|
194741
|
5.4 |
MEDIUM
Network
|
alkacon
|
opencms
|
In “OpenCMS”, versions 10.5.0 to 11.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the Sitemap functionality. These scripts …
|
CWE-79
Cross-site Scripting
|
CVE-2021-25968
|
2024-11-21 14:55 |
2021-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194742
|
7.5 |
HIGH
Network
|
libreoffice
debian
|
libreoffice
debian_linux
|
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature …
|
CWE-295
Improper Certificate Validation
|
CVE-2021-25634
|
2024-11-21 14:55 |
2021-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194743
|
6.7 |
MEDIUM
Local
|
kubernetes
|
java
|
Loading specially-crafted yaml with the Kubernetes Java Client library can lead to code execution.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2021-25738
|
2024-11-21 14:55 |
2021-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194744
|
7.5 |
HIGH
Network
|
libreoffice
debian
|
libreoffice
debian_linux
|
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature …
|
CWE-295
Improper Certificate Validation
|
CVE-2021-25633
|
2024-11-21 14:55 |
2021-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194745
|
8.8 |
HIGH
Network
|
orchardcore
|
orchard_core
|
In “Orchard core CMS” application, versions 1.0.0-beta1-3383 to 1.0.0 are vulnerable to an improper session termination after password change. When a password has been changed by the user or by an ad…
|
CWE-613
Insufficient Session Expiration
|
CVE-2021-25966
|
2024-11-21 14:55 |
2021-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194746
|
5.5 |
MEDIUM
Local
|
samsung
|
galaxy_store
|
Intent redirection vulnerability in SamsungAccountSDKSigninActivity of Galaxy Store prior to version 4.5.32.4 allows attacker to access content provider of Galaxy Store.
|
NVD-CWE-noinfo
|
CVE-2021-25499
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194747
|
7.8 |
HIGH
Local
|
samsung
|
notes
|
A possible buffer overflow vulnerability in maetd_eco_cb_mode of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-25498
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194748
|
7.8 |
HIGH
Local
|
samsung
|
notes
|
A possible buffer overflow vulnerability in maetd_cpy_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-25497
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194749
|
7.8 |
HIGH
Local
|
samsung
|
notes
|
A possible buffer overflow vulnerability in maetd_dec_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-25496
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194750
|
7.8 |
HIGH
Local
|
samsung
|
notes
|
A possible heap buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-25495
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
