management Interface stack-based overflow
167873Cisco Small Business Web-based Management Interface stack-based overflow
167872Cisco Small Business Web-based Management Interface stack-based overflow
167871Apache Operating System Web-based Management Interface stack-based overflow
167870Cisco Small Business Web-based Management Interface cross site scripting
167869Cisco Small Business Web-based Management Interface cross site scripting
167868Cisco Small Business Web-based Management Interface cross site scripting
167867Cisco Small Business Web-based Management Interface cross site scripting
167866Cisco Small Business Web-based Management Interface cross site scripting
167865Cisco Small Business Web-based Management Interface cross site scripting
167864Cisco Small Business Web-based Management Interface cross site scripting
167863Cisco Small Business Web-based Management Interface cross site scripting
167862Cisco Small Business Web-based Management Interface command injection
167861Cisco Small Business Web-based Management Interface command injection
167860Cisco Small Business Web-based Management Interface command injection
167859Cisco Small Business Web-based Management Interface command injection
167858Apache Operating System Web-based Management Interface command injection
167857Cisco StarOS SFTP symlink [CVE-2021-1145]
167856Cisco Connected Mobile Experiences Password authorization [CVE-2021-1144]
167855Cisco Connected Mobile Experiences API GET Request authorization
167854Cisco Video Surveillance 8000 Discovery Protocol Packet memory corruption
167853Cisco DNA Center Web-based Management Interface cross site scripting
167852Cisco Enterprise NFV Infrastructure Software Web-based Management Interface cross site scripting
167851Cisco FirePOWER Management Center credentials storage [CVE-2021-1126]
167850Huawei SMC Module access control [CVE-2020-9209]
167849Huawei P30 Broadcast Message resource consumption [CVE-2020-9203]
167848Huawei Smartphone out-of-bounds write [CVE-2020-9145]
167847Huawei Smartphone heap-based overflow [CVE-2020-9144]
167846Huawei Smartphone improper authentication [CVE-2020-9143]
167845Huawei Smartphone Update heap-based overflow [CVE-2020-9142]
167844Huawei Smartphone information disclosure [CVE-2020-9141]
167843Huawei Smartphone buffer overflow [CVE-2020-9140]
167842Huawei Smartphone memory corruption [CVE-2020-9139]
167841Huawei Smartphone Update heap-based overflow [CVE-2020-9138]
167840IBM Security Guardium Insights credentials storage [CVE-2020-4604]
167839IBM Security Guardium Insights credentials storage [CVE-2020-4602]
167838IBM Security Guardium Insights information exposure [CVE-2020-4600]
167837IBM Security Guardium Insights information exposure [CVE-2020-4599]
167836IBM Security Guardium Insights Cookie missing secure attribute
167835IBM Security Guardium Insights inadequate encryption [CVE-2020-4596]
167834IBM Security Guardium Insights inadequate encryption [CVE-2020-4595]
167833IBM Security Guardium Insights inadequate encryption [CVE-2020-4594]
167832PHPFusion Shoutbox Message cross-site request forgery [CVE-2020-35687]
167831Nagios XI Manage Plugins Page unrestricted upload [CVE-2020-35578]
167830Loxone Miniserver improper authentication [CVE-2020-27488]
167829PTC Kepware KEPServerEX OPC UA Message use after free [CVE-2020-27267]
167828PTC Kepware KEPServerEX OPC UA Message stack-based overflow [CVE-2020-27265]
167827PTC Kepware KEPServerEX OPC UA Message heap-based overflow [CVE-2020-27263]
167826Coturn Loopback Interface confused deputy [CVE-2020-26262]
167825zoujingli ThinkAdmin Update.php deserialization
167824Huawei Secospace USG9500 DHCP Message Parser out-of-bounds read
167823Huawei CloudEngine PIM Message out-of-bounds read [CVE-2020-1865]
167822Ubuntu Linux DCCP Socket use after free [CVE-2020-16119]
167821Combodo iTop Console Breadcrumb cross site scripting [CVE-2020-15221]
167820Combodo iTop session expiration [CVE-2020-15220]
167819Combodo iTop User Portal information exposure [CVE-2020-15219]
167818Combodo iTop Admin Page session expiration [CVE-2020-15218]
167817Xiaomi AX1800/RM1800 ddns command injection [CVE-2020-14102]
167816Xiaomi AX1800/RM1800 Web Management Interface information disclosure
167815Xiaomi AX1800/RM1800 Time denial of service [CVE-2020-14098]
167814Xiaomi Redmi AX6 Nginx Configuration improper authorization [CVE-2020-14097]
167813IBM Security Guardium Data Encryption permission [CVE-2019-4702]
167812IBM Security Guardium Data Encryption URL information disclosure
167811IBM Security Guardium Data Encryption inadequate encryption [CVE-2019-4160]
167810remote-login-service crypt.c credentials storage
167809Backdoor.Win32.Ketch.a Server Response buffer overflow
167808Backdoor.Win32.Ketch.i HTTP Response buffer overflow
167807SKYSEA Client View DLL untrusted search path [CVE-2021-20616]
167806NEC UNIVERGE SV8500/UNIVERGE SV9500 System Maintenance improper authentication
167805NEC UNIVERGE SV8500/UNIVERGE SV9500 URL denial of service [CVE-2020-5685]
167804NEC Express5800-T110j improper authentication [CVE-2020-5633]
167803JupyterHub Admin Panel user cross-site request forgery
167802Sound Research DCHU Model Software Component Modules SECOMN Service untrusted search path
167801Linux Kernel LIO SCSI target_core_xcopy.c pathname traversal
167800Mozilla Thunderbird SCTP Packet use after free [CVE-2020-16044]
167799QEMU megasas-gen2 SCSI Host Bus Adapter Emulation megasas.c megasas_command_cancelled denial of service
167798QEMU USB xHCI Controller Emulation hcd-xhci.c xhci_ring_chain_length denial of service
167797Kubernetes Java Client Pod path traversal [CVE-2020-8570]
167796Mubu privileges management [CVE-2021-3134]
167795Elementor Contact Form DB Plugin Admin Page cross-site request forgery
167794Ignition Debug Mode file_put_contents Remote Code Execution
167793OX Software OX App Suite Subject cross site scripting [CVE-2021-23936]
167792OX Software OX App Suite Appointment cross site scripting [CVE-2021-23935]
167791OX Software OX App Suite Contact cross site scripting [CVE-2021-23934]
167790OX Software OX App Suite Note cross site scripting [CVE-2021-23933]
167789OX Software OX App Suite Inline Image cross site scripting [CVE-2021-23932]
