|
195321
|
8.8 |
HIGH
Network
|
google
fedoraproject
debian
|
chrome
fedora
debian_linux
|
Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21159
|
2024-11-21 14:47 |
2021-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195322
|
4.8 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is a vulnerability…
|
-
|
CVE-2021-21312
|
2024-11-21 14:47 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195323
|
5.4 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI from version 9.5.0 and before version 9.5.4,…
|
-
|
CVE-2021-21258
|
2024-11-21 14:47 |
2021-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195324
|
5.7 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI version 9.5.3, it was possible to switch ent…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2021-21255
|
2024-11-21 14:47 |
2021-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195325
|
8.8 |
HIGH
Network
|
redislabs
|
redis
|
Redis is an open-source, in-memory database that persists on disk. In affected versions of Redis an integer overflow bug in 32-bit Redis version 4.0 or newer could be exploited to corrupt the heap an…
|
-
|
CVE-2021-21309
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195326
|
9.1 |
CRITICAL
Network
|
prestashop
|
prestashop
|
PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.2 the soft logout system is not complete and an attacker is able to foreign request and executes custo…
|
-
|
CVE-2021-21308
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195327
|
7.2 |
HIGH
Network
|
prestashop
|
prestashop
|
PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.2 there is a CSV Injection vulnerability possible by using shop search keywords via the admin panel. T…
|
CWE-1236
Improper Neutralization of Formula Elements in a CSV File
|
CVE-2021-21302
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195328
|
6.5 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.25.0, a mal…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2021-21274
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195329
|
6.1 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.25.0, reque…
|
CWE-601
Open Redirect
|
CVE-2021-21273
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195330
|
6.5 |
MEDIUM
Network
|
nodered
|
node-red
|
Node-Red is a low-code programming for event-driven applications built using nodejs. Node-RED 1.2.7 and earlier has a vulnerability which allows arbitrary path traversal via the Projects API. If the …
|
-
|
CVE-2021-21298
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
