|
212501
|
5.3 |
MEDIUM
Network
|
intelbras
|
tip200_firmware
tip200lite_firmware
tip300_firmware
|
Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal.
|
CWE-22
Path Traversal
|
CVE-2020-13886
|
2024-11-21 14:02 |
2020-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212502
|
7.5 |
HIGH
Network
|
atlassian
|
crucible
fisheye
|
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to achieve Regex Denial of Service via user-supplied regex in EyeQL. The affected versions are before version 4.8.4.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-14190
|
2024-11-21 14:02 |
2020-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212503
|
7.5 |
HIGH
Network
|
atlassian
|
crucible
fisheye
|
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the MessageBundleResource within Atlassi…
|
NVD-CWE-noinfo
|
CVE-2020-14191
|
2024-11-21 14:02 |
2020-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212504
|
9.8 |
CRITICAL
Network
|
apache
|
unomi
|
It is possible to inject malicious OGNL or MVEL scripts into the /context.json public endpoint. This was partially fixed in 1.5.1 but a new attack vector was found. In Apache Unomi version 1.5.2 scri…
|
CWE-74
Injection
|
CVE-2020-13942
|
2024-11-21 14:02 |
2020-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212505
|
7.5 |
HIGH
Network
|
hcltech
|
notes
|
HCL Notes is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a speciall…
|
CWE-20
Improper Input Validation
|
CVE-2020-14258
|
2024-11-21 14:02 |
2020-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212506
|
7.5 |
HIGH
Network
|
hcltech
|
domino
|
HCL Domino is susceptible to a Denial of Service vulnerability due to improper validation of user-supplied input, potentially giving an attacker the ability to crash the server. Versions previous to …
|
CWE-20
Improper Input Validation
|
CVE-2020-14234
|
2024-11-21 14:02 |
2020-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212507
|
7.5 |
HIGH
Network
|
hcltech
|
domino
|
HCL Domino is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a special…
|
CWE-20
Improper Input Validation
|
CVE-2020-14230
|
2024-11-21 14:02 |
2020-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212508
|
5.4 |
MEDIUM
Network
|
salesagility
|
suitecrm
|
SuiteCRM 7.11.13 is affected by stored Cross-Site Scripting (XSS) in the Documents preview functionality. This vulnerability could allow remote authenticated attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2020-14208
|
2024-11-21 14:02 |
2020-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212509
|
7.8 |
HIGH
Local
|
apache
|
openoffice
|
A vulnerability in Apache OpenOffice scripting events allows an attacker to construct documents containing hyperlinks pointing to an executable on the target users file system. These hyperlinks can b…
|
NVD-CWE-noinfo
|
CVE-2020-13958
|
2024-11-21 14:02 |
2020-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212510
|
9.8 |
CRITICAL
Network
|
resourcexpress
|
meeting_monitor
|
SQL Injection issues in various ASPX pages of ResourceXpress Meeting Monitor 4.9 could lead to remote code execution and information disclosure.
|
CWE-89
SQL Injection
|
CVE-2020-13877
|
2024-11-21 14:02 |
2020-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
