Lista CVE - 2021 / Gennaio
Visualizzazione 1201 - 1300 di 1514 CVE per Gennaio 2021 (Pagina 13 di 16)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-21239 | 2021-01-21 | Open default xmlsec1 key-type preference |
| CVE-2021-21238 | 2021-01-21 | SAML XML Signature wrapping |
| CVE-2021-21253 | 2021-01-21 | Use of a One-Way Hash without a Salt in OnlineVotingSystem |
| CVE-2020-26941 | 2021-01-21 | A local (authenticated) low-privileged user can exploit a behavior in... |
| CVE-2020-29241 | 2021-01-21 | Online News Portal using PHP/MySQLi 1.0 is affected by cross-site... |
| CVE-2020-35309 | 2021-01-21 | Bakeshop Online Ordering System in PHP/MySQLi 1.0 is affected by... |
| CVE-2020-28874 | 2021-01-21 | reset-password.php in ProjectSend before r1295 allows remote attackers to reset... |
| CVE-2021-3152 | 2021-01-21 | Home Assistant before 2021.1.3 does not have a protection layer... |
| CVE-2020-22643 | 2021-01-21 | Feehi CMS 2.1.0 is affected by an arbitrary file upload... |
| CVE-2020-8554 | 2021-01-21 | Kubernetes man in the middle using LoadBalancer or ExternalIPs |
| CVE-2020-8567 | 2021-01-21 | Kubernetes Secrets Store CSI Driver plugin directory traversals |
| CVE-2020-8568 | 2021-01-21 | Kubernetes Secrets Store CSI Driver sync/rotate directory traversal |
| CVE-2020-8569 | 2021-01-21 | Kubernetes CSI snapshot-controller DoS |
| CVE-2020-8570 | 2021-01-21 | Kubernetes Java client libraries unvalidated path traversal in Copy implementation |
| CVE-2021-21723 | 2021-01-21 | Some ZTE products have a DoS vulnerability. Due to the... |
| CVE-2020-8288 | 2021-01-21 | The `specializedRendering` function in Rocket.Chat server before 3.9.2 allows a... |
| CVE-2020-8292 | 2021-01-21 | Rocket.Chat server before 3.9.0 is vulnerable to a self cross-site... |
| CVE-2021-22873 | 2021-01-21 | Revive Adserver before 5.1.0 is vulnerable to open redirects via... |
| CVE-2021-22872 | 2021-01-21 | Revive Adserver before 5.1.0 is vulnerable to a reflected cross-site... |
| CVE-2021-22871 | 2021-01-21 | Revive Adserver before 5.1.0 permits any user with a manager... |
| CVE-2019-25015 | 2021-01-21 | LuCI in OpenWrt 18.06.0 through 18.06.4 allows stored XSS via... |
| CVE-2020-36201 | 2021-01-21 | An issue was discovered in certain Xerox WorkCentre products. They... |
| CVE-2020-21146 | 2021-01-21 | Feehi CMS 2.0.8 is affected by a cross-site scripting (XSS)... |
| CVE-2020-21147 | 2021-01-21 | RockOA V1.9.8 is affected by a cross-site scripting (XSS) vulnerability... |
| CVE-2020-36199 | 2021-01-21 | TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command... |
| CVE-2020-36200 | 2021-01-21 | TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated attacker... |
| CVE-2021-3199 | 2021-01-22 | Directory traversal with remote code execution can occur in /upload... |
| CVE-2020-35753 | 2021-01-22 | The job posting recommendation form in Persis Human Resource Management... |
| CVE-2021-3193 | 2021-01-22 | Improper access and command validation in the Nagios Docker Config... |
| CVE-2020-29443 | 2021-01-22 | ide_atapi_cmd_reply_end in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access... |
| CVE-2021-22847 | 2021-01-22 | Hyweb HyCMS-J1 - SQL Injection |
| CVE-2021-22849 | 2021-01-22 | Hyweb HyCMS-J1 - Stored XSS |
