|
209931
|
3.3 |
LOW
Local
|
bitdefender
|
endpoint_security_tools
|
An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows versions prior to 6.6.23.320 allows a regular user to learn the scanning exclusion…
|
NVD-CWE-Other
|
CVE-2020-15279
|
2024-11-21 14:05 |
2021-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209932
|
6.5 |
MEDIUM
Network
|
django-filter_project
fedoraproject
|
django-filter
fedora
|
django-filter is a generic system for filtering Django QuerySets based on user selections. In django-filter before version 2.4.0, automatically generated `NumberFilter` instances, whose value was lat…
|
-
|
CVE-2020-15225
|
2024-11-21 14:05 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209933
|
9.8 |
CRITICAL
Network
|
pega
|
pega_platform
|
pyActivity in Pega Platform 8.4.0.237 has a security misconfiguration that leads to an improper access control vulnerability via =GetWebInfo.
|
CWE-269
Improper Privilege Management
|
CVE-2020-15390
|
2024-11-21 14:05 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209934
|
6.8 |
MEDIUM
Network
|
teluu
|
pjsip
|
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, P…
|
CWE-295
Improper Certificate Validation
|
CVE-2020-15260
|
2024-11-21 14:05 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209935
|
9.8 |
CRITICAL
Network
|
terra-master
|
tos
|
TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attac…
|
CWE-913
Improper Control of Dynamically-Managed Code Resources
|
CVE-2020-15568
|
2024-11-21 14:05 |
2021-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209936
|
5.4 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, by modifying target browser local storage, an XSS can be generated in the iTop console breadcrumb. Thi…
|
-
|
CVE-2020-15221
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209937
|
6.1 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, two cookies are created for the same session, which leads to a possibility to steal user session. This…
|
-
|
CVE-2020-15220
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209938
|
4.3 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, when a download error is triggered in the user portal, an SQL query is displayed to the user. This is …
|
-
|
CVE-2020-15219
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209939
|
6.8 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, admin pages are cached, so that their content is visible after deconnection by using the browser back …
|
-
|
CVE-2020-15218
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209940
|
7.0 |
HIGH
Local
|
bitdefender
|
hypervisor_introspection
|
Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData() results in multiple dereferences to the same pointer. If the pointer is located in memo…
|
NVD-CWE-Other
|
CVE-2020-15294
|
2024-11-21 14:05 |
2020-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
