Lista CVE - 2021 / Luglio
Visualizzazione 1501 - 1581 di 1581 CVE per Luglio 2021 (Pagina 16 di 16)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-37593 | 2021-07-27 | PEEL Shopping version 9.4.0 allows remote SQL injection. A public... |
| CVE-2021-37595 | 2021-07-27 | In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has... |
| CVE-2021-37594 | 2021-07-27 | In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has... |
| CVE-2021-37596 | 2021-07-27 | Telegram Web K Alpha 0.6.1 allows XSS via a document... |
| CVE-2021-37600 | 2021-07-28 | An integer overflow in util-linux through 2.37.1 can potentially cause... |
| CVE-2020-26180 | 2021-07-28 | Dell EMC Isilon OneFS supported versions 8.1 and later and... |
| CVE-2020-5341 | 2021-07-28 | Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions... |
| CVE-2020-5351 | 2021-07-28 | Dell EMC Data Protection Advisor versions 6.4, 6.5 and 18.1... |
| CVE-2021-20783 | 2021-07-28 | Cross-site request forgery (CSRF) vulnerability in Optical BB unit E-WMTA2.3... |
| CVE-2021-20785 | 2021-07-28 | Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0... |
| CVE-2021-20786 | 2021-07-28 | Cross-site request forgery (CSRF) vulnerability in GroupSession (GroupSession Free edition... |
| CVE-2021-20787 | 2021-07-28 | Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0... |
| CVE-2021-20788 | 2021-07-28 | Server-side request forgery (SSRF) vulnerability in GroupSession (GroupSession Free edition... |
| CVE-2021-20789 | 2021-07-28 | Open redirect vulnerability in GroupSession (GroupSession Free edition from ver2.2.0... |
| CVE-2021-36983 | 2021-07-28 | replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local attacker to... |
| CVE-2021-23414 | 2021-07-28 | Cross-site Scripting (XSS) |
| CVE-2021-32001 | 2021-07-28 | K3s/RKE2 bootstrap data is encrypted with empty string if user does not supply a token |
| CVE-2021-32000 | 2021-07-28 | clone-master-clean-up: dangerous file system operations |
| CVE-2020-10590 | 2021-07-28 | Replicated Classic 2.x versions have an improperly secured API that... |
| CVE-2020-4974 | 2021-07-28 | IBM Jazz Foundation products are vulnerable to server side request... |
| CVE-2020-5004 | 2021-07-28 | IBM Jazz Foundation products are vulnerable to cross-site scripting. This... |
| CVE-2021-37601 | 2021-07-28 | muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to... |
| CVE-2021-34165 | 2021-07-28 | A SQL Injection vulnerability in Sourcecodester Basic Shopping Cart 1.0... |
| CVE-2021-34166 | 2021-07-28 | A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0... |
| CVE-2021-25200 | 2021-07-28 | Arbitrary file upload vulnerability in SourceCodester Learning Management System v... |
| CVE-2021-23417 | 2021-07-28 | Prototype Pollution |
| CVE-2021-23416 | 2021-07-28 | Cross-site Scripting (XSS) |
| CVE-2021-23415 | 2021-07-28 | Directory Traversal |
| CVE-2020-21854 | 2021-07-28 | Cross Site Scripting vulnerabiity exists in WDScanner 1.1 in the... |
| CVE-2021-37606 | 2021-07-28 | Meow hash 0.5/calico does not sufficiently thwart key recovery by... |
| CVE-2020-15948 | 2021-07-28 | eGain Chat 15.5.5 allows XSS via the Name (aka full_name)... |
| CVE-2021-31799 | 2021-07-29 | In RDoc 3.11 through 6.x before 6.3.1, as distributed with... |
| CVE-2021-37578 | 2021-07-29 | Remote code execution via RMI |
| CVE-2020-36239 | 2021-07-29 | Jira Data Center, Jira Core Data Center, Jira Software Data... |
| CVE-2021-30124 | 2021-07-29 | The unofficial vscode-phpmd (aka PHP Mess Detector) extension before 1.3.0... |
| CVE-2021-20505 | 2021-07-29 | The PowerVM Logical Partition Mobility(LPM) (PowerVM Hypervisor FW920, FW930, FW940,... |
| CVE-2021-36386 | 2021-07-29 | report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization... |
| CVE-2020-22761 | 2021-07-29 | Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via... |
| CVE-2020-22765 | 2021-07-29 | Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via... |
| CVE-2020-21808 | 2021-07-29 | SQL Injection vulnerability in NukeViet CMS 4.0.10 - 4.3.07 via:the... |
| CVE-2020-21809 | 2021-07-29 | SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and... |
| CVE-2020-5329 | 2021-07-29 | Dell EMC Avamar Server contains an open redirect vulnerability. A... |
