|
198571
|
6.1 |
MEDIUM
Network
|
yomi-search_project
|
yomi-search
|
Cross-site scripting vulnerability in Yomi-Search Ver4.22 allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20689
|
2024-11-21 14:47 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198572
|
6.1 |
MEDIUM
Network
|
click-ranker
|
click_ranker
|
Cross-site scripting vulnerability in Click Ranker Ver.3.5 allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20688
|
2024-11-21 14:47 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198573
|
8.8 |
HIGH
Network
|
daifukuya
|
kagemai
|
Cross-site request forgery (CSRF) vulnerability in Kagemai 0.8.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors.
|
CWE-352
Origin Validation Error
|
CVE-2021-20687
|
2024-11-21 14:47 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198574
|
6.1 |
MEDIUM
Network
|
daifukuya
|
kagemai
|
Cross-site scripting vulnerability in Kagemai 0.8.8 allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20686
|
2024-11-21 14:47 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198575
|
6.1 |
MEDIUM
Network
|
daifukuya
|
kagemai
|
Cross-site scripting vulnerability in Kagemai 0.8.8 allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20685
|
2024-11-21 14:47 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198576
|
6.1 |
MEDIUM
Network
|
magazinegerz_project
|
magazinegerz
|
Cross-site scripting vulnerability in MagazinegerZ v.1.01 allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20684
|
2024-11-21 14:47 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198577
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
Improper neutralization of JavaScript input in the blog article editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecifie…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20683
|
2024-11-21 14:47 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198578
|
7.2 |
HIGH
Network
|
basercms
|
basercms
|
baserCMS versions prior to 4.4.5 allows a remote attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2021-20682
|
2024-11-21 14:47 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198579
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
Improper neutralization of JavaScript input in the page editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecified vector…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20681
|
2024-11-21 14:47 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198580
|
7.5 |
HIGH
Network
|
schema-inspector_project
netapp
|
schema-inspector
oncommand_insight
e-series_performance_analyzer
|
Schema-Inspector is an open-source tool to sanitize and validate JS objects (npm package schema-inspector). In before version 2.0.0, email address validation is vulnerable to a denial-of-service atta…
|
-
|
CVE-2021-21267
|
2024-11-21 14:47 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
