Tools 2021

IDTitleNessusOpenVASSnortSuricataTippingPoint
168084GROWI cross site scripting [CVE-2021-20619]
168083Atlassian Confluence Server/Data Center Avatar Upload denial of service
168082McAfee Agent Update denial of service [CVE-2020-7343]
168081Archive_Tar Tar.php pathname traversal
168080Source Integration Plugin Private Project view.php access control
168079Email-Worm.Win32.Agent.gi Microsoft ASPI Manager aspimgr.exe buffer overflow
168078Backdoor.Win32.NetBull.11.a Service Port 23444 infected.exe stack-based overflow
168077Constructor.Win32.SMWG.c VBS Script sucke.vbs permission
168076Constructor.Win32.SMWG.a VBS Script sucke.vbs permission
168075Newfuture Trojan Fast_sms Server permission
168074tornado Package request smuggling [CVE-2020-28476]
168073bottle Package request smuggling [CVE-2020-28473]
168072OpenCATS cross site scripting [CVE-2021-25295]
168071OpenCATS guzzlehttp DataGrid.php __destruct deserialization
168070Open Design Alliance Drawings SDK DXF File stack-based overflow
168069Open Design Alliance Drawings SDK DXF File null pointer dereference
168068Open Design Alliance Drawings SDK DXF File null pointer dereference
168067Open Design Alliance Drawings SDK DXF File null pointer dereference
168066Open Design Alliance Drawings SDK DGN File memory corruption
168065Open Design Alliance Drawings SDK DGN File denial of service
168064Asus DSL-N14U-B1 Firmware Update Settings_DSL-N14U-B1.trx denial of service
168063Atlassian FishEye/Crucible file access [CVE-2020-29446]
168062Quali CloudShell Login Page cross site scripting [CVE-2020-15864]
168061Netsia SEBA+ allActiveSession information disclosure
168060Backdoor.Win32.Mnets UDP Service buffer overflow
168059Backdoor.Win32.Whgrx HTTP Host Header wsocx.dll buffer overflow
168058Docker Desktop Community certificate validation [CVE-2021-3162]
168057OneDev KubernetesResource REST Endpoint path traversal [CVE-2021-21251]
168056OneDev XML Document XmlBuildSpecMigrator.migrate information disclosure
168055OneDev YAML Parser deserialization [CVE-2021-21249]
168054OneDev injection [CVE-2021-21248]
168053OneDev AJAX Event Listener improper authentication [CVE-2021-21247]
168052OneDev REST UserResource Endpoint {id} authorization
168051OneDev AttachmentUploadServlet request.getInputStream unrestricted upload
168050OneDev Bean Message injection [CVE-2021-21244]
168049OneDev Kubernetes REST Endpoint improper authentication [CVE-2021-21243]
168048OneDev AttachmentUploadServlet deserialization [CVE-2021-21242]
168047Git LFS git.exe untrusted search path
168046Juniper Junos telnetd.real unnecessary privileges
168045Juniper Junos Protocol Packet denial of service [CVE-2021-0222]
168044Juniper Junos IRB Interface denial of service [CVE-2021-0221]
168043Juniper Junos Space Network Management Platform credentials storage
168042Juniper Junos Package Validation Subsystem command injection
168041Juniper Junos License-Check Daemon command injection [CVE-2021-0218]
168040Juniper Junos DHCP Packet memory corruption [CVE-2021-0217]
168039Juniper Junos 802.1X Authenticator Port Interface resource consumption
168038Juniper Networks Contrail information disclosure [CVE-2021-0212]
168037Juniper Junos Routing Protocol denial of service [CVE-2021-0211]
168036Juniper Junos J-Web information disclosure [CVE-2021-0210]
168035Juniper Junos BGP UPDATE uninitialized pointer [CVE-2021-0209]
168034Juniper Junos Routing Protocol denial of service [CVE-2021-0208]
168033Juniper Junos denial of service [CVE-2021-0207]
168032Juniper Junos Packet Forwarding Engine denial of service [CVE-2021-0206]
168031Juniper MX IDS 32 access control
168030Juniper Junos dexp information disclosure [CVE-2021-0204]
168029Juniper EX/QFX5K RTG denial of service [CVE-2021-0203]
168028Juniper EX9200 IRB Interface memory leak [CVE-2021-0202]
168027Simple Board Job Plugin pathname traversal [CVE-2020-35749]
168026FV Flowplayer Video Player list-table.php fv_wp_fvvideoplayer_src cross site scripting
168025Erlang OTP X.509 Certificate certificate validation [CVE-2020-35733]
168024Malwarebytes Launch Daemon posix_spawn race condition
168023Aruba AirWave Glass server-side request forgery [CVE-2020-24641]
168022Aruba Airwave Glass Environment input validation [CVE-2020-24640]
168021Aruba Airwave Glass Java deserialization [CVE-2020-24639]
168020Aruba Airwave Glass glassadmin CLI Remote Privilege Escalation
168019ownCloud Forgot Password cross site scripting [CVE-2020-16255]
168018SolarWinds Web Help Desk Schedule Name cross site scripting [CVE-2019-16961]
168017Backdoor.Win32.Nucleroot.t MaskPE xmllite.dll buffer overflow
168016Backdoor.Win32.Nucleroot.bi MaskPE buffer overflow
168015flatCore ACP Interface cross site scripting [CVE-2021-23838]
168014flatCore ACP Interface sql injection [CVE-2021-23837]
168013flatCore ACP Interface cross site scripting [CVE-2021-23836]
168012flatCore HTTP Request information disclosure [CVE-2021-23835]
168011Envira Gallery Lite HTML cross site scripting
168010Envira Gallery Lite cross site scripting [CVE-2020-35581]
168009GitLab Community Edition/Enterprise Edition Package Name denial of service
168008GitLab Community Edition/Enterprise Edition NuGet API denial of service
168007GitLab Community Edition/Enterprise Edition Repository access control
168006GitLab Community Edition/Enterprise Edition HTTP Request denial of service
168005GitLab Community Edition/Enterprise Edition Pages information disclosure
168004Backdoor.Win32.Ncx.bt Web Server buffer overflow
168003Elasticsearch Async Search API information disclosure [CVE-2021-22132]
168002Flatpak flatpak-portal Service injection [CVE-2021-21261]
168001Google Chrome HTML Page use after free [CVE-2020-6572]
168000Dell EMC Avamar Server Fitness Analyzer os command injection
167999Dell EMC Avamar Server PDM path traversal [CVE-2020-29494]
167998Dell EMC Avamar Server Fitness Analyzer sql injection [CVE-2020-29493]
167997Eclipse Hono AMQP/MQTT authorization [CVE-2020-27220]
167996Eclipse Hawkbit JSON Response cross site scripting [CVE-2020-27219]
167995Google Chrome HTML Page cross site scripting [CVE-2020-16046]
167994Google Chrome HTML Page use after free [CVE-2020-16045]
167993Apache Tomcat NTFS File System File.getCanonicalPath information disclosure
167992XMLBeans XML Parser xml external entity reference [CVE-2021-23926]
167991ZTE ZXV10 B860A Log information disclosure [CVE-2021-21722]
167990acmailer/acmailer DB improper authentication [CVE-2021-20618]
167989acmailer/acmailer DB access control [CVE-2021-20617]
167988Bosch PRAESIDEO/PRAESENSA Web-based Management Interface cross site scripting
167987Bosch PRAESIDEO/PRAESENSA Web-based Management Interface cross-site request forgery
167986SimplCommerce Bootbox.js html cross site scripting
167985Fortinet FortiWeb httpd stack-based overflow [CVE-2020-29019]
167984Fortinet FortiWeb format string [CVE-2020-29018]
167983Fortinet FortiDeceptor Customization Page os command injection
167982Fortinet FortiWeb Request stack-based overflow [CVE-2020-29016]
167981Fortinet FortiWeb Authorization Header sql injection [CVE-2020-29015]
167980scullyio scully HTML Page JSON.stringify state issue
167979TOTOLINK A702R Directory Indexing information disclosure [CVE-2020-27368]
167978Skyworth GN542VF Configuration Page cross site scripting [CVE-2020-26733]
167977Skyworth GN542VF Boa Session Cookie missing secure attribute
167976Open-iSCSI tcmu-runner tcmur_cmd_handler.c xcopy_locate_udev pathname traversal
167975Discourse 2FA improper authentication [CVE-2021-3138]
1679741C:Enterprise URL Parameter information disclosure [CVE-2021-3131]
167973Palo-Alto PAN-OS log file [CVE-2021-3032]
167972Palo-Alto PAN OS Ethernet Packet information disclosure [CVE-2021-3031]
167971git-big-picture Branch Name unknown vulnerability [CVE-2021-3028]
167970OWASP json-sanitizer JSON denial of service [CVE-2021-23900]
167969OWASP json-sanitizer Script Tag cross site scripting [CVE-2021-23899]
167968Bumblebee HP ALM Plugin Configuration File credentials storage
167967TICS Plugin cross site scripting [CVE-2021-21613]
167966TraceTronic ECU-TEST Plugin Configuration File credentials storage