| CVE-2021-25908 | 2021-01-22 | An issue was discovered in the fil-ocl crate through 2021-01-04... |
| CVE-2021-25907 | 2021-01-22 | An issue was discovered in the containers crate before 0.9.11... |
| CVE-2021-25906 | 2021-01-22 | An issue was discovered in the basic_dsp_matrix crate before 0.9.2... |
| CVE-2021-25905 | 2021-01-22 | An issue was discovered in the bra crate before 0.1.1... |
| CVE-2021-25904 | 2021-01-22 | An issue was discovered in the av-data crate before 0.3.0... |
| CVE-2021-25903 | 2021-01-22 | An issue was discovered in the cache crate through 2021-01-01... |
| CVE-2021-25902 | 2021-01-22 | An issue was discovered in the glsl-layout crate before 0.4.0... |
| CVE-2021-25901 | 2021-01-22 | An issue was discovered in the lazy-init crate through 2021-01-17... |
| CVE-2021-25900 | 2021-01-22 | An issue was discovered in the smallvec crate before 0.6.14... |
| CVE-2020-36220 | 2021-01-22 | An issue was discovered in the va-ts crate before 0.0.4... |
| CVE-2020-36219 | 2021-01-22 | An issue was discovered in the atomic-option crate through 2020-10-31... |
| CVE-2020-36218 | 2021-01-22 | An issue was discovered in the buttplug crate before 1.0.4... |
| CVE-2020-36217 | 2021-01-22 | An issue was discovered in the may_queue crate through 2020-11-10... |
| CVE-2020-36216 | 2021-01-22 | An issue was discovered in Input<R> in the eventio crate... |
| CVE-2020-36215 | 2021-01-22 | An issue was discovered in the hashconsing crate before 1.1.0... |
| CVE-2020-36214 | 2021-01-22 | An issue was discovered in the multiqueue2 crate before 0.1.7... |
| CVE-2020-36213 | 2021-01-22 | An issue was discovered in the abi_stable crate before 0.9.1... |
| CVE-2020-36212 | 2021-01-22 | An issue was discovered in the abi_stable crate before 0.9.1... |
| CVE-2020-36211 | 2021-01-22 | An issue was discovered in the gfwx crate before 0.3.0... |
| CVE-2020-36210 | 2021-01-22 | An issue was discovered in the autorand crate before 0.2.3... |
| CVE-2020-36209 | 2021-01-22 | An issue was discovered in the late-static crate before 0.4.0... |
| CVE-2020-36208 | 2021-01-22 | An issue was discovered in the conquer-once crate before 0.3.2... |
| CVE-2020-36207 | 2021-01-22 | An issue was discovered in the aovec crate through 2020-12-10... |
| CVE-2020-36206 | 2021-01-22 | An issue was discovered in the rusb crate before 0.7.0... |
| CVE-2020-36205 | 2021-01-22 | An issue was discovered in the xcb crate through 2020-12-10... |
| CVE-2020-36204 | 2021-01-22 | An issue was discovered in the im crate through 2020-11-09... |
| CVE-2020-36203 | 2021-01-22 | An issue was discovered in the reffers crate through 2020-12-01... |
| CVE-2020-36202 | 2021-01-22 | An issue was discovered in the async-h1 crate before 2.3.0... |
| CVE-2020-23160 | 2021-01-22 | Remote code execution in Pyrescom Termod4 time management devices before... |
| CVE-2020-23161 | 2021-01-22 | Local file inclusion in Pyrescom Termod4 time management devices before... |
| CVE-2020-23162 | 2021-01-22 | Sensitive information disclosure and weak encryption in Pyrescom Termod4 time... |
| CVE-2020-23262 | 2021-01-22 | An issue was discovered in ming-soft MCMS v5.0, where a... |
| CVE-2020-4766 | 2021-01-22 | IBM MQ Internet Pass-Thru 2.1 and 9.2 could allow a... |
| CVE-2021-3271 | 2021-01-22 | PressBooks 5.17.3 contains a cross-site scripting (XSS). Stored XSS can... |
