|
197681
|
9.8 |
CRITICAL
Network
|
omniauth
|
omniauth
|
lib/omniauth/failure_endpoint.rb in OmniAuth before 1.9.2 (and before 2.0) does not escape the message_key value.
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2020-36599
|
2024-11-21 14:29 |
2022-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197682
|
5.4 |
MEDIUM
Network
|
atlassian
|
confluence_server
confluence_data_center
|
The Livesearch macro in Confluence Server and Data Center before version 7.4.5, from version 7.5.0 before 7.6.3, and from version 7.7.0 before version 7.7.4 allows remote attackers with permission to…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36290
|
2024-11-21 14:29 |
2022-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197683
|
5.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault.
|
CWE-362
CWE-476
Race Condition
NULL Pointer Dereference
|
CVE-2020-36558
|
2024-11-21 14:29 |
2022-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197684
|
5.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-36557
|
2024-11-21 14:29 |
2022-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197685
|
5.4 |
MEDIUM
Network
|
multi_restaurant_table_reservation_system_project
|
multi_restaurant_table_reservation_system
|
Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Area(food_type) field to /dashboard/menu-list.php.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36553
|
2024-11-21 14:29 |
2022-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197686
|
5.4 |
MEDIUM
Network
|
multi_restaurant_table_reservation_system_project
|
multi_restaurant_table_reservation_system
|
Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Made field to /dashboard/menu-list.php.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36552
|
2024-11-21 14:29 |
2022-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197687
|
5.4 |
MEDIUM
Network
|
multi_restaurant_table_reservation_system_project
|
multi_restaurant_table_reservation_system
|
Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Item Name field to /dashboard/menu-list.php.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36551
|
2024-11-21 14:29 |
2022-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197688
|
5.4 |
MEDIUM
Network
|
multi_restaurant_table_reservation_system_project
|
multi_restaurant_table_reservation_system
|
Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Table Name field to /dashboard/table-list.php.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36550
|
2024-11-21 14:29 |
2022-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197689
|
7.8 |
HIGH
Local
|
ge
|
voluson_s8_firmware
|
A vulnerability classified as critical was found in GE Voluson S8. Affected is the underlying Windows XP operating system. Missing patches might introduce an excessive attack surface. Access to the l…
|
NVD-CWE-noinfo
|
CVE-2020-36549
|
2024-11-21 14:29 |
2022-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197690
|
7.8 |
HIGH
Local
|
ge
|
voluson_s8_firmware
|
A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elev…
|
CWE-287
Improper Authentication
|
CVE-2020-36548
|
2024-11-21 14:29 |
2022-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
