|
196081
|
6.1 |
MEDIUM
Network
|
fudforum
|
fudforum
|
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "author" parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2021-27520
|
2024-11-21 14:58 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196082
|
6.1 |
MEDIUM
Network
|
fudforum
|
fudforum
|
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "srch" parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2021-27519
|
2024-11-21 14:58 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196083
|
5.5 |
MEDIUM
Local
|
netasq_project
stormshield
clamav
|
netasq
stormshield_network_security
clamav
|
The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 …
|
NVD-CWE-noinfo
|
CVE-2021-27506
|
2024-11-21 14:58 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196084
|
5.5 |
MEDIUM
Local
|
apache
fedoraproject
oracle
|
pdfbox
fedora
hyperion_financial_reporting
webcenter_sites
primavera_unifier
flexcube_universal_banking
peoplesoft_enterprise_peopletools
outside_in_technology
retail_customer…
|
A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.
|
NVD-CWE-Other
|
CVE-2021-27906
|
2024-11-21 14:58 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196085
|
5.5 |
MEDIUM
Local
|
apache
fedoraproject
oracle
|
pdfbox
fedora
hyperion_financial_reporting
webcenter_sites
primavera_unifier
flexcube_universal_banking
outside_in_technology
retail_customer_management_and_segmentation_foundati…
|
A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.
|
CWE-834
Excessive Iteration
|
CVE-2021-27807
|
2024-11-21 14:58 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196086
|
7.2 |
HIGH
Network
|
mariadb
percona
galeracluster
debian
|
mariadb
percona_server
wsrep
debian_linux
|
A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch t…
|
CWE-94
Code Injection
|
CVE-2021-27928
|
2024-11-21 14:58 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196087
|
7.5 |
HIGH
Network
|
johnsoncontrols
|
exacqvision_web_service
|
A vulnerability in exacqVision Web Service 20.12.2.0 and prior could allow an unauthenticated attacker to view system-level information about the exacqVision Web Service and the operating system.
|
CWE-862
Missing Authorization
|
CVE-2021-27656
|
2024-11-21 14:58 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196088
|
6.1 |
MEDIUM
Network
|
symbiote
|
silverstripe_queued_jobs
|
A vulnerability has been identified in the Silverstripe CMS 3 and 4 version of the symbiote/silverstripe-queuedjobs module. A Cross Site Scripting vulnerability allows an attacker to inject an arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2021-27938
|
2024-11-21 14:58 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196089
|
6.1 |
MEDIUM
Network
|
mybb
|
mybb
|
Cross-site Scripting vulnerability in MyBB before 1.8.26 via Custom moderator tools.
|
CWE-79
Cross-site Scripting
|
CVE-2021-27949
|
2024-11-21 14:58 |
2021-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196090
|
7.2 |
HIGH
Network
|
mybb
|
mybb
|
SQL Injection vulnerability in MyBB before 1.8.26 via User Groups. (issue 3 of 3).
|
CWE-89
SQL Injection
|
CVE-2021-27948
|
2024-11-21 14:58 |
2021-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
