Lista CVE - 2021 / Agosto
Visualizzazione 1901 - 2000 di 2087 CVE per Agosto 2021 (Pagina 20 di 21)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-3264 | 2021-08-27 | SQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter... |
| CVE-2021-28700 | 2021-08-27 | xen/arm: No memory limit for dom0less domUs The dom0less feature... |
| CVE-2020-18998 | 2021-08-27 | Cross Site Scripting (XSS) in Blog_mini v1.0 allows remote attackers... |
| CVE-2020-18999 | 2021-08-27 | Cross Site Scripting (XSS) in Blog_mini v1.0 allows remote attackers... |
| CVE-2020-19000 | 2021-08-27 | Cross Site Scripting (XSS) in Simiki v1.6.2.1 and prior allows... |
| CVE-2020-19001 | 2021-08-27 | Command Injection in Simiki v1.6.2.1 and prior allows remote attackers... |
| CVE-2020-19002 | 2021-08-27 | Cross Site Scripting (XSS) in Mezzanine v4.3.1 allows remote attackers... |
| CVE-2021-28699 | 2021-08-27 | inadequate grant-v2 status frames array bounds check The v2 grant... |
| CVE-2021-28698 | 2021-08-27 | long running loops in grant table handling In order to... |
| CVE-2021-28233 | 2021-08-27 | Heap-based Buffer Overflow vulnerability exists in ok-file-formats 1 via the... |
| CVE-2021-28697 | 2021-08-27 | grant table v2 status pages may remain accessible after de-allocation... |
| CVE-2021-28694 | 2021-08-27 | IOMMU page mapping issues on x86 T[his CNA information record... |
| CVE-2021-28695 | 2021-08-27 | IOMMU page mapping issues on x86 T[his CNA information record... |
| CVE-2021-28696 | 2021-08-27 | IOMMU page mapping issues on x86 T[his CNA information record... |
| CVE-2020-18106 | 2021-08-27 | The GET parameter "id" in WMS v1.0 is passed without... |
| CVE-2020-18114 | 2021-08-27 | An arbitrary file upload vulnerability in the /uploads/dede component of... |
| CVE-2020-18116 | 2021-08-27 | A lack of filtering for searched keywords in the search... |
| CVE-2021-32759 | 2021-08-27 | Data Flow Sanitation Issue Fix |
| CVE-2021-39171 | 2021-08-27 | Unlimited transforms allowed for signed nodes |
| CVE-2021-39172 | 2021-08-27 | New line injection during configuration edition |
| CVE-2021-39173 | 2021-08-27 | Forced reinstall |
| CVE-2021-39174 | 2021-08-27 | Configuration leak |
| CVE-2021-38154 | 2021-08-29 | Certain Canon devices manufactured in 2012 through 2020 (such as... |
| CVE-2021-40178 | 2021-08-29 | Zoho ManageEngine Log360 before Build 5224 allows stored XSS via... |
| CVE-2021-40177 | 2021-08-29 | Zoho ManageEngine Log360 before Build 5225 allows remote code execution... |
| CVE-2021-40176 | 2021-08-29 | Zoho ManageEngine Log360 before Build 5225 allows stored XSS. |
| CVE-2021-40175 | 2021-08-29 | Zoho ManageEngine Log360 before Build 5219 allows unrestricted file upload... |
| CVE-2021-40174 | 2021-08-29 | Zoho ManageEngine Log360 before Build 5224 allows a CSRF attack... |
| CVE-2021-40173 | 2021-08-29 | Zoho ManageEngine Cloud Security Plus before Build 4117 allows a... |
| CVE-2021-40172 | 2021-08-29 | Zoho ManageEngine Log360 before Build 5219 allows a CSRF attack... |
| CVE-2021-21741 | 2021-08-30 | There is a command execution vulnerability in a ZTE conference... |
| CVE-2021-34434 | 2021-08-30 | In Eclipse Mosquitto versions 2.0 to 2.0.11, when using the... |
| CVE-2021-38385 | 2021-08-30 | Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between... |
| CVE-2020-35633 | 2021-08-30 | A code execution vulnerability exists in the Nef polygon-parsing functionality... |
