|
210631
|
7.5 |
HIGH
Network
|
gmate_project
|
gmate
|
gmate v0.12+bionic contains a regular expression denial of service (ReDoS) vulnerability in the gedit3 plugin.
|
NVD-CWE-noinfo
|
CVE-2020-23469
|
2024-11-21 14:13 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210632
|
5.5 |
MEDIUM
Local
|
broadcom
|
tcpreplay
|
Heap-buffer overflow in the randomize_iparp function in edit_packet.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service (DOS) via a crafted pcap.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23273
|
2024-11-21 14:13 |
2021-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210633
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in gpac 0.8.0. The stbl_GetSampleSize function in isomedia/stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23269
|
2024-11-21 14:13 |
2021-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210634
|
7.1 |
HIGH
Local
|
gpac
|
gpac
|
An issue was discovered in gpac 0.8.0. The gf_hinter_track_process function in isom_hinter_track_process.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted m…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23267
|
2024-11-21 14:13 |
2021-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210635
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in gpac 0.8.0. The OD_ReadUTF8String function in odf_code.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-23266
|
2024-11-21 14:13 |
2021-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210636
|
9.8 |
CRITICAL
Network
|
chshcms
|
cscms
|
A remote code execution (RCE) vulnerability in the \Playsong.php component of cscms v4.1 allows attackers to execute arbitrary commands.
|
NVD-CWE-noinfo
|
CVE-2020-22848
|
2024-11-21 14:13 |
2021-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210637
|
6.1 |
MEDIUM
Network
|
cacti
debian
|
cacti
debian_linux
|
Multiple Cross Site Scripting (XSS) vulneratiblities exist in Cacti 1.2.12 in (1) reports_admin.php, (2) data_queries.php, (3) data_input.php, (4) graph_templates.php, (5) graphs.php, (6) reports_adm…
|
CWE-79
Cross-site Scripting
|
CVE-2020-23226
|
2024-11-21 14:13 |
2021-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210638
|
8.8 |
HIGH
Network
|
centreon
|
centreon
|
/graphStatus/displayServiceStatus.php in Centreon 19.10.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the RRDdatabase_path parameter.
|
CWE-78
OS Command
|
CVE-2020-22345
|
2024-11-21 14:13 |
2021-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210639
|
7.5 |
HIGH
Network
|
joyplus-cms_project
|
joyplus-cms
|
A vulnerability in the \inc\config.php component of joyplus-cms v1.6 allows attackers to access sensitive information.
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2020-22124
|
2024-11-21 14:13 |
2021-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210640
|
7.5 |
HIGH
Network
|
find_a_place_ljcms_project
|
find_a_place_ljcms
|
A SQL injection vulnerability in /oa.php?c=Staff&a=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database information via a crafted POST request.
|
CWE-89
SQL Injection
|
CVE-2020-22122
|
2024-11-21 14:13 |
2021-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
