|
199841
|
7.5 |
HIGH
Network
|
glpi-project
|
glpi
|
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI before version 9.5.4 non-authenticated user …
|
CWE-470
Unsafe Reflection
|
CVE-2021-21327
|
2024-11-21 14:48 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199842
|
6.5 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI before version 9.5.4 it is possible to creat…
|
-
|
CVE-2021-21326
|
2024-11-21 14:48 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199843
|
4.8 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI before version 9.5.4 a new budget type can b…
|
-
|
CVE-2021-21325
|
2024-11-21 14:48 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199844
|
6.5 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI before version 9.5.4 there is an Insecure Di…
|
-
|
CVE-2021-21324
|
2024-11-21 14:48 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199845
|
5.7 |
MEDIUM
Adjacent
|
zte
|
zxhn_h196q_firmware
|
A ZTE product has an information leak vulnerability. An attacker with higher authority can go beyond their authority to access files in other directories by performing specific operations, resulting …
|
CWE-863
Incorrect Authorization
|
CVE-2021-21725
|
2024-11-21 14:48 |
2021-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199846
|
4.8 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is an XSS vulnerab…
|
-
|
CVE-2021-21314
|
2024-11-21 14:48 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199847
|
3.3 |
LOW
Local
|
datadoghq
|
datadog-api-client-java
|
The Java client for the Datadog API before version 1.0.0-beta.9 has a local information disclosure of sensitive information downloaded via the API using the API Client. The Datadog API is executed on…
|
NVD-CWE-Other
|
CVE-2021-21331
|
2024-11-21 14:48 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199848
|
6.1 |
MEDIUM
Network
|
glpi-project
|
glpi
|
GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is a vulnerability…
|
CWE-79
Cross-site Scripting
|
CVE-2021-21313
|
2024-11-21 14:48 |
2021-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199849
|
9.0 |
CRITICAL
Network
|
pugjs
|
pug
pug-code-gen
|
Pug is an npm package which is a high-performance template engine. In pug before version 3.0.1, if a remote attacker was able to control the `pretty` option of the pug compiler, e.g. if you spread a …
|
-
|
CVE-2021-21353
|
2024-11-21 14:48 |
2021-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199850
|
9.1 |
CRITICAL
Network
|
anuko
|
time_tracker
|
Anuko Time Tracker is an open source, web-based time tracking application written in PHP. In TimeTracker before version 1.19.24.5415 tokens used in password reset feature in Time Tracker are based on…
|
-
|
CVE-2021-21352
|
2024-11-21 14:48 |
2021-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