167965Jenkins Display Name cross site scripting [CVE-2021-21611]
167964Jenkins Markup cross site scripting [CVE-2021-21610]
167963Jenkins URL handler authorization [CVE-2021-21609]
167962Jenkins cross site scripting [CVE-2021-21608]
167961Jenkins URL memory allocation [CVE-2021-21607]
167960Jenkins XML File information disclosure [CVE-2021-21606]
167959Jenkins Agent config.xml permission
167958Jenkins Old Data Monitor deserialization [CVE-2021-21604]
167957Jenkins Notification Bar cross site scripting [CVE-2021-21603]
167956Jenkins File Browser link following [CVE-2021-21602]
167955jQuery Validation Plugin resource consumption [CVE-2021-21252]
167954Adobe Bridge TTF File out-of-bounds write [CVE-2021-21013]
167953Adobe Bridge TTF File out-of-bounds write [CVE-2021-21012]
167952Adobe Captivate 2019 uncontrolled search path [CVE-2021-21011]
167951Adobe InCopy uncontrolled search path [CVE-2021-21010]
167950Adobe Campaign Classic server-side request forgery [CVE-2021-21009]
167949Adobe Animate uncontrolled search path [CVE-2021-21008]
167948Adobe Illustrator uncontrolled search path [CVE-2021-21007]
167947Adobe Photoshop Font File heap-based overflow [CVE-2021-21006]
167946Cisco Small Business Web-based Management Interface stack-based overflow
167945Cisco WebEx Meetings/WebEx Meetings Server Host Key excessive authentication
167944Cisco Webex Meetings Web-based Management Interface redirect
167943Cisco Small Business Web-based Management Interface stack-based overflow
167942Cisco FirePOWER Management Center Dashboard Widget xml entity expansion
167941Cisco AnyConnect Secure Mobility Client access control [CVE-2021-1258]
167940Cisco Finesse Web-based Management Interface cross site scripting
167939Cisco Finesse Web-based Management Interface cross site scripting
167938Cisco WebEx Teams Messaging Interface clickjacking [CVE-2021-1242]
167937Cisco Proximity Desktop DLL Loader uncontrolled search path [CVE-2021-1240]
167936Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
167935Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
167934Cisco AnyConnect Secure Mobility Client Network Access Manager/Web Security Agent uncontrolled search path
167933Cisco Integrated Services Router Snort Application Detection Engine control flow
167932Cisco Unified Communications Manager Audit Logging log file [CVE-2021-1226]
167931Cisco Integrated Services Router TCP Fast Open protection mechanism
167930Cisco Integrated Services Router Snort protection mechanism [CVE-2021-1223]
167929Cisco Small Business Web-based Management Interface stack-based overflow
167928Cisco Small Business Web-based Management Interface stack-based overflow
167927Cisco Small Business Web-based Management Interface stack-based overflow
167926Cisco Small Business Web-based Management Interface stack-based overflow
167925Cisco Small Business Web-based Management Interface stack-based overflow
167924Cisco Small Business Web-based Management Interface stack-based overflow
167923Cisco Small Business Web-based Management Interface stack-based overflow
167922Cisco Small Business Web-based Management Interface stack-based overflow
167921Cisco Small Business Web-based Management Interface stack-based overflow
167920Cisco Small Business Web-based Management Interface stack-based overflow
167919Cisco Small Business Web-based Management Interface stack-based overflow
167918Cisco Small Business Web-based Management Interface stack-based overflow
167917Apache Operating System Web-based Management Interface stack-based overflow
167916Cisco Small Business Web-based Management Interface stack-based overflow
167915Cisco Small Business Web-based Management Interface stack-based overflow
167914Cisco Small Business Web-based Management Interface stack-based overflow
167913Cisco Small Business Web-based Management Interface stack-based overflow
167912Cisco Small Business Web-based Management Interface stack-based overflow
167911Cisco Small Business Web-based Management Interface stack-based overflow
167910Cisco Small Business Web-based Management Interface stack-based overflow
167909Cisco Small Business Web-based Management Interface stack-based overflow
167908Cisco Small Business Web-based Management Interface stack-based overflow
167907Cisco Small Business Web-based Management Interface stack-based overflow
167906Cisco Small Business Web-based Management Interface stack-based overflow
167905Cisco Small Business Web-based Management Interface stack-based overflow
167904Cisco Small Business Web-based Management Interface stack-based overflow
167903Cisco Small Business Web-based Management Interface stack-based overflow
167902Cisco Small Business Web-based Management Interface stack-based overflow
167901Cisco Small Business Web-based Management Interface stack-based overflow
167900Cisco Small Business Web-based Management Interface stack-based overflow
167899Cisco Small Business Web-based Management Interface stack-based overflow
167898Cisco Small Business Web-based Management Interface stack-based overflow
167897Cisco Small Business Web-based Management Interface stack-based overflow
167896Cisco Small Business Web-based Management Interface stack-based overflow
167895Cisco Small Business Web-based Management Interface stack-based overflow
167894Cisco Small Business Web-based Management Interface stack-based overflow
167893Cisco Small Business Web-based Management Interface stack-based overflow
167892Cisco Small Business Web-based Management Interface stack-based overflow
167891Cisco Small Business Web-based Management Interface stack-based overflow
167890Cisco Small Business Web-based Management Interface stack-based overflow
167889Cisco Small Business Web-based Management Interface stack-based overflow
167888Cisco Small Business Web-based Management Interface stack-based overflow
167887Cisco Small Business Web-based Management Interface stack-based overflow
167886Cisco Small Business Web-based Management Interface stack-based overflow
167885Cisco Small Business Web-based Management Interface stack-based overflow
167884Apache Operating System Web-based Management Interface stack-based overflow
167883Cisco Small Business Web-based Management Interface stack-based overflow
167882Cisco Small Business Web-based Management Interface stack-based overflow
167881Cisco Small Business Web-based Management Interface stack-based overflow
167880Cisco Small Business Web-based Management Interface stack-based overflow
167879Cisco Small Business Web-based Management Interface stack-based overflow
167878Cisco Small Business Web-based Management Interface stack-based overflow
167877Cisco Small Business Web-based Management Interface stack-based overflow
167876Cisco Small Business Web-based Management Interface stack-based overflow
167875Cisco Small Business Web-based Management Interface stack-based overflow
167874Cisco Small Business Web-based Management Interface stack-based overflow
167873Cisco Small Business Web-based Management Interface stack-based overflow
167872Cisco Small Business Web-based Management Interface stack-based overflow
167871Apache Operating System Web-based Management Interface stack-based overflow
167870Cisco Small Business Web-based Management Interface cross site scripting
167869Cisco Small Business Web-based Management Interface cross site scripting
167868Cisco Small Business Web-based Management Interface cross site scripting
167867Cisco Small Business Web-based Management Interface cross site scripting
167866Cisco Small Business Web-based Management Interface cross site scripting
167865Cisco Small Business Web-based Management Interface cross site scripting
167864Cisco Small Business Web-based Management Interface cross site scripting
167863Cisco Small Business Web-based Management Interface cross site scripting
167862Cisco Small Business Web-based Management Interface command injection
167861Cisco Small Business Web-based Management Interface command injection
167860Cisco Small Business Web-based Management Interface command injection
167859Cisco Small Business Web-based Management Interface command injection
