|
194541
|
8.8 |
HIGH
Network
|
microsoft
|
edge
internet_explorer
|
Internet Explorer Memory Corruption Vulnerability
|
CWE-416
Use After Free
|
CVE-2021-26411
|
2024-11-21 14:56 |
2021-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194542
|
7.5 |
HIGH
Network
|
oryx-embedded
|
cyclonetcp
|
Oryx Embedded CycloneTCP 1.7.6 to 2.0.0, fixed in 2.0.2, is affected by incorrect input validation, which may cause a denial of service (DoS). To exploit the vulnerability, an attacker needs to have …
|
CWE-20
Improper Input Validation
|
CVE-2021-26788
|
2024-11-21 14:56 |
2021-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194543
|
7.5 |
HIGH
Network
|
afterlogic
|
webmail_pro
aurora
|
An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9. They allow directory traversal to read files (such as a data/settings/settings.xml file containing admin pane…
|
CWE-22
Path Traversal
|
CVE-2021-26294
|
2024-11-21 14:56 |
2021-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194544
|
8.8 |
HIGH
Network
|
wazuh
|
wazuh
|
Wazuh API in Wazuh from 4.0.0 to 4.0.3 allows authenticated users to execute arbitrary code with administrative privileges via /manager/files URI. An authenticated user to the service may exploit inc…
|
CWE-22
Path Traversal
|
CVE-2021-26814
|
2024-11-21 14:56 |
2021-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194545
|
9.1 |
CRITICAL
Network
|
squarebox
|
catdv
|
An issue was discovered in SquareBox CatDV Server through 9.2. An attacker can invoke sensitive RMI methods such as getConnections without authentication, the results of which can be used to generate…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2021-26705
|
2024-11-21 14:56 |
2021-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194546
|
9.8 |
CRITICAL
Network
|
afterlogic
|
aurora
webmail_pro
|
An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail Pro through 8.5.3, when DAV is enabled. They allow directory traversal to create new files (such as an executable file under the…
|
CWE-22
Path Traversal
|
CVE-2021-26293
|
2024-11-21 14:56 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194547
|
7.5 |
HIGH
Network
|
markdown2_project
fedoraproject
|
markdown2
fedora
|
markdown2 >=1.0.1.18, fixed in 2.4.0, is affected by a regular expression denial of service vulnerability. If an attacker provides a malicious string, it can make markdown2 processing difficult or de…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2021-26813
|
2024-11-21 14:56 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194548
|
6.6 |
MEDIUM
Network
|
microsoft
|
exchange_server
|
Microsoft Exchange Server Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2021-26854
|
2024-11-21 14:56 |
2021-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194549
|
9.1 |
CRITICAL
Network
|
microsoft
|
exchange_server
|
Microsoft Exchange Server Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2021-26412
|
2024-11-21 14:56 |
2021-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194550
|
8.8 |
HIGH
Network
|
eprints
|
eprints
|
EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI.
|
CWE-78
OS Command
|
CVE-2021-26704
|
2024-11-21 14:56 |
2021-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
