Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2021-21830 A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An att... | 9.8 | CRITICAL | — | 0 |
| CVE-2020-21066 An issue was discovered in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aac... | 6.5 | MEDIUM | — | 0 |
| CVE-2021-37705 OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuzz 2.12.0 or greater, an incomplete authorization check allows an authenticated user from any Azure Active Direc... | 10.0 | CRITICAL | — | 0 |
| CVE-2021-21812 A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs’ Xmill 0.7. Within the function HandleFileArg the argument filepattern is under ... | 7.8 | HIGH | — | 0 |
| CVE-2021-21813 Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to memcpy copying the path provided by th... | 7.8 | HIGH | — | 0 |
| CVE-2021-21814 Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to strlen to determine the ending locatio... | 7.8 | HIGH | — | 0 |
| CVE-2021-21815 A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs' Xmill 0.7. Within the function HandleFileArg the argument filepattern is under ... | 7.8 | HIGH | — | 0 |
| CVE-2020-36473 UCWeb UC 12.12.3.1219 through 12.12.3.1226 uses cleartext HTTP, and thus man-in-the-middle attackers can discover visited URLs. | 3.7 | LOW | — | 0 |
| CVE-2021-37326 NetSarang Xshell 7 before Build 0077 includes unintended code strings in paste operations. | 5.3 | MEDIUM | — | 0 |
| CVE-2021-38699 TastyIgniter 3.0.7 allows XSS via /account, /reservation, /admin/dashboard, and /admin/system_logs. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24380 The Shantz WordPress QOTD WordPress plugin through 1.2.2 is lacking any CSRF check when updating its settings, allowing attackers to make logged in administrators change them to arbitrary values. | 4.3 | MEDIUM | — | 0 |
| CVE-2021-25955 In “Dolibarr ERP CRM”, WYSIWYG Editor module, v2.8.1 to v13.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the “Private Note”... | 9.0 | CRITICAL | — | 0 |
| CVE-2021-38708 In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via Comcode for XSS. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-38709 In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via the staff_messaging messaging system for XSS. | 6.1 | MEDIUM | — | 0 |
| CVE-2021-38711 In gitit before 0.15.0.0, the Export feature can be exploited to leak information from files. | 7.5 | HIGH | — | 0 |
| CVE-2021-38712 OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents. NOTE: the vendor's recommended solution is to block the access via an NGINX configuration file. | 7.5 | HIGH | — | 0 |
| CVE-2021-38713 imgURL 2.31 allows XSS via an X-Forwarded-For HTTP header. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-3707 D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An unauthenticated attacker on the local network may exploit this, with CVE-20... | 5.5 | MEDIUM | — | 0 |
| CVE-2021-3708 D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS command injection. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3707, to execute... | 7.8 | HIGH | — | 0 |
| CVE-2021-23422 This affects the package bikeshed before 3.0.0. This can occur when an untrusted source file containing Inline Tag Command metadata is processed. When an arbitrary OS command is executed, the command ... | 7.8 | HIGH | — | 0 |
| CVE-2021-23423 This affects the package bikeshed before 3.0.0. This can occur when an untrusted source file containing include, include-code or include-raw block is processed. The contents of arbitrary files could b... | 5.5 | MEDIUM | — | 0 |
| CVE-2021-35936 If remote logging is not used, the worker (in the case of CeleryExecutor) or the scheduler (in the case of LocalExecutor) runs a Flask logging server and is listening on a specific port and also binds... | 5.3 | MEDIUM | — | 0 |
| CVE-2021-24362 The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded SVG files added to a gallery do not contain malicious content. As a result, users... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-24363 The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded files are kept inside its uploads folder, allowing high privilege users to put im... | 4.9 | MEDIUM | — | 0 |
| CVE-2021-29056 Cross Site Scripting (XSS) vulnerability exists in Pixelimity 1.0 via the HTTP POST parameter to admin/setting.php. | 4.8 | MEDIUM | — | 0 |
| CVE-2021-24410 The తెలుగు బైబిల్ వచనములు WordPress plugin through 1.0 is lacking any CSRF check when saving its settings and verses, and do not sanitise or escape them when outputting them back in the page. This cou... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-24411 The Social Tape WordPress plugin through 1.0 does not have CSRF checks in place when saving its settings, and do not sanitise or escape them before outputting them back in the page, leading to a store... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-24445 The My Site Audit WordPress plugin through 1.2.4 does not sanitise or escape the Audit Name field when creating an audit, allowing high privilege users to set JavaScript payloads in them, even when he... | 5.5 | MEDIUM | — | 0 |