167858Apache Operating System Web-based Management Interface command injection
167857Cisco StarOS SFTP symlink [CVE-2021-1145]
167856Cisco Connected Mobile Experiences Password authorization [CVE-2021-1144]
167855Cisco Connected Mobile Experiences API GET Request authorization
167854Cisco Video Surveillance 8000 Discovery Protocol Packet memory corruption
167853Cisco DNA Center Web-based Management Interface cross site scripting
167852Cisco Enterprise NFV Infrastructure Software Web-based Management Interface cross site scripting
167851Cisco FirePOWER Management Center credentials storage [CVE-2021-1126]
167850Huawei SMC Module access control [CVE-2020-9209]
167849Huawei P30 Broadcast Message Local Privilege Escalation [CVE-2020-9203]
167848Huawei Smartphone out-of-bounds write [CVE-2020-9145]
167847Huawei Smartphone heap-based overflow [CVE-2020-9144]
167846Huawei Smartphone improper authentication [CVE-2020-9143]
167845Huawei Smartphone Update heap-based overflow [CVE-2020-9142]
167844Huawei Smartphone information disclosure [CVE-2020-9141]
167843Huawei Smartphone buffer overflow [CVE-2020-9140]
167842Huawei Smartphone memory corruption [CVE-2020-9139]
167841Huawei Smartphone Update heap-based overflow [CVE-2020-9138]
167840IBM Security Guardium Insights credentials storage [CVE-2020-4604]
167839IBM Security Guardium Insights credentials storage [CVE-2020-4602]
167838IBM Security Guardium Insights information exposure [CVE-2020-4600]
167837IBM Security Guardium Insights information exposure [CVE-2020-4599]
167836IBM Security Guardium Insights Cookie missing secure attribute
167835IBM Security Guardium Insights inadequate encryption [CVE-2020-4596]
167834IBM Security Guardium Insights inadequate encryption [CVE-2020-4595]
167833IBM Security Guardium Insights inadequate encryption [CVE-2020-4594]
167832PHPFusion Shoutbox Message cross-site request forgery [CVE-2020-35687]
167831Nagios XI Manage Plugins Page unrestricted upload [CVE-2020-35578]
167830Loxone Miniserver improper authentication [CVE-2020-27488]
167829PTC Kepware KEPServerEX OPC UA Message use after free [CVE-2020-27267]
167828PTC Kepware KEPServerEX OPC UA Message stack-based overflow [CVE-2020-27265]
167827PTC Kepware KEPServerEX OPC UA Message heap-based overflow [CVE-2020-27263]
167826Coturn Loopback Interface confused deputy [CVE-2020-26262]
167825zoujingli ThinkAdmin Update.php deserialization
167824Huawei Secospace USG9500 DHCP Message Parser out-of-bounds read
167823Huawei CloudEngine PIM Message out-of-bounds read [CVE-2020-1865]
167822Ubuntu Linux DCCP Socket use after free [CVE-2020-16119]
167821Combodo iTop Console Breadcrumb cross site scripting [CVE-2020-15221]
167820Combodo iTop session expiration [CVE-2020-15220]
167819Combodo iTop User Portal information exposure [CVE-2020-15219]
167818Combodo iTop Admin Page session expiration [CVE-2020-15218]
167817Xiaomi AX1800/RM1800 ddns command injection [CVE-2020-14102]
167816Xiaomi AX1800/RM1800 Web Management Interface information disclosure
167815Xiaomi AX1800/RM1800 Time denial of service [CVE-2020-14098]
167814Xiaomi Redmi AX6 Nginx Configuration improper authorization [CVE-2020-14097]
167813IBM Security Guardium Data Encryption permission [CVE-2019-4702]
167812IBM Security Guardium Data Encryption URL information disclosure
167811IBM Security Guardium Data Encryption inadequate encryption [CVE-2019-4160]
167810remote-login-service crypt.c credentials storage
167809Backdoor.Win32.Ketch.a Server Response buffer overflow
167808Backdoor.Win32.Ketch.i HTTP Response buffer overflow
167807SKYSEA Client View DLL untrusted search path [CVE-2021-20616]
167806NEC UNIVERGE SV8500/UNIVERGE SV9500 System Maintenance improper authentication
167805NEC UNIVERGE SV8500/UNIVERGE SV9500 URL denial of service [CVE-2020-5685]
167804NEC Express5800-T110j improper authentication [CVE-2020-5633]
167803JupyterHub Admin Panel user cross-site request forgery
167802Sound Research DCHU Model Software Component Modules SECOMN Service unknown vulnerability
167801Linux Kernel LIO SCSI target_core_xcopy.c pathname traversal
167800Mozilla Thunderbird SCTP Packet use after free [CVE-2020-16044]
167799QEMU megasas-gen2 SCSI Host Bus Adapter Emulation megasas.c megasas_command_cancelled denial of service
167798QEMU USB xHCI Controller Emulation hcd-xhci.c xhci_ring_chain_length denial of service
167797Kubernetes Java Client Pod path traversal [CVE-2020-8570]
167796Mubu Local Privilege Escalation [CVE-2021-3134]
167795Elementor Contact Form DB Plugin Admin Page cross-site request forgery
167794Ignition Debug Mode file_put_contents Remote Code Execution
167793OX Software OX App Suite Subject cross site scripting [CVE-2021-23936]
167792OX Software OX App Suite Appointment cross site scripting [CVE-2021-23935]
167791OX Software OX App Suite Contact cross site scripting [CVE-2021-23934]
167790OX Software OX App Suite Note cross site scripting [CVE-2021-23933]
167789OX Software OX App Suite Inline Image cross site scripting [CVE-2021-23932]
167788OX Software OX App Suite Binary File cross site scripting [CVE-2021-23931]
167787OX Software OX App Suite Conversion API cross site scripting
167786OX Software OX App Suite HTML Document cross site scripting [CVE-2021-23929]
167785OX Software OX App Suite Query String cross site scripting [CVE-2021-23928]
167784OX Software OX App Suite PUT Request server-side request forgery
167783Joomla! Image cross site scripting [CVE-2021-23125]
167782Joomla! Attribute cross site scripting [CVE-2021-23124]
167781Joomla! ACL or information disclosure
167780CLA-Assistant API Endpoint access control [CVE-2021-21471]
167779SAP EPM Add-in for Microsoft Office xml external entity reference
167778SAP NetWeaver Master Data Management information disclosure [CVE-2021-21469]
167777SAP Business Warehouse Database Interface improper authorization
167776SAP Banking Services Generic Market Data improper authorization
167775SAP Business Warehouse/BW4HANA ABAP Report injection [CVE-2021-21466]
167774SAP Business Warehouse Database Interface sql injection [CVE-2021-21465]
167773SAP 3D Visual Enterprise Viewer PCX File denial of service [CVE-2021-21464]
167772SAP 3D Visual Enterprise Viewer PCX File out-of-bounds read [CVE-2021-21463]
167771SAP 3D Visual Enterprise Viewer PCX File out-of-bounds write
167770SAP 3D Visual Enterprise Viewer BMP File out-of-bounds write
167769SAP 3D Visual Enterprise Viewer dib File out-of-bounds write
167768SAP 3D Visual Enterprise Viewer IFF File out-of-bounds write
167767SAP 3D Visual Enterprise Viewer IFF File memory corruption [CVE-2021-21458]
167766SAP 3D Visual Enterprise Viewer IFF File memory corruption [CVE-2021-21457]
167765SAP 3D Visual Enterprise Viewer dib File out-of-bounds write
167764SAP 3D Visual Enterprise Viewer dib File out-of-bounds write
167763SAP 3D Visual Enterprise Viewer RLE File out-of-bounds write
167762SAP 3D Visual Enterprise Viewer RLE File denial of service [CVE-2021-21453]
167761SAP 3D Visual Enterprise Viewer GIF File denial of service [CVE-2021-21452]
167760SAP 3D Visual Enterprise Viewer SGI File denial of service [CVE-2021-21451]
167759SAP 3D Visual Enterprise Viewer PSD File denial of service [CVE-2021-21450]
167758SAP 3D Visual Enterprise Viewer IFF File denial of service [CVE-2021-21449]
167757SAP GUI improper authorization [CVE-2021-21448]
167756SAP BusinessObjects Business Intelligence Platform Input Control cross site scripting
167755SAP NetWeaver AS ABAP denial of service [CVE-2021-21446]
167754SAP Commerce Cloud HTTP Response cross site scripting [CVE-2021-21445]
167753IBM API Connect Web UI cross site scripting [CVE-2020-4838]
167752IBM Workload Automation Path information disclosure [CVE-2020-4674]
167751IBM Workload Automation HTML Comment information disclosure [CVE-2020-4673]
167750Combodo iTop Ajax Endpoint information disclosure [CVE-2020-4079]
167749RailsAdmin Nested Form cross site scripting [CVE-2020-36190]
167748ClusterLabs crmsh crm History code injection [CVE-2020-35459]
167747ClusterLabs Hawk Cookie code injection [CVE-2020-35458]
