Day: August 21, 2021

Adobe Media Encoder up to 15.2 uninitialized pointer [CVE-2021-36014]

A vulnerability, which was classified as problematic, was found in Adobe Media Encoder up to 15.2. This affects an unknown

Common Vulnerabilities and Exposures

Adobe Media Encoder up to 15.2 out-of-bounds read [CVE-2021-36016]

A vulnerability has been found in Adobe Media Encoder up to 15.2 and classified as problematic. This vulnerability affects some

Common Vulnerabilities and Exposures

SEOPanel 4.6.0 Import Website unrestricted upload

A vulnerability was found in SEOPanel 4.6.0 and classified as critical. This issue affects an unknown part of the component

Common Vulnerabilities and Exposures

Komoot up to 11.1.11 Friend Finder information disclosure

A vulnerability was found in Komoot up to 11.1.11. It has been classified as problematic. Affected is an unknown code

Common Vulnerabilities and Exposures

GitLab up to 13.11.5/13.12.5/14.0.1 Webhook denial of service

A vulnerability was found in GitLab up to 13.11.5/13.12.5/14.0.1 (Bug Tracking Software). It has been declared as problematic. Affected by

Common Vulnerabilities and Exposures

Baserow up to 1.0.x File Upload server-side request forgery

A vulnerability was found in Baserow up to 1.0.x. It has been rated as critical. Affected by this issue is

Common Vulnerabilities and Exposures

Hitachi ABB Power Grids Retail Operations up to 5.7.2 insufficiently protected credentials

A vulnerability classified as problematic has been found in Hitachi ABB Power Grids Retail Operations and Counterparty Settlement Billing up

Common Vulnerabilities and Exposures

Prestahome Blog up to 1.7.7 on Prestashop sb_category sql injection

A vulnerability classified as critical was found in Prestahome Blog up to 1.7.7 on Prestashop (Blog Software). This vulnerability affects

Common Vulnerabilities and Exposures

rConfig 3.9.6 Connection deviceIpAddr/connPort server-side request forgery

A vulnerability, which was classified as critical, has been found in rConfig 3.9.6. This issue affects some unknown functionality of

Common Vulnerabilities and Exposures

GitLab 13.3 Design Feature cross site scripting

A vulnerability, which was classified as problematic, was found in GitLab 13.3 (Bug Tracking Software). Affected is an unknown part

Common Vulnerabilities and Exposures

GitLab Community Edition/Enterprise Edition up to 13.12.9/14.0.7/14.1.2 Shell information disclosure

A vulnerability has been found in GitLab Community Edition and Enterprise Edition up to 13.12.9/14.0.7/14.1.2 (Bug Tracking Software) and classified

Common Vulnerabilities and Exposures

TOTOLINK A702R 1.0.0-B20161227.1023 Login Portal file information disclosure

A vulnerability was found in TOTOLINK A702R 1.0.0-B20161227.1023 and classified as problematic. Affected by this issue is an unknown code

Common Vulnerabilities and Exposures

Eclipse Californium up to 2.6.4/3.0.0-M3 DTLS Handshake certificate validation

A vulnerability was found in Eclipse Californium up to 2.6.4/3.0.0-M3. It has been classified as critical. This affects some unknown

Common Vulnerabilities and Exposures

AT&T Xmill 0.7 XML Decompression DecodeTreeBlock heap-based overflow

A vulnerability was found in AT&T Xmill 0.7. It has been declared as critical. This vulnerability affects the function DecodeTreeBlock

Common Vulnerabilities and Exposures

AT&T Xmill 0.7 XML Decompression heap-based overflow

A vulnerability was found in AT&T Xmill 0.7. It has been rated as critical. This issue affects an unknown functionality

Common Vulnerabilities and Exposures

AT&T Xmill 0.7 XML Decompression CurPath::AddLabel heap-based overflow

A vulnerability classified as critical has been found in AT&T Xmill 0.7. Affected is the function CurPath::AddLabel of the component

Common Vulnerabilities and Exposures

TOTOLINK A3002R 1.1.1-B20200824 ddns.htm cross site scripting

A vulnerability classified as problematic was found in TOTOLINK A3002R 1.1.1-B20200824. Affected by this vulnerability is an unknown part of

Common Vulnerabilities and Exposures

TOTOLINK A3002R 1.1.1-B20200824 tcpipwan.htm Service Name cross site scripting

A vulnerability, which was classified as problematic, has been found in TOTOLINK A3002R 1.1.1-B20200824. Affected by this issue is an

Common Vulnerabilities and Exposures

TOTOLINK A3002R 1.1.1-B20200824 tr069config.htm User Name/Password cross site scripting

A vulnerability, which was classified as problematic, was found in TOTOLINK A3002R 1.1.1-B20200824. This affects an unknown code block of

Common Vulnerabilities and Exposures

TOTOLINK A3002R 1.1.1-B20200824 urlfilter.htm URL Address cross site scripting

A vulnerability has been found in TOTOLINK A3002R 1.1.1-B20200824 and classified as problematic. This vulnerability affects some unknown processing of

Common Vulnerabilities and Exposures

TOTOLINK A3002R 1.1.1-B20200824 parent_control.htm Description/Service Name cross site scripting

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824 and classified as problematic. This issue affects an unknown function of the

Common Vulnerabilities and Exposures

Ponzu CMS 0.11.0 configure.html cross-site request forgery

A vulnerability was found in Ponzu CMS 0.11.0 (Content Management System). It has been classified as problematic. Affected is an