CVE-2020-36851

creationtimestamp| type| source ---|---|--- 2025-09-25 23:23:52+00:00| published-proof-of-concept| https://github.com/SocketDev/security-research/security/advisories/GHSA-9wmg-93pw-fc3g...

@extplug/cors-proxy (>=1.0.0 <=1.0.1), @ir-engine/server-core (=1.6.0) +34 more potentially affected by CVE-2020-36851 via cors-anywhere (>=0.2.5 <=0.4.4)

cors-anywhere NPM version =0.2.5, =1.0.0, =0.0.7, =0.1.0, =0.13.0, =0.0.19, =0.5.0, =0.5.0, =1.0.0, =1.2.0, =1.1.0, =4.0.0, =5.0.0 and more Source cves: CVE-2020-36851 Source advisory: OSV:GHSA-R3JV-XFGX-GJ24...

@extplug/cors-proxy (>=1.0.0 <=1.0.1), @ir-engine/server-core (=1.6.0) +34 more potentially affected by CVE-2020-36851 via cors-anywhere (>=0.2.5 <=0.4.4)

cors-anywhere NPM version =0.2.5, =1.0.0, =0.0.7, =0.1.0, =0.13.0, =0.0.19, =0.5.0, =0.5.0, =1.0.0, =1.2.0, =1.1.0, =4.0.0, =5.0.0 and more Source cves: CVE-2020-36851 Source advisory: SNYK:JS-CORSANYWHERE-13109647...

CVE-2022-36851

Improper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on a certain state of an unlocked device...

CVE-2023-36851

A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to webauthoperation.php that doesn't require authentication, an...

CVE-2023-36851 Junos OS: SRX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload and download arbitrary files

A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to webauthoperation.php that doesn't require authentication, an...

CVE-2023-36851

CVE-2023-36851 affects Juniper Junos OS on SRX Series with a Missing Authentication for Critical Function flaw in J-Web. A unauthenticated, network-based attacker can upload/download arbitrary files via the web interface (webauth_operation.php), potentially compromising file-system integrity or c...

CVE-2022-36851

Improper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on a certain state of an unlocked device...

CVE-2022-36851

The CVE-2022-36851 issue affects Samsung Pass on Samsung devices, with versions prior to 4.0.03.1 vulnerable to improper access control. The vulnerability could allow a physical attacker to access data when the device is in a certain state of being unlocked. Remediation is available: upgrade Sams...

CVE-2021-36851

Authenticated editor or higher user role Cross-Site Scripting XSS vulnerability in Web-Settler Testimonial Slider – Free Testimonials Slider Plugin WordPress plugin via parameters mpsppostsbgcolor, mpsppostsdescriptioncolor, mpspslidenavbuttoncolor...

CVE-2021-36851 WordPress Testimonial Slider plugin <= 3.5.8.3 - Cross-Site Scripting (XSS) vulnerability

Authenticated editor or higher user role Cross-Site Scripting XSS vulnerability in Web-Settler Testimonial Slider – Free Testimonials Slider Plugin WordPress plugin via parameters mpsppostsbgcolor, mpsppostsdescriptioncolor, mpspslidenavbuttoncolor...

CVE-2021-36851

The CVE-2021-36851 entry affects the WordPress plugin “Testimonial Slider” (Free Testimonials Slider Plugin) and is due to insufficient sanitization of color-related parameters (mpsp_posts_bg_color, mpsp_posts_description_color, mpsp_slide_nav_button_color). This authenticated-XSS vulnerability r...

Mozilla Firefox <= 3.5.3 Floating Point Conversion Heap Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36851/info Mozilla Firefox is prone to a heap-based buffer-overflow vulnerability. An attacker can exploit this issue by tricking a victim into visiting a malicious webpage to execute arbitrary code and to cause...

CVE-2012-0869

creationtimestamp| type| source ---|---|--- 2012-02-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36851...

Mozilla Firefox 3.5.3 - Floating Point Conversion Heap Overflow

source: https://www.securityfocus.com/bid/36851/info Mozilla Firefox is prone to a heap-based buffer-overflow vulnerability. An attacker can exploit this issue by tricking a victim into visiting a malicious webpage to execute arbitrary code and to cause denial-of-service conditions. NOTE: This...