|
196161
|
5.4 |
MEDIUM
Network
|
tibco
|
spotfire_server
spotfire_desktop
spotfire_analyst
analytics_platform
|
The Spotfire client component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Desktop, and TIBCO Spotfire Server contains a vuln…
|
CWE-79
Cross-site Scripting
|
CVE-2021-23273
|
2024-11-21 14:51 |
2021-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196162
|
7.5 |
HIGH
Network
|
parall
|
jspdf
|
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function.
|
NVD-CWE-noinfo
|
CVE-2021-23353
|
2024-11-21 14:51 |
2021-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196163
|
9.8 |
CRITICAL
Network
|
madge_project
|
madge
|
This affects the package madge before 4.0.1. It is possible to specify a custom Graphviz path via the graphVizPath option parameter which when the .image(), .svg() or .dot() functions are called, is …
|
CWE-89
SQL Injection
|
CVE-2021-23352
|
2024-11-21 14:51 |
2021-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196164
|
4.9 |
MEDIUM
Network
|
go-proxyproto_project
fedoraproject
|
go-proxyproto
fedora
|
The package github.com/pires/go-proxyproto before 0.5.0 are vulnerable to Denial of Service (DoS) via the parseVersion1() function. The reader in this package is a default bufio.Reader wrapping a net…
|
NVD-CWE-noinfo
|
CVE-2021-23351
|
2024-11-21 14:51 |
2021-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196165
|
7.5 |
HIGH
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 3.0.0 through 3.9.24. com_media allowed paths that are not intended for image uploads
|
NVD-CWE-noinfo
|
CVE-2021-23132
|
2024-11-21 14:51 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196166
|
7.5 |
HIGH
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Missing input validation within the template manager.
|
CWE-20
Improper Input Validation
|
CVE-2021-23131
|
2024-11-21 14:51 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196167
|
6.1 |
MEDIUM
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of feed fields could lead to xss issues.
|
CWE-79
Cross-site Scripting
|
CVE-2021-23130
|
2024-11-21 14:51 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196168
|
6.1 |
MEDIUM
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of messages showed to users that could lead to xss issues.
|
CWE-79
Cross-site Scripting
|
CVE-2021-23129
|
2024-11-21 14:51 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196169
|
9.1 |
CRITICAL
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF (FOFEncryptRandval) used an potential insecure implemetation. That has now been …
|
NVD-CWE-noinfo
|
CVE-2021-23128
|
2024-11-21 14:51 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196170
|
9.1 |
CRITICAL
Network
|
joomla
|
joomla\!
|
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of an insufficient length for the 2FA secret accoring to RFC 4226 of 10 bytes vs 20 bytes.
|
NVD-CWE-noinfo
|
CVE-2021-23127
|
2024-11-21 14:51 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
