|
196281
|
7.5 |
HIGH
Network
|
fortinet
|
fortiwan
|
A use of a one-way hash with a predictable salt vulnerability [CWE-760] in FortiWAN before 4.5.9 may allow an attacker who has previously come in possession of the password file to potentially guess …
|
CWE-916
Use of Password Hash With Insufficient Computational Effort
|
CVE-2021-26113
|
2024-11-21 14:55 |
2022-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196282
|
7.8 |
HIGH
Local
|
fortinet
|
fortimanager
fortianalyzer
fortiportal
|
Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, FortiAnalyzer 6.2.7 a…
|
CWE-78
OS Command
|
CVE-2021-26104
|
2024-11-21 14:55 |
2022-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196283
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortiwan
|
Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiWAN before 4.5.9 may allow an unauthenticated attacker to execute unauthorized code or commands via…
|
CWE-89
SQL Injection
|
CVE-2021-26114
|
2024-11-21 14:55 |
2022-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196284
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortiwan
|
Multiple stack-based buffer overflow vulnerabilities [CWE-121] both in network daemons and in the command line interpreter of FortiWAN before 4.5.9 may allow an unauthenticated attacker to potentiall…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26112
|
2024-11-21 14:55 |
2022-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196285
|
7.8 |
HIGH
Local
|
htmldoc_project
|
htmldoc
|
A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in render_table_row(),in ps-pdf.cxx may lead to arbitrary code execution and denial of service.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26259
|
2024-11-21 14:55 |
2022-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196286
|
7.8 |
HIGH
Local
|
htmldoc_project
redhat
fedoraproject
|
htmldoc
enterprise_linux
fedora
|
A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in pspdf_prepare_page(),in ps-pdf.cxx may lead to execute arbitrary code and denial of service.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26252
|
2024-11-21 14:55 |
2022-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196287
|
7.5 |
HIGH
Network
|
libreoffice
fedoraproject
|
libreoffice
fedora
|
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature …
|
CWE-295
Improper Certificate Validation
|
CVE-2021-25636
|
2024-11-21 14:55 |
2022-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196288
|
6.1 |
MEDIUM
Network
|
fortinet
|
fortiproxy
fortios
|
Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 through 5.2.15, 5.4.0 through 5.4.13, 5.6.0 through 5.6.14, 6.0.0 through 6.0.12, 6.2.0 through 6.2.7, 6.4.0 through 6.4.4; and F…
|
CWE-79
Cross-site Scripting
|
CVE-2021-26092
|
2024-11-21 14:55 |
2022-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196289
|
6.1 |
MEDIUM
Network
|
ays-pro
|
survey_maker
|
Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered in Survey Maker WordPress plugin (versions <= 2.0.6).
|
CWE-79
Cross-site Scripting
|
CVE-2021-26256
|
2024-11-21 14:55 |
2022-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196290
|
9.8 |
CRITICAL
Network
|
if-me
|
ifme
|
In Ifme, versions 1.0.0 to v.7.33.2 don’t properly invalidate a user’s session even after the user initiated logout. It makes it possible for an attacker to reuse the admin cookies either via local/n…
|
-
|
CVE-2021-25992
|
2024-11-21 14:55 |
2022-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