| CVE-2021-21259 | 2021-01-22 | Stored XSS in slide mode |
| CVE-2020-28487 | 2021-01-22 | Cross-site Scripting (XSS) |
| CVE-2021-21260 | 2021-01-22 | XSS in description field |
| CVE-2021-21270 | 2021-01-22 | Cleartext Storage of Sensitive Information |
| CVE-2020-20269 | 2021-01-22 | A specially crafted Markdown document could cause the execution of... |
| CVE-2020-12511 | 2021-01-22 | Pepper+Fuchs Comtrol IO-Link Master Cross-Site Request Forgery |
| CVE-2020-12512 | 2021-01-22 | Pepper+Fuchs Comtrol IO-Link Master Cross-Site Scripting |
| CVE-2020-12513 | 2021-01-22 | Pepper+Fuchs Comtrol IO-Link Master OS Command Injection |
| CVE-2020-12514 | 2021-01-22 | Pepper+Fuchs Comtrol IO-Link Master NULL Pointer Dereference |
| CVE-2020-12525 | 2021-01-22 | WAGO/M&M Software Deserialization of untrusted data in fdtCONTAINER component |
| CVE-2020-23826 | 2021-01-22 | The Yale WIPC-303W 2.21 through 2.31 camera is vulnerable to... |
| CVE-2020-27097 | 2021-01-22 | In checkGrantUriPermission of UriGrantsManagerService.java, there is a possible permissions bypass.... |
| CVE-2020-27098 | 2021-01-22 | In checkGrantUriPermission of UriGrantsManagerService.java, there is a possible way to... |
| CVE-2020-23014 | 2021-01-22 | APfell 1.4 is vulnerable to authenticated reflected cross-site scripting (XSS)... |
| CVE-2021-3285 | 2021-01-23 | jxbrowser in TI Code Composer Studio IDE 8.x through 10.x... |
| CVE-2021-3286 | 2021-01-24 | SQL injection exists in Spotweb 1.4.9 because the notAllowedCommands protection... |
| CVE-2021-3186 | 2021-01-24 | A Stored Cross-site scripting (XSS) vulnerability in /main.html Wifi Settings... |
| CVE-2020-35576 | 2021-01-25 | A Command Injection issue in the traceroute feature on TP-Link... |
| CVE-2021-26026 | 2021-01-25 | PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a User... |
| CVE-2021-26025 | 2021-01-25 | PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a User... |
| CVE-2020-17532 | 2021-01-25 | Apache ServiceComb Yaml remote deserialization vulnerability |
| CVE-2021-23901 | 2021-01-25 | An XML external entity (XXE) injection vulnerability exists in the Nutch DmozParser |
| CVE-2020-36223 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading to... |
| CVE-2020-36227 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading to... |
| CVE-2020-36230 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading in... |
| CVE-2020-36229 | 2021-01-25 | A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57... |
| CVE-2020-36228 | 2021-01-25 | An integer underflow was discovered in OpenLDAP before 2.4.57 leading... |
| CVE-2020-36226 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading to... |
| CVE-2020-36225 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading to... |
| CVE-2020-36224 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading to... |
| CVE-2020-36222 | 2021-01-25 | A flaw was discovered in OpenLDAP before 2.4.57 leading to... |
| CVE-2020-36221 | 2021-01-25 | An integer underflow was discovered in OpenLDAP before 2.4.57 leading... |
| CVE-2020-35270 | 2021-01-25 | Student Result Management System In PHP With Source Code is... |
| CVE-2020-35853 | 2021-01-25 | 4images Image Gallery Management System 1.7.11 is affected by cross-site... |