Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2023-27207 Online Pizza Ordering System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/manage_user.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-27240 Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-24206 Davinci v0.3.0-rc was discovered to contain a SQL injection vulnerability via the copyDisplay function. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-1114 Missing Authorization vulnerability in Eskom e-Belediye allows Information Elicitation.This issue affects e-Belediye: from 1.0.0.95 before 1.0.0.100. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-23080 Certain Tenda products are vulnerable to command injection. This affects Tenda CP7 Tenda CP7<=V11.10.00.2211041403 and Tenda CP3 v.10 Tenda CP3 v.10<=V20220906024_2025 and Tenda IT7-PCS Tenda IT7-PCS<... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-1064 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Uzay Baskul Weighbridge Automation Software allows SQL Injection.This issue affects Weighbridge Au... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-22807 LS ELECTRIC XBC-DN32U with operating system version 01.80 does not properly control access to the PLC over its internal XGT protocol. An attacker could control and tamper with the PLC by sending the ... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-45138 The configuration backend of the web-based management can be used by unauthenticated users, although only authenticated users should be able to use the API. The vulnerability allows an unauthenticated... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-23392 HTTP Protocol Stack Remote Code Execution Vulnerability | 9.8 | CRITICAL | β | 0 |
| CVE-2022-45140 The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromi... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-20032 On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earl... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-0744 Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-43764 Insufficient validation of input parameters when changing configuration on Tbase server in B&R APROL versionsΒ < R 4.2-07 could result in buffer overflow. This may lead to Denial-of-Service conditions ... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-21803 Windows iSCSI Discovery Service Remote Code Execution Vulnerability | 9.8 | CRITICAL | β | 0 |
| CVE-2021-22444 There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause code injection. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38197 unarr.go in go-unarr (aka Go bindings for unarr) 0.1.1 allows Directory Traversal via ../ in a pathname within a TAR archive. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38196 An issue was discovered in the better-macro crate through 2021-07-22 for Rust. It intentionally demonstrates that remote attackers can execute arbitrary code via proc-macros, and otherwise has no legi... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38195 An issue was discovered in the libsecp256k1 crate before 0.5.0 for Rust. It can verify an invalid signature because it allows the R or S parameter to be larger than the curve order, aka an overflow. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38194 An issue was discovered in the ark-r1cs-std crate before 0.3.1 for Rust. It does not enforce any constraints in the FieldVar::mul_by_inverse method. Thus, a prover can produce a proof that is unsound ... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-22387 There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to remotely execute commands. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38190 An issue was discovered in the nalgebra crate before 0.27.1 for Rust. It allows out-of-bounds memory access because it does not ensure that the number of elements is equal to the product of the row co... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38189 An issue was discovered in the lettre crate before 0.9.6 for Rust. In an e-mail message body, an attacker can place a . character after two <CR><LF> sequences and then inject arbitrary SMTP commands. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-32810 crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more t... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38188 An issue was discovered in the iced-x86 crate through 1.10.3 for Rust. In Decoder::new(), slice.get_unchecked(slice.length()) is used unsafely. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38187 An issue was discovered in the anymap crate through 0.12.1 for Rust. It violates soundness via conversion of a *u8 to a *u64. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-19138 Unrestricted Upload of File with Dangerous Type in DotCMS v5.2.3 and earlier allow remote attackers to execute arbitrary code via the component "/src/main/java/com/dotmarketing/filters/CMSFilter.java"... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-33191 From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary. This "patching" command defaults to calling a trusted... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37843 The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known (i.e., no other authentication is provided). The fixed versions a... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37167 An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using th... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-3766 objection.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37716 A remote buffer overflow vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12, ... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37164 A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, th... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37163 An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus operated by released versions of software before Nexus Software 7.2.5.7. The device has two user account... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-34730 A vulnerability in the Universal Plug-and-Play (UPnP) service of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary cod... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37162 A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malforme... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37161 A buffer overflow issue was discovered in the HMI3 Control Panel contained within the Swisslog Healthcare Nexus Panel, operated by released versions of software before Nexus Software 7.2.5.7. A buffer... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-22388 There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37160 A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware valida... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-28165 The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-26772 Command Injection in PPGo_Jobs v2.8.0 allows remote attackers to execute arbitrary code via the 'AjaxRun()' function. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-40540 ulfius_uri_logger in Ulfius HTTP Framework before 2.7.4 omits con_info initialization and a con_info->request NULL check for certain malformed HTTP requests. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-36385 A SQL Injection vulnerability in Cerner Mobile Care 5.0.0 allows remote unauthenticated attackers to execute arbitrary SQL commands via a Fullwidth Apostrophe (aka U+FF07) in the default.aspx User ID ... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37165 A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the H... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-36440 Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'file_url' parameter in the component AdminUpdateController.class.php'. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-33527 In MB connect line mbDIALUP versions <= 3.9R0.0 a remote attacker can send a specifically crafted HTTP request to the service running with NT AUTHORITY\SYSTEM that will not correctly validate the inpu... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-38611 A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the fil... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-40814 The Customer Photo Gallery addon before 2.9.4 for PrestaShop is vulnerable to SQL injection. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-33793 Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-24472 The OnAir2 WordPress theme before 3.9.9.2 and QT KenthaRadio WordPress plugin before 2.0.2 have exposed proxy functionality to unauthenticated users, sending requests to this proxy functionality will ... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-32619 Deno is a runtime for JavaScript and TypeScript that uses V8 and is built in Rust. In Deno versions 1.5.0 to 1.10.1, modules that are dynamically imported through `import()` or `new Worker` might have... | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.