13538 matches found
Apple Multiple Products Out-of-Bounds Read (CVE-2020-3894)
An out of bounds read vulnerability exists in multiple Apple products. Successful exploitation of this vulnerability could allow a remote attacker to access restricted memory...
Apple Multiple Products Remote Code Execution (CVE-2020-9802)
A remote code execution vulnerability exists in multiple Apple products. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Nagios XI Persistent Cross-Site Scripting
A persistent cross-site scripting vulnerability exists in Nagios XI. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
PrestaShop SQL Injection (CVE-2021-3110)
An SQL injection vulnerability exists in PrestaShop. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Nette Command Injection (CVE-2020-15227)
A command injection vulnerability exists in Nette. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
PRTG Network Monitor Remote Code Execution (CVE-2018-9276)
A remote code execution vulnerability exists in PRTG Network Monitor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Belkin Linksys RE6500 Remote Code Execution (CVE-2020-35713)
A remote code execution vulnerability exists in Belkin Linksys RE6500. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Amino Communications EntoneWebEngine Command Injection (CVE-2020-10208)
A command injection vulnerability exists in Amino Communications EntoneWebEngine. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Marvell QConvergeConsole GUI Directory Traversal (CVE-2020-5804)
A directory traversal vulnerability exists in Marvell QConvergeConsole GUI. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...
Laravel Ignition Remote Code Execution (CVE-2021-3129)
A remote code execution vulnerability exists in Laravel Ignition. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
OpenCATS Remote Code Execution (CVE-2021-25294)
A remote code execution vulnerability exists in OpenCATS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle WebLogic Server Remote Code Execution (CVE-2021-2109)
A remote code execution vulnerability exists in Oracle WebLogic Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SonicWall Secure Mobile Access Command Injection
A command injection vulnerability exists in SonicWall Secure Mobile Access devices. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
USVN Remote Code Execution (CVE-2020-17363)
A remote code execution vulnerability exists in USVN. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Zoho ManageEngine Applications Manager SQL Injection
A SQL injection vulnerability exists in the Zoho ManageEngine Applications Manager. The vulnerability is due to improper validation of user-supplied input when processing the request in getAssociateMonitors method...
Nagios XI autodiscovery_component Command Injection (CVE-2020-28648)
A command injection vulnerability exists in Nagios XI. The vulnerability is due to insufficient input validation of the requests submitted to the Auto-Discovery endpoint...
EVOLUCARE ECS Imaging SQL Injection (CVE-2021-3118)
An SQL injection vulnerability exists in EVOLUCARE ECS Imaging. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Grandstream Multiple Products Remote Code Execution (CVE-2019-10659)
A remote code execution vulnerability exists in multiple Grandstream products. Successful exploitation of this vulnerability could allow a remote authenticated attacker to execute arbitrary code on the affected system...
D-Link DNS-320 ShareCenter Command Injection (CVE-2019-16057)
A command injection vulnerability exists in D-Link DNS-320 ShareCenter. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to execute arbitrary commands on the affected system...
VIVOTEK Network Camera Directory Traversal (CVE-2017-9829)
A directory traversal vulnerability exists in VIVOTEK Network Cameras. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...
Grandstream Multiple Products Authentication Bypass (CVE-2019-10655)
An authentication bypass vulnerability exists in multiple Grandstream products. Successful exploitation of this vulnerability could allow a remote attacker to gain unauthorized access to the affected system...
AVM Fritz!Box Command Injection (CVE-2014-9727)
A remote command injection vulnerability exists in AVM Fritz!Box. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Nagios XI Remote Code Execution (CVE-2020-35578)
A remote code execution vulnerability exists in Nagios XI. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress WP-Paginate Plugin Cross Site Scripting
A cross site scripting vulnerability exists in WordPress WP-Paginate Plugin. Successful exploitation of this vulnerability could allow attackers to execute arbitrary code on the affected system...
