|
200201
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
Improper neutralization of JavaScript input in the blog article editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecifie…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20683
|
2024-11-21 14:47 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200202
|
7.2 |
HIGH
Network
|
basercms
|
basercms
|
baserCMS versions prior to 4.4.5 allows a remote attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2021-20682
|
2024-11-21 14:47 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200203
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
Improper neutralization of JavaScript input in the page editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecified vector…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20681
|
2024-11-21 14:47 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200204
|
7.5 |
HIGH
Network
|
schema-inspector_project
netapp
|
schema-inspector
oncommand_insight
e-series_performance_analyzer
|
Schema-Inspector is an open-source tool to sanitize and validate JS objects (npm package schema-inspector). In before version 2.0.0, email address validation is vulnerable to a denial-of-service atta…
|
-
|
CVE-2021-21267
|
2024-11-21 14:47 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200205
|
8.8 |
HIGH
Network
|
google
fedoraproject
debian
|
chrome
fedora
debian_linux
|
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21193
|
2024-11-21 14:47 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200206
|
8.8 |
HIGH
Network
|
google
fedoraproject
debian
|
chrome
fedora
debian_linux
|
Heap buffer overflow in tab groups in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21192
|
2024-11-21 14:47 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200207
|
8.8 |
HIGH
Network
|
google
fedoraproject
debian
|
chrome
fedora
debian_linux
|
Use after free in WebRTC in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21191
|
2024-11-21 14:47 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200208
|
7.8 |
HIGH
Local
|
adobe
|
connect
|
Adobe Connect version 11.0.7 (and earlier) is affected by an Input Validation vulnerability in the export feature. An attacker could exploit this vulnerability by injecting a payload into an online e…
|
-
|
CVE-2021-21085
|
2024-11-21 14:47 |
2021-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200209
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Adobe Photoshop versions 21.2.5 (and earlier) and 22.2 (and earlier) are affected by a Memory Corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverag…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21082
|
2024-11-21 14:47 |
2021-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200210
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject malicious JavaScript content tha…
|
-
|
CVE-2021-21080
|
2024-11-21 14:47 |
2021-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
