Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•7 views

Millken Doyocms SQL Injection (CVE-2021-26739)

An SQL injection vulnerability exists in Millken Doyocms. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.01627EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•17 views

Fortinet FortiOS Remote Code Execution (CVE-2016-6909)

A remote code execution vulnerability exists in Fortinet FortiOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.5AI score0.49856EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•7 views

Millken Doyocms Arbitrary File Upload (CVE-2021-26740)

An arbitrary file upload vulnerability exists in Millken Doyocms. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.4AI score0.01552EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•7 views

IPack SCADA Automation Software SQL Injection (CVE-2021-3958)

An SQL injection vulnerability exists in IPack SCADA Automation. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.14501EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•15 views

WordPress Workreap Theme Remote Code Execution (CVE-2021-24499)

A remote code execution vulnerability exists in WordPress Workreap theme. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.5AI score0.60113EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•9 views

NET-SNMP Memory Corruption (CVE-2018-1000116)

A memory corruption vulnerability exists in NET-SNMP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.5CVSS9.3AI score0.06509EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•10 views

Myucms Remote Code Execution (CVE-2020-21652)

A remote code execution vulnerability exists in Myucms. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.6AI score0.0273EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•11 views

CMSUno Remote Code Execution (CVE-2021-40889)

A remote code execution vulnerability exists in CMSUno. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.6AI score0.01788EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•5 views

PHP Event Calendar SQL Injection (CVE-2021-42077)

An SQL injection vulnerability exists in PHP Event Calendar. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

10CVSS10AI score0.02433EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•6 views

Gridpro Request Management Remote Code Execution (CVE-2021-40371)

A remote code execution vulnerability exists in Gridpro Request Management. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.6AI score0.06886EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•26 views

Proftpd Project Remote Code Execution (CVE-2020-9273)

A Remote Code Execution vulnerability exists in the Proftpd Project. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS9AI score0.10985EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/28 12:0 a.m.•9 views

GitList Remote Code Execution (CVE-2018-1000533)

A remote code execution vulnerability exists in GitList. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.6AI score0.72967EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/11/25 12:0 a.m.•4 views

BillQuick Website SQL injection (CVE-2021-42258)

An SQL injection vulnerability exists in BillQuick Website. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

6.8CVSS9.9AI score0.73269EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2021/11/24 12:0 a.m.•3 views

WordPress Pie Register Plugin SQL Injection (CVE-2021-24731)

An SQL injection vulnerability exists in WordPress Pie Register plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.07542EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/11/24 12:0 a.m.•15 views

WordPress Asgaros Forum Plugin SQL Injection (CVE-2021-24827)

An SQL injection vulnerability exists in WordPress Asgaros Forum plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.13285EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2021/11/24 12:0 a.m.•7 views

OpenSNS SQL Injection (CVE-2020-21725; CVE-2020-21726)

An SQL injection vulnerability exists in OpenSNS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS9.9AI score0.01239EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/11/24 12:0 a.m.•3 views

Feehi CMS Remote Code Execution (CVE-2020-21322)

A remote code execution vulnerability exists in Feehi CMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.5AI score0.01724EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/24 12:0 a.m.•30 views

Edgecore ECS2020 Command Injection (CVE-2019-6288)

A command injection vulnerability exists in Edgecore ECS2020. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.5CVSS9.7AI score0.02956EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/23 12:0 a.m.•40 views

Microsoft Exchange Server Remote Code Execution (CVE-2021-42321)

A remote code execution vulnerability exists in Microsoft Exchange Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS8.8AI score0.90388EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2021/11/21 12:0 a.m.•3 views

FatPipe Remote Code Execution

A remote code execution vulnerability exists in FatPipe. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

8.2AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•9 views

Metinfo SQL Injection (CVE-2020-21127)

An SQL injection vulnerability exists in Metinfo. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.01575EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•4 views

PTCL Modem HG150-Ub Authentication Bypass (CVE-2021-35296)

A vulnerability exists in PTCL HG150-Ub. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

7.5CVSS8.7AI score0.01928EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•8 views

Draytek VigorConnect Arbitrary File Upload (CVE-2021-20125)

An arbitrary file upload vulnerability exists in Draytek VigorConnect. Successful exploitation of this vulnerability could allow an unauthenticated attacker to upload arbitrary files to the affected system...

10CVSS9.1AI score0.03823EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•11 views

Draytek VigorConnect Cross-Site Request Forgery (CVE-2021-20126)

A cross-site request forgery vulnerability exists in Draytek VigorConnect. A remote attacker can exploit this vulnerability by enticing a target authenticated user to visit a specially crafted page...