167788OX Software OX App Suite Binary File cross site scripting [CVE-2021-23931]
167787OX Software OX App Suite Conversion API cross site scripting
167786OX Software OX App Suite HTML Document cross site scripting [CVE-2021-23929]
167785OX Software OX App Suite Query String cross site scripting [CVE-2021-23928]
167784OX Software OX App Suite PUT Request server-side request forgery
167783Joomla! Image cross site scripting [CVE-2021-23125]
167782Joomla! Attribute cross site scripting [CVE-2021-23124]
167781Joomla! ACL or information disclosure
167780CLA-Assistant API Endpoint access control [CVE-2021-21471]
167779SAP EPM Add-in for Microsoft Office xml external entity reference
167778SAP NetWeaver Master Data Management information disclosure [CVE-2021-21469]
167777SAP Business Warehouse Database Interface improper authorization
167776SAP Banking Services Generic Market Data improper authorization
167775SAP Business Warehouse/BW4HANA ABAP Report injection [CVE-2021-21466]
167774SAP Business Warehouse Database Interface sql injection [CVE-2021-21465]
167773SAP 3D Visual Enterprise Viewer PCX File denial of service [CVE-2021-21464]
167772SAP 3D Visual Enterprise Viewer PCX File out-of-bounds read [CVE-2021-21463]
167771SAP 3D Visual Enterprise Viewer PCX File out-of-bounds write
167770SAP 3D Visual Enterprise Viewer BMP File out-of-bounds write
167769SAP 3D Visual Enterprise Viewer dib File out-of-bounds write
167768SAP 3D Visual Enterprise Viewer IFF File out-of-bounds write
167767SAP 3D Visual Enterprise Viewer IFF File memory corruption [CVE-2021-21458]
167766SAP 3D Visual Enterprise Viewer IFF File memory corruption [CVE-2021-21457]
167765SAP 3D Visual Enterprise Viewer dib File out-of-bounds write
167764SAP 3D Visual Enterprise Viewer dib File out-of-bounds write
167763SAP 3D Visual Enterprise Viewer RLE File out-of-bounds write
167762SAP 3D Visual Enterprise Viewer RLE File denial of service [CVE-2021-21453]
167761SAP 3D Visual Enterprise Viewer GIF File denial of service [CVE-2021-21452]
167760SAP 3D Visual Enterprise Viewer SGI File denial of service [CVE-2021-21451]
167759SAP 3D Visual Enterprise Viewer PSD File denial of service [CVE-2021-21450]
167758SAP 3D Visual Enterprise Viewer IFF File denial of service [CVE-2021-21449]
167757SAP GUI improper authorization [CVE-2021-21448]
167756SAP BusinessObjects Business Intelligence Platform Input Control cross site scripting
167755SAP NetWeaver AS ABAP denial of service [CVE-2021-21446]
167754SAP Commerce Cloud HTTP Response cross site scripting [CVE-2021-21445]
167753IBM API Connect Web UI cross site scripting [CVE-2020-4838]
167752IBM Workload Automation Path information disclosure [CVE-2020-4674]
167751IBM Workload Automation HTML Comment information disclosure [CVE-2020-4673]
167750Combodo iTop Ajax Endpoint information disclosure [CVE-2020-4079]
167749RailsAdmin Nested Form cross site scripting [CVE-2020-36190]
167748ClusterLabs crmsh crm History code injection [CVE-2020-35459]
167747ClusterLabs Hawk Cookie code injection [CVE-2020-35458]
167746Siemens SCALANCE X-300/SCALANCE X-408/SIPLUS NET Factory Reset hard-coded key
167745Siemens SCALANCE X-200/SCALANCE X-200IRT C-PLUG hard-coded key
167744Siemens Opcenter Execution Core insufficiently protected credentials
167743Siemens Solid Edge DFT File Parser out-of-bounds write [CVE-2020-28386]
167742Siemens Solid Edge PAR File Parser stack-based overflow [CVE-2020-28384]
167741Siemens JT2Go//Solid Edge/Teamcenter Visualization PAR File Parser out-of-bounds write
167740Siemens Solid Edge PAR File Parser out-of-bounds write [CVE-2020-28382]
167739Siemens Solid Edge PAR File Parser out-of-bounds write [CVE-2020-28381]
167738TIBCO EBX Add-on xml external entity reference [CVE-2020-27148]
167737Siemens JT2Go/Teamcenter Visualization CG4 File out-of-bounds read
167736Siemens JT2Go/Teamcenter Visualization SGI File out-of-bounds write
167735Siemens JT2Go/Teamcenter Visualization PCX File heap-based overflow
167734Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflow
167733Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflow
167732Siemens JT2Go/Teamcenter Visualization ASM File null pointer dereference
167731Siemens JT2Go/Teamcenter Visualization ASM File type confusion
167730Siemens JT2Go//Solid Edge/Teamcenter Visualization PAR File stack-based overflow
167729Siemens JT2Go/Teamcenter Visualization PAR File out-of-bounds write
167728Siemens JT2Go/Teamcenter Visualization TGA File heap-based overflow
167727Siemens JT2Go/Teamcenter Visualization JT File heap-based overflow
167726Siemens JT2Go/Teamcenter Visualization RGB File heap-based overflow
167725Siemens JT2Go/Teamcenter Visualization JT File out-of-bounds write
167724Siemens JT2Go/Teamcenter Visualization PDF File out-of-bounds write
167723Siemens JT2Go/Teamcenter Visualization CG4 File out-of-bounds write
167722Siemens JT2Go/Teamcenter Visualization XML File xml external entity reference
167721Siemens JT2Go/Teamcenter Visualization JT File Parser type confusion
167720REDCap ToDoList cross site scripting
167719REDCap ToDoList sql injection
167718Heikkitoivonen M2Crypto RSA Decryption API information disclosure
167717Siemens SCALANCE X-200/SCALANCE X-200IRT Web Server heap-based overflow
167716Siemens SCALANCE X-200/SCALANCE X-200IRT/SCALANCE X-300 Web Server heap-based overflow
167715Siemens SCALANCE X-200/SCALANCE X-200IRT Integrated Web Server denial of service
167714Red Hat Single Sign On Application Console information disclosure
167713HCL Commerce Remote Privilege Escalation [CVE-2020-14275]
167712HCL Commerce information disclosure [CVE-2020-14274]
167711OpenText Carbonite Server Backup Portal Policy cross site scripting
167710Backdoor.Win32.Kurbadur.a Service Port 21220 dataexchange.dll stack-based overflow
167709Microsoft Windows Win32k privileges management [CVE-2021-1709]
167708Microsoft Windows WalletService privileges management [CVE-2021-1690]
167707Microsoft Windows WalletService privileges management [CVE-2021-1687]
167706Microsoft Windows WalletService privileges management [CVE-2021-1686]
167705Microsoft Windows WalletService privileges management [CVE-2021-1681]
167704Microsoft Windows WLAN Service privileges management [CVE-2021-1646]
