All Posts by: Virtual Patching

gitit up to 0.14.x Export information disclosure

A vulnerability classified as problematic was found in gitit up to 0.14.x. This vulnerability affects an unknown code block of

Common Vulnerabilities and Exposures

OneNav 0.9.12 onenav.db3 information disclosure

A vulnerability, which was classified as problematic, has been found in OneNav 0.9.12. This issue affects some unknown processing of

Common Vulnerabilities and Exposures

imgURL 2.31 HTTP Header X-Forwarded-For cross site scripting

A vulnerability, which was classified as problematic, was found in imgURL 2.31. Affected is an unknown function of the component

Common Vulnerabilities and Exposures

ocProducts Composr CMS up to 10.0.37 Comcode cross site scripting

A vulnerability has been found in ocProducts Composr CMS up to 10.0.37 (Content Management System) and classified as problematic. Affected

Common Vulnerabilities and Exposures

ocProducts Composr CMS up to 10.0.37 staff_messaging System cross site scripting

A vulnerability was found in ocProducts Composr CMS up to 10.0.37 (Content Management System) and classified as problematic. Affected by

Common Vulnerabilities and Exposures

TastyIgniter 3.0.7 cross site scripting [CVE-2021-38699]

A vulnerability was found in TastyIgniter 3.0.7. It has been declared as problematic. Affected by this vulnerability is some unknown

Common Vulnerabilities and Exposures

NetSarang Xshell up to 7 Paste Privilege Escalation

A vulnerability was found in NetSarang Xshell up to 7. It has been classified as problematic. Affected is an unknown

Common Vulnerabilities and Exposures

UCWeb UC Browser up to 12.12.3.1226 URL cleartext transmission

A vulnerability was found in UCWeb UC Browser up to 12.12.3.1226 and classified as problematic. This issue affects an unknown

Common Vulnerabilities and Exposures

Sunhillo SureLine up to 8.7.0.1.0 /cgi/networkDiag.cgi ipAddr/dnsAddr os command injection

A vulnerability was found in Sunhillo SureLine up to 8.7.0.1.0. It has been rated as critical. This issue affects an

Common Vulnerabilities and Exposures

Huawei HG8045Q Command-Line Interface command injection [CVE-2021-37028]

A vulnerability classified as critical has been found in Huawei HG8045Q (version unknown). Affected is some unknown functionality of the

Common Vulnerabilities and Exposures

Hashicorp Vault/Vault Enterprise up to 1.7.3 default permission

A vulnerability classified as critical was found in Hashicorp Vault and Vault Enterprise up to 1.7.3. Affected by this vulnerability

Common Vulnerabilities and Exposures

Hashicorp Vault/Vault Enterprise up to 1.6.5/1.7.3 UI information disclosure

A vulnerability, which was classified as problematic, has been found in Hashicorp Vault and Vault Enterprise up to 1.6.5/1.7.3. Affected

Common Vulnerabilities and Exposures

ON24 ScreenShare up to 1.x on macOS Built-In HTTP server DesktopScreenShare.app information disclosure

A vulnerability, which was classified as problematic, was found in ON24 ScreenShare up to 1.x on macOS. This affects an

Common Vulnerabilities and Exposures

dated_news Extension up to 5.1.1 on TYPO3 Application Registration information disclosure

A vulnerability classified as problematic was found in dated_news Extension up to 5.1.1 on TYPO3. This vulnerability affects an unknown

Common Vulnerabilities and Exposures

Extbase Yaml Routes Extension up to 2.1.0 on TYPO3 CsrfTokenViewHelper information disclosure

A vulnerability, which was classified as problematic, has been found in Extbase Yaml Routes Extension up to 2.1.0 on TYPO3.

Common Vulnerabilities and Exposures

miniorange_saml Extension up to 1.4.2 on TYPO3 API Credential information disclosure

A vulnerability, which was classified as problematic, was found in miniorange_saml Extension up to 1.4.2 on TYPO3. Affected is some

Common Vulnerabilities and Exposures

dated_news Extension up to 5.1.1 on TYPO3 sql injection [CVE-2021-36789]

A vulnerability has been found in dated_news Extension up to 5.1.1 on TYPO3 and classified as critical. Affected by this

Common Vulnerabilities and Exposures

dated_news Extension up to 5.1.1 on TYPO3 access control [CVE-2021-36792]

A vulnerability was found in dated_news Extension up to 5.1.1 on TYPO3 and classified as critical. Affected by this issue

Common Vulnerabilities and Exposures

Newsletter Extension up to 4.0.0 on TYPO3 sql injection [CVE-2021-38302]

A vulnerability was found in Newsletter Extension up to 4.0.0 on TYPO3. It has been classified as critical. This affects

Common Vulnerabilities and Exposures

deferred_image_processing Extension up to 1.0.1 on TYPO3 FAL API /var/transient denial of service

A vulnerability was found in deferred_image_processing Extension up to 1.0.1 on TYPO3. It has been declared as problematic. This vulnerability

Common Vulnerabilities and Exposures

miniorange_saml Extension up to 1.4.2 on TYPO3 cross site scripting

A vulnerability was found in miniorange_saml Extension up to 1.4.2 on TYPO3. It has been rated as problematic. This issue

Common Vulnerabilities and Exposures

femanager Extension up to 5.5.0/6.3.0 on TYPO3 SVG Document cross site scripting

A vulnerability classified as problematic has been found in femanager Extension up to 5.5.0/6.3.0 on TYPO3. Affected is an unknown

Common Vulnerabilities and Exposures

yoast_seo Extension up to 7.2.2 on TYPO3 cross site scripting

A vulnerability classified as problematic was found in yoast_seo Extension up to 7.2.2 on TYPO3. Affected by this vulnerability is

Common Vulnerabilities and Exposures

dated_news Extension up to 5.1.1 on TYPO3 cross site scripting

A vulnerability, which was classified as problematic, has been found in dated_news Extension up to 5.1.1 on TYPO3. Affected by