Lista CVE - 2021 / Ottobre
Visualizzazione 401 - 500 di 1707 CVE per Ottobre 2021 (Pagina 5 di 18)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-41130 | 2021-10-07 | X-Endpoint-API-UserInfo can be spoofed in cloudendpoints Extensible Service Proxy |
| CVE-2021-42094 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. Command Injection... |
| CVE-2021-42093 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. An admin... |
| CVE-2021-42092 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. Stored XSS... |
| CVE-2021-42091 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. SSRF can... |
| CVE-2021-42090 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. The Form... |
| CVE-2021-42089 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. The REST... |
| CVE-2021-42088 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. The Chat... |
| CVE-2021-42087 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. An admin... |
| CVE-2021-42086 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. An Agent... |
| CVE-2021-42085 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. There is... |
| CVE-2021-42084 | 2021-10-07 | An issue was discovered in Zammad before 4.1.1. An attacker... |
| CVE-2020-21865 | 2021-10-07 | ThinkPHP50-CMS v1.0 contains a remote code execution (RCE) vulnerability in... |
| CVE-2021-42095 | 2021-10-07 | Xshell before 7.0.0.76 allows attackers to cause a crash by... |
| CVE-2020-21725 | 2021-10-07 | OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php... |
| CVE-2020-21726 | 2021-10-07 | OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php... |
| CVE-2020-21729 | 2021-10-07 | JEECMS x1.1 contains a stored cross-site scripting (XSS) vulnerability in... |
| CVE-2021-38298 | 2021-10-07 | Zoho ManageEngine ADManager Plus before 7110 is vulnerable to blind... |
| CVE-2021-41115 | 2021-10-07 | Regular expression denial-of-service in Zulip |
| CVE-2021-25270 | 2021-10-07 | A local attacker could execute arbitrary code with administrator privileges... |
| CVE-2021-25271 | 2021-10-07 | A local attacker could read or write arbitrary files with... |
| CVE-2021-41133 | 2021-10-08 | Sandbox bypass via recent VFS-manipulating syscalls |
| CVE-2021-30632 | 2021-10-08 | Out of bounds write in V8 in Google Chrome prior... |
| CVE-2021-37975 | 2021-10-08 | Use after free in V8 in Google Chrome prior to... |
| CVE-2021-33603 | 2021-10-08 | Denial-of-Service (DoS) Vulnerability |
| CVE-2021-40832 | 2021-10-08 | Denial-of-Service (DoS) Vulnerability |
| CVE-2021-41947 | 2021-10-08 | A SQL injection vulnerability exists in Subrion CMS v4.2.1 in... |
| CVE-2021-35977 | 2021-10-08 | An issue was discovered in Digi RealPort for Windows through... |
| CVE-2021-35979 | 2021-10-08 | An issue was discovered in Digi RealPort through 4.8.488.0. The... |
| CVE-2021-36767 | 2021-10-08 | In Digi RealPort through 4.10.490, authentication relies on a challenge-response... |
| CVE-2021-3312 | 2021-10-08 | An XML external entity (XXE) vulnerability in Alkacon OpenCms 11.0,... |
| CVE-2021-41825 | 2021-10-08 | Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the... |
| CVE-2021-41563 | 2021-10-08 | Tad Book3 - Stored XSS |
| CVE-2021-41564 | 2021-10-08 | Tad Honor - Improper Authorization |
| CVE-2021-41565 | 2021-10-08 | Tad TadTools - Reflected XSS |
| CVE-2021-41566 | 2021-10-08 | Tad TadTools - Arbitrary File Upload |
| CVE-2021-41567 | 2021-10-08 | Tad Uploader - Stored XSS |
| CVE-2021-41568 | 2021-10-08 | Tad Web - Improper Authorization |
| CVE-2021-41974 | 2021-10-08 | Tad Book3 - Improper Authorization |
| CVE-2021-41975 | 2021-10-08 | Tad TadTools - Improper Authorization |
| CVE-2021-41976 | 2021-10-08 | Tad Uploader - Improper Authorization |
| CVE-2021-41916 | 2021-10-08 | A Cross-Site Request Forgery (CSRF) vulnerability in webTareas version 2.4... |
| CVE-2021-41917 | 2021-10-08 | webTareas version 2.4 and earlier allows an authenticated user to... |
| CVE-2021-41918 | 2021-10-08 | webTareas version 2.4 and earlier allows an authenticated user to... |
| CVE-2021-41919 | 2021-10-08 | webTareas version 2.4 and earlier allows an authenticated user to... |
| CVE-2021-41920 | 2021-10-08 | webTareas version 2.4 and earlier allows an unauthenticated user to... |
| CVE-2021-20600 | 2021-10-08 | Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C... |
| CVE-2021-32029 | 2021-10-08 | A flaw was found in postgresql. Using an UPDATE ...... |
| CVE-2021-41802 | 2021-10-08 | HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed... |
| CVE-2020-4654 | 2021-10-08 | IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an... |
| CVE-2021-29906 | 2021-10-08 | IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, 1.3,... |
| CVE-2021-42109 | 2021-10-08 | VITEC Exterity IPTV products through 2021-04-30 allow privilege escalation to... |