167703Microsoft Windows Update Stack privileges management [CVE-2021-1694]
167702Microsoft Windows Runtime C++ Template Library privileges management
167701Microsoft Windows RPC Runtime privileges management [CVE-2021-1702]
167700Microsoft Windows RDP authorization [CVE-2021-1669]
167699Microsoft Windows RDP Core Remote Privilege Escalation [CVE-2021-1674]
167698Microsoft Windows Projected File System FS Filter Driver information disclosure
167697Microsoft Windows File System FS Filter Driver information disclosure
167696Microsoft Windows Projected File System FS Filter Driver information disclosure
167695Microsoft Windows Print Spooler privileges management [CVE-2021-1695]
167694Microsoft Windows NT Lan Manager Datagram Receiver Driver information disclosure
167693Microsoft Windows Multipoint Management privileges management
167692Microsoft Windows LUAFV privileges management [CVE-2021-1706]
167691Microsoft Windows Kernel privileges management [CVE-2021-1682]
167690Microsoft Windows Installer privileges management [CVE-2021-1661]
167689Microsoft Windows InstallService privileges management [CVE-2021-1697]
167688Microsoft Windows Hyper-V privileges management [CVE-2021-1704]
167687Microsoft Windows Graphics information disclosure [CVE-2021-1696]
167686Microsoft Windows GDI+ information disclosure [CVE-2021-1708]
167685Microsoft Windows Fax Compose Form privileges management [CVE-2021-1657]
167684Microsoft Windows Event Tracing privileges management [CVE-2021-1662]
167683Microsoft Windows Event Logging Service privileges management
167682Microsoft Windows Docker information disclosure [CVE-2021-1645]
167681Microsoft Windows DNS Query information disclosure [CVE-2021-1637]
167680Microsoft Windows CryptoAPI denial of service [CVE-2021-1679]
167679Microsoft Windows CSC Service privileges management [CVE-2021-1693]
167678Microsoft Windows CSC Service privileges management [CVE-2021-1688]
167677Microsoft Windows CSC Service privileges management [CVE-2021-1659]
167676Microsoft Windows CSC Service privileges management [CVE-2021-1655]
167675Microsoft Windows CSC Service privileges management [CVE-2021-1654]
167674Microsoft Windows CSC Service privileges management [CVE-2021-1653]
167673Microsoft Windows CSC Service privileges management [CVE-2021-1652]
167672Microsoft Windows Bluetooth authorization [CVE-2021-1638]
167671Microsoft Windows Bluetooth information disclosure [CVE-2021-1684]
167670Microsoft Windows Bluetooth information disclosure [CVE-2021-1683]
167669Microsoft Windows AppX Deployment Extensions privileges management
167668Microsoft Windows AppX Deployment Extensions privileges management
167667Microsoft Windows modem.sys information disclosure [CVE-2021-1699]
167666Microsoft Visual Studio cross site scripting [CVE-2020-26870]
167665Microsoft Windows TPM Device Driver information disclosure [CVE-2021-1656]
167664Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1701]
167663Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1700]
167662Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1673]
167661Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1671]
167660Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1667]
167659Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1666]
167658Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1664]
167657Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1660]
167656Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1658]
167655Microsoft Windows NTLM information disclosure [CVE-2021-1678]
167654Microsoft Windows splwow64 privileges management [CVE-2021-1648]
167653Microsoft Word Remote Code Execution [CVE-2021-1716]
167652Microsoft Word out-of-bounds write [CVE-2021-1715]
167651Microsoft Windows Media Foundation Remote Code Execution [CVE-2021-1710]
167650Microsoft SharePoint Server input validation [CVE-2021-1717]
167649Microsoft SharePoint Server input validation [CVE-2021-1641]
167648Microsoft SharePoint Foundation Remote Privilege Escalation [CVE-2021-1718]
167647Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1707]
167646Microsoft SharePoint Server privileges management [CVE-2021-1719]
167645Microsoft SharePoint Server privileges management [CVE-2021-1712]
167644Microsoft SQL Server sql injection [CVE-2021-1636]
167643Microsoft Office Remote Code Execution [CVE-2021-1711]
167642Microsoft Excel Remote Code Execution [CVE-2021-1714]
167641Microsoft Excel memory corruption [CVE-2021-1713]
167640Microsoft Edge memory corruption [CVE-2021-1705]
167639Microsoft Defender Remote Privilege Escalation [CVE-2021-1647]
167638Microsoft Windows DTV-DVD Video Decoder Remote Code Execution
167637Microsoft Windows Hyper-V denial of service [CVE-2021-1692]
167636Microsoft Windows Hyper-V denial of service [CVE-2021-1691]
167635Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-1643]
167634Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-1644]
167633Microsoft Windows GDI+ Remote Code Execution [CVE-2021-1665]
167632Microsoft Windows Diagnostics Hub Standard Collector privileges management
167631Microsoft Windows Diagnostics Hub Standard Collector privileges management
167630Microsoft Bot Framework SDK information disclosure [CVE-2021-1725]
167629Microsoft Azure Kubernetes Service Pod Identity authentication spoofing
167628Microsoft Windows Active Template Library privileges management
167627Microsoft ASP.NET Core/Visual Studio denial of service [CVE-2021-1723]
167626sudo sudoedit selinux_edit_copy_tfiles temp file
167625sudo sudoedit personality sudo_edit.c race condition
167624Pillow SGI RLE Image SGIRleDecode buffer overflow
167623Pillow YCbCr File TiffDecode heap-based overflow
167622Pillow PCX File PcxDecode buffer overflow
167621OX Software OX App Suite App Loading appsuite cross site scripting
167620OX Software OX App Suite GET Request server-side request forgery
167619R Programming Language CRAN install.packages path traversal
167618SaferVPN OpenSSL Configuration File access control [CVE-2020-26050]
167617Espressif ESP-IDF BluFi Provisioning blufi_prf.c btc_blufi_recv_handler buffer overflow
167616Opera Mini Domain Name clickjacking [CVE-2021-23253]
167615Flask-Security-Too login cross-site request forgery
