Lucene search
K

597 matches found

OSV
OSV
added 2021/11/26 5:15 p.m.5 views

CVE-2021-36843

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered in WordPress Floating Social Media Icon plugin versions = 4.3.5 Social Media Configuration form. Requires high role user like admin...

4.8CVSS5.8AI score0.00555EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/11/15 12:0 a.m.5 views

PT-2021-6990 · Oracle +1 · Oracle Mysql Cluster +1

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Cluster versions 8.0.28 and prior Description: The issue is related to insufficient input validation in the Oracle MySQL Cluster component. It may allow an attacker to gain full control over the application using various network...

10CVSS6.7AI score0.87816EPSS
Exploits22References428
OSV
OSV
added 2021/08/30 6:15 p.m.5 views

CVE-2021-22022

The vRealize Operations Manager API 8.x prior to 8.5 contains an arbitrary file read vulnerability. A malicious actor with administrative access to vRealize Operations Manager API can read any arbitrary file on server leading to information disclosure...

4.9CVSS5.9AI score0.01134EPSS
Exploits0References1
OSV
OSV
added 2021/08/24 7:15 p.m.3 views

CVE-2021-28633

Adobe Creative Cloud Desktop Application installer version 2.4 and earlier is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires...

6.1CVSS6.8AI score0.00487EPSS
Exploits0References1
OSV
OSV
added 2021/07/21 3:15 p.m.10 views

AZL-6696 CVE-2021-2354 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Federated. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS6.5AI score0.02831EPSS
Exploits0References1
OSV
OSV
added 2021/07/21 3:15 p.m.5 views

UBUNTU-CVE-2021-2402

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Locking. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS6.6AI score0.02088EPSS
Exploits0References4
OSV
OSV
added 2021/07/21 3:15 p.m.3 views

UBUNTU-CVE-2021-2372

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.4CVSS6.6AI score0.02956EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/06/11 12:0 a.m.4 views

PT-2021-3504

Name of the Vulnerable Software and Affected Versions OpenPLC ScadaBR versions through 0.9.1 on Linux OpenPLC ScadaBR versions through 1.12.4 on Windows Description The ScadaBR system, designed for data collection and process automation control, is affected by multiple issues. One issue involves...

8.8CVSS7.3AI score0.4805EPSS
Exploits9References28
OSV
OSV
added 2021/06/07 11:15 a.m.6 views

CVE-2021-24344

The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues...

4.8CVSS5.8AI score0.00542EPSS
Exploits1References1
OSV
OSV
added 2021/04/29 5:15 p.m.7 views

CVE-2021-31428

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...

8.2CVSS7.6AI score
Exploits0References2
OSV
OSV
added 2021/04/22 10:15 p.m.4 views

UBUNTU-CVE-2021-2308

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Information Schema. Supported versions that are affected are 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

2.7CVSS7.2AI score0.00955EPSS
Exploits0References4
OSV
OSV
added 2021/02/26 2:15 p.m.7 views

CVE-2020-26200

A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk KRD and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security KES...

6.8CVSS6.9AI score0.00231EPSS
Exploits0References2
OSV
OSV
added 2020/10/21 3:15 p.m.4 views

CVE-2020-14742

Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows high privileged attacker having SYSDBA level account privilege with network access via Oracle Net to...

2.7CVSS6.7AI score0.00858EPSS
Exploits0References1
OSV
OSV
added 2020/10/16 11:15 p.m.5 views

CVE-2020-16941

An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages. An attacker who took advantage of this information disclosure could view the folder path of scripts loaded on the page. To take advantage of...

4.1CVSS5.8AI score0.00898EPSS
Exploits0References1
OSV
OSV
added 2020/10/13 4:15 p.m.4 views

CVE-2020-15797

A vulnerability has been identified in DCA Vantage Analyzer All versions V4.5 are affected by CVE-2020-7590. In addition, serial numbers 40000 running software V4.4.0 are also affected by CVE-2020-15797. Improper Access Control could allow an unauthenticated attacker to escape from the restricted...

6.8CVSS6.6AI score0.00384EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/09/15 6:30 p.m.7 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

6.5CVSS7.3AI score0.02055EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/09/15 6:30 p.m.6 views

mysql: Server: Logging unspecified vulnerability (CPU Apr 2020)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Logging. Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS7.3AI score0.02001EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/09/15 6:30 p.m.5 views

mysql: Server: Information Schema unspecified vulnerability (CPU Jul 2020)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Information Schema. Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple...

4.3CVSS7.2AI score0.01919EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/09/15 6:30 p.m.6 views

mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS7.3AI score0.02592EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/09/14 12:58 p.m.4 views

mysql: Server: DDL unspecified vulnerability (CPU Oct 2019)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

4.9CVSS7.3AI score0.02555EPSS
Exploits0References5
Rows per page
Query Builder