|
195811
|
6.1 |
MEDIUM
Network
|
activefusions
|
order_status_batch_change
|
Cross-site scripting vulnerability in Order Status Batch Change Plug-in (for EC-CUBE 3.0 series) all versions allows a remote attacker to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20828
|
2024-11-21 14:47 |
2021-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195812
|
6.1 |
MEDIUM
Network
|
shiro8
|
list_\(order_management\)_item_change
|
Cross-site scripting vulnerability in List (order management) item change plug-in (for EC-CUBE 3.0 series) Ver.1.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified v…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20825
|
2024-11-21 14:47 |
2021-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195813
|
9.3 |
CRITICAL
Network
|
jscom
|
revoworks_browser
|
Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to bypass access restriction and to exchange unauthorized files between the local environment and the…
|
NVD-CWE-Other
|
CVE-2021-20791
|
2024-11-21 14:47 |
2021-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195814
|
9.6 |
CRITICAL
Network
|
jscom
|
revoworks_browser
|
Improper control of program execution vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to execute an arbitrary command or code via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2021-20790
|
2024-11-21 14:47 |
2021-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195815
|
8.8 |
HIGH
Network
|
adobe
|
illustrator
|
Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to a…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21105
|
2024-11-21 14:47 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195816
|
8.8 |
HIGH
Network
|
adobe
|
illustrator
|
Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to r…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21104
|
2024-11-21 14:47 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195817
|
8.8 |
HIGH
Network
|
adobe
|
illustrator
|
Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to d…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21103
|
2024-11-21 14:47 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195818
|
7.8 |
HIGH
Local
|
adobe
|
acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc
|
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an Out-of-bounds Write vulnerability in the CoolType li…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21086
|
2024-11-21 14:47 |
2021-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195819
|
6.1 |
MEDIUM
Network
|
sixapart
|
movable_type
|
Cross-site scripting vulnerability in Edit Boilerplate screen of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type 7 Series), Movable Type 6.8.0 and earlier (Movable Type 6 Series), Movab…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20815
|
2024-11-21 14:47 |
2021-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195820
|
6.1 |
MEDIUM
Network
|
sixapart
|
movable_type
|
Cross-site scripting vulnerability in Setting screen of ContentType Information Widget Plugin of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.490…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20814
|
2024-11-21 14:47 |
2021-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