| CVE-2020-35634 | 2021-08-30 | A code execution vulnerability exists in the Nef polygon-parsing functionality... |
| CVE-2020-35635 | 2021-08-30 | A code execution vulnerability exists in the Nef polygon-parsing functionality... |
| CVE-2021-37749 | 2021-08-30 | MapService.svc in Hexagon GeoMedia WebMap 2020 before Update 2 (aka... |
| CVE-2021-36359 | 2021-08-30 | OrbiTeam BSCW Classic before 7.4.3 allows exportpdf authenticated remote code... |
| CVE-2021-39271 | 2021-08-30 | OrbiTeam BSCW Classic before 7.4.3 allows authenticated remote code execution... |
| CVE-2021-39272 | 2021-08-30 | Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in... |
| CVE-2021-26084 | 2021-08-30 | In affected versions of Confluence Server and Data Center, an... |
| CVE-2021-39111 | 2021-08-30 | The Editor plugin in Atlassian Jira Server and Data Center... |
| CVE-2021-39113 | 2021-08-30 | Affected versions of Atlassian Jira Server and Data Center allow... |
| CVE-2021-39117 | 2021-08-30 | The AssociateFieldToScreens page in Atlassian Jira Server and Data Center... |
| CVE-2020-15744 | 2021-08-30 | Stack-based buffer overflow leading to RCE in Victure Camera |
| CVE-2021-25958 | 2021-08-30 | Generation of Error Message Containing Sensitive Information in Apache OFBiz |
| CVE-2021-24437 | 2021-08-30 | Favicon by RealFaviconGenerator <= 1.3.20 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24438 | 2021-08-30 | ShareThis Dashboard for Google Analytics < 2.5.2 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24528 | 2021-08-30 | FluentSMTP < 2.0.1 - Authenticated Stored XSS |
| CVE-2021-24579 | 2021-08-30 | Bold Page Builder < 3.1.6 - PHP Object Injection |
| CVE-2021-24580 | 2021-08-30 | Side Menu Lite < 2.2.6 - Authenticated SQL Injection |
| CVE-2021-24581 | 2021-08-30 | Blue Admin <= 21.06.01 - CSRF to Stored Cross-Site Scripting (XSS) |
| CVE-2021-24592 | 2021-08-30 | Sitewide Notice WP < 2.3 - Authenticated Stored XSS |
| CVE-2021-24593 | 2021-08-30 | Business Hours Indicator < 2.3.5 - Authenticated Stored XSS |
| CVE-2021-24665 | 2021-08-30 | WP Video Lightbox < 1.9.3 - Contributor+ Stored Cross-Site Scripting |
| CVE-2021-24667 | 2021-08-30 | Gallery Blocks with Lightbox < 2.2.1- Authenticated Stored Cross-Site Scripting |
| CVE-2021-37911 | 2021-08-30 | The management interface of BenQ smart wireless conference projector does... |
| CVE-2021-27910 | 2021-08-30 | Stored XSS vulnerability on Bounce Management Callback |
| CVE-2021-27911 | 2021-08-30 | XSS vulnerability on contacts view |
| CVE-2021-27912 | 2021-08-30 | XSS vulnerability on asset view |
| CVE-2021-27913 | 2021-08-30 | Use of a Broken or Risky Cryptographic Algorithm |
| CVE-2021-27909 | 2021-08-30 | XSS vulnerability on password reset page |
| CVE-2020-18127 | 2021-08-30 | An issue in the /config/config.php component of Indexhibit 2.1.5 allows... |
| CVE-2020-18126 | 2021-08-30 | Multiple stored cross-site scripting (XSS) vulnerabilities in the Sections module... |
| CVE-2020-18123 | 2021-08-30 | A cross-site request forgery (CSRF) vulnerability in Indexhibit 2.1.5 allows... |
| CVE-2020-18124 | 2021-08-30 | A cross-site request forgery (CSRF) vulnerability in Indexhibit 2.1.5 allows... |
| CVE-2020-18121 | 2021-08-30 | A configuration issue in Indexhibit 2.1.5 allows authenticated attackers to... |
