|
194101
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
|
A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-29367
|
2024-11-21 15:01 |
2021-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194102
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
|
A buffer overflow vulnerability in FORMATS!GetPlugInInfo+0x2de9 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-29366
|
2024-11-21 15:01 |
2021-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194103
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thu…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29905
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194104
|
5.5 |
MEDIUM
Local
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI displays user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 207610.
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-29904
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194105
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29833
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194106
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29832
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194107
|
6.5 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions tra…
|
CWE-352
Origin Validation Error
|
CVE-2021-29816
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194108
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29815
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194109
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29814
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194110
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_for_service_management
|
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29813
|
2024-11-21 15:01 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