| CVE-2020-5353 | 2021-07-29 | The Dell Isilon OneFS versions 8.2.2 and earlier and Dell... |
| CVE-2021-21538 | 2021-07-29 | Dell EMC iDRAC9 versions 4.40.00.00 and later, but prior to... |
| CVE-2021-21546 | 2021-07-29 | Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0... |
| CVE-2020-18157 | 2021-07-29 | Cross Site Request Forgery (CSRF) vulnerability in MetInfo 6.1.3 via... |
| CVE-2020-18158 | 2021-07-29 | Cross Site Scripting (XSS) vulnerability in HuCart 5.7.4 via nickname... |
| CVE-2020-18175 | 2021-07-29 | SQL Injection vulnerability in Metinfo 6.1.3 via a dosafety_emailadd action... |
| CVE-2021-36621 | 2021-07-29 | Sourcecodester Online Covid Vaccination Scheduler System 1.0 is vulnerable to... |
| CVE-2021-36624 | 2021-07-29 | Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from... |
| CVE-2021-37144 | 2021-07-29 | CSZ CMS 1.2.9 is vulnerable to Arbitrary File Deletion. This... |
| CVE-2021-23418 | 2021-07-29 | XML External Entity (XXE) Injection |
| CVE-2021-20111 | 2021-07-29 | A stored cross-site scripting vulnerability exists in TCExam <= 14.8.1.... |
| CVE-2021-20112 | 2021-07-29 | A stored cross-site scripting vulnerability exists in TCExam <= 14.8.1.... |
| CVE-2021-20113 | 2021-07-29 | An exposure of sensitive information vulnerability exists in TCExam <=... |
| CVE-2021-20114 | 2021-07-29 | When installed following the default/recommended settings, TCExam <= 14.8.1 allowed... |
| CVE-2021-25273 | 2021-07-29 | Stored XSS can execute as administrator in quarantined email detail... |
| CVE-2021-36741 | 2021-07-29 | An improper input validation vulnerability in Trend Micro Apex One,... |
| CVE-2021-36742 | 2021-07-29 | A improper input validation vulnerability in Trend Micro Apex One,... |
| CVE-2021-37742 | 2021-07-30 | app/View/Elements/GalaxyClusters/view_relation_tree.ctp in MISP 2.4.147 allows Stored XSS when viewing galaxy... |
| CVE-2021-37743 | 2021-07-30 | app/View/GalaxyElements/ajax/index.ctp in MISP 2.4.147 allows Stored XSS when viewing galaxy... |
| CVE-2020-26563 | 2021-07-30 | ObjectPlanet Opinio before 7.14 allows reflected XSS via the survey/admin/surveyAdmin.do?action=viewSurveyAdmin... |
| CVE-2021-29736 | 2021-07-30 | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could... |
| CVE-2021-29781 | 2021-07-30 | IBM Partner Engagement Manager 2.0 could allow a remote attacker... |
| CVE-2021-37746 | 2021-07-30 | textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed... |
| CVE-2021-29297 | 2021-07-30 | Buffer Overflow in Emerson GE Automation Proficy Machine Edition v8.0... |
| CVE-2021-29298 | 2021-07-30 | Improper Input Validation in Emerson GE Automation Proficy Machine Edition... |
| CVE-2021-35193 | 2021-07-30 | Patterson Application Service in Patterson Eaglesoft 18 through 21 accepts... |
| CVE-2021-3636 | 2021-07-30 | It was found in OpenShift, before version 4.8, that the... |
| CVE-2021-22521 | 2021-07-30 | A privileged escalation vulnerability has been identified in Micro Focus... |
| CVE-2021-34629 | 2021-07-30 | SendGrid <= 1.11.8 – Authorization Bypass |
| CVE-2021-34630 | 2021-07-30 | Reflected XSS in GTranslate Pro and GTranslate Enterprise < 2.8.65 |
| CVE-2021-27491 | 2021-07-30 | Ypsomed mylife Cloud, mylife Mobile Application:Ypsomed mylife Cloud,All versions prior... |
| CVE-2021-27495 | 2021-07-30 | Ypsomed mylife Cloud, mylife Mobile Application:Ypsomed mylife Cloud,All versions prior... |
| CVE-2021-32807 | 2021-07-30 | Remote Code Execution via unsafe classes in otherwise permitted modules |
| CVE-2020-26806 | 2021-07-31 | admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload... |
| CVE-2020-26564 | 2021-07-31 | ObjectPlanet Opinio before 7.15 allows XXE attacks via three steps:... |
| CVE-2020-26565 | 2021-07-31 | ObjectPlanet Opinio before 7.14 allows Expression Language Injection via the... |
| CVE-2021-33617 | 2021-07-31 | Zoho ManageEngine Password Manager Pro before 11.2 11200 allows login/AjaxResponse.jsp?RequestType=GetUserDomainName&userName=... |
| CVE-2021-37760 | 2021-07-31 | A Session ID leak in the audit log in Graylog... |
| CVE-2021-37759 | 2021-07-31 | A Session ID leak in the DEBUG log file in... |