|
213301
|
9.8 |
CRITICAL
Network
|
victor_cms_project
|
victor_cms
|
SQL Injection vulnerability in victor cms 1.0 allows attackers to execute arbitrary commands via the post parameter to /post.php in a crafted GET request.
|
CWE-89
SQL Injection
|
CVE-2020-23966
|
2024-11-21 14:14 |
2023-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213302
|
7.8 |
HIGH
Local
|
mremoteng
|
mremoteng
|
An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. NOTE: third parties were unable to reproduce any scenario in which the claimed access of BUILTIN\…
|
CWE-269
Improper Privilege Management
|
CVE-2020-24307
|
2024-11-21 14:14 |
2023-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213303
|
6.1 |
MEDIUM
Network
|
github_readme_stats_project
|
github_readme_stats
|
Github Read Me Stats commit 3c7220e4f7144f6cb068fd433c774f6db47ccb95 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the function renderError.
|
CWE-79
Cross-site Scripting
|
CVE-2020-23986
|
2024-11-21 14:14 |
2022-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213304
|
5.5 |
MEDIUM
Local
|
ffmpeg
|
ffmpeg
|
FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity.
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2020-23906
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213305
|
5.5 |
MEDIUM
Local
|
xiph
|
speex
|
A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states "I cannot reproduce it" and it "is a demo progr…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23904
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213306
|
5.5 |
MEDIUM
Local
|
xiph
fedoraproject
|
speex
fedora
|
A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
|
CWE-369
Divide By Zero
|
CVE-2020-23903
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213307
|
5.5 |
MEDIUM
Local
|
wildbit-soft
|
wildbit_viewer
|
A buffer overflow in WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file. Related to Data from Faulting Address may be used as a return value starting at Ed…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-23902
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213308
|
5.5 |
MEDIUM
Local
|
wildbit-soft
|
wildbit_viewer
|
A User Mode Write AV in Editor+0x5d15 of WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23901
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213309
|
5.5 |
MEDIUM
Local
|
wildbit-soft
|
wildbit_viewer
|
A buffer overflow in WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file. Related to Data from Faulting Address controls Code Flow starting at Editor!TMetho…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-23900
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213310
|
5.5 |
MEDIUM
Local
|
wildbit-soft
|
wildbit_viewer
|
A User Mode Write AV in Editor+0x5f91 of WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23899
|
2024-11-21 14:14 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
