All Posts by: Virtual Patching

FlameCMS 3.3.5 Parameter /master/article.php Id sql injection

A vulnerability, which was classified as critical, has been found in FlameCMS 3.3.5. This issue affects an unknown code block

Common Vulnerabilities and Exposures

FlameCMS 3.3.5 /account/register.php sql injection

A vulnerability, which was classified as critical, was found in FlameCMS 3.3.5. Affected is some unknown processing of the file

Common Vulnerabilities and Exposures

wire-server prior 2.106.0 nginz cross site scripting

A vulnerability has been found in wire-server and classified as problematic. Affected by this vulnerability is an unknown function of

Common Vulnerabilities and Exposures

rudp 0.6 main.c memory leak

A vulnerability was found in rudp 0.6 and classified as problematic. Affected by this issue is an unknown functionality of

Common Vulnerabilities and Exposures

Fortinet FortiManager up to 6.2.7/6.4.3 Excel File IPv4 neutralization

A vulnerability was found in Fortinet FortiManager up to 6.2.7/6.4.3. It has been classified as problematic. This affects some unknown

Common Vulnerabilities and Exposures

Fortinet FortiManager up to 6.2.6/6.4.3 improper authentication

A vulnerability was found in Fortinet FortiManager up to 6.2.6/6.4.3. It has been declared as critical. This vulnerability affects an

Common Vulnerabilities and Exposures

Tenda AC9 15.03.06.60_EN httpd SetStaticRouteCfg stack-based overflow

A vulnerability was found in Tenda AC9 15.03.06.60_EN. It has been rated as critical. This issue affects an unknown code

Common Vulnerabilities and Exposures

Netscout nGeniusONE 6.3.0 Build 1196 FDSQueryService Endpoint information disclosure

A vulnerability classified as problematic has been found in Netscout nGeniusONE 6.3.0 Build 1196. Affected is an unknown code block

Common Vulnerabilities and Exposures

Pydio Cells 2.2.9 Parameter format pathname traversal

A vulnerability classified as critical was found in Pydio Cells 2.2.9. Affected by this vulnerability is some unknown processing of

Common Vulnerabilities and Exposures

Parse Server up to 4.10.3 Session Token Parse.User information disclosure

A vulnerability has been found in Parse Server up to 4.10.3 and classified as problematic. This vulnerability affects the function

Common Vulnerabilities and Exposures

lodash 4.17.21 Parameter command injection

A vulnerability was found in lodash 4.17.21 and classified as critical. This issue affects some unknown processing of the component

Common Vulnerabilities and Exposures

Adobe Acrobat Reader out-of-bounds read [CVE-2021-21089]

A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). It has been classified as critical.

Common Vulnerabilities and Exposures

ECOA BAS Controller cross-site request forgery [CVE-2021-41295]

A vulnerability was found in ECOA BAS Controller (affected version not known). It has been rated as problematic. Affected by

Common Vulnerabilities and Exposures

BaiCloud-cms up to 2.5.7 /user/ppsave.php unknown vulnerability

A vulnerability classified as problematic has been found in BaiCloud-cms up to 2.5.7 (Content Management System). This affects some unknown

Common Vulnerabilities and Exposures

ECOA BAS Controller File Manager path traversal [CVE-2021-41291]

A vulnerability classified as critical was found in ECOA BAS Controller (the affected version is unknown). This vulnerability affects an

Common Vulnerabilities and Exposures

ECOA BAS Controller POST Parameter path traversal [CVE-2021-41293]

A vulnerability, which was classified as critical, has been found in ECOA BAS Controller (unknown version). This issue affects an

Common Vulnerabilities and Exposures

ECOA BAS Controller insufficiently protected credentials [CVE-2021-41297]

A vulnerability, which was classified as critical, was found in ECOA BAS Controller (version unknown). Affected is some unknown functionality.

Common Vulnerabilities and Exposures

ECOA BAS Controller access control [CVE-2021-41298]

A vulnerability has been found in ECOA BAS Controller (affected version unknown) and classified as critical. Affected by this vulnerability

Common Vulnerabilities and Exposures

ECOA BAS Controller hard-coded credentials [CVE-2021-41299]

A vulnerability was found in ECOA BAS Controller (affected version not known) and classified as very critical. Affected by this

Common Vulnerabilities and Exposures

ECOA BAS Controller HTTP GET Request information disclosure [CVE-2021-41301]

A vulnerability was found in ECOA BAS Controller (the affected version unknown). It has been classified as problematic. This affects

Common Vulnerabilities and Exposures

ECOA BAS Controller authentication bypass [CVE-2021-41292]

A vulnerability was found in ECOA BAS Controller (the affected version is unknown). It has been declared as very critical.

Common Vulnerabilities and Exposures

ECOA BAS Controller POST Parameter unrestricted upload [CVE-2021-41290]

A vulnerability was found in ECOA BAS Controller (unknown version). It has been rated as critical. This issue affects an

Common Vulnerabilities and Exposures

ECOA BAS Controller GET Parameter path traversal [CVE-2021-41294]

A vulnerability classified as critical has been found in ECOA BAS Controller (version unknown). Affected is an unknown functionality of

Common Vulnerabilities and Exposures

ECOA BAS Controller weak password [CVE-2021-41296]

A vulnerability classified as problematic was found in ECOA BAS Controller (affected version unknown). Affected by this vulnerability is some