|
195151
|
6.5 |
MEDIUM
Network
|
weseek
|
growi
|
Improper authentication vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to view the unauthorized pages without access privileges via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2021-20737
|
2024-11-21 14:47 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195152
|
9.1 |
CRITICAL
Network
|
weseek
|
growi
|
NoSQL injection vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to obtain and/or alter the information stored in the database via unspecified vectors.
|
CWE-74
Injection
|
CVE-2021-20736
|
2024-11-21 14:47 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195153
|
6.1 |
MEDIUM
Network
|
ec-cube
|
delivery_slip_number_mail
delivery_slip_number_csv_bulk_registration
delivery_slip_number
|
Cross-site scripting vulnerability in ETUNA EC-CUBE plugins (Delivery slip number plugin (3.0 series) 1.0.10 and earlier, Delivery slip number csv bulk registration plugin (3.0 series) 1.0.8 and earl…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20735
|
2024-11-21 14:47 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195154
|
6.1 |
MEDIUM
Network
|
collne
|
welcart
|
Cross-site scripting vulnerability in Welcart e-Commerce versions prior to 2.2.4 allows remote attackers to inject arbitrary script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20734
|
2024-11-21 14:47 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195155
|
6.1 |
MEDIUM
Network
|
asken
|
asken
|
Improper authorization in handler for custom URL scheme vulnerability in ????????? (asken diet) for Android versions from v.3.0.0 to v.4.2.x allows a remote attacker to lead a user to access an arbit…
|
CWE-862
Missing Authorization
|
CVE-2021-20733
|
2024-11-21 14:47 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195156
|
9.8 |
CRITICAL
Network
|
contiki-ng
|
contiki-ng
|
Contiki-NG is an open-source, cross-platform operating system for internet of things devices. A buffer overflow vulnerability exists in Contiki-NG versions prior to 4.6. After establishing a TCP sock…
|
-
|
CVE-2021-21281
|
2024-11-21 14:47 |
2021-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195157
|
9.8 |
CRITICAL
Network
|
contiki-ng
|
contiki-ng
|
Contiki-NG is an open-source, cross-platform operating system for internet of things devices. It is possible to cause an out-of-bounds write in versions of Contiki-NG prior to 4.6 when transmitting a…
|
-
|
CVE-2021-21280
|
2024-11-21 14:47 |
2021-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195158
|
7.5 |
HIGH
Network
|
contiki-ng
|
contiki-ng
|
Contiki-NG is an open-source, cross-platform operating system for internet of things devices. In verions prior to 4.6, an attacker can perform a denial-of-service attack by triggering an infinite loo…
|
-
|
CVE-2021-21279
|
2024-11-21 14:47 |
2021-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195159
|
7.5 |
HIGH
Network
|
contiki-ng
|
contiki-ng
|
Contiki-NG is an open-source, cross-platform operating system for internet of things devices. The RPL-Classic and RPL-Lite implementations in the Contiki-NG operating system versions prior to 4.6 do …
|
-
|
CVE-2021-21257
|
2024-11-21 14:47 |
2021-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195160
|
9.8 |
CRITICAL
Network
|
contiki-ng
|
contiki-ng
|
Contiki-NG is an open-source, cross-platform operating system for internet of things devices. In versions prior to 4.5, buffer overflow can be triggered by an input packet when using either of Contik…
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-21282
|
2024-11-21 14:47 |
2021-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
