|
209391
|
4.8 |
MEDIUM
Network
|
atlassian
|
jira_service_desk
|
The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or …
|
CWE-79
Cross-site Scripting
|
CVE-2020-14166
|
2024-11-21 14:02 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209392
|
5.3 |
MEDIUM
Network
|
atlassian
|
jira
jira_software_data_center
|
The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars names via an Improper au…
|
NVD-CWE-noinfo
|
CVE-2020-14165
|
2024-11-21 14:02 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209393
|
6.1 |
MEDIUM
Network
|
atlassian
|
jira
jira_software_data_center
|
The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by…
|
CWE-79
Cross-site Scripting
|
CVE-2020-14164
|
2024-11-21 14:02 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209394
|
6.5 |
MEDIUM
Network
|
squid-cache
|
squid
|
An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop AB…
|
CWE-662
Improper Synchronization
|
CVE-2020-14059
|
2024-11-21 14:02 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209395
|
7.5 |
HIGH
Network
|
squid-cache
fedoraproject
netapp
|
squid
fedora
cloud_manager
|
An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due to use of a potentially dangerous function, Squid and the default certificate validation helper are vulnerable to a Denial of Se…
|
NVD-CWE-noinfo
|
CVE-2020-14058
|
2024-11-21 14:02 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209396
|
5.9 |
MEDIUM
Network
|
putty
netapp
fedoraproject
|
putty
oncommand_unified_manager_core_package
fedora
|
PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-14002
|
2024-11-21 14:02 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209397
|
5.3 |
MEDIUM
Network
|
maipu
|
mp1800x-50_firmware
|
The web interface of Maipu MP1800X-50 7.5.3.14(R) devices allows remote attackers to obtain sensitive information via the form/formDeviceVerGet URI, such as system id, hardware model, hardware versio…
|
NVD-CWE-noinfo
|
CVE-2020-13896
|
2024-11-21 14:02 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209398
|
5.9 |
MEDIUM
Network
|
openbsd
netapp
|
openssh
aff_a700s_firmware
steelstore_cloud_integrated_storage
ontap_select_deploy_administration_utility
active_iq_unified_manager
solidfire
hci_management_node
hci_storage_node…
|
The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connect…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-14145
|
2024-11-21 14:02 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209399
|
9.8 |
CRITICAL
Network
|
mk-auth
|
mk-auth
|
An issue was discovered in MK-AUTH 19.01. It allows command execution as root via shell metacharacters to /auth admin scripts.
|
CWE-78
OS Command
|
CVE-2020-14072
|
2024-11-21 14:02 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209400
|
6.1 |
MEDIUM
Network
|
mk-auth
|
mk-auth
|
An issue was discovered in MK-AUTH 19.01. XSS vulnerabilities in admin and client scripts allow an attacker to execute arbitrary JavaScript code.
|
CWE-79
Cross-site Scripting
|
CVE-2020-14071
|
2024-11-21 14:02 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
