|
199471
|
6.5 |
MEDIUM
Network
|
wire
|
wire-webapp
|
wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted to enter the app-lock passphrase, the typ…
|
CWE-200
Information Exposure
|
CVE-2021-21400
|
2024-11-21 14:48 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199472
|
6.5 |
MEDIUM
Network
|
node-etsy-client_project
|
node-etsy-client
|
node-etsy-client is a NodeJs Etsy ReST API Client. Applications that are using node-etsy-client and reporting client error to the end user will offer api key value too This is fixed in node-etsy-clie…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-21421
|
2024-11-21 14:48 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199473
|
7.8 |
HIGH
Local
|
stripe
|
stripe
|
vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings…
|
NVD-CWE-noinfo
|
CVE-2021-21420
|
2024-11-21 14:48 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199474
|
2.6 |
LOW
Network
|
django-registration_project
|
django-registration
|
django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-r…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-21416
|
2024-11-21 14:48 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199475
|
5.4 |
MEDIUM
Network
|
prestashop
|
ps_emailsubscription
|
ps_emailsubscription is a newsletter subscription module for the PrestaShop platform. An employee can inject javascript in the newsletter condition field that will then be executed on the front offic…
|
-
|
CVE-2021-21418
|
2024-11-21 14:48 |
2021-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199476
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An out-of-bounds write vulnerability exists in the SGI format buffer size processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An att…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21782
|
2024-11-21 14:48 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199477
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An out-of-bounds write vulnerability exists in the SGI Format Buffer Size Processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An att…
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2021-21776
|
2024-11-21 14:48 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199478
|
7.8 |
HIGH
Local
|
accusoft
|
imagegear
|
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An attacker…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2021-21773
|
2024-11-21 14:48 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199479
|
9.6 |
CRITICAL
Adjacent
|
isolated-vm_project
|
isolated-vm
|
isolated-vm is a library for nodejs which gives you access to v8's Isolate interface. Versions of isolated-vm before v4.0.0 have API pitfalls which may make it easy for implementers to expose suppose…
|
-
|
CVE-2021-21413
|
2024-11-21 14:48 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199480
|
8.8 |
HIGH
Network
|
\@thi.ng\/egf_project
|
\@thi.ng\/egf
|
Potential for arbitrary code execution in npm package @thi.ng/egf `#gpg`-tagged property values (only if `decrypt: true` option is enabled). PR with patch has been submitted and will has been release…
|
-
|
CVE-2021-21412
|
2024-11-21 14:48 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
