CVE-2021-33771 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-33771 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC)...
CVE
CVE-2021-24145 – Webnus / Modern Events Calendar Lite – Unrestricted file upload
Summary: CVE-2021-24145 is an unrestricted file upload vulnerability impacting Webnus Modern Events Calendar Lite versions 5.16.2 and earlier. An exploit...
CVE-2021-33909 – Linux Foundation / Linux kernel – Out-of-bounds write
Summary: CVE-2021-33909 is an out-of-bounds write vulnerability impacting Linux kernel before version 5.13.4. An exploit was observed in open source...
CVE-2021-20019 – SonicWall / SonicOS – Buffer overflow
Summary: CVE-2021-20019 is a buffer overflow vulnerability impacting multiple versions of SonicWall SonicOS. A proof of concept (PoC) was not...
CVE-2021-30800 – Apple / Multiple – Unspecified
Summary: CVE-2021-30800 is an unspecified vulnerability impacting Apple iOS versions 14.6 and iPadOS versions 14.6 and earlier. A proof of...
CVE-2019-12744 – SeedDMS / SeedDMS – Unrestricted file upload
Summary: CVE-2019-12744 is an unrestricted file upload vulnerability impacting SeedDMS versions 5.1.10 and earlier. An exploit was observed in open...
CVE-2021-22555 – Linux Foundation / Linux kernel – Out-of-bounds write
Summary: CVE-2021-22555 is an out-of-bounds write vulnerability impacting Linux kernel versions 5.11 and earlier. An exploit was observed in open...
CVE-2020-11978 – Apache Software Foundation / Airflow – Command injection
Summary: CVE-2020-11978 is a command injection vulnerability impacting Apache Airflow versions 1.10.10 and earlier. An exploit was observed in open...
CVE-2021-30807 – Apple / Multiple – Memory corruption
Summary: CVE-2021-30807 is a memory corruption vulnerability impacting Apple iOS and iPadOS versions 14.7 and earlier and Apple macOS Big...
CVE-2021-1879 – Apple / Multiple – XSS
Summary: CVE-2021-1879 is a cross-site scripting (XSS) vulnerability impacting multiple versions of Apple watchOS, iOS, and iPadOS. A proof of...
CVE-2019-5591 – Fortinet / FortiOS – Missing authentication for critical function
Summary: CVE-2019-5591 is a missing authentication for critical function vulnerability impacting Fortinet FortiOS versions 6.2.0 and earlier. A proof of...
CVE-2021-36948 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-36948 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC)...
CVE-2021-28476 – Microsoft / Windows – RCE
Summary: CVE-2021-28476 is a remote code execution (RCE) vulnerability impacting multiple products and versions of Microsoft Windows. A proof of...
CVE-2021-20091 – Buffalo / Multiple – Unspecified
Summary: CVE-2021-20091 is an unspecified vulnerability impacting Buffalo WSR-2533DHPL2 firmware versions 1.02 and earlier and Buffalo WSR-2533DHP3 firmware versions 1.24...
CVE-2020-29015 – Fortinet / FortiWeb – SQLi
Summary: CVE-2020-29015 is a structured query language injection (SQLi) vulnerability impacting multiple versions of Fortinet FortiWeb. A proof of concept...
CVE-2021-22123 – Fortinet / FortiWeb – OS command injection
Summary: CVE-2021-22123 is an OS command injection vulnerability impacting multiple versions of Fortinet FortiWeb's management interface. A proof of concept...
CVE-2020-14321 – Moodle / Moodle – Privilege escalation
Summary: CVE-2020-14321 is a privilege escalation vulnerability impacting multiple versions of Moodle. An exploit was observed in open source and...
CVE-2020-9497 – Apache / Guacamole – Information disclosure
Summary: CVE-2020-9497 is an information disclosure vulnerability impacting Apache Guacamole versions 1.1.0 and earlier. A proof of concept (PoC) was...
CVE-2020-19669
Summary: Cross Site Request Forgery (CSRF) vulnerability exists in Eyoucms 1.3.6 that can add an admin account via /login.php?m=admin&c=Admin&a=admin_add&lang=cn. Reference...
CVE-2020-22124
Summary: A vulnerability in the \inc\config.php component of joyplus-cms v1.6 allows attackers to access sensitive information. Reference Links(if available): https://github.com/876054426/vul/issues/1...
CVE-2020-22122
Summary: A SQL injection vulnerability in /oa.php?c=Staff&a=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database...
CVE-2020-22120
Summary: A remote code execution (RCE) vulnerability in /root/run/adm.php?admin-ediy&part=exdiy of imcat v5.1 allows authenticated attackers to execute arbitrary code. Reference...
CVE-2021-39282
Summary: Live555 through 1.08 has a memory leak in AC3AudioStreamParser for AC3 files. Reference Links(if available): http://www.live555.com/liveMedia/public/changelog.txt# http://lists.live555.com/pipermail/live-devel/2021-August/021970.html CVSS Score...
CVE-2021-34480
Summary: Scripting Engine Memory Corruption Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34480 CVSS Score (if available) v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P v3: / HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H...
