|
209561
|
6.1 |
MEDIUM
Network
|
openiam
|
openiam
|
OpenIAM before 4.2.0.3 allows XSS in the Add New User feature.
|
CWE-79
Cross-site Scripting
|
CVE-2020-13418
|
2024-11-21 14:01 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209562
|
8.8 |
HIGH
Network
|
webkitgtk
|
webkitgtk
|
A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free.
|
CWE-416
Use After Free
|
CVE-2020-13558
|
2024-11-21 14:01 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209563
|
7.8 |
HIGH
Local
|
advantech
|
webaccess\/scada
|
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-13554
|
2024-11-21 14:01 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209564
|
6.1 |
MEDIUM
Network
|
nanohttpd
|
nanohttpd
|
An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1. The GeneralHandler class implements a basic GET handler that prints debug information as an HTML page. Any web server that …
|
CWE-79
Cross-site Scripting
|
CVE-2020-13697
|
2024-11-21 14:01 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209565
|
7.8 |
HIGH
Local
|
sytech
|
xlreporter
|
An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-13549
|
2024-11-21 14:01 |
2021-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209566
|
8.8 |
HIGH
Local
|
advantech
|
webaccess\/scada
|
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attack…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-13555
|
2024-11-21 14:01 |
2021-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209567
|
8.8 |
HIGH
Local
|
advantech
|
webaccess\/scada
|
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-13553
|
2024-11-21 14:01 |
2021-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209568
|
8.8 |
HIGH
Local
|
advantech
|
webaccess\/scada
|
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via multiple service executables …
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-13552
|
2024-11-21 14:01 |
2021-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209569
|
8.8 |
HIGH
Local
|
advantech
|
webaccess\/scada
|
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an att…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-13551
|
2024-11-21 14:01 |
2021-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209570
|
7.7 |
HIGH
Network
|
advantech
|
webaccess\/scada
|
A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. A specially crafted application can lead to information disclosure. An attacker can s…
|
CWE-22
Path Traversal
|
CVE-2020-13550
|
2024-11-21 14:01 |
2021-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
