Elecom WRC-300FEBK os command injection [CVE-2021-20739]
A vulnerability, which was classified as critical, was found in Elecom WRC-300FEBK, WRC-F300NF, WRC-733FEBK, WRH-300RD, WRH-300BK, WRH-300SV, WRH-300WH, WRH-H300WH, WRH-H300BK,
A-Stage SCT-40CM01SR/AT-40CM01SR Telnet access control [CVE-2021-20776]
A vulnerability has been found in A-Stage SCT-40CM01SR and AT-40CM01SR (the affected version is unknown) and classified as critical. This
GU App up to 5.0.2 on Android Custom URL Scheme improper authorization
A vulnerability was found in GU App up to 5.0.2 on Android (Android App Software) and classified as critical. This
PHPList 3.5.1 unrestricted upload [CVE-2020-22249]
A vulnerability has been found in PHPList 3.5.1 (Mailing List Software) and classified as critical. This vulnerability affects an unknown
Linux Kernel up to 5.12.13 kernel/module.c init_module signature verification
A vulnerability was found in Linux Kernel up to 5.12.13 (Operating System) and classified as problematic. This issue affects the
mootools incorrect regex [CVE-2021-32821]
A vulnerability was found in mootools (version unknown). It has been classified as critical. Affected is an unknown code block.
phpList 3.5.3 Manage Administrators Login Name cross site scripting
A vulnerability was found in phpList 3.5.3 (Mailing List Software). It has been declared as problematic. Affected by this vulnerability
Monstra CMS 3.0.4 Page Feature admin/index.php cross site scripting
A vulnerability was found in Monstra CMS 3.0.4 (Content Management System). It has been rated as problematic. Affected by this
Issabel PBX 4 Create New Rate index.php Name/Prefix cross site scripting
A vulnerability classified as problematic has been found in Issabel PBX 4 (Communications System). This affects an unknown functionality of
OpenEXR up to 3.0.4 ImfDeepScanLineInputFile out-of-bounds read
A vulnerability classified as problematic was found in OpenEXR up to 3.0.4. This vulnerability affects the function ImfDeepScanLineInputFile. Upgrading to
GitLab GraphQL access control [CVE-2021-22228]
A vulnerability, which was classified as critical, has been found in GitLab (Bug Tracking Software) (unknown version). This issue affects
GitLab Community Edition/Enterprise Edition 12.8 access control
A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition 12.8 (Bug Tracking Software).
GitLab Community Edition/Enterprise Edition 11.9 Feature Flag code injection
A vulnerability has been found in GitLab Community Edition and Enterprise Edition 11.9 (Bug Tracking Software) and classified as critical.
GitLab Community Edition/Enterprise Edition 13.9 Push Remote Privilege Escalation
A vulnerability was found in GitLab Community Edition and Enterprise Edition 13.9 (Bug Tracking Software) and classified as problematic. Affected
GitLab Community Edition 13.11.5/13.12.5/14.0.1 Full Name injection
A vulnerability was found in GitLab Community Edition 13.11.5/13.12.5/14.0.1 (Bug Tracking Software). It has been classified as problematic. This affects
Splinterware System Scheduler Professional 5.30 WindowsScheduler permission
A vulnerability was found in Splinterware System Scheduler Professional 5.30. It has been declared as critical. This vulnerability affects an
Smashing 1.3.4 Widget cross site scripting
A vulnerability was found in Smashing 1.3.4. It has been rated as problematic. This issue affects some unknown functionality of
Addressable up to 2.7.0 on Ruby URI Template resource consumption
A vulnerability, which was classified as problematic, was found in Addressable up to 2.7.0 on Ruby (Ruby Gem). This affects
JoomSport Plugin up to 5.1.7 on WordPress POST Parameter joomsport_md_load shattr deserialization
A vulnerability was found in JoomSport Plugin up to 5.1.7 on WordPress (WordPress Plugin). It has been classified as critical.
Motor Theme up to 3.0.x on WordPress path traversal [CVE-2021-24375]
A vulnerability was found in Motor Theme up to 3.0.x on WordPress (WordPress Plugin). It has been declared as critical.
WP Pro Real Estate 7 Theme up to 3.1.0 on WordPress Parameter ct_community cross site scripting
A vulnerability was found in WP Pro Real Estate 7 Theme up to 3.1.0 on WordPress (WordPress Plugin). It has
wpForo Forum Plugin up to 1.9.6 on WordPress Login Form redirect_to
A vulnerability classified as problematic has been found in wpForo Forum Plugin up to 1.9.6 on WordPress (Forum Software). This
Export Users With Meta Plugin up to 0.6.4 on WordPress SQL Statement sql injection
A vulnerability classified as critical was found in Export Users With Meta Plugin up to 0.6.4 on WordPress (WordPress Plugin).
WP SVG Images Plugin up to 3.3 on WordPress SVG Image cross site scripting
A vulnerability, which was classified as problematic, has been found in WP SVG Images Plugin up to 3.3 on WordPress