167614Google Android tun.c tun_get_user memory corruption
167613Google Android SlicePermissionActivity.java onCreate information disclosure
167612Google Android ActivityManagerService.java enforceDumpPermissionForPackage information disclosure
167611Google Android Lockscreen keystore_keymaster_enforcement.h is_device_locked information disclosure
167610Google Android Bluetooth CompanionDeviceManagerService.java checkCallerIsSystemOr permission
167609Google Android SensorEventConnection.cpp appendEventsToCacheLocked out-of-bounds write
167608Google Android Permission.java createOrUpdate permission
167607Google Android Bluetooth avrc_pars_tg.cc avrc_pars_vendor_cmd out-of-bounds write
167606Google Android GrantCredentialsPermissionActivity.java onCreate permission
167605Google Android TextView LayoutUtils.cpp isWordBreakAfter denial of service
167604Google Android WAVExtractor.cpp read out-of-bounds write
167603Google Android ESQueue.cpp dequeueAccessUnitH264 out-of-bounds write
167602Google Android LazyServiceRegistrar.cpp LazyServiceRegistrar use after free
167601Google Android grantCredentialsPermissionActivity information disclosure
167600Google Android basicmbr.cc ReadLogicalParts out-of-bounds write
167599Google Android PermissionManagerService.java updatePermissionSourcePackage permission
167598Google Android PermissionManagerService.java addAllPermissions permission
167597Google Android GlobalScreenshot.java information disclosure
167596Google Android StreamSetObserver.cpp dispatchGraphTerminationMessage use after free
167595Google Android ged out-of-bounds write [CVE-2021-0301]
167594IBM MQ Appliance SNMP Query buffer overflow [CVE-2020-4869]
167593Cacti data_debug.php sql injection
167592AnyDesk Portable Mode gcapi.dll uncontrolled search path
167591Delta Industrial Automation CNCSoft-B Project File type confusion
167590Delta Industrial Automation CNCSoft-B Project File out-of-bounds read
167589Delta Industrial Automation CNCSoft-B null pointer dereference
167588Delta Industrial Automation CNCSoft-B Project File out-of-bounds write
167587Delta Industrial Automation CNCSoft ScreenEditor Project File stack-based overflow
167586Delta Industrial Automation DOPSoft Project File null pointer dereference
167585Delta Industrial Automation DOPSoft Project File out-of-bounds write
167584Google Android Fingerprint AuthenticationClient.java onAuthenticated clickjacking
167583Redcarpet Quote cross site scripting [CVE-2020-26298]
167582SmartBear Collaborator Server GWT API deserialization [CVE-2020-26118]
167581python-cryptography RSA Decryption API information disclosure
167580QNAP QTS/QuTS Hero command injection [CVE-2020-2508]
167579Live Networks liblivemedia RTSP PLAY Command buffer overflow
167578node-sass certificate validation [CVE-2020-24025]
167577Microsoft Skype Library Validation Entitlement access control
167576Fork CMS Admin Console cross-site request forgery [CVE-2020-23960]
167575WDJA CMS manage.php cross-site request forgery
167574zzcms Cookie sql injection [CVE-2020-23630]
167573Apache NetBeans HTML-Java API access control [CVE-2020-17534]
167572FreyrSCADA IEC-60879-5-104 Server Simulator Packet denial of service
167571Google Android Bluetooth packet_fragmenter.cc reassemble_and_dispatch injection
167570360F5 deauth Frame denial of service [CVE-2019-3405]
167569K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflow
167568K7computing K7AntiVirus Premium access control [CVE-2018-9332]
167567K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflow
167566K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflow
167565K7computing K7AntiVirus Premium K7TSMngr.exe access control
167564K7computing K7AntiVirus Premium K7Sentry.sys access control [CVE-2018-8044]
167563K7computing K7AntiVirus Premium K7TSMngr.exe memory leak
167562K7computing K7AntiVirus Premium buffer overflow [CVE-2018-11010]
167561K7computing K7AntiVirus Premium buffer overflow [CVE-2018-11009]
167560K7computing K7AntiVirus Premium access control [CVE-2018-11008]
167559K7computing K7AntiVirus Premium memory leak [CVE-2018-11007]
167558K7computing K7AntiVirus Premium access control [CVE-2018-11006]
167557K7computing K7AntiVirus Premium memory leak [CVE-2018-11005]
167556Backdoor.Win32.Zombam.a HTTP GET Request buffer overflow
167555Aleth Ethereum C++ Client JSON File config.json stack-based overflow
167554jsoneditor Tree Mode injection [CVE-2020-23849]
167553JIZHICMS index cross site scripting
167552JIZHICMS cross site scripting [CVE-2020-23643]
167551GoGo protobuf unmarshal.go array index
167550EVOLUCARE ECS Imaging req_password_user.php sql injection
167549Apache Traffic Server Cache Option request smuggling [CVE-2020-17509]
167548Apache Traffic Server ESI Plugin information disclosure [CVE-2020-17508]
167547Apache DolphinScheduler API Interface access control [CVE-2020-13922]
167546Apache Dubbo hashCode deserialization
167545proxy.py AuthPlugin auth.py before_upstream_connection improper authorization
167544Quest Policy Authority BrowseDirs.do cross site scripting
167543Quest Policy Authority index.jsp cross site scripting
167542Quest Policy Authority index.jsp cross site scripting
167541Quest Policy Authority Error.jsp cross site scripting
167540Quest Policy Authority ReportPreview.do cross site scripting
167539Quest Policy Authority Web Compliance Manager submitUser.jsp cross-site request forgery
167538Quest Policy Authority BrowseAssets.do cross site scripting
167537Quest Policy Authority submitUser.jsp cross site scripting
167536Quest Policy Authority index.jsp cross site scripting
167535Quest Policy Authority Web Compliance Manager cConn.jsp cross site scripting
167534Quest Policy Authority Web Compliance Manager initFile.jsp server-side request forgery
167533Quest Policy Authority FolderControl.jsp cross site scripting
167532Quest Policy Authority Web Compliance Manager initFile.jsp cross site scripting
167531Backdoor.Win32.Levelone.b HTTP OPTIONS Vector64.exe buffer overflow
167530Backdoor.Win32.Levelone.a HTTP TRACE Request dllvector.exe buffer overflow
167529Google Chrome Audio buffer overflow [CVE-2021-21116]
167528Google Chrome Safe Browsing use after free [CVE-2021-21115]
167527Google Chrome Audio use after free [CVE-2021-21114]