| CVE-2020-22617 | 2021-10-08 | Ardour v5.12 contains a use-after-free vulnerability in the component ardour/libs/pbd/xml++.cc... |
| CVE-2021-42112 | 2021-10-08 | The "File upload question" functionality in LimeSurvey 3.x-LTS through 3.27.18... |
| CVE-2021-30625 | 2021-10-08 | Use after free in Selection API in Google Chrome prior... |
| CVE-2021-30626 | 2021-10-08 | Out of bounds memory access in ANGLE in Google Chrome... |
| CVE-2021-30627 | 2021-10-08 | Type confusion in Blink layout in Google Chrome prior to... |
| CVE-2021-30628 | 2021-10-08 | Stack buffer overflow in ANGLE in Google Chrome prior to... |
| CVE-2021-30629 | 2021-10-08 | Use after free in Permissions in Google Chrome prior to... |
| CVE-2021-30630 | 2021-10-08 | Inappropriate implementation in Blink in Google Chrome prior to 93.0.4577.82... |
| CVE-2021-30633 | 2021-10-08 | Use after free in Indexed DB API in Google Chrome... |
| CVE-2021-37956 | 2021-10-08 | Use after free in Offline use in Google Chrome on... |
| CVE-2021-37957 | 2021-10-08 | Use after free in WebGPU in Google Chrome prior to... |
| CVE-2021-37958 | 2021-10-08 | Inappropriate implementation in Navigation in Google Chrome on Windows prior... |
| CVE-2021-37959 | 2021-10-08 | Use after free in Task Manager in Google Chrome prior... |
| CVE-2021-37961 | 2021-10-08 | Use after free in Tab Strip in Google Chrome prior... |
| CVE-2021-37962 | 2021-10-08 | Use after free in Performance Manager in Google Chrome prior... |
| CVE-2021-37963 | 2021-10-08 | Side-channel information leakage in DevTools in Google Chrome prior to... |
| CVE-2021-37964 | 2021-10-08 | Inappropriate implementation in ChromeOS Networking in Google Chrome on ChromeOS... |
| CVE-2021-37965 | 2021-10-08 | Inappropriate implementation in Background Fetch API in Google Chrome prior... |
| CVE-2021-37966 | 2021-10-08 | Inappropriate implementation in Compositing in Google Chrome on Android prior... |
| CVE-2021-37967 | 2021-10-08 | Inappropriate implementation in Background Fetch API in Google Chrome prior... |
| CVE-2021-37968 | 2021-10-08 | Inappropriate implementation in Background Fetch API in Google Chrome prior... |
| CVE-2021-37969 | 2021-10-08 | Inappropriate implementation in Google Updater in Google Chrome on Windows... |
| CVE-2021-37970 | 2021-10-08 | Use after free in File System API in Google Chrome... |
| CVE-2021-37971 | 2021-10-08 | Incorrect security UI in Web Browser UI in Google Chrome... |
| CVE-2021-37972 | 2021-10-08 | Out of bounds read in libjpeg-turbo in Google Chrome prior... |
| CVE-2021-37973 | 2021-10-08 | Use after free in Portals in Google Chrome prior to... |
| CVE-2021-37974 | 2021-10-08 | Use after free in Safebrowsing in Google Chrome prior to... |
| CVE-2021-37976 | 2021-10-08 | Inappropriate implementation in Memory in Google Chrome prior to 94.0.4606.71... |
| CVE-2021-25966 | 2021-10-10 | Orchard Core CMS - Improper Session Termination after Password Change |
| CVE-2021-32028 | 2021-10-11 | A flaw was found in postgresql. Using an INSERT ...... |
| CVE-2021-41798 | 2021-10-11 | MediaWiki before 1.36.2 allows XSS. Month related MediaWiki messages are... |
| CVE-2021-41799 | 2021-10-11 | MediaWiki before 1.36.2 allows a denial of service (resource consumption... |
| CVE-2021-41800 | 2021-10-11 | MediaWiki before 1.36.2 allows a denial of service (resource consumption... |
| CVE-2021-42257 | 2021-10-11 | check_smart before 6.9.1 allows unintended drive access by an unprivileged... |
| CVE-2021-42260 | 2021-10-11 | TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in... |
| CVE-2021-42134 | 2021-10-11 | The Unicorn framework before 0.36.1 for Django allows XSS via... |
| CVE-2021-41055 | 2021-10-11 | Gajim 1.2.x and 1.3.x before 1.3.3 allows remote attackers to... |
| CVE-2021-42135 | 2021-10-11 | HashiCorp Vault and Vault Enterprise 1.8.x through 1.8.4 may have... |
| CVE-2021-42137 | 2021-10-11 | An issue was discovered in Zammad before 5.0.1. In some... |
| CVE-2021-42139 | 2021-10-11 | Deno Standard Modules before 0.107.0 allows Code Injection via an... |
| CVE-2021-41801 | 2021-10-11 | The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access... |
| CVE-2021-41830 | 2021-10-11 | Double Certificate Attack |
| CVE-2021-41831 | 2021-10-11 | Timestamp Manipulation with Signature Wrapping |
| CVE-2021-41832 | 2021-10-11 | Content Manipulation with Certificate Validation Attack |
| CVE-2021-35059 | 2021-10-11 | OpenWay WAY4 ACS before 1.2.278-2693 allows XSS via the /way4acs/enroll... |
| CVE-2021-35060 | 2021-10-11 | /way4acs/enroll in OpenWay WAY4 ACS before 1.2.278-2693 allows unauthenticated attackers... |
| CVE-2021-40889 | 2021-10-11 | CMSUno version 1.7.2 is affected by a PHP code execution... |
| CVE-2021-40888 | 2021-10-11 | Projectsend version r1295 is affected by Cross Site Scripting (XSS)... |