167746Siemens SCALANCE X-300/SCALANCE X-408/SIPLUS NET Factory Reset hard-coded key
167745Siemens SCALANCE X-200/SCALANCE X-200IRT C-PLUG hard-coded key
167744Siemens Opcenter Execution Core insufficiently protected credentials
167743Siemens Solid Edge DFT File Parser out-of-bounds write [CVE-2020-28386]
167742Siemens Solid Edge PAR File Parser stack-based overflow [CVE-2020-28384]
167741Siemens JT2Go//Solid Edge/Teamcenter Visualization PAR File Parser out-of-bounds write
167740Siemens Solid Edge PAR File Parser out-of-bounds write [CVE-2020-28382]
167739Siemens Solid Edge PAR File Parser out-of-bounds write [CVE-2020-28381]
167738TIBCO EBX Add-on xml external entity reference [CVE-2020-27148]
167737Siemens JT2Go/Teamcenter Visualization CG4 File out-of-bounds read
167736Siemens JT2Go/Teamcenter Visualization SGI File out-of-bounds write
167735Siemens JT2Go/Teamcenter Visualization PCX File heap-based overflow
167734Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflow
167733Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflow
167732Siemens JT2Go/Teamcenter Visualization ASM File null pointer dereference
167731Siemens JT2Go/Teamcenter Visualization ASM File type confusion
167730Siemens JT2Go//Solid Edge/Teamcenter Visualization PAR File stack-based overflow
167729Siemens JT2Go/Teamcenter Visualization PAR File out-of-bounds write
167728Siemens JT2Go/Teamcenter Visualization TGA File heap-based overflow
167727Siemens JT2Go/Teamcenter Visualization JT File heap-based overflow
167726Siemens JT2Go/Teamcenter Visualization RGB File heap-based overflow
167725Siemens JT2Go/Teamcenter Visualization JT File out-of-bounds write
167724Siemens JT2Go/Teamcenter Visualization PDF File out-of-bounds write
167723Siemens JT2Go/Teamcenter Visualization CG4 File out-of-bounds write
167722Siemens JT2Go/Teamcenter Visualization XML File xml external entity reference
167721Siemens JT2Go/Teamcenter Visualization JT File Parser type confusion
167720REDCap ToDoList cross site scripting
167719REDCap ToDoList sql injection
167718Heikkitoivonen M2Crypto RSA Decryption API information disclosure
167717Siemens SCALANCE X-200/SCALANCE X-200IRT Web Server heap-based overflow
167716Siemens SCALANCE X-200/SCALANCE X-200IRT/SCALANCE X-300 Web Server heap-based overflow
167715Siemens SCALANCE X-200/SCALANCE X-200IRT Integrated Web Server denial of service
167714Red Hat Single Sign On Application Console information disclosure
167713HCL Commerce Remote Privilege Escalation [CVE-2020-14275]
167712HCL Commerce information disclosure [CVE-2020-14274]
167711OpenText Carbonite Server Backup Portal Policy cross site scripting
167710Backdoor.Win32.Kurbadur.a Service Port 21220 dataexchange.dll stack-based overflow
167709Microsoft Windows Win32k Local Privilege Escalation [CVE-2021-1709]
167708Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1690]
167707Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1687]
167706Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1686]
167705Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1681]
167704Microsoft Windows WLAN Service Local Privilege Escalation [CVE-2021-1646]
167703Microsoft Windows Update Stack unknown vulnerability [CVE-2021-1694]
167702Microsoft Windows Runtime C++ Template Library Local Privilege Escalation
167701Microsoft Windows RPC Runtime Local Privilege Escalation [CVE-2021-1702]
167700Microsoft Windows RDP Remote Privilege Escalation [CVE-2021-1669]
167699Microsoft Windows RDP Core Remote Privilege Escalation [CVE-2021-1674]
167698Microsoft Windows Projected File System FS Filter Driver information disclosure
167697Microsoft Windows File System FS Filter Driver information disclosure
167696Microsoft Windows Projected File System FS Filter Driver information disclosure
167695Microsoft Windows Print Spooler Local Privilege Escalation [CVE-2021-1695]
167694Microsoft Windows NT Lan Manager Datagram Receiver Driver information disclosure
167693Microsoft Windows Multipoint Management Local Privilege Escalation
167692Microsoft Windows LUAFV Local Privilege Escalation [CVE-2021-1706]
167691Microsoft Windows Kernel Local Privilege Escalation [CVE-2021-1682]
167690Microsoft Windows Installer Local Privilege Escalation [CVE-2021-1661]
167689Microsoft Windows InstallService Local Privilege Escalation [CVE-2021-1697]
167688Microsoft Windows Hyper-V Local Privilege Escalation [CVE-2021-1704]
167687Microsoft Windows Graphics information disclosure [CVE-2021-1696]
167686Microsoft Windows GDI+ information disclosure [CVE-2021-1708]
167685Microsoft Windows Fax Compose Form Remote Privilege Escalation
167684Microsoft Windows Event Tracing Local Privilege Escalation [CVE-2021-1662]
167683Microsoft Windows Event Logging Service Local Privilege Escalation
167682Microsoft Windows Docker information disclosure [CVE-2021-1645]
167681Microsoft Windows DNS Query information disclosure [CVE-2021-1637]
167680Microsoft Windows CryptoAPI denial of service [CVE-2021-1679]
167679Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1693]
167678Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1688]
167677Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1659]
167676Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1655]
167675Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1654]
167674Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1653]
167673Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1652]
167672Microsoft Windows Bluetooth Local Privilege Escalation [CVE-2021-1638]
167671Microsoft Windows Bluetooth information disclosure [CVE-2021-1684]
167670Microsoft Windows Bluetooth information disclosure [CVE-2021-1683]
167669Microsoft Windows AppX Deployment Extensions Local Privilege Escalation
167668Microsoft Windows AppX Deployment Extensions Local Privilege Escalation
167667Microsoft Windows modem.sys information disclosure [CVE-2021-1699]
167666Microsoft Visual Studio Remote Code Execution [CVE-2020-26870]
167665Microsoft Windows TPM Device Driver information disclosure [CVE-2021-1656]
167664Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1701]
167663Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1700]
167662Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1673]
167661Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1671]
167660Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1667]
167659Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1666]
167658Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1664]
167657Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1660]
167656Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1658]
167655Microsoft Windows NTLM information disclosure [CVE-2021-1678]
167654Microsoft Windows splwow64 Local Privilege Escalation [CVE-2021-1648]
167653Microsoft Word Remote Code Execution [CVE-2021-1716]
167652Microsoft Word Remote Code Execution [CVE-2021-1715]
167651Microsoft Windows Media Foundation Remote Code Execution [CVE-2021-1710]
167650Microsoft SharePoint Server unknown vulnerability [CVE-2021-1717]
167649Microsoft SharePoint Server unknown vulnerability [CVE-2021-1641]
167648Microsoft SharePoint Foundation Remote Privilege Escalation [CVE-2021-1718]
167647Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1707]
167646Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1719]
167645Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1712]
167644Microsoft SQL Server Remote Privilege Escalation [CVE-2021-1636]
167643Microsoft Office Remote Code Execution [CVE-2021-1711]
167642Microsoft Excel Remote Code Execution [CVE-2021-1714]
167641Microsoft Excel Remote Code Execution [CVE-2021-1713]
167640Microsoft Edge memory corruption [CVE-2021-1705]
167639Microsoft Defender Remote Privilege Escalation [CVE-2021-1647]
167638Microsoft Windows DTV-DVD Video Decoder Remote Code Execution
167637Microsoft Windows Hyper-V denial of service [CVE-2021-1692]
167636Microsoft Windows Hyper-V denial of service [CVE-2021-1691]
167635Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-1643]
167634Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-1644]
