|
198601
|
7.5 |
HIGH
Network
|
srs_simple_hits_counter_project
|
srs_simple_hits_counter
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in SRS Simple Hits Counter Plugin for WordPress 1.0.3 and 1.0.4 allows a remote, unauthenticated attacker to deter…
|
CWE-89
SQL Injection
|
CVE-2020-5766
|
2024-11-21 14:34 |
2020-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198602
|
6.1 |
MEDIUM
Network
|
ss-proj
|
shirasagi
|
Open redirect vulnerability in SHIRASAGI v1.13.1 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-601
Open Redirect
|
CVE-2020-5607
|
2024-11-21 14:34 |
2020-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198603
|
6.5 |
MEDIUM
Network
|
dell
|
idrac9_firmware
|
Dell EMC iDRAC9 versions prior to 4.20.20.20 contain a Path Traversal Vulnerability. A remote authenticated malicious user with low privileges could potentially exploit this vulnerability by manipula…
|
CWE-22
Path Traversal
|
CVE-2020-5366
|
2024-11-21 14:34 |
2020-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198604
|
8.1 |
HIGH
Network
|
mercari
|
mercari
|
Android App 'Mercari' (Japan version) prior to version 3.52.0 allows arbitrary method execution of a Java object by a remote attacker via a Man-In-The-Middle attack by using Java Reflection API of Ja…
|
NVD-CWE-noinfo
|
CVE-2020-5604
|
2024-11-21 14:34 |
2020-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198605
|
7.8 |
HIGH
Local
|
nvidia
|
jetpack_software_development_kit
|
NVIDIA JetPack SDK, version 4.2 and 4.3, contains a vulnerability in its installation scripts in which permissions are incorrectly set on certain directories, which can lead to escalation of privileg…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-5974
|
2024-11-21 14:34 |
2020-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198606
|
7.5 |
HIGH
Network
|
symantec
|
endpoint_detection_and_response
|
Symantec Endpoint Detection And Response, prior to 4.4, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to dat…
|
NVD-CWE-noinfo
|
CVE-2020-5839
|
2024-11-21 14:34 |
2020-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198607
|
8.8 |
HIGH
Adjacent
|
mxplayer
|
mx_player
|
MX Player Android App versions prior to v1.24.5, are vulnerable to a directory traversal vulnerability when user is using the MX Transfer feature in "Receive" mode. An attacker can exploit this by co…
|
CWE-22
Path Traversal
|
CVE-2020-5764
|
2024-11-21 14:34 |
2020-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198608
|
7.5 |
HIGH
Network
|
mitsubishielectric
|
coreos
|
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a resource management …
|
NVD-CWE-noinfo
|
CVE-2020-5600
|
2024-11-21 14:34 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198609
|
9.8 |
CRITICAL
Network
|
mitsubishielectric
|
coreos
|
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper neutraliza…
|
CWE-88
Argument Injection
|
CVE-2020-5599
|
2024-11-21 14:34 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198610
|
7.5 |
HIGH
Network
|
mitsubishielectric
|
coreos
|
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper access con…
|
NVD-CWE-noinfo
|
CVE-2020-5598
|
2024-11-21 14:34 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
