|
210991
|
7.5 |
HIGH
Network
|
ruijie
|
rg-uac_firmware
|
Ruijie RG-UAC commit 9071227 was discovered to contain a vulnerability in the component /current_action.php?action=reboot, which allows attackers to cause a denial of service (DoS) via unspecified ve…
|
NVD-CWE-noinfo
|
CVE-2020-21627
|
2024-11-21 14:12 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210992
|
8.8 |
HIGH
Network
|
idreamsoft
|
icms
|
iCMS v7.0.15 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admincp.php?app=members&do=add.
|
CWE-352
Origin Validation Error
|
CVE-2020-21141
|
2024-11-21 14:12 |
2021-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210993
|
6.5 |
MEDIUM
Network
|
ec_cloud_e-commerce_system_project
|
ec_cloud_e-commerce_system
|
EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add admin accounts via /admin.html?do=user&act=add.
|
CWE-352
Origin Validation Error
|
CVE-2020-21139
|
2024-11-21 14:12 |
2021-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210994
|
9.6 |
CRITICAL
Network
|
wdja
|
wdja_cms
|
Cross Site Scripting (XSS) vulnerability in shadoweb wdja v1.5.1, allows attackers to execute arbitrary code and gain escalated privileges, via the backurl parameter to /php/passport/index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2020-20982
|
2024-11-21 14:12 |
2021-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210995
|
7.5 |
HIGH
Network
|
c-http_project
|
c-http
|
Buffer overflow vulnerability in YotsuyaNight c-http v0.1.0, allows attackers to cause a denial of service via a long url request which is passed to the delimitedread function.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-21574
|
2024-11-21 14:12 |
2021-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210996
|
5.5 |
MEDIUM
Local
|
image-processing_project
|
image-processing
|
An issue was discoverered in in abhijitnathwani image-processing v0.1.0, allows local attackers to cause a denial of service via a crafted image file.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-21573
|
2024-11-21 14:12 |
2021-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210997
|
7.5 |
HIGH
Network
|
gilcc_project
|
gilcc
|
Buffer overflow vulnerability in function src_parser_trans_stage_1_2_3 trgil gilcc before commit 803969389ca9c06237075a7f8eeb1a19e6651759, allows attackers to cause a denial of service.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-21572
|
2024-11-21 14:12 |
2021-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210998
|
7.5 |
HIGH
Network
|
libiec_iccp_mod_project
|
libiec_iccp_mod
|
Buffer overflow vulnerability in fcovatti libiec_iccp_mod v1.5, allows attackers to cause a denail of service when trying to calloc an unexpectiedly large space.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-20658
|
2024-11-21 14:12 |
2021-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210999
|
7.5 |
HIGH
Network
|
libiec_iccp_mod_project
|
libiec_iccp_mod
|
Buffer overflow vulnerability in fcovatti libiec_iccp_mod v1.5, allows attackers to cause a denial of service via an unexpected packet while trying to connect.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-20657
|
2024-11-21 14:12 |
2021-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211000
|
9.8 |
CRITICAL
Network
|
cszcms
|
csz_cms
|
CSZ CMS v1.2.4 was discovered to contain an arbitrary file upload vulnerability in the component /core/MY_Security.php.
|
CWE-89
SQL Injection
|
CVE-2020-21250
|
2024-11-21 14:12 |
2021-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
