|
208611
|
8.8 |
HIGH
Network
|
cgal
debian
|
computational_geometry_algorithms_library
debian_linux
|
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…
|
-
|
CVE-2020-28611
|
2024-11-21 14:23 |
2022-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208612
|
8.8 |
HIGH
Network
|
cgal
debian
|
computational_geometry_algorithms_library
debian_linux
|
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…
|
-
|
CVE-2020-28610
|
2024-11-21 14:23 |
2022-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208613
|
8.8 |
HIGH
Network
|
cgal
debian
|
computational_geometry_algorithms_library
debian_linux
|
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…
|
-
|
CVE-2020-28606
|
2024-11-21 14:23 |
2022-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208614
|
8.8 |
HIGH
Network
|
cgal
debian
|
computational_geometry_algorithms_library
debian_linux
|
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…
|
-
|
CVE-2020-28605
|
2024-11-21 14:23 |
2022-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208615
|
5.4 |
MEDIUM
Network
|
fortinet
|
fortisandbox
|
An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2 may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests.
|
CWE-20
Improper Input Validation
|
CVE-2020-29013
|
2024-11-21 14:23 |
2022-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208616
|
5.4 |
MEDIUM
Network
|
valine.js
|
valine
|
Cross Site Scripting (XSS) vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment.
|
CWE-79
Cross-site Scripting
|
CVE-2020-28847
|
2024-11-21 14:23 |
2022-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208617
|
7.2 |
HIGH
Network
|
liferay
|
liferay_portal
|
Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject commands through the Gogo Shell module to execute any OS command on the Life…
|
CWE-78
OS Command
|
CVE-2020-28885
|
2024-11-21 14:23 |
2022-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208618
|
7.2 |
HIGH
Network
|
liferay
|
liferay_portal
|
Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject Groovy script to execute any OS command on the Liferay Portal Sever. NOTE: T…
|
CWE-78
OS Command
|
CVE-2020-28884
|
2024-11-21 14:23 |
2022-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208619
|
5.4 |
MEDIUM
Network
|
checkmk
|
checkmk
|
A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.
|
CWE-79
Cross-site Scripting
|
CVE-2020-28919
|
2024-11-21 14:23 |
2022-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208620
|
8.8 |
HIGH
Network
|
zohocorp
|
manageengine_applications_manager
|
A vulnerability in the showReports module of Zoho ManageEngine Applications Manager before build 14550 allows authenticated attackers to execute a SQL injection via a crafted request.
|
CWE-89
SQL Injection
|
CVE-2020-28679
|
2024-11-21 14:23 |
2022-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
