CVE-2021-41991
Summary: The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different...
exploit
CVE-2019-10240
Summary: Eclipse hawkBit versions prior to 0.3.0M2 resolved Maven build artifacts for the Vaadin based UI over HTTP instead of...
CVE-2021-24487
Summary: The St-Daily-Tip WordPress plugin through 4.7 does not have any CSRF check in place when saving its 'Default Text...
CVE-2021-24581
Summary: The Blue Admin WordPress plugin through 21.06.01 does not sanitise or escape its "Logo Title" setting before outputting in...
CVE-2020-19954
Summary: An XML External Entity (XXE) vulnerability was discovered in /api/notify.php in S-CMS 3.0 which allows attackers to read arbitrary...
CVE-2021-29428
Summary: In Gradle before version 7.0, on Unix-like systems, the system temporary directory can be created with open permissions that...
CVE-2021-41794
Summary: ogs_fqdn_parse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker...
CVE-2021-41916
Summary: A Cross-Site Request Forgery (CSRF) vulnerability in webTareas version 2.4 and earlier allows a remote attacker to create a...
CVE-2021-41919
Summary: webTareas version 2.4 and earlier allows an authenticated user to arbitrarily upload potentially dangerous files without restrictions. This is...
CVE-2020-19131
Summary: Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the "invertImage()" function in the...
CVE-2020-19131
Summary: Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the "invertImage()" function in the...
CVE-2021-41732
Summary: ** DISPUTED ** An issue was discovered in zeek version 4.1.0. There is a HTTP request splitting vulnerability that...
CVE-2020-19131
Summary: Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the "invertImage()" function in the...
CVE-2021-35491
Summary: A Cross-Site Request Forgery (CSRF) vulnerability in Wowza Streaming Engine through 4.8.11+5 allows a remote attacker to delete a...
CVE-2017-18640
Summary: The Alias feature in SnakeYAML 1.18 allows entity expansion during a load operation, a related issue to CVE-2003-1564. Reference...
CVE-2020-26217
Summary: XStream before version 1.4.14 is vulnerable to Remote Code Execution.The vulnerability may allow a remote attacker to run arbitrary...
CVE-2020-21533
Summary: fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c. Reference Links(if available): https://sourceforge.net/p/mcj/tickets/59/ https://lists.debian.org/debian-lts-announce/2021/10/msg00002.html CVSS...
CVE-2020-21534
Summary: fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c. Reference Links(if available): https://sourceforge.net/p/mcj/tickets/58/ https://lists.debian.org/debian-lts-announce/2021/10/msg00002.html CVSS...
CVE-2021-32277
Summary: An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmf.c. It...
CVE-2021-32274
Summary: An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_synthesis_64 located in sbr_qmf.c. It...
CVE-2021-32273
Summary: An issue was discovered in faad2 through 2.10.0. A stack-buffer-overflow exists in the function ftypin located in mp4read.c. It...
CVE-2021-38714
Summary: In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution. The vulnerability...
CVE-2021-41383
Summary: setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the...
CVE-2021-41383
Summary: setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the...