167633Microsoft Windows GDI+ Remote Code Execution [CVE-2021-1665]
167632Microsoft Windows Diagnostics Hub Standard Collector Local Privilege Escalation
167631Microsoft Windows Diagnostics Hub Standard Collector Local Privilege Escalation
167630Microsoft Bot Framework SDK information disclosure [CVE-2021-1725]
167629Microsoft Azure Kubernetes Service Pod Identity information disclosure
167628Microsoft Windows Active Template Library Local Privilege Escalation
167627Microsoft ASP.NET Core/Visual Studio denial of service [CVE-2021-1723]
167626sudo sudoedit selinux_edit_copy_tfiles temp file
167625sudo sudoedit personality sudo_edit.c race condition
167624Pillow SGI RLE Image SGIRleDecode buffer overflow
167623Pillow YCbCr File TiffDecode heap-based overflow
167622Pillow PCX File PcxDecode buffer overflow
167621OX Software OX App Suite App Loading appsuite cross site scripting
167620OX Software OX App Suite GET Request server-side request forgery
167619R Programming Language CRAN install.packages path traversal
167618SaferVPN OpenSSL Configuration File access control [CVE-2020-26050]
167617Espressif ESP-IDF BluFi Provisioning blufi_prf.c btc_blufi_recv_handler buffer overflow
167616Opera Mini Domain Name clickjacking [CVE-2021-23253]
167615Flask-Security-Too login cross-site request forgery
167614Google Android tun.c tun_get_user memory corruption
167613Google Android SlicePermissionActivity.java onCreate information disclosure
167612Google Android ActivityManagerService.java enforceDumpPermissionForPackage information disclosure
167611Google Android Lockscreen keystore_keymaster_enforcement.h is_device_locked information disclosure
167610Google Android Bluetooth CompanionDeviceManagerService.java checkCallerIsSystemOr permission
167609Google Android SensorEventConnection.cpp appendEventsToCacheLocked out-of-bounds write
167608Google Android Permission.java createOrUpdate permission
167607Google Android Bluetooth avrc_pars_tg.cc avrc_pars_vendor_cmd out-of-bounds write
167606Google Android GrantCredentialsPermissionActivity.java onCreate permission
167605Google Android TextView LayoutUtils.cpp isWordBreakAfter denial of service
167604Google Android WAVExtractor.cpp read out-of-bounds write
167603Google Android ESQueue.cpp dequeueAccessUnitH264 out-of-bounds write
167602Google Android LazyServiceRegistrar.cpp LazyServiceRegistrar use after free
167601Google Android grantCredentialsPermissionActivity information disclosure
167600Google Android basicmbr.cc ReadLogicalParts out-of-bounds write
167599Google Android PermissionManagerService.java updatePermissionSourcePackage permission
167598Google Android PermissionManagerService.java addAllPermissions permission
167597Google Android GlobalScreenshot.java information disclosure
167596Google Android StreamSetObserver.cpp dispatchGraphTerminationMessage use after free
167595Google Android ged out-of-bounds write [CVE-2021-0301]
167594IBM MQ Appliance SNMP Query buffer overflow [CVE-2020-4869]
167593Cacti data_debug.php sql injection
167592AnyDesk Portable Mode gcapi.dll uncontrolled search path
167591Delta Industrial Automation CNCSoft-B Project File type confusion
167590Delta Industrial Automation CNCSoft-B Project File out-of-bounds read
167589Delta Industrial Automation CNCSoft-B null pointer dereference
167588Delta Industrial Automation CNCSoft-B Project File out-of-bounds write
167587Delta Industrial Automation CNCSoft ScreenEditor Project File stack-based overflow
167586Delta Industrial Automation DOPSoft Project File null pointer dereference
167585Delta Industrial Automation DOPSoft Project File out-of-bounds write
167584Google Android Fingerprint AuthenticationClient.java onAuthenticated clickjacking
167583Redcarpet Quote cross site scripting [CVE-2020-26298]
167582SmartBear Collaborator Server GWT API deserialization [CVE-2020-26118]
167581python-cryptography RSA Decryption API information disclosure
167580QNAP QTS/QuTS Hero command injection [CVE-2020-2508]
167579Live Networks liblivemedia RTSP PLAY Command buffer overflow
167578node-sass certificate validation [CVE-2020-24025]
167577Microsoft Skype Library Validation Entitlement access control
167576Fork CMS Admin Console cross-site request forgery [CVE-2020-23960]
167575WDJA CMS manage.php cross-site request forgery
167574zzcms Cookie sql injection [CVE-2020-23630]
167573Apache NetBeans HTML-Java API access control [CVE-2020-17534]
167572FreyrSCADA IEC-60879-5-104 Server Simulator Packet denial of service
167571Google Android Bluetooth packet_fragmenter.cc reassemble_and_dispatch injection
167570360F5 deauth Frame denial of service [CVE-2019-3405]
167569K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflow
167568K7computing K7AntiVirus Premium access control [CVE-2018-9332]
167567K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflow
167566K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflow
167565K7computing K7AntiVirus Premium K7TSMngr.exe access control
167564K7computing K7AntiVirus Premium K7Sentry.sys access control [CVE-2018-8044]
167563K7computing K7AntiVirus Premium K7TSMngr.exe memory leak
167562K7computing K7AntiVirus Premium buffer overflow [CVE-2018-11010]
167561K7computing K7AntiVirus Premium buffer overflow [CVE-2018-11009]
167560K7computing K7AntiVirus Premium access control [CVE-2018-11008]
167559K7computing K7AntiVirus Premium memory leak [CVE-2018-11007]
167558K7computing K7AntiVirus Premium access control [CVE-2018-11006]
167557K7computing K7AntiVirus Premium memory leak [CVE-2018-11005]
167556Backdoor.Win32.Zombam.a HTTP GET Request buffer overflow
167555Aleth Ethereum C++ Client JSON File config.json stack-based overflow
167554jsoneditor Tree Mode injection [CVE-2020-23849]
167553JIZHICMS index cross site scripting
167552JIZHICMS cross site scripting [CVE-2020-23643]
167551GoGo protobuf unmarshal.go unknown vulnerability [CVE-2021-3121]
167550EVOLUCARE ECS Imaging req_password_user.php sql injection
167549Apache Traffic Server Cache Option request smuggling [CVE-2020-17509]
167548Apache Traffic Server ESI Plugin information disclosure [CVE-2020-17508]
167547Apache DolphinScheduler API Interface access control [CVE-2020-13922]
167546Apache Dubbo hashCode deserialization
167545proxy.py AuthPlugin auth.py before_upstream_connection improper authorization
167544Quest Policy Authority BrowseDirs.do cross site scripting
167543Quest Policy Authority index.jsp cross site scripting
167542Quest Policy Authority index.jsp cross site scripting
167541Quest Policy Authority Error.jsp cross site scripting
167540Quest Policy Authority ReportPreview.do cross site scripting
167539Quest Policy Authority Web Compliance Manager submitUser.jsp cross-site request forgery
167538Quest Policy Authority BrowseAssets.do cross site scripting
167537Quest Policy Authority submitUser.jsp cross site scripting
167536Quest Policy Authority index.jsp cross site scripting
167535Quest Policy Authority Web Compliance Manager cConn.jsp cross site scripting
167534Quest Policy Authority Web Compliance Manager initFile.jsp server-side request forgery
167533Quest Policy Authority FolderControl.jsp cross site scripting
167532Quest Policy Authority Web Compliance Manager initFile.jsp cross site scripting
167531Backdoor.Win32.Levelone.b HTTP OPTIONS Vector64.exe buffer overflow
167530Backdoor.Win32.Levelone.a HTTP TRACE Request dllvector.exe buffer overflow
167529Google Chrome Audio buffer overflow [CVE-2021-21116]
167528Google Chrome Safe Browsing use after free [CVE-2021-21115]
167527Google Chrome Audio use after free [CVE-2021-21114]
167526Google Chrome Skia buffer overflow [CVE-2021-21113]
167525Google Chrome Blink use after free [CVE-2021-21112]
167524Google Chrome Policy Enforcement sandbox [CVE-2021-21111]
167523Google Chrome HTML Page use after free [CVE-2021-21110]
167522Google Chrome Payments use after free [CVE-2021-21109]
167521Google Chrome Renderer Process use after free [CVE-2021-21108]
167520Google Chrome Renderer Process use after free [CVE-2021-21107]
167519Google Chrome Autofill use after free [CVE-2021-21106]
167518SonicWALL NetExtender Client unquoted search path [CVE-2020-5147]
