Here’s What You Must Know About IoT API Security
API Security is a vital part of securing your IoT devices. It protects data during the transmission process from one
Next.js up to 11.1.2/12.0.4 URL denial of service
A vulnerability classified as problematic was found in Next.js up to 11.1.2/12.0.4 (JavaScript Library). Affected by this vulnerability is some
Etherpad up to 1.8.15 etherpad File access control
A vulnerability, which was classified as critical, has been found in Etherpad up to 1.8.15. Affected by this issue is
Mattermost up to 6.0.2 Audit Log log file
A vulnerability, which was classified as problematic, was found in Mattermost up to 6.0.2. This affects an unknown functionality of
Delta Electronics CNCSoft up to 1.01.30 stack-based overflow
A vulnerability has been found in Delta Electronics CNCSoft up to 1.01.30 and classified as critical. This vulnerability affects some
CVE-2021-44228 – Apache log4j up to 2.14.1 JNDI LDAP Server Lookup format string
Zero-Day RCE Vulnerability CVE-2021-44228 aka Critical Apache Log4j Remote Code Execution Vulnerability(Log4Shell)Affects Java Background on Apache log4j Apache log4j
IBm DB2/DB2 Connect Server 11.1/11.5 information disclosure
A vulnerability, which was classified as problematic, has been found in IBm DB2 and DB2 Connect Server 11.1/11.5 (Database Software).
IBM DB2 9.7/10.1/10.5/11.1/11.5 LOAD Utility information disclosure
A vulnerability, which was classified as problematic, was found in IBM DB2 9.7/10.1/10.5/11.1/11.5 (Database Software). This affects an unknown code
IBM DB2 9.7/10.1/10.5/11.1/11.5 access control
A vulnerability has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5 (Database Software) and classified as critical. This vulnerability affects an unknown
IBM WebSphere Application Server 7.0/8.0/8.5/9.0 resource consumption
A vulnerability was found in IBM WebSphere Application Server 7.0/8.0/8.5/9.0 (Application Server Software) and classified as critical. This issue affects
IBM DB2/DB2 Connect Server 9.7/10.1/10.5/11.1/11.5 access control
A vulnerability was found in IBM DB2 and DB2 Connect Server 9.7/10.1/10.5/11.1/11.5 (Database Software). It has been classified as critical.
IBM DB2/DB2 Connect Server 9.7/10.1/10.5/11.1/11.5 inadequate encryption
A vulnerability was found in IBM DB2 and DB2 Connect Server 9.7/10.1/10.5/11.1/11.5 (Database Software). It has been declared as problematic.
zzcms 8.2/8.3/2020/2021 dl/dl_print.php sql injection
A vulnerability was found in zzcms 8.2/8.3/2020/2021 (Content Management System). It has been rated as critical. Affected by this issue
zzcms 8.2/8.3/2020/2021 dl/dl_download.php sql injection
A vulnerability classified as critical has been found in zzcms 8.2/8.3/2020/2021 (Content Management System). This affects an unknown part of
zzcms up to 2019 Administrator Console admin.php access control
A vulnerability classified as critical was found in zzcms up to 2019 (Content Management System). This vulnerability affects an unknown
zzzcms 1.7.1 save.php save_user cross-site request forgery
A vulnerability, which was classified as problematic, has been found in zzzcms 1.7.1 (Content Management System). This issue affects the
zzzcms 1.7.1 save.php editfile cross site scripting
A vulnerability, which was classified as problematic, was found in zzzcms 1.7.1 (Content Management System). Affected is the function editfile
Dart SDK 2.15.0 pub Command credentials management
A vulnerability has been found in Dart SDK 2.15.0 and classified as problematic. Affected by this vulnerability is an unknown
Flask-AppBuilder up to 3.3.3 REST API improper authentication
A vulnerability was found in Flask-AppBuilder up to 3.3.3 and classified as critical. Affected by this issue is an unknown
Doctrine DBAL up to 3.1.3 LIMIT modifyLimitQuery sql injection
A vulnerability was found in Doctrine DBAL up to 3.1.3. It has been classified as critical. This affects the function
Netty prior 4.1.7.1.Final Control Char request smuggling
A vulnerability was found in Netty. It has been declared as critical. This vulnerability affects an unknown part of the
Zoho ManageEngine ManageEngine OpUtils up to 12.5.556 Audit Directory improper authentication
A vulnerability was found in Zoho ManageEngine ManageEngine OpUtils up to 12.5.556. It has been rated as critical. This issue
kimai2 cross-site request forgery
A vulnerability classified as problematic has been found in kimai2 (version unknown). Affected is an unknown code block. Applying the
CVE-2021-36911
Stored Cross-Site Scripting (XSS) vulnerability discovered in WordPress Comment Engine Pro plugin (versions <= 1.0), could be exploited by users