167526Google Chrome Skia buffer overflow [CVE-2021-21113]
167525Google Chrome Blink use after free [CVE-2021-21112]
167524Google Chrome Policy Enforcement sandbox [CVE-2021-21111]
167523Google Chrome HTML Page use after free [CVE-2021-21110]
167522Google Chrome Payments use after free [CVE-2021-21109]
167521Google Chrome Renderer Process use after free [CVE-2021-21108]
167520Google Chrome Renderer Process use after free [CVE-2021-21107]
167519Google Chrome Autofill use after free [CVE-2021-21106]
167518SonicWALL NetExtender Client unquoted search path [CVE-2020-5147]
167517SonicWall SMA100 HTTP POST os command injection [CVE-2020-5146]
167516IBM Spectrum Protect Plus VDAP Proxy information disclosure [CVE-2020-5022]
167515IBM Spectrum Protect Plus Session password recovery [CVE-2020-5021]
167514IBM Spectrum Protect Plus clickjacking [CVE-2020-5020]
167513IBM Spectrum Protect Plus HTTP Host Header cross site scripting
167512IBM Spectrum Protect Plus URL information disclosure [CVE-2020-5018]
167511IBM Spectrum Protect Plus permission [CVE-2020-5017]
167510IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4733]
167509IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4697]
167508IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4691]
167507IBM Jazz Foundation information exposure [CVE-2020-4544]
167506IBM Jazz Foundation information exposure [CVE-2020-4487]
167505Cockpit JSON Data Database.php injection
167504Rocket.Chat Password Reset information disclosure [CVE-2020-28208]
167503VideoLAN VLC Media Player MKV File send heap-based overflow
167502Dell Inspiron 5675 UEFI BIOS memory corruption [CVE-2020-26186]
167501Ceph mgr module cleartext storage [CVE-2020-25678]
167500Barco NDN-210 Web Administration Panel ngpsystemcmd.php command injection
167499Barco NDN-210 Web Administration Panel split_card_cmd.php command injection
167498Barco TransForm N Web Administration Panel split_card_cmd.php command injection
167497Google Chrome Network Traffic access control [CVE-2020-16043]
167496Google Chrome HTML Page Remote Code Execution [CVE-2020-16036]
167495Google Chrome Remote Code Execution [CVE-2020-16035]
167494Google Chrome WebRTC Local Privilege Escalation [CVE-2020-16034]
167493Google Chrome UI improper restriction of rendered ui layers [CVE-2020-16033]
167492Google Chrome Omnibox clickjacking [CVE-2020-16032]
167491Google Chrome Omnibox clickjacking [CVE-2020-16031]
167490Google Chrome Blink cross site scripting [CVE-2020-16030]
167489Google Chrome PDFium authorization [CVE-2020-16029]
167488Google Chrome WebRTC heap-based overflow [CVE-2020-16028]
167487Google Chrome Developer Tools information disclosure [CVE-2020-16027]
167486Google Chrome WebRTC use after free [CVE-2020-16026]
167485Google Chrome Clipboard heap-based overflow [CVE-2020-16025]
167484Google Chrome UI buffer overflow [CVE-2020-16024]
167483Google Chrome WebCodecs use after free [CVE-2020-16023]
167482Google Chrome Firewall Controls protection mechanism [CVE-2020-16022]
167481Google Chrome Image Burner access control [CVE-2020-16021]
167480Google Chrome cryptohome access control [CVE-2020-16020]
167479Google Chrome Filesystem protection mechanism [CVE-2020-16019]
167478Google Chrome HTML Page use after free [CVE-2020-16018]
167477Google Chrome HTML Page sandbox [CVE-2020-16016]
167476Google Chrome HTML Page heap-based overflow [CVE-2020-16015]
167475Google Chrome PPAPI use after free [CVE-2020-16014]
167474Google Chrome information disclosure [CVE-2020-16012]
167473Backdoor.Win32.Ketch.b HTTP GET Request watchb.tmp buffer overflow
167472Concrete5 Express Entries Dashboard cross site scripting [CVE-2021-3111]
167471NVIDIA vGPU Manager vGPU Plugin resource consumption [CVE-2021-1066]
167470NVIDIA vGPU Manager vGPU Plugin input validation [CVE-2021-1065]
167469NVIDIA vGPU Manager vGPU Plugin null pointer dereference [CVE-2021-1064]
167468NVIDIA vGPU Manager vGPU Plugin buffer overflow [CVE-2021-1063]
167467NVIDIA vGPU Manager vGPU Plugin denial of service [CVE-2021-1062]
167466NVIDIA vGPU Manager vGPU Plugin use after free [CVE-2021-1061]
167465NVIDIA vGPU Software vGPU Plugin memory corruption [CVE-2021-1060]
167464NVIDIA vGPU Manager vGPU Plugin integer overflow [CVE-2021-1059]
167463NVIDIA vGPU Software vGPU Plugin denial of service [CVE-2021-1058]
167462NVIDIA Virtual GPU Manager vGPU Plugin allocation of resources
167461NetApp Element OS code injection [CVE-2020-8584]
167460buns Index File index.js install(requestedModule) injection
167459ts-process-promises process-promises.js injection [CVE-2020-7784]
167458Marvell QConvergeConsole GUI QCC tomcat-users.xml cleartext storage
167457Marvell QConvergeConsole GUI deleteEventLogFile path traversal
167456IBM Engineering Requirements Quality Assistant On-Premises input validation
167455IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting
167454IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting
167453IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting
167452IBM Security Verify Privilege Manager xml external entity reference
167451Innokas Yhtymä Oy Vital Signs Monitor VC150 cross site scripting
167450Innokas Yhtymä Oy Vital Signs Monitor VC150 HL7 Segment injection
167449pwntools Shellcraft Generator injection [CVE-2020-28468]
167448Invision Power Services Community Suite Download REST API files.php GETindex sql injection
167447AWBS Advanced Webhost Billing System cross-site request forgery
167446D-Link DSL-2888A One Touch Application passwd information disclosure
167445NVIDIA GPU Display Driver Kernel Mode Layer access control [CVE-2021-1056]
167444NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape access control
167443NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape improper authorization
167442NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape memory corruption
167441NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape access control
167440NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape memory corruption
167439Mercusys Mercury X18G UPnP Server uhttpd.json pathname traversal
167438Mercusys Mercury X18G Web Server passwd pathname traversal
167437socket.io-parser Large Packet resource consumption [CVE-2020-36049]
