|
208761
|
7.5 |
HIGH
Network
|
jdownloads
|
jdownloads
|
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter.
|
CWE-89
SQL Injection
|
CVE-2020-19450
|
2024-11-21 14:09 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208762
|
7.5 |
HIGH
Network
|
jdownloads
|
jdownloads
|
SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter.
|
CWE-89
SQL Injection
|
CVE-2020-19447
|
2024-11-21 14:09 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208763
|
6.6 |
MEDIUM
Local
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p>
<p>To exploit this vulnerability, an attacker would first have to gain execution on t…
|
NVD-CWE-noinfo
|
CVE-2020-1146
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208764
|
9.9 |
CRITICAL
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner…
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2020-1210
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208765
|
4.6 |
MEDIUM
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
<p>A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploi…
|
NVD-CWE-noinfo
|
CVE-2020-1205
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208766
|
8.6 |
HIGH
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner…
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2020-1200
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208767
|
7.4 |
HIGH
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated att…
|
CWE-79
Cross-site Scripting
|
CVE-2020-1198
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208768
|
7.8 |
HIGH
Local
|
microsoft
|
office
365_apps
|
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability coul…
|
NVD-CWE-noinfo
|
CVE-2020-1193
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208769
|
4.2 |
MEDIUM
Network
|
microsoft
|
chakracore
edge
|
<p>A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-1180
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208770
|
4.2 |
MEDIUM
Network
|
microsoft
|
chakracore
edge
|
<p>A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-1172
|
2024-11-21 14:09 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
