9568 matches found
Download Monitor < 4.4.5 - SQL Injection
The Download Monitor plugin for WordPress is vulnerable to SQL injection via the 'orderby' parameter in versions before 4.4.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attacker...
Oracle WebLogic Server - Remote Code Execution
Oracle WebLogic Server 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0 contains a remote code execution caused by unauthenticated access via T3, IIOP, letting attackers take over the server, exploit requires network access. id: CVE-2021-2135 info: name: Oracle WebLogic Server - Remote Code Execution author:...
Images to WebP < 1.9 - Authenticated Local File Inclusion
The Images to WebP WordPress plugin before version 1.9 did not validate or sanitize the tab parameter before using it in the include function. id: CVE-2021-24644 info: name: Images to WebP 1.9 - Authenticated Local File Inclusion author: Sourabh-Sahu severity: high description: | The Images to We...
Kramer VIAware - Privilege Escalation and Remote Code Execution
Kramer VIAware, all tested versions, allow privilege escalation and remote code execution due to misconfigured sudo permissions. Attackers can execute arbitrary system commands remotely if the web interface is accessible, due to vulnerabilities in the handling of privileged operations through...
ROOT-APP-MAVEN-CVE-2021-25122 CVE-2021-25122 in io.root.org.apache.tomcat.embed:tomcat-embed-core - Patched by Root
Root has patched CVE-2021-25122 in the io.root.org.apache.tomcat.embed:tomcat-embed-core package for Root:Maven. Multiple fixed versions available...
CVE-2021-33623 vulnerabilities
Vulnerabilities for packages: py3-captum...
CVE-2021-3803 vulnerabilities
Vulnerabilities for packages: py3-captum...
CVE-2021-44730
creationtimestamp| type| source ---|---|--- 2026-07-08 11:11:38+00:00| seen| https://gist.github.com/julian-klode/eb0381c1cb2cec713ba78d7462ad6167...
CVE-2021-25150
creationtimestamp| type| source ---|---|--- 2026-07-07 20:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq3frplwgy22...
CVE-2021-21633
creationtimestamp| type| source ---|---|--- 2026-07-07 17:37:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq35firqjh25...
CVE-2021-21629
creationtimestamp| type| source ---|---|--- 2026-07-07 17:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq33puhovr22...
CVE-2021-28830
creationtimestamp| type| source ---|---|--- 2026-07-07 15:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq2uzbm53s2i...
CVE-2021-20173
creationtimestamp| type| source ---|---|--- 2026-07-07 12:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq2kxfyzo62o...
ROOT-APP-NPM-CVE-2021-23358 CVE-2021-23358 in @rootio/underscore - Patched by Root
Root has patched CVE-2021-23358 in the @rootio/underscore package for Root:npm. Multiple fixed versions available...
Zoho ManageEngine ServiceDesk Plus - Authentication Bypass
Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication. id: CVE-2021-37415 info: name: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass author: daffainfo,jjcho severity: critical description: | Zoho...
ROOT-OS-DEBIAN-13-CVE-2021-26934 CVE-2021-26934 in rootio-linux - Patched by Root
Root has patched CVE-2021-26934 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2021-3714 CVE-2021-3714 in rootio-linux - Patched by Root
Root has patched CVE-2021-3714 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2021-3864 CVE-2021-3864 in rootio-linux - Patched by Root
Root has patched CVE-2021-3864 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2021-3847 CVE-2021-3847 in rootio-linux - Patched by Root
Root has patched CVE-2021-3847 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
CVE-2021-45024
creationtimestamp| type| source ---|---|--- 2026-07-06 02:56:19+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpx3pmh2dn2d...