| CVE-2021-24466 The Verse-O-Matic WordPress plugin through 4.1.1 does not have any CSRF checks in place, allowing attackers to make logged in administrators do unwanted actions, such as add/edit/delete arbitrary vers... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-24471 The YouTube Embed WordPress plugin before 5.2.2 does not validate, escape or sanitise some of its shortcode attributes, leading to Stored XSS issues by 1. using w, h, controls, cc_lang, color, languag... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24512 The Video Posts Webcam Recorder WordPress plugin before 3.2.4 has an authenticated reflected cross site scripting (XSS) vulnerability in one of the administrative functions for handling deletion of vi... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24518 The WPFront Notification Bar WordPress plugin before 2.0.0.07176 does not sanitise or escape its Custom CSS setting, allowing high privilege users such as admin to set XSS payload in it even when the ... | 4.8 | MEDIUM | — | 0 |
| CVE-2021-24519 The VikRentCar Car Rental Management System WordPress plugin before 1.1.10 does not sanitise the 'Text Next to Icon' field when adding or editing a Characteristic, allowing high privilege users such a... | 4.8 | MEDIUM | — | 0 |
| CVE-2021-24526 The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder WordPress plugin before 1.13.60 does not escape its Form Title before outputting it in an attribute when editing a form in th... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24527 The User Registration & User Profile – Profile Builder WordPress plugin before 3.4.9 has a bug allowing any user to reset the password of the admin of the blog, and gain unauthorised access, due to a ... | 9.8 | CRITICAL | — | 0 |
| CVE-2021-24534 The PhoneTrack Meu Site Manager WordPress plugin through 0.1 does not sanitise or escape its "php_id" setting before outputting it back in an attribute in the page, leading to a stored Cross-Site Scri... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24535 The Light Messages WordPress plugin through 1.0 is lacking CSRF check when updating it's settings, and is not sanitising its Message Content in them (even with the unfiltered_html disallowed). As a re... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-24536 The Custom Login Redirect WordPress plugin through 1.0.0 does not have CSRF check in place when saving its settings, and do not sanitise or escape user input before outputting them back in the page, l... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-24538 The Current Book WordPress plugin through 1.0.1 does not sanitize user input when an authenticated user adds Author or Book Title, then does not escape these values when outputting to the browser lead... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-38755 Unauthenticated doctor entry deletion in Hospital Management System in admin-panel1.php. | 5.3 | MEDIUM | — | 0 |
| CVE-2021-24540 The Wonder Video Embed WordPress plugin before 1.8 does not escape parameters of its wonderplugin_video shortcode, which could allow users with a role as low as Contributor to perform Stored XSS attac... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24541 The Wonder PDF Embed WordPress plugin before 1.7 does not escape parameters of its wonderplugin_pdf shortcode, which could allow users with a role as low as Contributor to perform Stored XSS attacks. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-24548 The Mimetic Books WordPress plugin through 0.2.13 was vulnerable to Authenticated Stored Cross-Site Scripting (XSS) in the "Default Publisher ID" field on the plugin's settings page. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-38607 Crocoblock JetEngine before 2.6.1 allows XSS by remote authenticated users via a custom form input. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-38751 A HTTP Host header attack exists in ExponentCMS 2.6 and below in /exponent_constants.php. A modified HTTP header can change links on the webpage to an arbitrary value, leading to a possible attack vec... | 4.3 | MEDIUM | — | 0 |
| CVE-2021-38752 A cross-site scripting (XSS) vulnerability in Online Catering Reservation System using PHP on Sourcecodester allows an attacker to arbitrarily inject code in the search bar. | 5.4 | MEDIUM | — | 0 |
| CVE-2021-38753 An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app. | 9.8 | CRITICAL | — | 0 |
| CVE-2021-38754 SQL Injection vulnerability in Hospital Management System due to lack of input validation in messearch.php. | 9.8 | CRITICAL | — | 0 |
| CVE-2021-38757 Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through contact.php. | 6.1 | MEDIUM | — | 0 |
| CVE-2021-33699 Task Hijacking is a vulnerability that affects the applications running on Android devices due to a misconfiguration in their AndroidManifest.xml with their Task Control features. This allows an unaut... | 6.5 | MEDIUM | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.