167517SonicWall SMA100 HTTP POST os command injection [CVE-2020-5146]
167516IBM Spectrum Protect Plus VDAP Proxy information disclosure [CVE-2020-5022]
167515IBM Spectrum Protect Plus Session password recovery [CVE-2020-5021]
167514IBM Spectrum Protect Plus clickjacking [CVE-2020-5020]
167513IBM Spectrum Protect Plus HTTP Host Header cross site scripting
167512IBM Spectrum Protect Plus URL information disclosure [CVE-2020-5018]
167511IBM Spectrum Protect Plus permission [CVE-2020-5017]
167510IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4733]
167509IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4697]
167508IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4691]
167507IBM Jazz Foundation information exposure [CVE-2020-4544]
167506IBM Jazz Foundation information exposure [CVE-2020-4487]
167505Cockpit JSON Data Database.php injection
167504Rocket.Chat Password Reset information disclosure [CVE-2020-28208]
167503VideoLAN VLC Media Player MKV File send heap-based overflow
167502Dell Inspiron 5675 UEFI BIOS memory corruption [CVE-2020-26186]
167501Ceph mgr module cleartext storage [CVE-2020-25678]
167500Barco NDN-210 Web Administration Panel ngpsystemcmd.php command injection
167499Barco NDN-210 Web Administration Panel split_card_cmd.php command injection
167498Barco TransForm N Web Administration Panel split_card_cmd.php command injection
167497Google Chrome Network Traffic access control [CVE-2020-16043]
167496Google Chrome HTML Page Remote Code Execution [CVE-2020-16036]
167495Google Chrome Remote Code Execution [CVE-2020-16035]
167494Google Chrome WebRTC Local Privilege Escalation [CVE-2020-16034]
167493Google Chrome UI unknown vulnerability [CVE-2020-16033]
167492Google Chrome Omnibox clickjacking [CVE-2020-16032]
167491Google Chrome Omnibox clickjacking [CVE-2020-16031]
167490Google Chrome Blink cross site scripting [CVE-2020-16030]
167489Google Chrome PDFium Remote Code Execution [CVE-2020-16029]
167488Google Chrome WebRTC heap-based overflow [CVE-2020-16028]
167487Google Chrome Developer Tools information disclosure [CVE-2020-16027]
167486Google Chrome WebRTC use after free [CVE-2020-16026]
167485Google Chrome Clipboard heap-based overflow [CVE-2020-16025]
167484Google Chrome UI buffer overflow [CVE-2020-16024]
167483Google Chrome WebCodecs use after free [CVE-2020-16023]
167482Google Chrome Firewall Controls protection mechanism [CVE-2020-16022]
167481Google Chrome Image Burner access control [CVE-2020-16021]
167480Google Chrome cryptohome access control [CVE-2020-16020]
167479Google Chrome Filesystem protection mechanism [CVE-2020-16019]
167478Google Chrome HTML Page use after free [CVE-2020-16018]
167477Google Chrome HTML Page sandbox [CVE-2020-16016]
167476Google Chrome HTML Page heap-based overflow [CVE-2020-16015]
167475Google Chrome PPAPI use after free [CVE-2020-16014]
167474Google Chrome information disclosure [CVE-2020-16012]
167473Backdoor.Win32.Ketch.b HTTP GET Request watchb.tmp buffer overflow
167472Concrete5 Express Entries Dashboard cross site scripting [CVE-2021-3111]
167471NVIDIA vGPU Manager vGPU Plugin resource consumption [CVE-2021-1066]
167470NVIDIA vGPU Manager vGPU Plugin input validation [CVE-2021-1065]
167469NVIDIA vGPU Manager vGPU Plugin null pointer dereference [CVE-2021-1064]
167468NVIDIA vGPU Manager vGPU Plugin buffer overflow [CVE-2021-1063]
167467NVIDIA vGPU Manager vGPU Plugin denial of service [CVE-2021-1062]
167466NVIDIA vGPU Manager vGPU Plugin use after free [CVE-2021-1061]
167465NVIDIA vGPU Software vGPU Plugin memory corruption [CVE-2021-1060]
167464NVIDIA vGPU Manager vGPU Plugin integer overflow [CVE-2021-1059]
167463NVIDIA vGPU Software vGPU Plugin denial of service [CVE-2021-1058]
167462NVIDIA Virtual GPU Manager vGPU Plugin Remote Privilege Escalation
167461NetApp Element OS Remote Code Execution [CVE-2020-8584]
167460buns Index File index.js install(requestedModule) injection
167459ts-process-promises process-promises.js injection [CVE-2020-7784]
167458Marvell QConvergeConsole GUI QCC tomcat-users.xml cleartext storage
167457Marvell QConvergeConsole GUI deleteEventLogFile path traversal
167456IBM Engineering Requirements Quality Assistant On-Premises input validation
167455IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting
167454IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting
167453IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scripting
167452IBM Security Verify Privilege Manager xml external entity reference
167451Innokas Yhtymä Oy Vital Signs Monitor VC150 cross site scripting
167450Innokas Yhtymä Oy Vital Signs Monitor VC150 HL7 Segment injection
167449pwntools Shellcraft Generator injection [CVE-2020-28468]
167448Invision Power Services Community Suite Download REST API files.php GETindex sql injection
167447AWBS Advanced Webhost Billing System cross-site request forgery
167446D-Link DSL-2888A One Touch Application passwd information disclosure
167445NVIDIA GPU Display Driver Kernel Mode Layer access control [CVE-2021-1056]
167444NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape access control
167443NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape improper authorization
167442NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape memory corruption
167441NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape access control
167440NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape memory corruption
167439Mercusys Mercury X18G UPnP Server uhttpd.json pathname traversal
167438Mercusys Mercury X18G Web Server passwd pathname traversal
167437socket.io-parser Large Packet resource consumption [CVE-2020-36049]
167436Engine.IO POST Request EventEmitter resource consumption
167435PHPGurukul Hospital Management System dashboard.php access control
167434Barco TransForm NDN-210 Lite Web Administration Panel command injection
167433Gotenberg tini permission [CVE-2020-13452]
167432Gotenberg Office Rendering Engine unknown vulnerability [CVE-2020-13451]
167431Gotenberg File Upload pathname traversal [CVE-2020-13450]
167430Gotenberg Markdown Engine pathname traversal [CVE-2020-13449]
167429Rock RMS unrestricted upload [CVE-2019-18643]
167428Rock RMS Profile Update resource injection [CVE-2019-18642]
167427Backdoor.Win32.NinjaSpy.c HTTP PUT cmd.dll buffer overflow
167426Backdoor.Win32.Xtreme.yvp System.exe permission
167425Backdoor.Win32.Agent.dcbh 674_674.exe permission
167424Eaton easySoft E70 File type confusion [CVE-2020-6656]
167423Eaton easySoft E70 File out-of-bounds read [CVE-2020-6655]
167422IBM Emptoris Strategic Supply Management inadequate encryption
167421IBM Emptoris Contract Management information exposure [CVE-2020-4897]
167420IBM Emptoris Sourcing HTTP Request injection [CVE-2020-4896]
167419IBM Emptoris Strategic Supply Management Web UI cross site scripting
167418IBM Emptoris Strategic Supply Management HTTP GET Request information disclosure
167417IBM Emptoris Contract Management Web UI cross site scripting
167416Linux Kernel infiniband hfi1 Driver use after free [CVE-2020-27835]
167415Red Hat JBoss Core Services httpd SSL Certificate certificate validation
167414Liferay CMS Portal Calendar cross site scripting [CVE-2020-25476]
167413Rockwell Automation RSLinx Classic Ethernet IP denial of service
167412Foxit Reader/PhantomPDF Opcode proxyDoAction out-of-bounds read
167411Foxit Reader/PhantomPDF out-of-bounds read [CVE-2018-20315]
167410Foxit Reader/PhantomPDF proxyCheckLicence out-of-bounds read
167409Foxit Reader/PhantomPDF proxyPreviewAction out-of-bounds read
167408Foxit Reader/PhantomPDF Opcode proxyDoAction out-of-bounds read
167407Foxit Reader/PhantomPDF proxyCPDFAction out-of-bounds read
167406Foxit Reader/PhantomPDF proxyDoAction out-of-bounds read
167405Foxit Reader/PhantomPDF proxyGetAppEdition out-of-bounds read
167404Foxit PDF ActiveX Permission command injection [CVE-2018-19418]
167403Portable Document Format Signature signature verification [CVE-2018-18689]
167402Portable Document Format Signature signature verification [CVE-2018-18688]
167401EVOLUCARE ECS Imaging showfile.php os command injection
