Xen use after free [CVE-2021-28691]
A vulnerability has been found in Xen (Virtualization Software) (affected version unknown) and classified as critical. Affected by this vulnerability
Xen 305.html TSX Async Abort Protection information disclosure
A vulnerability was found in Xen 305.html (Virtualization Software) and classified as problematic. Affected by this issue is an unknown
Apache Traffic Server up to 7.1.12/8.1.1/9.0.1 Cache request smuggling
A vulnerability was found in Apache Traffic Server up to 7.1.12/8.1.1/9.0.1. It has been classified as problematic. This affects some
Apache Traffic Server up to 7.1.12/8.1.1/9.0.1 Content-Length Header request smuggling
A vulnerability was found in Apache Traffic Server up to 7.1.12/8.1.1/9.0.1. It has been declared as critical. This vulnerability affects
urllib3 up to 1.26.4 Authority a incorrect regex
A vulnerability classified as problematic was found in urllib3 up to 1.26.4. This vulnerability affects an unknown functionality of the
Tor up to 0.4.6.4 Relay access control
A vulnerability, which was classified as critical, has been found in Tor up to 0.4.6.4 (Network Encryption Software). This issue
McAfee MVISION EDR up to 3.3.x command injection [CVE-2021-31838]
A vulnerability, which was classified as critical, was found in McAfee MVISION EDR up to 3.3.x. Affected is an unknown
Cisco Identity Services Engine X.509 Certificate certificate validation
A vulnerability was found in Cisco Identity Services Engine (Policy Management Software) (the affected version is unknown). It has been
Zammad up to 4.0.0 Note Field cross site scripting
A vulnerability was found in Zammad up to 4.0.0. It has been rated as problematic. This issue affects an unknown
Zammad up to 4.0.0 Email Connection Configuration access control
A vulnerability classified as critical has been found in Zammad up to 4.0.0. Affected is an unknown code block of
Zammad up to 4.0.0 User Avatar Attribute cross site scripting
A vulnerability classified as problematic was found in Zammad up to 4.0.0. Affected by this vulnerability is some unknown processing
PostSRSd up to 1.10 Postfix denial of service
A vulnerability, which was classified as problematic, has been found in PostSRSd up to 1.10. Affected by this issue is
Adobe Magento up to 2.3.6-p1/2.4.1-p1/2.4.2 Mage-Messages Cookie cross site scripting
A vulnerability, which was classified as problematic, was found in Adobe Magento up to 2.3.6-p1/2.4.1-p1/2.4.2. This affects an unknown functionality
Umbraco CMS up to 7.15.6 URL booting.aspx redirect
A vulnerability has been found in Umbraco CMS up to 7.15.6 (Content Management System) and classified as problematic. This vulnerability
Securepoint SSL VPN Client up to 2.0.31 on Windows Configuration Handling access control
A vulnerability was found in Securepoint SSL VPN Client up to 2.0.31 on Windows (Network Encryption Software) and classified as
Adobe Experience Manager up to 6.3.3.8/6.4.8.3/6.5.7.0 Form Field cross site scripting
A vulnerability was found in Adobe Experience Manager up to 6.3.3.8/6.4.8.3/6.5.7.0 (Content Management System). It has been classified as problematic.
LimeSurvey 4.2.5 Textbox cross site scripting
A vulnerability was found in LimeSurvey 4.2.5 (Survey Software). It has been declared as problematic. Affected by this vulnerability is
Webport CMS 1.19.10.17121 /file/download pathname traversal
A vulnerability was found in Webport CMS 1.19.10.17121 (Content Management System). It has been rated as problematic. Affected by this
IPFire 2.23 Web UI mail.cgi cross site scripting
A vulnerability classified as problematic has been found in IPFire 2.23. This affects an unknown function of the file mail.cgi
LimeSurvey 4.1.11+200316 PermissiontemplatesController.php name/description cross site scripting
A vulnerability was found in LimeSurvey 4.1.11+200316 (Survey Software) and classified as problematic. Affected by this issue is an unknown
Enhancesoft osTicket up to 1.12.5 Parameter include/ajax.search.php queue-name cross site scripting
A vulnerability was found in Enhancesoft osTicket up to 1.12.5 (Ticket Tracking Software). It has been classified as problematic. This
ECShop 4.0 Security Policy user.php cross site scripting
A vulnerability was found in ECShop 4.0. It has been declared as problematic. This vulnerability affects some unknown processing of
Enhancesoft osTicket up to 1.12.5 Parameter include/class.queue.php queue-name cross site scripting
A vulnerability was found in Enhancesoft osTicket up to 1.12.5 (Ticket Tracking Software). It has been rated as problematic. This
Sylius up to 1.9.4 information disclosure [CVE-2021-32720]
A vulnerability classified as problematic has been found in Sylius up to 1.9.4. Affected is an unknown functionality. Upgrading to