167436Engine.IO POST Request EventEmitter resource consumption
167435PHPGurukul Hospital Management System dashboard.php access control
167434Barco TransForm NDN-210 Lite Web Administration Panel command injection
167433Gotenberg tini permission [CVE-2020-13452]
167432Gotenberg Office Rendering Engine unknown vulnerability [CVE-2020-13451]
167431Gotenberg File Upload pathname traversal [CVE-2020-13450]
167430Gotenberg Markdown Engine pathname traversal [CVE-2020-13449]
167429Rock RMS unrestricted upload [CVE-2019-18643]
167428Rock RMS Profile Update resource injection [CVE-2019-18642]
167427Backdoor.Win32.NinjaSpy.c HTTP PUT cmd.dll buffer overflow
167426Backdoor.Win32.Xtreme.yvp System.exe permission
167425Backdoor.Win32.Agent.dcbh 674_674.exe permission
167424Eaton easySoft E70 File type confusion [CVE-2020-6656]
167423Eaton easySoft E70 File out-of-bounds read [CVE-2020-6655]
167422IBM Emptoris Strategic Supply Management inadequate encryption
167421IBM Emptoris Contract Management information exposure [CVE-2020-4897]
167420IBM Emptoris Sourcing HTTP Request injection [CVE-2020-4896]
167419IBM Emptoris Strategic Supply Management Web UI cross site scripting
167418IBM Emptoris Strategic Supply Management HTTP GET Request information disclosure
167417IBM Emptoris Contract Management Web UI cross site scripting
167416Linux Kernel infiniband hfi1 Driver use after free [CVE-2020-27835]
167415Red Hat JBoss Core Services httpd SSL Certificate certificate validation
167414Liferay CMS Portal Calendar cross site scripting [CVE-2020-25476]
167413Rockwell Automation RSLinx Classic Ethernet IP denial of service
167412Foxit Reader/PhantomPDF Opcode proxyDoAction out-of-bounds read
167411Foxit Reader/PhantomPDF out-of-bounds read [CVE-2018-20315]
167410Foxit Reader/PhantomPDF proxyCheckLicence out-of-bounds read
167409Foxit Reader/PhantomPDF proxyPreviewAction out-of-bounds read
167408Foxit Reader/PhantomPDF Opcode proxyDoAction out-of-bounds read
167407Foxit Reader/PhantomPDF proxyCPDFAction out-of-bounds read
167406Foxit Reader/PhantomPDF proxyDoAction out-of-bounds read
167405Foxit Reader/PhantomPDF proxyGetAppEdition out-of-bounds read
167404Foxit PDF ActiveX Permission command injection [CVE-2018-19418]
167403Portable Document Format Signature signature verification [CVE-2018-18689]
167402Portable Document Format Signature signature verification [CVE-2018-18688]
167401EVOLUCARE ECS Imaging showfile.php os command injection
167400NXP SmartMX/P5x/A7x CryptoLib power side-channel [CVE-2021-3011]
167399Mozilla Firefox memory corruption [CVE-2020-35114]
167398Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2020-35113]
167397Mozilla Firefox/Firefox ESR/Thunderbird Extension uncontrolled search path
167396Mozilla Firefox/Firefox ESR/Thunderbird Proxy information disclosure
167395MonoCMS Blog Access Control category.php access control
167394Mozilla Firefox Address Bar clickjacking [CVE-2020-26979]
167393Mozilla Firefox/Firefox ESR/Thunderbird information disclosure
167392Mozilla Firefox URL Bar clickjacking [CVE-2020-26977]
167391Mozilla Firefox Service Worker Remote Code Execution [CVE-2020-26976]
167390Mozilla Firefox session fixiation [CVE-2020-26975]
167389Mozilla Firefox/Firefox ESR/Thunderbird Table Wrapper heap-based overflow
167388Mozilla Firefox/Firefox ESR/Thunderbird CSS unknown vulnerability
167387Mozilla Firefox IPC Actor use after free [CVE-2020-26972]
167386Mozilla Firefox/Firefox ESR/Thunderbird Video Driver heap-based overflow
167385Restaurant Reservation System reservation.inc.php sql injection
167384Formstone upload-target.php cross site scripting
167383CuteSoft Components Cute Editor for ASP.NET cross site scripting
167382Quixplorer cross site scripting [CVE-2020-24902]
167381Krpano Panorama Viewer JS Load krpano.html cross site scripting
167380Krpano Panorama Viewer XML Load krpano.html cross site scripting
167379CairoSVG Regular Expression resource consumption [CVE-2021-21236]
167378Node.js Transfer-Encoding request smuggling [CVE-2020-8287]
167377Nextcloud Contacts SVG File cross site scripting [CVE-2020-8281]
167376Nextcloud Contacts SVG cross site scripting [CVE-2020-8280]
167375Citrix Secure Mail access control [CVE-2020-8275]
167374Citrix Secure Mail code injection [CVE-2020-8274]
167373Node.js TLS Socket Write use after free
167372actionpack Gem Developer Mode cross site scripting [CVE-2020-8264]
167371MendixSSO OpenID Endpoint cross site scripting [CVE-2020-8160]
167370FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36189]
167369FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36188]
167368FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36187]
167367FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36186]
167366FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36185]
167365FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36184]
167364FasterXML jackson-databind unknown vulnerability [CVE-2020-36183]
167363FasterXML jackson-databind unknown vulnerability [CVE-2020-36182]
167362FasterXML jackson-databind unknown vulnerability [CVE-2020-36181]
167361FasterXML jackson-databind unknown vulnerability [CVE-2020-36180]
167360FasterXML jackson-databind unknown vulnerability [CVE-2020-36179]
167359TP-LINK TL-WR840N Web Interface oal_ipt_addBridgeIsolationRules os command injection
167358wolfSSL Digest rsa.c RsaPad_PSS out-of-bounds write
167357iThemes Security Plugin Password Requirements weak password [CVE-2020-36176]
167356Ninja Forms Plugin Email Validation unknown vulnerability [CVE-2020-36175]
167355Ninja Forms Plugin Services Integration cross-site request forgery
167354Ninja Forms Plugin submissions-table Field cross site scripting
167353Advanced Custom Fields Plugin Dropdown cross site scripting [CVE-2020-36172]
167352Elementor Website Builder Plugin unrestricted upload [CVE-2020-36171]
167351Digisol DG-HR3400 NTP Server Name cross site scripting [CVE-2020-35262]
167350Web-Sesame source code [CVE-2020-29041]
167349Red Lion Crimson missing authentication [CVE-2020-27285]
167348Red Lion Crimson Messages information disclosure [CVE-2020-27283]
167347Red Lion Crimson Packet null pointer dereference [CVE-2020-27279]
167346Beetel 777VR1 NTP Server Name cross site scripting [CVE-2020-25498]