| CVE-2020-18125 | 2021-08-30 | A reflected cross-site scripting (XSS) vulnerability in the /plugin/ajax.php component... |
| CVE-2021-33007 | 2021-08-30 | A heap-based buffer overflow in Delta Electronics TPEditor: v1.98.06 and... |
| CVE-2021-27663 | 2021-08-30 | CEM Systems AC2000 |
| CVE-2021-29722 | 2021-08-30 | IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses... |
| CVE-2021-29723 | 2021-08-30 | IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses... |
| CVE-2021-29728 | 2021-08-30 | IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 contains... |
| CVE-2021-29743 | 2021-08-30 | IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to... |
| CVE-2021-3628 | 2021-08-30 | OpenKM Document Management Community vulnerable to Cross Site Scripting |
| CVE-2021-33019 | 2021-08-30 | A stack-based buffer overflow vulnerability in Delta Electronics DOPSoft Version... |
| CVE-2021-33003 | 2021-08-30 | Delta Electronics DIAEnergie Version 1.7.5 and prior may allow an... |
| CVE-2021-32967 | 2021-08-30 | Delta Electronics DIAEnergie Version 1.7.5 and prior may allow an... |
| CVE-2021-32955 | 2021-08-30 | Delta Electronics DIAEnergie Version 1.7.5 and prior allows unrestricted file... |
| CVE-2021-32991 | 2021-08-30 | Delta Electronics DIAEnergie Version 1.7.5 and prior is vulnerable to... |
| CVE-2021-38391 | 2021-08-30 | A Blind SQL injection vulnerability exists in the /DataHandler/AM/AM_Handler.ashx endpoint... |
| CVE-2021-38393 | 2021-08-30 | A Blind SQL injection vulnerability exists in the /DataHandler/HandlerAlarmGroup.ashx endpoint... |
| CVE-2021-32983 | 2021-08-30 | A Blind SQL injection vulnerability exists in the /DataHandler/Handler_CFG.ashx endpoint... |
| CVE-2021-38390 | 2021-08-30 | A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint... |
| CVE-2021-22022 | 2021-08-30 | The vRealize Operations Manager API (8.x prior to 8.5) contains... |
| CVE-2021-22023 | 2021-08-30 | The vRealize Operations Manager API (8.x prior to 8.5) has... |
| CVE-2021-22024 | 2021-08-30 | The vRealize Operations Manager API (8.x prior to 8.5) contains... |
| CVE-2021-22026 | 2021-08-30 | The vRealize Operations Manager API (8.x prior to 8.5) contains... |
| CVE-2021-22027 | 2021-08-30 | The vRealize Operations Manager API (8.x prior to 8.5) contains... |
| CVE-2021-22025 | 2021-08-30 | The vRealize Operations Manager API (8.x prior to 8.5) contains... |
| CVE-2021-27020 | 2021-08-30 | Puppet Enterprise presented a security risk by not sanitizing user... |
| CVE-2021-27019 | 2021-08-30 | PuppetDB logging included potentially sensitive system information. |
| CVE-2021-27018 | 2021-08-30 | The mechanism which performs certificate validation was discovered to have... |
| CVE-2021-29631 | 2021-08-30 | In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before... |
| CVE-2021-29630 | 2021-08-30 | In FreeBSD 13.0-STABLE before n246938-0729ba2f49c9, 12.2-STABLE before r370383, 11.4-STABLE before... |
| CVE-2021-34668 | 2021-08-30 | WordPress Real Media Library <= 4.14.1 Author-only Stored Cross-Site Scripting |
| CVE-2021-34646 | 2021-08-30 | Booster for WooCommerce <= 5.4.3 Authentication Bypass |
| CVE-2021-38343 | 2021-08-30 | Nested Pages <= 3.1.15 Open Redirect |
| CVE-2021-38342 | 2021-08-30 | Nested Pages <= 3.1.15 Cross-Site Request Forgery to Arbitrary Post Deletion and Modification |
| CVE-2021-22021 | 2021-08-30 | VMware vRealize Log Insight (8.x prior to 8.4) contains a... |