Lista CVE - 2021 / Settembre
Visualizzazione 1201 - 1300 di 1899 CVE per Settembre 2021 (Pagina 13 di 19)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-3807 | 2021-09-17 | Inefficient Regular Expression Complexity in chalk/ansi-regex |
| CVE-2021-41326 | 2021-09-17 | In MISP before 2.4.148, app/Lib/Export/OpendataExport.php mishandles parameter data that is... |
| CVE-2021-20790 | 2021-09-17 | Improper control of program execution vulnerability in RevoWorks Browser 2.1.230... |
| CVE-2021-20791 | 2021-09-17 | Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier... |
| CVE-2021-20825 | 2021-09-17 | Cross-site scripting vulnerability in List (order management) item change plug-in... |
| CVE-2021-20828 | 2021-09-17 | Cross-site scripting vulnerability in Order Status Batch Change Plug-in (for... |
| CVE-2021-3804 | 2021-09-17 | Inefficient Regular Expression Complexity in nervjs/taro |
| CVE-2021-3810 | 2021-09-17 | Inefficient Regular Expression Complexity in cdr/code-server |
| CVE-2021-3811 | 2021-09-17 | Cross-site Scripting (XSS) - Reflected in pi-hole/adminlte |
| CVE-2021-3812 | 2021-09-17 | Cross-site Scripting (XSS) - Reflected in pi-hole/adminlte |
| CVE-2021-1939 | 2021-09-17 | Null pointer dereference occurs due to improper validation when the... |
| CVE-2021-1947 | 2021-09-17 | Use-after-free vulnerability in kernel graphics driver because of storing an... |
| CVE-2021-1976 | 2021-09-17 | A use after free can occur due to improper validation... |
| CVE-2021-30260 | 2021-09-17 | Possible Integer overflow to buffer overflow issue can occur due... |
| CVE-2021-30261 | 2021-09-17 | Possible integer and heap overflow due to lack of input... |
| CVE-2021-41303 | 2021-09-17 | Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass |
| CVE-2021-23442 | 2021-09-17 | Prototype Pollution |
| CVE-2021-39327 | 2021-09-17 | BulletProof Security <= 5.1 Sensitive Information Disclosure |
| CVE-2021-31842 | 2021-09-17 | XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS)... |
| CVE-2021-31843 | 2021-09-17 | Improper access control vulnerability in McAfee ENS for Windows |
| CVE-2021-31845 | 2021-09-17 | Remote Code Execution in McAfee DLP Discover |
| CVE-2021-31844 | 2021-09-17 | Local Privilege Escalation in McAfee DLP Endpoint for Windows |
| CVE-2021-39228 | 2021-09-17 | Memory Safety Issue when using patch or merge on state and assign the result back to state |
| CVE-2021-39227 | 2021-09-17 | Fix prototype pollution in the zrender merge and clone helper methods |
| CVE-2021-41316 | 2021-09-17 | The Device42 Main Appliance before 17.05.01 does not sanitize user... |
| CVE-2021-41315 | 2021-09-17 | The Device42 Remote Collector before 17.05.01 does not sanitize user... |
| CVE-2021-41317 | 2021-09-17 | XSS Hunter Express before 2021-09-17 does not properly enforce authentication... |
| CVE-2019-9060 | 2021-09-17 | An issue was discovered in CMS Made Simple 2.2.8. It... |
| CVE-2021-38304 | 2021-09-17 | Improper input validation in the National Instruments NI-PAL driver in... |
| CVE-2021-40825 | 2021-09-17 | nLight ECLYPSE (nECY) system Controllers running software prior to 1.17.21245.754... |
| CVE-2020-12080 | 2021-09-17 | A Denial of Service vulnerability has been identified in FlexNet... |
| CVE-2020-12082 | 2021-09-17 | A stored cross-site scripting issue impacts certain areas of the... |
