|
195811
|
5.5 |
MEDIUM
Local
|
siemens
|
simatic_s7-plcsim
|
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 (All versions). An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used …
|
-
|
CVE-2021-25673
|
2024-11-21 14:55 |
2021-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195812
|
8.8 |
HIGH
Network
|
mendix
|
forgot_password
|
A vulnerability has been identified in Mendix Forgot Password Appstore module (All Versions < V3.2.1). The Forgot Password Marketplace module does not properly control access. An attacker could take …
|
NVD-CWE-Other
|
CVE-2021-25672
|
2024-11-21 14:55 |
2021-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195813
|
8.8 |
HIGH
Adjacent
|
siemens
|
ruggedcom_rm1224_firmware
scalance_m-800_firmware
scalance_s615_firmware
scalance_x300wg_firmware
scalance_xm400_firmware
scalance_xr500_firmware
scalance_sc622-2c_firmware
scala…
|
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE …
|
-
|
CVE-2021-25667
|
2024-11-21 14:55 |
2021-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195814
|
9.8 |
CRITICAL
Network
|
changeset_project
|
changeset
|
Prototype pollution vulnerability in 'changeset' versions 0.0.1 through 0.2.5 allows an attacker to cause a denial of service and may lead to remote code execution.
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2021-25915
|
2024-11-21 14:55 |
2021-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195815
|
5.3 |
MEDIUM
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 1.6.0 through 3.9.24. Inadequate filtering of form contents could allow to overwrite the author field.
|
NVD-CWE-Other
|
CVE-2021-26029
|
2024-11-21 14:55 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195816
|
5.5 |
MEDIUM
Local
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path.
|
CWE-22
Path Traversal
|
CVE-2021-26028
|
2024-11-21 14:55 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195817
|
5.3 |
MEDIUM
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Incorrect ACL checks could allow unauthorized change of the category for an article.
|
CWE-863
Incorrect Authorization
|
CVE-2021-26027
|
2024-11-21 14:55 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195818
|
9.8 |
CRITICAL
Network
|
fireblink
|
object-collider
|
Prototype pollution vulnerability in 'object-collider' versions 1.0.0 through 1.0.3 allows attacker to cause a denial of service and may lead to remote code execution.
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2021-25914
|
2024-11-21 14:55 |
2021-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195819
|
9.8 |
CRITICAL
Network
|
onlyoffice
|
document_server
|
A file extension handling issue was found in [server] module of ONLYOFFICE DocumentServer v4.2.0.71-v5.6.0.21. The file extension is controlled by an attacker through the request data and leads to ar…
|
CWE-22
Path Traversal
|
CVE-2021-25833
|
2024-11-21 14:55 |
2021-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195820
|
9.8 |
CRITICAL
Network
|
onlyoffice
|
document_server
|
A heap buffer overflow vulnerability inside of BMP image processing was found at [core] module of ONLYOFFICE DocumentServer v4.0.0-9-v6.0.0. Using this vulnerability, an attacker is able to gain remo…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-25832
|
2024-11-21 14:55 |
2021-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