6.8CVSS8.2AI score0.00612EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•12 views

D-Link DIR-823G Command Injection (CVE-2020-25367; CVE-2020-25368)

A command injection vulnerability exists in D-Link DIR-823G devices. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.5CVSS9.7AI score0.12562EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•7 views

Froxlor SQL Injection (CVE-2021-42325)

An SQL injection vulnerability exists in Froxlor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS9.9AI score0.11812EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•15 views

Stivasoft Fundraising Script SQL Injection (CVE-2020-22223; CVE-2020-22225; CVE-2020-22226)

An SQL injection vulnerability exists in Stivasoft Fundraising Script. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS9.9AI score0.01096EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•13 views

OpenSIS SQL Injection (CVE-2021-40618; CVE-2021-40543)

An SQL injection vulnerability exists in OpenSIS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS9.9AI score0.01374EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/11/17 12:0 a.m.•6 views

Sourcecodester E-Negosyo System SQL Injection (CVE-2021-41674)

An SQL injection vulnerability exists in Sourcecodester E-Negosyo System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.01684EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/16 12:0 a.m.•10 views

SaltStack Salt API SSH Client Command Injection (CVE-2020-16846)

A remote code execution vulnerability exists in SaltStack Salt API SSH Client. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.5AI score0.99585EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2021/11/16 12:0 a.m.•15 views

Sophos XG Firewall SQL Injection (CVE-2020-12271)

An SQL injection vulnerability exists in Sophos XG Firewall. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS9.6AI score0.43062EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/16 12:0 a.m.•6 views

Sumavision Enhanced Multimedia Router Cross Site Request Forgery (CVE-2020-10181)

A cross site request forgery vulnerability exists in Sumavision Enhanced Multimedia Router. Successful exploitation of this vulnerability can result in the execution of arbitrary code on the affected system...

7.5CVSS9.3AI score0.14209EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2021/11/16 12:0 a.m.•14 views

PlaySMS index.php Remote Code Execution (CVE-2020-8644)

A remote code execution vulnerability exists in PlaySMS. Successful exploitation could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.5AI score0.86689EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2021/11/15 12:0 a.m.•12 views

Projectsend Directory Traversal (CVE-2021-40887)

A directory traversal vulnerability exists in Projectsend. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

10CVSS8.8AI score0.02294EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/15 12:0 a.m.•7 views

Wuzhi CMS SQL Injection (CVE-2020-20122)

An SQL injection vulnerability exists in Wuzhi CMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.01239EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/14 12:0 a.m.•11 views

Zoho ManageEngine ADSelfService Plus Authentication Bypass (CVE-2021-40539)

An authentication bypass vulnerability exists in Zoho ManageEngine ADSelfService Plus. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...

7.5CVSS9.2AI score0.9896EPSS
Exploits8
Check Point Advisories
Check Point Advisories
•added 2021/11/14 12:0 a.m.•20 views

GitLab CE Remote Code Execution (CVE-2021-22205)

A remote code execution vulnerability exists in GitLab CE. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.4AI score0.99731EPSS
Exploits30
Check Point Advisories
Check Point Advisories
•added 2021/11/14 12:0 a.m.•15 views

Mercury Router Command Injection (CVE-2020-22724)

A command injection vulnerability exists in Mercury Router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS9.7AI score0.05388EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/14 12:0 a.m.•10 views

TOTOLINK Technology Router Authentication Bypass (CVE-2021-35327)

An authentication bypass vulnerability exists in TOTOLINK Technology Router. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...

7.5CVSS9.3AI score0.01384EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/14 12:0 a.m.•6 views

Apache Tomcat Denial of Service (CVE-2020-11996)

A denial of service vulnerability exists in Apache Tomcat. A remote, unauthenticated attacker could exploit this vulnerability by sending a specially crafted HTTP2 packet to a vulnerable server. Successful exploitation of this vulnerability could result in denial of service conditions...

5CVSS7.3AI score0.26699EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/11/11 12:0 a.m.•4 views

Draytek VigorConnect Directory Traversal (CVE-2021-20123)

A directory traversal vulnerability exists in Draytek VigorConnect. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

7.8CVSS7.2AI score0.74279EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/11 12:0 a.m.•11 views

Wuzhi CMS SQL Injection (CVE-2021-40674)

An SQL injection vulnerability exists in Wuzhi CMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.0108EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/09 12:0 a.m.•13 views

Microsoft Excel Security Feature Bypass (CVE-2021-42292)

A security bypass vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...

6.8CVSS7.4AI score0.31949EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/09 12:0 a.m.•12 views

Microsoft Defender Remote Code Execution (CVE-2021-42298)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS8.1AI score0.05482EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/11/09 12:0 a.m.•7 views

Microsoft Remote Desktop Client Remote Code Execution (CVE-2021-38666)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS8.8AI score0.1305EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/11/08 12:0 a.m.•1 views

Filerun Cross Site Scripting

A cross site scripting vulnerability exists in Filerun. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...

6.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/11/07 12:0 a.m.•10 views

FrogCMS SentCMS Remote Code Execution (CVE-2021-26794)

A remote code execution vulnerability exists in FrogCMS SentCMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.5AI score0.01552EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/07 12:0 a.m.•15 views

Draytek VigorConnect Directory Traversal (CVE-2021-20124)

A directory traversal vulnerability exists in Draytek VigorConnect. Successful exploitation of this vulnerability could allow an unauthenticated attacker to access arbitrary files on the affected system...

7.8CVSS7.4AI score0.69248EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/07 12:0 a.m.•13 views

Telus Wi-Fi Hub Command Injection (CVE-2021-20122)

A command injection vulnerability exists in Telus Wi-Fi Hub. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

9CVSS7.7AI score0.06531EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/11/07 12:0 a.m.•13 views

FlatCore CMS Remote Code Execution (CVE-2021-39608)

A remote code execution vulnerability exists in FlatCore CMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS7.5AI score0.45948EPSS
Exploits4
Total number of security vulnerabilities13538