|
209791
|
7.8 |
HIGH
Local
|
dell
|
emc_powerscale_onefs
|
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the executio…
|
CWE-78
OS Command
|
CVE-2020-26193
|
2024-11-21 14:19 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209792
|
7.8 |
HIGH
Local
|
dell
|
emc_powerscale_onefs
|
Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH may potentially exploit this v…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-26192
|
2024-11-21 14:19 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209793
|
7.8 |
HIGH
Local
|
dell
|
emc_powerscale_onefs
|
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may use the PermissionRepair job to grant themselves the highest level o…
|
NVD-CWE-noinfo
|
CVE-2020-26191
|
2024-11-21 14:19 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209794
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
online_marriage_registration_system
|
Online Marriage Registration System 1.0 is affected by stored cross-site scripting (XSS) vulnerabilities in multiple parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2020-26052
|
2024-11-21 14:19 |
2021-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209795
|
9.8 |
CRITICAL
Network
|
college_management_system_project
|
college_management_system
|
College Management System Php 1.0 suffers from SQL injection vulnerabilities in the index.php page from POST parameters 'unametxt' and 'pwdtxt', which are not filtered before passing a SQL query.
|
CWE-89
SQL Injection
|
CVE-2020-26051
|
2024-11-21 14:19 |
2021-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209796
|
6.5 |
MEDIUM
Network
|
electronjs
|
electron
|
The Electron framework lets you write cross-platform desktop applications using JavaScript, HTML and CSS. In affected versions of Electron IPC messages sent from the main process to a subframe in the…
|
-
|
CVE-2020-26272
|
2024-11-21 14:19 |
2021-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209797
|
7.2 |
HIGH
Network
|
openmage
|
openmage
|
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, an administrator with permission to import/export data and to edit cms pages was able to inje…
|
CWE-22
CWE-434
Path Traversal
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-26295
|
2024-11-21 14:19 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209798
|
7.2 |
HIGH
Network
|
openmage
|
openmage
|
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, there is a vulnerability which enables remote code execution. In affected versions an adminis…
|
-
|
CVE-2020-26285
|
2024-11-21 14:19 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209799
|
7.2 |
HIGH
Network
|
openmage
|
openmage
|
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.6, there is a vulnerability which enables remote code execution. In affected versions an adminis…
|
-
|
CVE-2020-26252
|
2024-11-21 14:19 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209800
|
8.0 |
HIGH
Adjacent
|
weave
|
weave
|
Weave Net is open source software which creates a virtual network that connects Docker containers across multiple hosts and enables their automatic discovery. Weave Net before version 2.8.0 has a vul…
|
-
|
CVE-2020-26278
|
2024-11-21 14:19 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
