|
200541
|
5.3 |
MEDIUM
Network
|
ibm
|
cloud_pak_for_multicloud_management_monitoring
|
IBM Cloud Pak for Multicloud Management Monitoring 2.2 returns potentially sensitive information in headers which could lead to further attacks against the system. IBM X-Force ID: 194513.
|
NVD-CWE-noinfo
|
CVE-2021-20341
|
2024-11-21 14:46 |
2021-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200542
|
7.5 |
HIGH
Network
|
privoxy
debian
|
privoxy
debian_linux
|
A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service.
|
NVD-CWE-noinfo
|
CVE-2021-20276
|
2024-11-21 14:46 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200543
|
7.5 |
HIGH
Network
|
privoxy
debian
|
privoxy
debian_linux
|
A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service.
|
CWE-125
Out-of-bounds Read
|
CVE-2021-20275
|
2024-11-21 14:46 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200544
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves.
|
-
|
CVE-2021-20274
|
2024-11-21 14:46 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200545
|
7.5 |
HIGH
Network
|
privoxy
debian
|
privoxy
debian_linux
|
A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off.
|
-
|
CVE-2021-20273
|
2024-11-21 14:46 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200546
|
7.5 |
HIGH
Network
|
privoxy
debian
|
privoxy
debian_linux
|
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash.
|
-
|
CVE-2021-20272
|
2024-11-21 14:46 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200547
|
6.1 |
MEDIUM
Network
|
movabletype
|
movable_type_premium
movable_type_premium_advanced
movable_type_advanced
movable_type
|
Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Adva…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20665
|
2024-11-21 14:46 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200548
|
6.1 |
MEDIUM
Network
|
movabletype
|
movable_type
movable_type_premium
movable_type_premium_advanced
movable_type_advanced
|
Cross-site scripting vulnerability in in Asset registration screen of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Advanced 7 Se…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20664
|
2024-11-21 14:46 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200549
|
6.1 |
MEDIUM
Network
|
movabletype
|
movable_type
movable_type_premium
movable_type_premium_advanced
movable_type_advanced
|
Cross-site scripting vulnerability in in Role authority setting screen of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Advanced …
|
CWE-79
Cross-site Scripting
|
CVE-2021-20663
|
2024-11-21 14:46 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200550
|
5.4 |
MEDIUM
Network
|
ibm
|
rational_quality_manager
rational_team_concert
rational_doors_next_generation
doors_next
engineering_workflow_management
engineering_test_management
engineering_lifecycle_management…
|
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially …
|
CWE-79
Cross-site Scripting
|
CVE-2021-20351
|
2024-11-21 14:46 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
