PHP-Fusion 9.03.60 New Shout shoutbox_admin.php cross site scripting
A vulnerability, which was classified as problematic, has been found in PHP-Fusion 9.03.60 (Content Management System). Affected by this issue
Video Downloader for TikTok Plugin 1.3 on WordPress Parameter njt-tk-download-video pathname traversal
A vulnerability, which was classified as critical, was found in Video Downloader for TikTok Plugin 1.3 on WordPress (WordPress Plugin).
Creative Minds CM Download Manager Plugin 2.7.0 on WordPress deletescreenshot cross site scripting
A vulnerability has been found in Creative Minds CM Download Manager Plugin 2.7.0 on WordPress (WordPress Plugin) and classified as
Creative Minds CM Download Manager Plugin 2.7.0 on WordPress Parameter deletescreenshot fileName pathname traversal
A vulnerability was found in Creative Minds CM Download Manager Plugin 2.7.0 on WordPress (WordPress Plugin) and classified as critical.
WP Fluent Forms Plugin up to 3.6.66 on WordPress cross-site request forgery
A vulnerability was found in WP Fluent Forms Plugin up to 3.6.66 on WordPress (WordPress Plugin). It has been classified
WP Upload Restriction Plugin up to 2.2.3 on WordPress saveCustomType cross site scripting
A vulnerability was found in WP Upload Restriction Plugin up to 2.2.3 on WordPress (WordPress Plugin). It has been declared
WP Upload Restriction Plugin up to 2.2.3 on WordPress deleteCustomType access control
A vulnerability was found in WP Upload Restriction Plugin up to 2.2.3 on WordPress (WordPress Plugin). It has been rated
WP Upload Restriction Plugin up to 2.2.3 on WordPress Extension getSelectedMimeTypesByRole access control
A vulnerability classified as critical has been found in WP Upload Restriction Plugin up to 2.2.3 on WordPress (WordPress Plugin).
WP Smart Import Plugin 1.0.0 on WordPress file server-side request forgery
A vulnerability classified as critical was found in WP Smart Import Plugin 1.0.0 on WordPress (WordPress Plugin). This vulnerability affects
WP-DownloadManager Plugin 1.68.4 on WordPress download-add.php file_remote server-side request forgery
A vulnerability was found in WP-DownloadManager Plugin 1.68.4 on WordPress (WordPress Plugin). It has been classified as critical. Affected is
Email Template Designer WP HTML Mail up to 3.0.7 on WordPress cross-site request forgery
A vulnerability classified as problematic has been found in Email Template Designer WP HTML Mail up to 3.0.7 on WordPress
Currency Switcher up to 1.1.6 on WordPress cross-site request forgery
A vulnerability classified as problematic was found in Currency Switcher up to 1.1.6 on WordPress (WordPress Plugin). Affected by this
Elecom WRC-1167FS-W/WRC-1167FS-B/WRC-1167FSA information disclosure
A vulnerability, which was classified as problematic, has been found in Elecom WRC-1167FS-W, WRC-1167FS-B and WRC-1167FSA (affected version not known).
Elecom WRC-300FEBK os command injection [CVE-2021-20739]
A vulnerability, which was classified as critical, was found in Elecom WRC-300FEBK, WRC-F300NF, WRC-733FEBK, WRH-300RD, WRH-300BK, WRH-300SV, WRH-300WH, WRH-H300WH, WRH-H300BK,
A-Stage SCT-40CM01SR/AT-40CM01SR Telnet access control [CVE-2021-20776]
A vulnerability has been found in A-Stage SCT-40CM01SR and AT-40CM01SR (the affected version is unknown) and classified as critical. This
GU App up to 5.0.2 on Android Custom URL Scheme improper authorization
A vulnerability was found in GU App up to 5.0.2 on Android (Android App Software) and classified as critical. This
PHPList 3.5.1 unrestricted upload [CVE-2020-22249]
A vulnerability has been found in PHPList 3.5.1 (Mailing List Software) and classified as critical. This vulnerability affects an unknown
Linux Kernel up to 5.12.13 kernel/module.c init_module signature verification
A vulnerability was found in Linux Kernel up to 5.12.13 (Operating System) and classified as problematic. This issue affects the
mootools incorrect regex [CVE-2021-32821]
A vulnerability was found in mootools (version unknown). It has been classified as critical. Affected is an unknown code block.
phpList 3.5.3 Manage Administrators Login Name cross site scripting
A vulnerability was found in phpList 3.5.3 (Mailing List Software). It has been declared as problematic. Affected by this vulnerability
Monstra CMS 3.0.4 Page Feature admin/index.php cross site scripting
A vulnerability was found in Monstra CMS 3.0.4 (Content Management System). It has been rated as problematic. Affected by this
Issabel PBX 4 Create New Rate index.php Name/Prefix cross site scripting
A vulnerability classified as problematic has been found in Issabel PBX 4 (Communications System). This affects an unknown functionality of
OpenEXR up to 3.0.4 ImfDeepScanLineInputFile out-of-bounds read
A vulnerability classified as problematic was found in OpenEXR up to 3.0.4. This vulnerability affects the function ImfDeepScanLineInputFile. Upgrading to
GitLab GraphQL access control [CVE-2021-22228]
A vulnerability, which was classified as critical, has been found in GitLab (Bug Tracking Software) (unknown version). This issue affects