|
194431
|
7.5 |
HIGH
Network
|
microsoft
|
visual_studio_2017
visual_studio_2019
.net
.net_core
powershell_core
|
.NET Core and Visual Studio Denial of Service Vulnerability
|
NVD-CWE-noinfo
|
CVE-2021-26423
|
2024-11-21 14:56 |
2021-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194432
|
9.8 |
CRITICAL
Network
|
dreamsecurity
|
magicline4nx.exe
|
A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker …
|
CWE-20
CWE-120
Improper Input Validation
Classic Buffer Overflow
|
CVE-2021-26606
|
2024-11-21 14:56 |
2021-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194433
|
9.8 |
CRITICAL
Network
|
unidocs
|
ezpdfreader
|
An improper input validation vulnerability in the service of ezPDFReader allows attacker to execute arbitrary command. This issue occurred when the ezPDF launcher received and executed crafted input …
|
CWE-20
Improper Input Validation
|
CVE-2021-26605
|
2024-11-21 14:56 |
2021-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194434
|
7.5 |
HIGH
Network
|
hp
|
edgeline_infrastructure_management
|
A potential security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely e…
|
NVD-CWE-noinfo
|
CVE-2021-26586
|
2024-11-21 14:56 |
2021-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194435
|
7.1 |
HIGH
Local
|
dm_fingertool_project
|
dm_fingertool
|
DM FingerTool v1.19 in the DM PD065 Secure USB is susceptible to improper authentication by a replay attack, allowing local attackers to bypass user authentication and access all features and data on…
|
CWE-294
Authentication Bypass by Capture-replay
|
CVE-2021-26824
|
2024-11-21 14:56 |
2021-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194436
|
6.1 |
MEDIUM
Network
|
omeka
|
omeka
|
Cross Site Scripting (XSS) vulnerability in admin/files/edit in Omeka Classic <=2.7 allows remote attackers to inject arbitrary web script or HTML.
|
CWE-79
Cross-site Scripting
|
CVE-2021-26799
|
2024-11-21 14:56 |
2021-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194437
|
5.4 |
MEDIUM
Network
|
open-xchange
|
open-xchange_appsuite
|
OX App Suite before 7.10.3-rev4 and 7.10.4 before 7.10.4-rev4 allows SSRF via a shared SVG document that is mishandled by the imageconverter component when the .png extension is used.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2021-26699
|
2024-11-21 14:56 |
2021-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194438
|
6.1 |
MEDIUM
Network
|
open-xchange
|
open-xchange_appsuite
|
OX App Suite before 7.10.3-rev32 and 7.10.4 before 7.10.4-rev18 allows XSS via a code snippet (user-generated content) when a sharing link is created and the dl parameter is used.
|
CWE-79
Cross-site Scripting
|
CVE-2021-26698
|
2024-11-21 14:56 |
2021-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194439
|
9.8 |
CRITICAL
Network
|
phpgurukul
|
student_record_system
|
SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php.
|
CWE-89
SQL Injection
|
CVE-2021-26765
|
2024-11-21 14:56 |
2021-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194440
|
8.8 |
HIGH
Network
|
phpgurukul
|
student_record_system
|
SQL injection vulnerability in PHPGurukul Student Record System v 4.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edit-std.php.
|
CWE-89
SQL Injection
|
CVE-2021-26764
|
2024-11-21 14:56 |
2021-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