| CVE-2020-12083 | 2021-09-17 | An elevated privileges issue related to Spring MVC calls impacts... |
| CVE-2021-38406 | 2021-09-17 | Delta Electronics DOPSoft 2 Out-of-Bounds Write |
| CVE-2021-38402 | 2021-09-17 | Delta Electronics DOPSoft 2 Stack-Based Buffer Overflow |
| CVE-2021-38404 | 2021-09-17 | Delta Electronics DOPSoft 2 Heap-based Buffer Overflow |
| CVE-2021-38412 | 2021-09-17 | Digi PortServer TS 16 Improper Authentication |
| CVE-2021-41380 | 2021-09-17 | RealVNC Viewer 6.21.406 allows remote VNC servers to cause a... |
| CVE-2021-41383 | 2021-09-17 | setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to... |
| CVE-2021-39216 | 2021-09-17 | Use after free passing `externref`s to Wasm in Wasmtime |
| CVE-2021-39219 | 2021-09-17 | Wrong type for `Linker`-define functions when used across two `Engine`s |
| CVE-2021-39218 | 2021-09-17 | Out-of-bounds read/write and invalid free with `externref`s and GC safepoints in Wasmtime |
| CVE-2020-21547 | 2021-09-17 | Libsixel 1.8.2 contains a heap-based buffer overflow in the dither_func_fs... |
| CVE-2020-21548 | 2021-09-17 | Libsixel 1.8.3 contains a heap-based buffer overflow in the sixel_encode_highcolor... |
| CVE-2021-41387 | 2021-09-17 | seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escalation because... |
| CVE-2021-41390 | 2021-09-17 | In Ericsson ECM before 18.0, it was observed that Security... |
| CVE-2021-41391 | 2021-09-17 | In Ericsson ECM before 18.0, it was observed that Security... |
| CVE-2021-41392 | 2021-09-17 | static/main-preload.js in Boost Note through 0.22.0 allows remote command execution.... |
| CVE-2021-3806 | 2021-09-18 | Path Traversal in Pardus Software Center |
| CVE-2021-41394 | 2021-09-18 | Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and... |
| CVE-2021-41395 | 2021-09-18 | Teleport before 6.2.12 and 7.x before 7.1.1 allows attackers to... |
| CVE-2021-41393 | 2021-09-18 | Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and... |
| CVE-2021-40690 | 2021-09-19 | Bypass of the secureValidation property |
| CVE-2021-41073 | 2021-09-19 | loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6... |
| CVE-2021-32280 | 2021-09-20 | An issue was discovered in fig2dev before 3.2.8.. A NULL... |
| CVE-2021-39537 | 2021-09-20 | An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in... |
| CVE-2021-38300 | 2021-09-20 | arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable... |
| CVE-2021-24396 | 2021-09-20 | GSEOR <= 1.3 - Authenticated SQL Injection |
| CVE-2021-24397 | 2021-09-20 | MicroCopy <= 1.1.0 - Authenticated SQL Injection |
| CVE-2021-24398 | 2021-09-20 | Responsive 3D Slider <= 1.2 - Authenticated SQL Injection |
| CVE-2021-24399 | 2021-09-20 | The Sorter <= 1.0 - Authenticated SQL Injection |
| CVE-2021-24400 | 2021-09-20 | Display users <= 2.0.0 - Authenticated SQL Injection |
| CVE-2021-24401 | 2021-09-20 | WP Domain Redirect <= 1.0 - Authenticated SQL Injection |
| CVE-2021-24402 | 2021-09-20 | WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL Injection |
| CVE-2021-24403 | 2021-09-20 | WordPress Page Contact <= 1.0 - Authenticated (editor+) SQL Injection |
| CVE-2021-24404 | 2021-09-20 | WP-Board <= 1.1 (beta) - Unauthenticated SQL Injection |
| CVE-2021-24511 | 2021-09-20 | Create WooCommerce Product Feeds For 40+ Merchants < 3.3.1.0 - Authenticated SQL Injection |
