|
199141
|
4.8 |
MEDIUM
Network
|
microfocus
|
application_performance_management
|
Persistent Cross-Site scripting vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. The vulnerability could allow persistent XSS attack.
|
CWE-79
Cross-site Scripting
|
CVE-2021-22499
|
2024-11-21 14:50 |
2021-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199142
|
6.1 |
MEDIUM
Network
|
revive-adserver
|
revive_adserver
|
Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in stats.php via the `setPerPage` parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2021-22875
|
2024-11-21 14:50 |
2021-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199143
|
6.1 |
MEDIUM
Network
|
revive-adserver
|
revive_adserver
|
Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in userlog-index.php via the `period_preset` parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2021-22874
|
2024-11-21 14:50 |
2021-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199144
|
7.8 |
HIGH
Local
|
fujielectric
|
v-server
v-simulator
|
Multiple out-of-bounds read issues have been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code executio…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-22655
|
2024-11-21 14:50 |
2021-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199145
|
7.8 |
HIGH
Local
|
fujielectric
|
v-server
v-simulator
|
Multiple out-of-bounds write issues have been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code executi…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-22653
|
2024-11-21 14:50 |
2021-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199146
|
7.8 |
HIGH
Local
|
fujielectric
|
v-server
v-simulator
|
A heap-based buffer overflow issue has been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code execution…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-22641
|
2024-11-21 14:50 |
2021-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199147
|
7.8 |
HIGH
Local
|
fujielectric
|
v-server
v-simulator
|
An uninitialized pointer issue has been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code execution on …
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2021-22639
|
2024-11-21 14:50 |
2021-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199148
|
7.8 |
HIGH
Local
|
fujielectric
|
v-server
v-simulator
|
Multiple stack-based buffer overflow issues have been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-22637
|
2024-11-21 14:50 |
2021-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199149
|
6.1 |
MEDIUM
Network
|
revive-adserver
|
revive_adserver
|
Revive Adserver before 5.1.0 is vulnerable to open redirects via the `dest`, `oadest`, and/or `ct0` parameters of the lg.php and ck.php delivery scripts. Such open redirects had previously been avail…
|
CWE-601
Open Redirect
|
CVE-2021-22873
|
2024-11-21 14:50 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199150
|
6.1 |
MEDIUM
Network
|
revive-adserver
|
revive_adserver
|
Revive Adserver before 5.1.0 is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the publicly accessible afr.php delivery script. While this issue was previously addressed in mo…
|
CWE-79
Cross-site Scripting
|
CVE-2021-22872
|
2024-11-21 14:50 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