167345SoftMaker Office TextMaker heap-based overflow [CVE-2020-13545]
167344SoftMaker Office TextMaker heap-based overflow [CVE-2020-13544]
167343Zoho ManageEngine Desktop Central New Custom Report injection
167342SolarWinds Web Help Desk Comments injection [CVE-2019-16954]
167341Limit Login Attempts Plugin excessive authentication [CVE-2012-10001]
167340Proofpoint Insider Threat Management Windows Agent rcdsvc deserialization
167339IBM WebSphere eXtreme Scale URL Parameter information disclosure
167338Ultimate Member Plugin Timestamp Field unknown vulnerability
167337clickhouse-driver Server Response buffer overflow [CVE-2020-26759]
167336Proofpoint Insider Threat Management Server WriteImage API deserialization
167335Proofpoint Insider Threat Management Server ImportAlertRules deserialization
167334Proofpoint Insider Threat Management Server WriteWindowMouseWithChunksV2 API deserialization
167333Proofpoint Insider Threat Management Server WriteWindowMouse API deserialization
167332Invision Power Services Community Suite Comments cross site scripting
167331LG Mobile Device unknown vulnerability [CVE-2021-3022]
167330ISPConfig sql injection [CVE-2021-3021]
167329Samsung Mobile Device Mali GPU Driver out-of-bounds read [CVE-2021-22495]
167328Samsung Note 20 Fingerprint Scanner unknown vulnerability [CVE-2021-22494]
167327Samsung Mobile Device quram Library memory corruption [CVE-2021-22493]
167326Samsung Mobile Device Bluetooth UART Driver buffer overflow [CVE-2021-22492]
167325kamadak-exif Exif Parser read_from_container infinite loop
167324spring-boot-actuator-logview path traversal [CVE-2021-21234]
167323McAfee Network Security Management HTTP Request cross-site request forgery
167322HPE Integrated Lights-Out 4/Integrated Lights-Out 5 information disclosure
167321IBM API Connect cleartext transmission [CVE-2020-4899]
167320IBM Sterling B2B Integrator Standard Edition access control [CVE-2020-4762]
167319IBM Sterling B2B Integrator Standard Edition information exposure
167318Veritas NetBackup/OpsCenter OpenSSL Library permission [CVE-2020-36169]
167317Veritas Resiliency Platform OpenSSL Library openssl.cnf permission
167316Veritas Backup Exec OpenSSL Library openssl.cnf permission
167315Veritas InfoScale OpenSSL Library openssl.cnf permission
167314Veritas Desktop and Laptop Option OpenSSL Library openssl.cnf permission
167313Veritas Enterprise Vault OpenSSL Library openssl.cnf permission
167312Veritas NetBackup/OpsCenter permission [CVE-2020-36163]
167311Veritas CloudPoint Windows Agent openssl.cnf permission
167310Veritas APTARE OpenSSL Engine permission [CVE-2020-36161]
167309Veritas System Recovery openssl.cnf access control
167308Veritas Desktop and Laptop Option Backup information disclosure
167307GJSON GET Call denial of service [CVE-2020-36067]
167306GJSON denial of service [CVE-2020-36066]
167305miniCMS post-edit.php pathname traversal
167304miniCMS page_edit.php pathname traversal
167303NXLog Community Edition fileop Module denial of service [CVE-2020-35488]
167302Dell EMC Unisphere for PowerMax/PowerMax OS cross site scripting
167301Dell EMC PowerStore cleartext storage [CVE-2020-29502]
167300Dell EMC PowerStore cleartext storage [CVE-2020-29501]
167299Dell EMC PowerStore cleartext storage [CVE-2020-29500]
167298Dell EMC Unity/Unity XT/UnityVSA NAS Servers with NFS Export resource consumption
167297Dell EMC Unity/Unity XT/UnityVSA cleartext storage [CVE-2020-29489]
167296Broadcom CA Service Catalog Setup Utility denial of service [CVE-2020-29478]
167295OrangeHRM Buzz Module BuzzDao.php sql injection
167294OpenJPEG Encoding pi.c out-of-bounds read
167293OpenJPEG Encoding t2.c out-of-bounds write
167292OpenJPEG Conversion Encoding out-of-bounds read [CVE-2020-27843]
167291OpenJPEG t2 Encoder null pointer dereference [CVE-2020-27842]
167290OpenJPEG pi.c out-of-bounds read
167289Dell EMC Unity/Unity XT/UnityVSA log file [CVE-2020-26199]
167288Dell EMC Isilon OneFS/PowerScale OneFS SmartLock Compliance Mode Cluster privileges management
167287Fuel CMS cross site scripting [CVE-2020-26046]
167286Fuel CMS sql injection [CVE-2020-26045]
167285Gigamon GigaVUE-OS inadequate encryption [CVE-2020-23250]
167284Gigamon GigaVUE-OS cleartext storage [CVE-2020-23249]
167283Mobile-911 Server access control [CVE-2020-13541]
167282Win-911 Enterprise Account Change Utility permission [CVE-2020-13540]
167281Win-911 Enterprise permission [CVE-2020-13539]
167280IBM Sterling B2B Integrator Standard Edition deserialization
167279Viki Vera access control [CVE-2019-20484]
167278Viki Vera cross site scripting [CVE-2019-20483]
167277Apache Flink REST Interface file access [CVE-2020-17519]
167276Apache Flink REST path traversal [CVE-2020-17518]
167275ffay lanproxy config.properties pathname traversal
167274ipeak Infosystems ibexwebCMS print.php sql injection
167273MikroTik RouterOS Hotspot Login Page cross site scripting [CVE-2021-3014]
167272Dell Client Consumer/Client Commercial BIOS Password Reset password recovery
167271Linux Kernel SSID join.c mwifiex_cmd_802_11_ad_hoc_start memory corruption
167270Ultimate Member Plugin Registration access control [CVE-2020-36157]
167269Ultimate Member Plugin Profile Update profile.php access control
167268Ultimate Member Plugin wp_capabilities access control
167267Pearson VUE VTS Installer permission [CVE-2020-36154]
167266ASUS DSL-N17U Admin Interface Advanced_System_Content.asp improper authentication
167265Dell Wyse Management Suite redirect [CVE-2020-29498]
167264Dell Wyse Management Suite Device Tag cross site scripting [CVE-2020-29497]
167263Dell Wyse Management Suite cross site scripting [CVE-2020-29496]
167262Dell Wyse ThinOS default permission [CVE-2020-29492]
167261Dell Wyse ThinOS information disclosure [CVE-2020-29491]
167260mdBook Search Query cross site scripting [CVE-2020-26297]
167259Vela Configuration env os command injection
167258HtmlSanitizer cross site scripting [CVE-2020-26293]
167257Creeper Interpreter source code [CVE-2020-26292]
167256Dovecot lda/lmtp/imap input validation [CVE-2020-25275]
167255Dovecot IMAP unknown vulnerability [CVE-2020-24386]
167254GNU C Library iconv encoding error [CVE-2019-25013]
