|
211761
|
6.5 |
MEDIUM
Network
|
cisco
|
catalyst_sd-wan_manager
|
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensit…
|
CWE-22
Path Traversal
|
CVE-2020-26065
|
2024-11-21 14:19 |
2023-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211762
|
8.1 |
HIGH
Network
|
cisco
|
catalyst_sd-wan_manager
|
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system.
The v…
|
CWE-611
XXE
|
CVE-2020-26064
|
2024-11-21 14:19 |
2023-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211763
|
9.8 |
CRITICAL
Network
|
gnuplot_project
|
gnuplot
|
gnuplot v5.5 was discovered to contain a buffer overflow via the function plotrequest().
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-25969
|
2024-11-21 14:19 |
2023-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211764
|
7.5 |
HIGH
Network
|
is.js_project
|
is.js
|
is.js is a general-purpose check library. Versions 0.9.0 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). is.js uses a regex copy…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26302
|
2024-11-21 14:19 |
2022-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211765
|
7.5 |
HIGH
Network
|
dell
oracle
|
bsafe_micro-edition-suite
http_server
security_service
database
weblogic_server_proxy_plug-in
|
Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain a Buffer Over-Read Vulnerability.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-26185
|
2024-11-21 14:19 |
2022-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211766
|
7.5 |
HIGH
Network
|
dell
oracle
|
bsafe_micro-edition-suite
http_server
security_service
weblogic_server_proxy_plug-in
|
Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain an Improper Certificate Validation vulnerability.
|
CWE-295
Improper Certificate Validation
|
CVE-2020-26184
|
2024-11-21 14:19 |
2022-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211767
|
7.8 |
HIGH
Local
|
shopxo
|
shopxo
|
The PluginsUpload function in application/service/PluginsAdminService.php of ShopXO v1.9.0 contains an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via uploadi…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-26008
|
2024-11-21 14:19 |
2022-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211768
|
7.8 |
HIGH
Local
|
shopxo
|
shopxo
|
An arbitrary file upload vulnerability in the upload payment plugin of ShopXO v1.9.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-26007
|
2024-11-21 14:19 |
2022-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211769
|
6.1 |
MEDIUM
Local
|
jhead_project
|
jhead
|
JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital cameras. In affected versions there is a heap-buffer-overflow on jhea…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-26208
|
2024-11-21 14:19 |
2022-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211770
|
10.0 |
CRITICAL
Network
|
ssh2_project
|
ssh2
|
ssh2 is client and server modules written in pure JavaScript for node.js. In ssh2 before version 1.4.0 there is a command injection vulnerability. The issue only exists on Windows. This issue may lea…
|
-
|
CVE-2020-26301
|
2024-11-21 14:19 |
2021-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
