clearance up to 2.4.x Session return_to redirect
A vulnerability was found in clearance up to 2.4.x. It has been classified as critical. Affected is an unknown function
set-value up to 4.0.0 Parameter path type confusion
A vulnerability was found in set-value up to 4.0.0 and classified as critical. This issue affects some unknown processing of
Apache Any23 up to 2.4 YAMLExtractor.java Privilege Escalation
A vulnerability, which was classified as critical, was found in Apache Any23 up to 2.4. This affects an unknown code
Apache Any23 up to 2.4 StreamUtils.java xml external entity reference
A vulnerability has been found in Apache Any23 up to 2.4 and classified as problematic. This vulnerability affects an unknown
Dahua IPC-HX3XXX Data Packet improper authentication [CVE-2021-33044]
A vulnerability classified as critical was found in Dahua IPC-HX3XXX, HX5XXX, HUM7XXX, VTO75X95X, VTO65XXX, VTH542XH, SD1A1, SD22, SD49, SD50, SD52C,
Dahua IPC-HX3XXX Data Packet improper authentication [CVE-2021-33045]
A vulnerability, which was classified as critical, has been found in Dahua IPC-HX3XXX, HX5XXX, HUM7XXX, VTO75X95X, VTO65XXX, VTH542XH, NVR1XXX, NVR2XXX,
Facebook ParlAI up to 1.1.0 YAML deserialization
A vulnerability was found in Facebook ParlAI up to 1.1.0 (Social Network Software). It has been declared as critical. This
Facebook ParlAI up to 1.0.x YAML deserialization
A vulnerability was found in Facebook ParlAI up to 1.0.x (Social Network Software). It has been rated as critical. This
Translate Plugin up to 6.3.0.71 on ONLYOFFICE msg.data/text Privilege Escalation
A vulnerability classified as critical has been found in Translate Plugin up to 6.3.0.71 on ONLYOFFICE. Upgrading to version 6.3.0.72
GNU Mailman Postorius up to 1.3.4 POST Request views/list.py access control
A vulnerability has been found in GNU Mailman Postorius up to 1.3.4 (Mail Client Software) and classified as critical. Affected
Ionic Identity Vault up to 4 on Android improper authentication
A vulnerability was found in Ionic Identity Vault up to 4 on Android (Android App Software) and classified as critical.
btcpayserver Web Page Generation cross site scripting [CVE-2021-3646]
A vulnerability was found in btcpayserver (the affected version unknown). It has been classified as problematic. This affects an unknown
Zoho ManageEngine ADSelfService Plus up to 6111 Database Linking sql injection
A vulnerability, which was classified as critical, was found in Zoho ManageEngine ADSelfService Plus up to 6111. Affected is some
Custom Website Data Plugin up to 2.2 on WordPress Parameter ~/views/edit.php id cross site scripting
A vulnerability was found in Custom Website Data Plugin up to 2.2 on WordPress (WordPress Plugin). It has been rated
Advance Search Plugin up to 1.1.2 on WordPress Parameter html-advance-search-admin-options.php wpas_id cross site scripting
A vulnerability classified as problematic has been found in Advance Search Plugin up to 1.1.2 on WordPress (WordPress Plugin). Affected
spideranalyse Plugin up to 0.0.1 on WordPress Parameter ~/analyse/index.php date cross site scripting
A vulnerability classified as problematic was found in spideranalyse Plugin up to 0.0.1 on WordPress (WordPress Plugin). Affected by this
OSD Subscribe Plugin up to 1.2.3 on WordPress Parameter osd_subscribe_options_subscribers.php osd_subscribe_message cross site scripting
A vulnerability, which was classified as problematic, has been found in OSD Subscribe Plugin up to 1.2.3 on WordPress (WordPress
Web Push Notifications Plugin up to 2.1.8 on WordPress Parameter ~/includes/base.php feedify_msg cross site scripting
A vulnerability, which was classified as problematic, was found in Web Push Notifications Plugin up to 2.1.8 on WordPress (WordPress
Dropdown and Scrollable Text Plugin up to 2.0 on WordPress Parameter ~/index.php content cross site scripting
A vulnerability has been found in Dropdown and Scrollable Text Plugin up to 2.0 on WordPress (WordPress Plugin) and classified
WordPress Bug Library Plugin up to 2.0.3 Parameter ~/bug-library.php successimportcount cross site scripting
A vulnerability was found in WordPress Bug Library Plugin up to 2.0.3 (Content Management System) and classified as problematic. This
SMS OVH Plugin up to 0.1 on WordPress Parameter ~/sms-ovh-sent.php position cross site scripting
A vulnerability was found in SMS OVH Plugin up to 0.1 on WordPress (WordPress Plugin). It has been classified as
MoolaMojo Plugin up to 0.7.4.1 on WordPress Parameter button-generator.html.php classes cross site scripting
A vulnerability was found in MoolaMojo Plugin up to 0.7.4.1 on WordPress (WordPress Plugin). It has been declared as problematic.
InviteBox Plugin for Viral Refer-a-Friend Promotions Plugin Parameter ~/admin/admin.php cross site scripting
A vulnerability was found in InviteBox Plugin for Viral Refer-a-Friend Promotions Plugin up to 1.4.1 on WordPress (WordPress Plugin). It
PlaySMS up to 1.4.4 index.php code injection
A vulnerability classified as critical has been found in PlaySMS up to 1.4.4. This affects some unknown processing of the