| CVE-2021-24525 | 2021-09-20 | Shortcodes Ultimate < 5.10.2 - Contributor+ Stored XSS |
| CVE-2021-24530 | 2021-09-20 | Alojapro Widget <= 1.1.15 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24582 | 2021-09-20 | ThinkTwit < 1.7.1 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24583 | 2021-09-20 | Timetable and Event Schedule by MotoPress < 2.4.2 - Unauthorised Event TimeSlot Deletion |
| CVE-2021-24584 | 2021-09-20 | Timetable and Event Schedule by MotoPress < 2.4.2 - Unauthorised Event TimeSlot Update |
| CVE-2021-24585 | 2021-09-20 | Timetable and Event Schedule by MotoPress < 2.4.0 - Arbitrary User's Hashed Password/Email/Username Disclosure |
| CVE-2021-24587 | 2021-09-20 | Splash Header < 1.20.8 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24596 | 2021-09-20 | youForms for WordPress <= 1.0.5 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24597 | 2021-09-20 | You Shang <= 1.0.1 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24600 | 2021-09-20 | WP Dialog <= 1.2.5.5 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24604 | 2021-09-20 | Availability Calendar < 1.2.2 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24606 | 2021-09-20 | Availability Calendar < 1.2.1 - Authenticated SQL Injection |
| CVE-2021-24609 | 2021-09-20 | WP Mapa Politico Espana < 3.7.0- Authenticated Stored XSS |
| CVE-2021-24613 | 2021-09-20 | Post Views Counter < 1.3.5 - Authenticated Stored XSS |
| CVE-2021-24618 | 2021-09-20 | Donate With QRCode < 1.4.5 - Stored Cross-Site Scripting |
| CVE-2021-24635 | 2021-09-20 | Visual Link Preview < 2.2.3 - Unauthorised AJAX Calls |
| CVE-2021-24636 | 2021-09-20 | Print My Blog < 3.4.2 - Plugin Deactivation via CSRF |
| CVE-2021-24637 | 2021-09-20 | Fonts Plugin < 3.0.3 - Contributor+ Stored Cross-Site Scripting |
| CVE-2021-24638 | 2021-09-20 | OMGF < 4.5.4 - Unauthenticated Path Traversal in REST API |
| CVE-2021-24639 | 2021-09-20 | OMGF < 4.5.4 - Subscriber+ Arbitrary File/Folder Deletion |
| CVE-2021-24640 | 2021-09-20 | Gutenslider < 5.2.0 - Contributor+ Stored XSS |
| CVE-2021-24657 | 2021-09-20 | Limit Login Attempts < 4.0.50 - Unauthenticated Stored Cross-Site Scripting |
| CVE-2021-24663 | 2021-09-20 | Simple School Staff Directory <= 1.1 - Admin+ Arbitrary File Upload |
| CVE-2021-24741 | 2021-09-20 | Support Board < 3.3.4 - Multiple Unauthenticated SQL Injections |
| CVE-2019-16651 | 2021-09-20 | An issue was discovered on Virgin Media Super Hub 3... |
| CVE-2020-21913 | 2021-09-20 | International Components for Unicode (ICU-20850) v66.1 was discovered to contain... |
| CVE-2021-39402 | 2021-09-20 | MaianAffiliate v.1.0 is suffers from code injection by adding a... |
| CVE-2021-40674 | 2021-09-20 | An SQL injection vulnerability exists in Wuzhi CMS v4.1.0 via... |
| CVE-2020-21468 | 2021-09-20 | A segmentation fault in the redis-server component of Redis 5.0.7... |
| CVE-2020-20891 | 2021-09-20 | Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg... |
| CVE-2020-20892 | 2021-09-20 | An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in... |
| CVE-2020-20896 | 2021-09-20 | An issue was discovered in function latm_write_packet in libavformat/latmenc.c in... |
| CVE-2020-20898 | 2021-09-20 | Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpeg... |