CVE-2021-35599

Vulnerability in the Zero Downtime DB Migration to Cloud component of Oracle Database Server. The supported version that is affected is 21c. Easily exploitable vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where Zero Downtime DB...

CVE-2018-18601

The TKsetdeviceModelreqhandle function in the cloud communication component in Guardzilla GZ621W devices with firmware 0.5.1.4 has a Buffer Overflow...

PT-2018-14538 · Guardzilla · Guardzilla Gz621W

Name of the Vulnerable Software and Affected Versions: Guardzilla GZ621W version 0.5.1.4 Description: The issue is related to a Buffer Overflow in the TK set deviceModel req handle function, which is part of the cloud communication component. Recommendations: For Guardzilla GZ621W version 0.5.1.4...

Nagios XI 2012R1.5b XSS / Command Execution / SQL Injection / CSRF

Nagios XI version 2012R1.5b suffers from cross site request forgery, cross site scripting, remote command injection, and remote SQL injection vulnerabilities. Reflected XSS: Alert Cloud Component: Example URL: http://nagiosxiserver/nagiosxi/includes/components/alertcloud/index.php?width=800";...