|
209781
|
7.8 |
HIGH
Local
|
advantech
|
webaccess\/hmi_designer
|
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause the system to write outside the int…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16213
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209782
|
5.5 |
MEDIUM
Local
|
advantech
|
webaccess\/hmi_designer
|
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. An out-of-bounds read vulnerability may be exploited by processing specially crafted project files, which may allow an attacker to read …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-16211
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209783
|
7.8 |
HIGH
Local
|
advantech
|
webaccess\/hmi_designer
|
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by opening specially crafted project files that may overflow the he…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16207
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209784
|
6.1 |
MEDIUM
Network
|
limesurvey
|
limesurvey
|
LimeSurvey 4.3.2 allows reflected XSS because application/controllers/LSBaseController.php lacks code to validate parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2020-16192
|
2024-11-21 14:06 |
2020-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209785
|
7.5 |
HIGH
Network
|
acti
|
nvr
|
ActiveMediaServer.exe in ACTi NVR3 Standard Server 3.0.12.42 allows remote unauthenticated attackers to trigger a buffer overflow and application termination via a malformed payload.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-15956
|
2024-11-21 14:06 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209786
|
5.4 |
MEDIUM
Network
|
gantt-chart_project
|
gantt-chart
|
An issue was discovered in the Gantt-Chart module before 5.5.5 for Jira. Due to missing validation of user input, it is vulnerable to a persistent XSS attack. An attacker can embed the attack vectors…
|
CWE-79
Cross-site Scripting
|
CVE-2020-15944
|
2024-11-21 14:06 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209787
|
8.1 |
HIGH
Network
|
gantt-chart_project
|
gantt-chart
|
An issue was discovered in the Gantt-Chart module before 5.5.4 for Jira. Due to a missing privilege check, it is possible to read and write to the module configuration of other users. This can also b…
|
CWE-79
CWE-862
Cross-site Scripting
Missing Authorization
|
CVE-2020-15943
|
2024-11-21 14:06 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209788
|
7.8 |
HIGH
Local
|
deltaww
|
cncsoft_screeneditor
|
Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. An uninitialized pointer may be exploited by processing a specially crafted project file. Successful exploitation of this…
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2020-16203
|
2024-11-21 14:06 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209789
|
3.3 |
LOW
Local
|
deltaww
|
cncsoft_screeneditor
|
Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple out-of-bounds read vulnerabilities may be exploited by processing specially crafted project files, which may all…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-16201
|
2024-11-21 14:06 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209790
|
7.8 |
HIGH
Local
|
deltaww
|
cncsoft_screeneditor
|
Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, whic…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16199
|
2024-11-21 14:06 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
