Apache Tomcat up to 8.5.66/9.0.46/10.0.6 HTTP Header Transfer-Encoding request smuggling
A vulnerability was found in Apache Tomcat up to 8.5.66/9.0.46/10.0.6 (Application Server Software) and classified as critical. Affected by this
SourceCodester Invoice System 1.0 Settings cross site scripting
A vulnerability was found in SourceCodester Invoice System 1.0. It has been classified as problematic. This affects an unknown function
Apache Tomcat up to 8.5.64/9.0.44/10.0.4 Error I/O denial of service
A vulnerability was found in Apache Tomcat up to 8.5.64/9.0.44/10.0.4 (Application Server Software). It has been declared as problematic. This
Apache Tomcat up to 8.5.65/9.0.45/10.0.5 JNDI Realm improper authentication
A vulnerability was found in Apache Tomcat up to 8.5.65/9.0.45/10.0.5 (Application Server Software). It has been rated as critical. This
MetInfo 7.0.0beta index.php sql injection
A vulnerability classified as critical has been found in MetInfo 7.0.0beta (Content Management System). Affected is an unknown part of
MetInfo 7.0.0beta getpassword.php sql injection
A vulnerability classified as critical was found in MetInfo 7.0.0beta (Content Management System). Affected by this vulnerability is an unknown
Xen Orchestra improper authorization [CVE-2021-36383]
A vulnerability, which was classified as critical, has been found in Xen Orchestra (Virtualization Software) (affected version not known). Affected
Apache Mina SSHD up to 2.6.x SFTP Port Forwarding buffer overflow
A vulnerability, which was classified as critical, was found in Apache Mina SSHD up to 2.6.x (SSH Server Software). This
Nextcloud Server up to 19.0.12/20.0.10/21.0.2 OCS API excessive authentication
A vulnerability has been found in Nextcloud Server up to 19.0.12/20.0.10/21.0.2 (Cloud Software) and classified as problematic. This vulnerability affects
Kramer AV VIAware sudo access control [CVE-2021-35064]
A vulnerability was found in Kramer AV VIAware (unknown version) and classified as critical. This issue affects an unknown functionality
Halo 0.4.3 remoteAddr/themeName Remote Privilege Escalation
A vulnerability was found in Halo 0.4.3. It has been classified as critical. There is no information about possible countermeasures
DaviewIndy up to 8.98.7.0 Format File integer overflow
A vulnerability was found in DaviewIndy up to 8.98.7.0. It has been declared as critical. Affected by this vulnerability is
Fortinet FortiMail up to 6.2.6/6.4.4 denial of service [CVE-2021-26090]
A vulnerability was found in Fortinet FortiMail up to 6.2.6/6.4.4. It has been rated as problematic. Affected by this issue
Nextcloud Server up to 19.0.12/20.0.10/21.0.2 improper authorization
A vulnerability classified as critical has been found in Nextcloud Server up to 19.0.12/20.0.10/21.0.2 (Cloud Software). This affects an unknown
Devolutions Server up to LTS 2020.3.19/2021.1.17 connections/partial cleartext transmission
A vulnerability classified as problematic was found in Devolutions Server up to LTS 2020.3.19/2021.1.17. This vulnerability affects some unknown processing
MetInfo 7.0.0beta sql injection [CVE-2020-21131]
A vulnerability, which was classified as critical, has been found in MetInfo 7.0.0beta (Content Management System). This issue affects an
Fortinet FortiMail up to 6.4.3 path traversal [CVE-2021-24013]
A vulnerability, which was classified as critical, was found in Fortinet FortiMail up to 6.4.3. Affected is an unknown functionality.
Fortinet FortiMail up to 6.4.3 Administrative Interface os command injection
A vulnerability has been found in Fortinet FortiMail up to 6.4.3 and classified as critical. Affected by this vulnerability is
Fortinet FSSO Collector up to 5.0.295 UDP Login Notification Packet improper authentication
A vulnerability was found in Fortinet FSSO Collector up to 5.0.295 and classified as critical. Affected by this issue is
Fortinet FortiClient up to 6.4.3 on Mac Installation symlink
A vulnerability was found in Fortinet FortiClient up to 6.4.3 on Mac. It has been classified as critical. This affects
Nextcloud Server up to 19.0.12/20.0.10/21.0.2 File Extension DownloadResponse escape output
A vulnerability was found in Nextcloud Server up to 19.0.12/20.0.10/21.0.2 (Cloud Software). It has been declared as critical. This vulnerability
Nextcloud Server up to 19.0.12/20.0.10/21.0.2 Server Audit Logging unknown vulnerability
A vulnerability was found in Nextcloud Server up to 19.0.12/20.0.10/21.0.2 (Cloud Software). It has been rated as problematic. This issue
Cartadis Gespage up to 8.2.1 gespage/doDownloadData pathname traversal
A vulnerability classified as critical has been found in Cartadis Gespage up to 8.2.1. Affected is an unknown function of
Fossil up to 2.14.1/2.15.1 TLS certificate validation
A vulnerability classified as problematic was found in Fossil up to 2.14.1/2.15.1. Affected by this vulnerability is an unknown functionality