16916 matches found
CVE-2018-14383
The Transition Technologies "The Scheduler" app 5.1.3 for Jira allows XXE due to a weakly configured/parameterized XML parser. It was fixed in the versions 5.2.1 and 3.3.7...
CVE-2018-6631
In Micropoint proactive defense software 2.0.20266.0146, the driver file mp110009.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000170...
CVE-2009-4837
Multiple cross-site scripting XSS vulnerabilities in Basic Analysis and Security Engine BASE before 1.4.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 sig1 parameter to base/baseqrymain.php, or the time01 parameter to 2 base/basestatalerts.php or 3...
CVE-2009-4915
Unspecified vulnerability on Cisco Adaptive Security Appliances ASA 5580 series devices with software before 8.12 allows remote attackers to cause a denial of service device reload via unknown network traffic, as demonstrated by a "connection stress test," aka Bug ID CSCsq68451...
CVE-2021-33622
Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value...
CVE-2021-28492
Unisys Stealth core 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.0.037.0 stores passwords in a recoverable format...
CVE-2021-22721
A CWE-200: Information Exposure vulnerability exists in EVlink City EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1, EVlink Parking EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1, and EVlink Smart Wallbox EVB1A all versions prior to R8 V3.4.0.1 that could allow an attacker to get...
CVE-2021-22500
Cross Site Request Forgery vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. The vulnerability could be exploited by attacker to trick the users into executing actions of the attacker's choosing...
CVE-2021-22643
Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are vulnerable to an out-of-bounds read while processing project files, which may allow an attacker to execute...
CVE-2025-23093
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager through V10 R1.54.1 and V11 through R0.22.1 could allow an authenticated attacker to conduct a privilege escalation attack due to the execution of a resource with unnecessary privileges. A successful exploit could allow an...
CVE-2022-23024
On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all versions of 13.1.x, when the IPsec application layer gateway ALG logging profile is configured on an IPsec ALG virtual server, undisclosed IPsec traffic can cause the Traffic Management Microkernel T...
CVE-2022-33011
Known v1.3.1+2020120201 was discovered to allow attackers to perform an account takeover via a host header injection attack...
CVE-2022-31342
Online Car Wash Booking System v1.0 is vulnerable to Delete any file via /ocwbs/classes/Master.php?f=deleteimg...
CVE-2022-26654
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP...
CVE-2017-18682
An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, M6.0, and N7.0 software. Because of incorrect exception handling and an unprotected intent, AudioService can cause a system crash, The Samsung IDs are SVE-2017-8114, SVE-2017-8116, and SVE-2017-8117 March 2017...
CVE-2017-18693
An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, M6.0, and N7.0 software. There is a buffer overflow in the fps sysfs entry. The Samsung ID is SVE-2016-7510 January 2017...
CVE-2017-18688
An issue was discovered on Samsung mobile devices with L5.1, M6.0, and N7.0 software. There is an information disclosure of memory locations outside a buffer via /dev/dsmctrldev. The Samsung ID is SVE-2016-7340 January 2017...
CVE-2019-20618
An issue was discovered on Samsung mobile devices with P9.0 software. The Pin Window feature allows unauthenticated unpinning of an app. The Samsung ID is SVE-2018-13765 March 2019...
CVE-2019-20483
An issue was discovered in Viki Vera 4.9.1.26180. An attacker could set a user's last name to an XSS Payload, and read another user's cookie and use that to login to the application...
CVE-2019-20577
An issue was discovered on Samsung mobile devices with P9.0 Exynos chipsets software. The MALI GPU Driver allows a kernel panic. The Samsung ID is SVE-2019-14372 August 2019...