13538 matches found
Wordpress WPForms Plugin Cross-Site Scripting (CVE-2020-10385)
A cross-site scripting vulnerability exists in Wordpress WPForms plugin. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Citrix XenMobile XML External Entity Injection (CVE-2018-10653)
An XML External Entity Injection vulnerability exists in Citrix XenMobile Server. Successful exploitation of this vulnerability could result in unauthorized access to critical data in Citrix XenMobile Server...
Adobe Acrobat and Reader Use after free (APSB20-13: CVE-2020-3802)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-bounds write (APSB20-13: CVE-2020-3795)
An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use after free (APSB20-13: CVE-2020-3792)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Insecure Library Loading (APSB20-13: CVE-2020-3803)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
CODESYS Web Server Buffer Overflow (CVE-2020-10245)
A buffer overflow vulnerability exists in CODESYS web server. Successful exploitation of this vulnerability could result in a denial of service condition...
Adobe Acrobat and Reader Buffer overflow (APSB20-13: CVE-2020-3807)
A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Adobe Acrobat and Reader Use after free (APSB20-13: CVE-2020-3801)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Stack-based buffer overflow (APSB20-13: CVE-2020-3799)
A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Adobe Acrobat and Reader Memory address leak (APSB20-13: CVE-2020-3800)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-13: CVE-2020-3806)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
PHP Garbage Collector Command Injection
A command injection vulnerability exists in PHP Garbage Collector. Successful exploitation of this vulnerability could result in arbitrary code execution on the affected system...
Adobe Acrobat and Reader Memory corruption (APSB20-13: CVE-2020-3797)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use after free (APSB20-13: CVE-2020-3793)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Apache Tomcat Remote Code Execution (CVE-2016-8735)
A remote code execution vulnerability exists in Apache Tomcat. Successful exploitation of this vulnerability could result in execution of arbitrary code on the affected system...
Horde Groupware PHP File Inclusion (CVE-2020-8866)
A file inclusion vulnerability exists in Horde Groupware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Citrix Gateway Cache Bypass (CVE-2020-10111)
A cache bypass vulnerability exists in Citrix Gateway. Successful exploitation of this vulnerability could allow a remote attacker to gain unauthorized access to the affected system...
WordPress Tutor LMS Plugin Cross Site Request Forgery (CVE-2020-8615)
A cross site request forgery vulnerability exists in WordPress Tutor LMS Plugin. Successful exploitation of this vulnerability can result in the execution of arbitrary code in the effected system...
Terramaster Remote Command Execution (CVE-2018-13338; CVE-2018-13330; CVE-2018-13336)
A remote command execution vulnerability exists in Terramaster. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
qdPM Remote Code Execution (CVE-2020-7246)
A remote code execution vulnerability exists in qdPM. Successful exploitation of this vulnerability could result in execution of arbitrary code on the affected system...
Asus ASUSWRT Reflected Cross Site Scripting (CVE-2018-14710)
A reflected cross site scripting vulnerability exists in Asus ASUSWRT. Successful exploitation of this vulnerability could allow attackers to execute arbitrary code on the affected system...
Adobe Type Manager Library Remote Code Execution
A remote code execution vulnerability exists in Adobe Type Manager Library. Successful exploitation could result in execution of arbitrary code on the affected system...
rConfig Command Injection (CVE-2020-10221)
A command injection vulnerability exists in rConfig. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands on the affected system...
Intellian Aptus Web Remote Code Execution (CVE-2020-7980)
A remote code execution vulnerability exists in Intellian Aptus Web. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Zyxel Cloud CNM SecuManager Cross Site Scripting
A cross-site scripting vulnerability exists in Zyxel Cloud CNM SecuManager. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Zyxel Cloud CNM SecuManager Remote Code Execution (CVE-2020-15348)
A remote code execution vulnerability exists in Zyxel Cloud CNM SecuManager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
OpenSMTPD Remote Code Execution (CVE-2020-7247)
A remote code execution vulnerability exists in OpenSMTPD. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Cacti Remote Code Execution (CVE-2020-8813)
A remote code execution vulnerability exists in Cacti. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft SQL Server Remote Code Execution (CVE-2020-0618)
A remote code execution vulnerability exists in Microsoft SQL server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Interspire Email Marketer Remote Code Execution (CVE-2018-19550)
A remote code execution vulnerability exists in Interspire Email Marketer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WEMS BEMS Authentication Bypass
An authentication bypass vulnerability exists in WEMS BEMS. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...
Apple Webkit Memory Corruption (CVE-2018-4438)
A memory corruption vulnerability exists in Apple WebKit. Successful exploitation of this vulnerability could allow attackers to execute code on the target system...
WordPress Ultimate-Member Plugin Cross-Site Scripting
A cross-site scripting vulnerability exists in WordPress Ultimate-Member Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Apple WebKit Use After Free (CVE-2018-4442)
A use-after-free vulnerability exists in Apple WebKit. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
YSoSerial Payloads Remote Code Execution (CVE-2020-11518; CVE-2020-27130; CVE-2022-29936)
YSoSerial is a collection of utilities and property-oriented programming "gadget chains" discovered in common java libraries that can, under the right conditions, exploit Java applications performing unsafe deserialization of objects. Successful exploitation of unsafe deserialization objects coul...
OpenSMTPD Remote Code Execution (CVE-2020-8794)
A remote code execution vulnerability exists in OpenSMTPD. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress ThemeREX Plugin Remote Code Execution
A remote code execution vulnerability exists in WordPress ThemeREX Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Apache Tomcat AJP File Inclusion (CVE-2020-10487)
A file inclusion vulnerability exists in Apache Tomcat AJP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Eclipse Che Cross Site Request Forgery (CVE-2019-17633)
A cross site request forgery vulnerability exists in Eclipse Che. Successful exploitation of this vulnerability could result in the execution of arbitrary code on the affected system...
Asus ASUSWRT Command Injection (CVE-2018-14714)
A command injection vulnerability exists in Asus ASUSWRT. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
WordPress InfiniteWP Plugin Authentication Bypass
An authentication bypass vulnerability exists in WordPress InfiniteWP plugin. This allows remote attackers to perform administrative actions without authentication...
RICOH Aficio Printer Command Injection (CVE-2019-11845)
A command injection vulnerability exists in RICOH Aficio Printer. Successful exploitation of this vulnerability could allow remote attackers to execute system arbitrary commands in the affected system...
Asus Rt Ac3200 Firmware Command Injection (CVE-2018-14714)
A command injection vulnerability exists in Asus Rt Ac3200 Firmware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Microsoft Windows SMBv3 Remote Code Execution (CVE-2020-0796)
A vulnerability exists in Windows. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Apache XML-RPC Insecure Deserialization (CVE-2019-17570)
An insecure deserialization vulnerability exists in Apache XML-RPC. The vulnerability is due to deserialization of untrusted data. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Asus ASUSWRT Information Disclosure (CVE-2018-14713)
An information disclosure vulnerability exists in Asus ASUSWRT. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Apache Dubbo Insecure Deserialization (CVE-2019-17564)
An insecure deserialization vulnerability exists in Apache Dubbo. The vulnerability is due to deserialization of untrusted data. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Asus ASUSWRT Buffer Overflow (CVE-2018-14712)
A buffer overflow vulnerability exists in Asus ASUSWRT. Successful exploitation of this vulnerability could allow a remote attacker to inaccessibility on the affected system...
Microsoft Windows Graphics Component Elevation of Privilege (CVE-2020-0898)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...