5 matches found
CVE-2024-47007
Ivanti Avalanche before version 6.4.5 is affected by CVE-2024-47007 due to a NULL pointer dereference in WLAvalancheService.exe, which can be exploited remotely by an unauthenticated attacker to cause a denial of service. The vulnerability is fixed in Avalanche 6.4.5; upgrade to 6.4.5 to remediat...
GHSA-GCGW-Q47M-PRVJ Duplicate Advisory: Improper JWT Signature Validation in SAP Security Services Library
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-59c9-pxq8-9c73. This link is maintained to preserve external references. Original Description SAP BTP Security Services Integration Library Java cloud-security-services-integration-library - versions below 2.17....
CVE-2021-38108
Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of this issu...
Exploit for Server-Side Request Forgery in Microsoft
CVE-2021-26855 CVE-2021-26855, also known as Proxylogon, is a...
WordPress 4.8.x < 4.8.2 Multiple Vulnerabilities
According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A flaw in $wpdb-prepare can create unsafe queries leading to potential SQL injection flaws with plugins and themes. - Multiple cross-site scripting XSS vulnerabilities...