167400NXP SmartMX/P5x/A7x CryptoLib power side-channel [CVE-2021-3011]
167399Mozilla Firefox memory corruption [CVE-2020-35114]
167398Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2020-35113]
167397Mozilla Firefox/Firefox ESR/Thunderbird Extension uncontrolled search path
167396Mozilla Firefox/Firefox ESR/Thunderbird Proxy information disclosure
167395MonoCMS Blog Access Control category.php access control
167394Mozilla Firefox Address Bar clickjacking [CVE-2020-26979]
167393Mozilla Firefox/Firefox ESR/Thunderbird information disclosure
167392Mozilla Firefox URL Bar clickjacking [CVE-2020-26977]
167391Mozilla Firefox Service Worker Remote Code Execution [CVE-2020-26976]
167390Mozilla Firefox session fixiation [CVE-2020-26975]
167389Mozilla Firefox/Firefox ESR/Thunderbird Table Wrapper heap-based overflow
167388Mozilla Firefox/Firefox ESR/Thunderbird CSS unknown vulnerability
167387Mozilla Firefox IPC Actor use after free [CVE-2020-26972]
167386Mozilla Firefox/Firefox ESR/Thunderbird Video Driver heap-based overflow
167385Restaurant Reservation System reservation.inc.php sql injection
167384Formstone upload-target.php cross site scripting
167383CuteSoft Components Cute Editor for ASP.NET cross site scripting
167382Quixplorer cross site scripting [CVE-2020-24902]
167381Krpano Panorama Viewer JS Load krpano.html cross site scripting
167380Krpano Panorama Viewer XML Load krpano.html cross site scripting
167379CairoSVG Regular Expression resource consumption [CVE-2021-21236]
167378Node.js Transfer-Encoding request smuggling [CVE-2020-8287]
167377Nextcloud Contacts SVG File cross site scripting [CVE-2020-8281]
167376Nextcloud Contacts SVG cross site scripting [CVE-2020-8280]
167375Citrix Secure Mail access control [CVE-2020-8275]
167374Citrix Secure Mail code injection [CVE-2020-8274]
167373Node.js TLS Socket Write use after free
167372actionpack Gem Developer Mode cross site scripting [CVE-2020-8264]
167371MendixSSO OpenID Endpoint cross site scripting [CVE-2020-8160]
167370FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36189]
167369FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36188]
167368FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36187]
167367FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36186]
167366FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36185]
167365FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36184]
167364FasterXML jackson-databind unknown vulnerability [CVE-2020-36183]
167363FasterXML jackson-databind unknown vulnerability [CVE-2020-36182]
167362FasterXML jackson-databind unknown vulnerability [CVE-2020-36181]
167361FasterXML jackson-databind unknown vulnerability [CVE-2020-36180]
167360FasterXML jackson-databind unknown vulnerability [CVE-2020-36179]
167359TP-LINK TL-WR840N Web Interface oal_ipt_addBridgeIsolationRules os command injection
167358wolfSSL Digest rsa.c RsaPad_PSS out-of-bounds write
167357iThemes Security Plugin Password Requirements weak password [CVE-2020-36176]
167356Ninja Forms Plugin Email Validation unknown vulnerability [CVE-2020-36175]
167355Ninja Forms Plugin Services Integration cross-site request forgery
167354Ninja Forms Plugin submissions-table Field cross site scripting
167353Advanced Custom Fields Plugin Dropdown cross site scripting [CVE-2020-36172]
167352Elementor Website Builder Plugin unrestricted upload [CVE-2020-36171]
167351Digisol DG-HR3400 NTP Server Name cross site scripting [CVE-2020-35262]
167350Web-Sesame source code [CVE-2020-29041]
167349Red Lion Crimson missing authentication [CVE-2020-27285]
167348Red Lion Crimson Messages information disclosure [CVE-2020-27283]
167347Red Lion Crimson Packet null pointer dereference [CVE-2020-27279]
167346Beetel 777VR1 NTP Server Name cross site scripting [CVE-2020-25498]
167345SoftMaker Office TextMaker heap-based overflow [CVE-2020-13545]
167344SoftMaker Office TextMaker heap-based overflow [CVE-2020-13544]
167343Zoho ManageEngine Desktop Central New Custom Report injection
167342SolarWinds Web Help Desk Comments injection [CVE-2019-16954]
167341Limit Login Attempts Plugin excessive authentication [CVE-2012-10001]
167340Proofpoint Insider Threat Management Windows Agent rcdsvc deserialization
167339IBM WebSphere eXtreme Scale URL Parameter information disclosure
167338Ultimate Member Plugin Timestamp Field unknown vulnerability
167337clickhouse-driver Server Response buffer overflow [CVE-2020-26759]
167336Proofpoint Insider Threat Management Server WriteImage API deserialization
167335Proofpoint Insider Threat Management Server ImportAlertRules deserialization
167334Proofpoint Insider Threat Management Server WriteWindowMouseWithChunksV2 API deserialization
167333Proofpoint Insider Threat Management Server WriteWindowMouse API deserialization
167332Invision Power Services Community Suite Comments cross site scripting
167331LG Mobile Device unknown vulnerability [CVE-2021-3022]
167330ISPConfig sql injection [CVE-2021-3021]
167329Samsung Mobile Device Mali GPU Driver out-of-bounds read [CVE-2021-22495]
167328Samsung Note 20 Fingerprint Scanner unknown vulnerability [CVE-2021-22494]
167327Samsung Mobile Device quram Library memory corruption [CVE-2021-22493]
167326Samsung Mobile Device Bluetooth UART Driver buffer overflow [CVE-2021-22492]
167325kamadak-exif Exif Parser read_from_container infinite loop
167324spring-boot-actuator-logview path traversal [CVE-2021-21234]
167323McAfee Network Security Management HTTP Request cross-site request forgery
167322HPE Integrated Lights-Out 4/Integrated Lights-Out 5 information disclosure
167321IBM API Connect cleartext transmission [CVE-2020-4899]
167320IBM Sterling B2B Integrator Standard Edition access control [CVE-2020-4762]
167319IBM Sterling B2B Integrator Standard Edition information exposure
167318Veritas NetBackup/OpsCenter OpenSSL Library permission [CVE-2020-36169]
167317Veritas Resiliency Platform OpenSSL Library openssl.cnf permission
167316Veritas Backup Exec OpenSSL Library openssl.cnf permission
167315Veritas InfoScale OpenSSL Library openssl.cnf permission
167314Veritas Desktop and Laptop Option OpenSSL Library openssl.cnf permission
167313Veritas Enterprise Vault OpenSSL Library openssl.cnf permission
167312Veritas NetBackup/OpsCenter permission [CVE-2020-36163]
167311Veritas CloudPoint Windows Agent openssl.cnf permission
167310Veritas APTARE OpenSSL Engine permission [CVE-2020-36161]
167309Veritas System Recovery openssl.cnf access control
167308Veritas Desktop and Laptop Option Backup information disclosure
167307GJSON GET Call denial of service [CVE-2020-36067]
167306GJSON denial of service [CVE-2020-36066]
167305miniCMS post-edit.php pathname traversal
167304miniCMS page_edit.php pathname traversal
167303NXLog Community Edition fileop Module denial of service [CVE-2020-35488]
167302Dell EMC Unisphere for PowerMax/PowerMax OS cross site scripting
167301Dell EMC PowerStore cleartext storage [CVE-2020-29502]
167300Dell EMC PowerStore cleartext storage [CVE-2020-29501]
167299Dell EMC PowerStore cleartext storage [CVE-2020-29500]
167298Dell EMC Unity/Unity XT/UnityVSA NAS Servers with NFS Export resource consumption
167297Dell EMC Unity/Unity XT/UnityVSA cleartext storage [CVE-2020-29489]
167296Broadcom CA Service Catalog Setup Utility denial of service [CVE-2020-29478]
167295OrangeHRM Buzz Module BuzzDao.php sql injection
167294OpenJPEG Encoding pi.c out-of-bounds read
167293OpenJPEG Encoding t2.c out-of-bounds write
167292OpenJPEG Conversion Encoding out-of-bounds read [CVE-2020-27843]
167291OpenJPEG t2 Encoder null pointer dereference [CVE-2020-27842]
167290OpenJPEG pi.c out-of-bounds read
167289Dell EMC Unity/Unity XT/UnityVSA log file [CVE-2020-26199]
167288Dell EMC Isilon OneFS/PowerScale OneFS SmartLock Compliance Mode Cluster privileges management
167287Fuel CMS cross site scripting [CVE-2020-26046]
167286Fuel CMS sql injection [CVE-2020-26045]
167285Gigamon GigaVUE-OS inadequate encryption [CVE-2020-23250]
167284Gigamon GigaVUE-OS cleartext storage [CVE-2020-23249]
167283Mobile-911 Server access control [CVE-2020-13541]
