|
208811
|
9.8 |
CRITICAL
Network
|
multimon-ng_project
|
multimon-ng
|
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the function add_ch of the file demod_flex.c. The manipulation of the argument ch leads to format string. U…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2020-36619
|
2024-11-21 14:29 |
2022-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208812
|
9.8 |
CRITICAL
Network
|
furqansofware
|
node_whois
|
A vulnerability classified as critical has been found in Furqan node-whois. Affected is an unknown function of the file index.coffee. The manipulation leads to improperly controlled modification of o…
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2020-36618
|
2024-11-21 14:29 |
2022-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208813
|
9.8 |
CRITICAL
Network
|
greenend
|
sftpserver
|
A vulnerability was found in ewxrjk sftpserver. It has been declared as problematic. Affected by this vulnerability is the function sftp_parse_path of the file parse.c. The manipulation leads to unin…
|
-
|
CVE-2020-36617
|
2024-11-21 14:29 |
2022-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208814
|
6.1 |
MEDIUM
Network
|
feehi
|
feehicms
|
Cross Site Scripting (XSS) vulnerability in FeehiCMS 2.0.8 allows remote attackers to run arbitrary code via tha lang attribute of an html tag.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36607
|
2024-11-21 14:29 |
2022-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208815
|
8.0 |
HIGH
Network
|
duxcms_project
|
duxcms
|
A vulnerability was found in annyshow DuxCMS 2.1. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be…
|
-
|
CVE-2020-36610
|
2024-11-21 14:29 |
2022-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208816
|
5.4 |
MEDIUM
Network
|
duxcms_project
|
duxcms
|
A vulnerability was found in annyshow DuxCMS 2.1. It has been classified as problematic. This affects an unknown part of the file admin.php&r=article/AdminContent/edit of the component Article Handle…
|
-
|
CVE-2020-36609
|
2024-11-21 14:29 |
2022-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208817
|
6.1 |
MEDIUM
Network
|
tribalsystems
|
zenario
|
A vulnerability, which was classified as problematic, has been found in Tribal Systems Zenario CMS. Affected by this issue is some unknown functionality of the file admin_organizer.js of the componen…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36608
|
2024-11-21 14:29 |
2022-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208818
|
7.1 |
HIGH
Local
|
apple
|
iphone_os
watchos
icloud
tvos
ipados
itunes
macos
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iCloud for Windows 11.4, iOS 14.0 and iPadOS 14.0, watchOS 7.0, tvOS 14.0, iCloud for Windows 7.21, iTunes f…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-36521
|
2024-11-21 14:29 |
2022-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208819
|
8.1 |
HIGH
Network
|
hapijs
|
hoek
|
hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function.
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2020-36604
|
2024-11-21 14:29 |
2022-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208820
|
6.1 |
MEDIUM
Physics
|
huawei
|
576up005_hota-cm-h-shark-bd_firmware
577hota-cm-h-shark-bd_firmware
581up-hota-cm-h-shark-bd_firmware
586-hota-cm-h-shark-bd_firmware
588-hota-cm-h-shark-bd_firmware
606-hota-cm-h-shar…
|
There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends …
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2020-36602
|
2024-11-21 14:29 |
2022-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