ThinkCMF ThinkCMFX Remote Code Execution
A remote code execution vulnerability exists in ThinkCMF ThinkCMFX. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Webmin Command Injection (CVE-2020-35606; CVE-2022-36446)
A command injection vulnerability exists in Webmin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Genivia gSOAP Buffer Overflow (CVE-2017-9765)
A buffer overflow vulnerability exists in Genivia Gsoap. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Antenna House DMC HTMLFilter Memory Corruption (CVE-2017-2799)
A remote code execution vulnerability exists in Marklogic. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Joomla! mod_random_image Cross-Site Scripting (CVE-2020-15696)
A stored cross-site scripting vulnerability exists in Joomla! CMS Core. The vulnerability is due to improper validation of the link parameter in the modrandomimage module...
Advantech iView exportTaskMgrReport Directory Traversal (CVE-2020-16245)
A directory traversal vulnerability exists in Advantech iView. The vulnerability is due to improper validation of user-supplied path before using in exportTaskMgrReport method...
TerraMaster TOS Command Injection (CVE-2020-28188)
A command injection vulnerability exists in TerraMaster TOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
NoneCMS ThinkPHP Framework Remote Code Execution
A remote code execution vulnerability exists in NoneCMS ThinkPHP Framework. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Micro Focus ArcSight Logger Remote Code Execution (CVE-2020-11851)
A remote code execution vulnerability exists in Micro Focus ArcSight Logger. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Information Disclosure (CVE-2019-1158)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
FasterXML jackson-databind Insecure Deserialization (CVE-2020-36179)
An Insecure Deserialization vulnerability exists in FasterXML jackson-databind. A remote attacker can exploit this vulnerability by sending a specially crafted serialized object. Successful exploitation can result in arbitrary code execution in the affected system...
Apache Flink Directory Traversal (CVE-2020-17518; CVE-2020-17519)
A directory traversal vulnerability exists in Apache Flink. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...
Zend Framework Remote Code Execution (CVE-2021-3007)
A remote code execution vulnerability exists in Zend Framework. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
MantisBT SQL Injection (CVE-2020-28413)
An SQL injection vulnerability exists in MantisBT. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Microsoft SharePoint Server Remote Code Execution (CVE-2021-1707)
A remote code execution vulnerability exists in Microsoft Microsoft SharePoint. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Defender Remote Code Execution (CVE-2021-1647)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Win32k Elevation of Privilege (CVE-2021-1709)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
URVE Remote Code Execution (CVE-2020-29552)
A remote code execution vulnerability exists in URVE. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Nessus Scanners Scanning Attempt
Nessus is a vulnerability scanning product. Remote attackers can use Nessus to detect vulnerabilities on a target server...
KLog Server Command Injection (CVE-2020-35729)
A command injection vulnerability exists in KLog Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
WebAssembly Binaryen Denial Of Service (CVE-2019-7662)
A denial of service vulnerability exists in WebAssembly Binaryen. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...
Online Bus Booking System SQL Injection (CVE-2020-25889)
An SQL injection vulnerability exists in Online Bus Booking System Project . Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
WordPress WP-PostRatings Plugin Stored Cross Site Scripting
A stored cross site scripting vulnerability exists in WordPress WP-PostRatings Plugin. Successful exploitation of this vulnerability could allow attackers to execute arbitrary code on the affected system...
Paginator Elixir Remote Code Execution (CVE-2020-15150)
A remote code execution vulnerability exists in Paginator Elixir . Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Arbitrary Code Injection Over HTTP Traffic (CVE-2020-21176; CVE-2020-25042; CVE-2020-26248; CVE-2020-26712; CVE-2020-28994; CVE-2020-29284; CVE-2020-6308; CVE-2021-25912)
Arbitrary Code Injections Over HTTP Traffic...
PHPGurukul Admin Panel Stored Cross Site Scripting (CVE-2020-24723)
A stored cross-site scripting vulnerability exists in PHPGurukul Admin Panel. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...