167282Win-911 Enterprise Account Change Utility permission [CVE-2020-13540]
167281Win-911 Enterprise permission [CVE-2020-13539]
167280IBM Sterling B2B Integrator Standard Edition deserialization
167279Viki Vera access control [CVE-2019-20484]
167278Viki Vera cross site scripting [CVE-2019-20483]
167277Apache Flink REST Interface file access [CVE-2020-17519]
167276Apache Flink REST path traversal [CVE-2020-17518]
167275ffay lanproxy config.properties pathname traversal
167274ipeak Infosystems ibexwebCMS print.php sql injection
167273MikroTik RouterOS Hotspot Login Page cross site scripting [CVE-2021-3014]
167272Dell Client Consumer/Client Commercial BIOS Password Reset password recovery
167271Linux Kernel SSID join.c mwifiex_cmd_802_11_ad_hoc_start memory corruption
167270Ultimate Member Plugin Registration access control [CVE-2020-36157]
167269Ultimate Member Plugin Profile Update profile.php access control
167268Ultimate Member Plugin wp_capabilities access control
167267Pearson VUE VTS Installer permission [CVE-2020-36154]
167266ASUS DSL-N17U Admin Interface Advanced_System_Content.asp improper authentication
167265Dell Wyse Management Suite redirect [CVE-2020-29498]
167264Dell Wyse Management Suite Device Tag cross site scripting [CVE-2020-29497]
167263Dell Wyse Management Suite cross site scripting [CVE-2020-29496]
167262Dell Wyse ThinOS default permission [CVE-2020-29492]
167261Dell Wyse ThinOS information disclosure [CVE-2020-29491]
167260mdBook Search Query cross site scripting [CVE-2020-26297]
167259Vela Configuration env os command injection
167258HtmlSanitizer cross site scripting [CVE-2020-26293]
167257Creeper Interpreter source code [CVE-2020-26292]
167256Dovecot lda/lmtp/imap input validation [CVE-2020-25275]
167255Dovecot IMAP unknown vulnerability [CVE-2020-24386]
167254GNU C Library iconv encoding error [CVE-2019-25013]
167253Backdoor.Win32.Zombam.k HTTP GET Request httpserver.exe buffer overflow
167252IBM Curam Social Program Management cross-site request forgery
167251IBM Cloud Pak System File Extension unrestricted upload [CVE-2020-4928]
167250IBM Cloud Pak System Logout user session [CVE-2020-4919]
167249IBM Cloud Pak System Sell Service Console resource injection
167248IBM Cloud Pak System cross-site request forgery [CVE-2020-4917]
167247IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4916]
167246IBM Cloud Pak System HTTP Response information disclosure [CVE-2020-4913]
167245IBM Cloud Pak System Self Service Console access control [CVE-2020-4912]
167244IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4910]
167243IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4909]
167242CSE Bookstore bookPerPub.php sql injection
167241GNU Binutils pef.c bfd_pef_parse_function_stubs null pointer dereference
167240GNU Binutils pef.c bfd_pef_scan_start_address null pointer dereference
167239GNU Binutils objdump pef.c null pointer dereference
167238GNU Binutils tic4x-dis.c uninitialized resource
167237GNU Binutils PEF File Parser pef.c out-of-bounds read
167236Veno File Manager pathname traversal [CVE-2020-22550]
167235asciitable.js Prototype main code injection
167234Korzio djv Schema File cross site scripting [CVE-2020-28464]
167233SolarWinds Web Help Desk CSV Template File cross site scripting
167232SolarWinds Web Help Desk Ticket cross site scripting [CVE-2019-16956]
167231Zend Framework Stream.php __destruct deserialization
167230MK-AUTH cross-site request forgery [CVE-2021-21495]
167229MK-AUTH logs_ajax.php cookie without 'httponly' flag
167228FFmpeg Memset zero exr.c decode_frame out-of-bounds write
167227Farm in Seal Finance breed access control
167226FFmpeg Extradata vividas.c track_header out-of-bounds write
167225Fluent Bit flb_gzip.c flb_gzip_compress out-of-bounds write
167224Loopring Vault Protocol sellTokenForLRC access control
167223MK-AUTH recibo.php information disclosure
167222Stable Yield Credit _deposit access control
167221PHP-Fusion login.php information exposure
167220DriverGenius ioctl Command denial of service [CVE-2020-28841]
167219Backdoor:Win32.BNLite Service Port 5000 NBLF32.exe heap-based overflow
167218Phorpiex permission
167217Trojan.Win32.Jorik.DMSpammer.sz HTTP Service Port 80 stat1.php memory corruption
167216HEUR:RiskTool.Win32.BitMiner.gen HTTP Service Port 8046 memory corruption
167215Backdoor.Win32.Zombam.j HTTP Service Port 80 buffer overflow
167214Backdoor:Win32/RemoteManipulator audiohd.exe permission
167213Backdoor:Win32.Adverbot IRC Connection null pointer dereference
167212Trojan:Win32.Alyak.B HTTP Service Port 80 1.txt memory corruption
167211Email-Worm.Win32.Zhelatin.ago Service Port 80 buffer overflow
167210Trojan.Win32.Bayrob.cgau chvlcpvyoh permission
167209Trojan.Win32.Barjac SMTP Connection buffer overflow
167208Backdoor.Win32.Infexor.b HTTP Service Port 13 kernel32.dll.exe buffer overflow
1672072019-02-ARTRADOWNLOADER Service Port 80 intel buffer overflow
167206Trojan.Win32.Antavka.bz Temp permission
167205Google Go x-text language.ParseAcceptLanguage array index
167204Google Go x-text language.ParseAcceptLanguage array index
167203Seo Panel cross site scripting [CVE-2021-3002]
167202zonote Notes cross site scripting [CVE-2020-35717]
167201Tenda N300 F3 HTTP Response RouterCfm.cfg information disclosure
167200Quiz and Survey Master Plugin wp-config.php qsm_remove_file_fd_question denial of service
167199XCloner Backup and Restore Plugin cross-site request forgery
167198Quiz and Survey Master Plugin Content-Type Header plain unrestricted upload
167197XCloner Backup and Restore Plugin xcloner_restore.php write_file_action Remote Privilege Escalation
167196PageLayer Plugin AJAX pagelayer_save_content improper authorization
167195All in One SEO Pack Plugin cross site scripting [CVE-2020-35946]
167194Divi Builder Plugin/Divi Theme/Divi Extra Theme unrestricted upload
167193PageLayer Plugin pagelayer_settings_page cross-site request forgery
167192Team Showcase Plugin AJAX team_import_xml_layouts injection
167191Post Grid Plugin AJAX post_grid_import_xml_layouts injection
167190Team Showcase Plugin AJAX team_import_xml_layouts cross site scripting
167189Post Grid Plugin AJAX post_grid_import_xml_layouts cross site scripting
167188Advanced Access Manager Plugin POST Parameter access control
167187Advanced Access Manager Plugin REST API authenticate information disclosure
167186Newsletter Plugin tnpc_render cross site scripting
167185Newsletter Plugin tpnc_render injection
167184Foxit Reader/PhantomPDF PDF Document Remote Code Execution [CVE-2020-35931]
167183Seo Panel websites.php cross site scripting
167182qdPM actions.class.php executeExport injection
167181LimeSurvey Quota cross site scripting [CVE-2020-25799]
167180LimeSurvey Add Participants cross site scripting [CVE-2020-25797]
167179Oppo Smart Phone oppo_da9313.c proc_work_mode_write memory corruption
167178Oppo Smart Phone oppo_vooc.c proc_fastchg_fw_update_write memory corruption
167177Oppo Smart Phone oppo_mp2650.c mp2650_data_log_write memory corruption
167176Oppo Smart Phone oppo_charger.c charging_limit_current_write unknown vulnerability
167175Webform Report Project Submission rss.xml information disclosure
167174NetBox GFM-rendered Field cross site scripting [CVE-2019-25011]
167173KCFinder Integration Project uploader.php access control
167172QNAP QTS Directory file inclusion [CVE-2018-19945]
167171QNAP QTS cleartext transmission [CVE-2018-19944]
167170QNAP QTS/QuTS Hero/QuTScloud missing encryption [CVE-2018-19941]
167169AES Encryption Project inadequate encryption [CVE-2017-20001]
167168REST-JSON Project Session entropy [CVE-2016-20008]
167167REST-JSON Project Session Name entropy [CVE-2016-20007]
167166REST-JSON Project denial of service [CVE-2016-20006]
167165REST-JSON Project User Registration access control [CVE-2016-20005]
167164REST-JSON Project Field access control [CVE-2016-20004]
167163REST-JSON Project information disclosure [CVE-2016-20003]
167162REST-JSON Project Comment access control [CVE-2016-20002]
167161REST-JSON Project access control [CVE-2016-20001]
PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!