Lucene search
K

CVE-2021-23390 Arbitrary Code Execution

🗓️ 12 Jul 2021 15:15:12Reported by snykType 
cvelist
 cvelist
🔗 www.cve.org👁 12 Views

Vulnerability in total4 package allows Arbitrary Code Execution via U.set() and U.get() function

Related
Affected
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2021-23390
12 Jul 202115:10
attackerkb
CNNVD
total.js代码注入漏洞
12 Jul 202100:00
cnnvd
CVE
CVE-2021-23390
12 Jul 202115:15
cve
EUVD
EUVD-2021-2519
7 Oct 202500:30
euvd
Github Security Blog
Code Injection in total4
10 Dec 202117:26
github
NVD
CVE-2021-23390
12 Jul 202116:15
nvd
OSV
GHSA-G7MQ-RFJ2-25WQ Code Injection in total4
10 Dec 202117:26
osv
Prion
Code injection
12 Jul 202116:15
prion
Snyk
Arbitrary Code Execution
24 Mar 202118:16
snyk
[
  {
    "product": "total4",
    "vendor": "n/a",
    "versions": [
      {
        "lessThan": "0.0.43",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

12 Jul 2021 15:15Current
9.9High risk
Vulners AI Score9.9
CVSS 3.19.8
EPSS0.0293
12