167253Backdoor.Win32.Zombam.k HTTP GET Request httpserver.exe buffer overflow
167252IBM Curam Social Program Management cross-site request forgery
167251IBM Cloud Pak System File Extension unrestricted upload [CVE-2020-4928]
167250IBM Cloud Pak System Logout user session [CVE-2020-4919]
167249IBM Cloud Pak System Sell Service Console resource injection
167248IBM Cloud Pak System cross-site request forgery [CVE-2020-4917]
167247IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4916]
167246IBM Cloud Pak System HTTP Response information disclosure [CVE-2020-4913]
167245IBM Cloud Pak System Self Service Console access control [CVE-2020-4912]
167244IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4910]
167243IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4909]
167242CSE Bookstore bookPerPub.php sql injection
167241GNU Binutils pef.c bfd_pef_parse_function_stubs null pointer dereference
167240GNU Binutils pef.c bfd_pef_scan_start_address null pointer dereference
167239GNU Binutils objdump pef.c null pointer dereference
167238GNU Binutils tic4x-dis.c uninitialized resource
167237GNU Binutils PEF File Parser pef.c out-of-bounds read
167236Veno File Manager pathname traversal [CVE-2020-22550]
167235asciitable.js Prototype main code injection
167234Korzio djv Schema File cross site scripting [CVE-2020-28464]
167233SolarWinds Web Help Desk CSV Template File cross site scripting
167232SolarWinds Web Help Desk Ticket cross site scripting [CVE-2019-16956]
167231Zend Framework Stream.php __destruct deserialization
167230MK-AUTH cross-site request forgery [CVE-2021-21495]
167229MK-AUTH logs_ajax.php cookie without 'httponly' flag
167228FFmpeg Memset zero exr.c decode_frame out-of-bounds write
167227Farm in Seal Finance breed access control
167226FFmpeg Extradata vividas.c track_header out-of-bounds write
167225Fluent Bit flb_gzip.c flb_gzip_compress out-of-bounds write
167224Loopring Vault Protocol sellTokenForLRC access control
167223MK-AUTH recibo.php information disclosure
167222Stable Yield Credit _deposit access control
167221PHP-Fusion login.php information exposure
167220DriverGenius ioctl Command denial of service [CVE-2020-28841]
167219Backdoor:Win32.BNLite Service Port 5000 NBLF32.exe heap-based overflow
167218Phorpiex permission
167217Trojan.Win32.Jorik.DMSpammer.sz HTTP Service Port 80 stat1.php memory corruption
167216HEUR:RiskTool.Win32.BitMiner.gen HTTP Service Port 8046 memory corruption
167215Backdoor.Win32.Zombam.j HTTP Service Port 80 buffer overflow
167214Backdoor:Win32/RemoteManipulator audiohd.exe permission
167213Backdoor:Win32.Adverbot IRC Connection null pointer dereference
167212Trojan:Win32.Alyak.B HTTP Service Port 80 1.txt memory corruption
167211Email-Worm.Win32.Zhelatin.ago Service Port 80 buffer overflow
167210Trojan.Win32.Bayrob.cgau chvlcpvyoh permission
167209Trojan.Win32.Barjac SMTP Connection buffer overflow
167208Backdoor.Win32.Infexor.b HTTP Service Port 13 kernel32.dll.exe buffer overflow
1672072019-02-ARTRADOWNLOADER Service Port 80 intel buffer overflow
167206Trojan.Win32.Antavka.bz Temp permission
167205Google Go x-text language.ParseAcceptLanguage array index
167204Google Go x-text language.ParseAcceptLanguage array index
167203Seo Panel cross site scripting [CVE-2021-3002]
167202zonote Notes cross site scripting [CVE-2020-35717]
167201Tenda N300 F3 HTTP Response RouterCfm.cfg information disclosure
167200Quiz and Survey Master Plugin wp-config.php qsm_remove_file_fd_question denial of service
167199XCloner Backup and Restore Plugin cross-site request forgery
167198Quiz and Survey Master Plugin Content-Type Header plain unrestricted upload
167197XCloner Backup and Restore Plugin xcloner_restore.php write_file_action Remote Privilege Escalation
167196PageLayer Plugin AJAX pagelayer_save_content improper authorization
167195All in One SEO Pack Plugin cross site scripting [CVE-2020-35946]
167194Divi Builder Plugin/Divi Theme/Divi Extra Theme unrestricted upload
167193PageLayer Plugin pagelayer_settings_page cross-site request forgery
167192Team Showcase Plugin AJAX team_import_xml_layouts injection
167191Post Grid Plugin AJAX post_grid_import_xml_layouts injection
167190Team Showcase Plugin AJAX team_import_xml_layouts cross site scripting
167189Post Grid Plugin AJAX post_grid_import_xml_layouts cross site scripting
167188Advanced Access Manager Plugin POST Parameter access control
167187Advanced Access Manager Plugin REST API authenticate information disclosure
167186Newsletter Plugin tnpc_render cross site scripting
167185Newsletter Plugin tpnc_render injection
167184Foxit Reader/PhantomPDF PDF Document Remote Code Execution [CVE-2020-35931]
167183Seo Panel websites.php cross site scripting
167182qdPM actions.class.php executeExport injection
167181LimeSurvey Quota cross site scripting [CVE-2020-25799]
167180LimeSurvey Add Participants cross site scripting [CVE-2020-25797]
167179Oppo Smart Phone oppo_da9313.c proc_work_mode_write memory corruption
167178Oppo Smart Phone oppo_vooc.c proc_fastchg_fw_update_write memory corruption
167177Oppo Smart Phone oppo_mp2650.c mp2650_data_log_write memory corruption
167176Oppo Smart Phone oppo_charger.c charging_limit_current_write unknown vulnerability
167175Webform Report Project Submission rss.xml information disclosure
167174NetBox GFM-rendered Field cross site scripting [CVE-2019-25011]
167173KCFinder Integration Project uploader.php access control
167172QNAP QTS Directory file inclusion [CVE-2018-19945]
167171QNAP QTS cleartext transmission [CVE-2018-19944]
167170QNAP QTS/QuTS Hero/QuTScloud missing encryption [CVE-2018-19941]
167169AES Encryption Project inadequate encryption [CVE-2017-20001]
167168REST-JSON Project Session entropy [CVE-2016-20008]
167167REST-JSON Project Session Name entropy [CVE-2016-20007]
167166REST-JSON Project denial of service [CVE-2016-20006]
167165REST-JSON Project User Registration access control [CVE-2016-20005]
167164REST-JSON Project Field access control [CVE-2016-20004]
167163REST-JSON Project information disclosure [CVE-2016-20003]
167162REST-JSON Project Comment access control [CVE-2016-20002]
167161REST-JSON Project access control [CVE-2016-20001]

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!