Huaju Easytest Learning History Page improper authorization [CVE-2021-42336]
A vulnerability classified as critical was found in Huaju Easytest (the affected version is unknown). This vulnerability affects an unknown
Fatek Automation Communication Server up to 1.13 stack-based overflow
A vulnerability, which was classified as very critical, has been found in Fatek Automation Communication Server up to 1.13 (Automation
BookStack path traversal [CVE-2021-3874]
A vulnerability, which was classified as critical, was found in BookStack (version unknown). Affected is an unknown code block. Applying
Apache Tomcat up to 8.5.71/9.0.53/10.0.11/10.1.0-M5 HTTP Upgrade OutOfMemoryError release of resource
A vulnerability was found in Apache Tomcat up to 8.5.71/9.0.53/10.0.11/10.1.0-M5 (Application Server Software). It has been declared as problematic. Affected
Imagicle Application Suite prior 2021.Summer.2 Export to CSV sql injection
A vulnerability was found in Imagicle Application Suite. It has been rated as critical. Affected by this issue is an
Apache CouchDB up to 3.1.1 HTML Attachment cross site scripting
A vulnerability classified as problematic has been found in Apache CouchDB up to 3.1.1. This affects an unknown functionality of
Yellowfin up to 9.6.0 HTTP GET Request resource injection
A vulnerability, which was classified as problematic, has been found in Yellowfin up to 9.6.0. This issue affects an unknown
OSS-RC up to 18B Migration information disclosure
A vulnerability, which was classified as problematic, was found in OSS-RC up to 18B. Affected is an unknown code of
Yellowfin up to 9.6.0 HTTP POST Request cross site scripting
A vulnerability has been found in Yellowfin up to 9.6.0 and classified as problematic. Affected by this vulnerability is an
zzcms 2019 Parameter /dl/dl_sendsms.php dlid sql injection
A vulnerability has been found in zzcms 2019 (Content Management System) and classified as critical. This vulnerability affects some unknown
zzcms 2019 subzs.php sql injection
A vulnerability was found in zzcms 2019 (Content Management System) and classified as critical. This issue affects an unknown function
S-CMS 3.0 /api/notify.php xml external entity reference
A vulnerability was found in S-CMS 3.0 (Content Management System). It has been classified as problematic. Affected is an unknown
Brizy Page Builder Plugin up to 2.3.11 on WordPress brizy_create_block_screenshot id cross site scripting
A vulnerability was found in Brizy Page Builder Plugin up to 2.3.11 on WordPress (WordPress Plugin). It has been declared
Formidable Form Builder Plugin up to 5.0.06 on WordPress FrmAppHelper.php cross site scripting
A vulnerability was found in Formidable Form Builder Plugin up to 5.0.06 on WordPress (WordPress Plugin). It has been rated
Chaoji CMS 2.39 /lib/tinwin.class.php getClientIp cross site scripting
A vulnerability classified as problematic has been found in Chaoji CMS 2.39 (Content Management System). This affects the function getClientIp
Brizy Page Builder Plugin on WordPress cross site scripting [CVE-2021-38345]
A vulnerability classified as problematic was found in Brizy Page Builder Plugin on WordPress (WordPress Plugin) (the affected version is
Brizy Page Builder Plugin up to 2.3.11 on WordPress AJAX Action brizy_update_item data cross site scripting
A vulnerability, which was classified as problematic, has been found in Brizy Page Builder Plugin up to 2.3.11 on WordPress
fastify-static up to 4.2.3 redirect [CVE-2021-22963]
A vulnerability, which was classified as problematic, was found in fastify-static up to 4.2.3. Affected is an unknown function. Upgrading
Mitsubishi Electric MELSEC iQ-R CPU Module authorization [CVE-2021-20599]
A vulnerability has been found in Mitsubishi Electric MELSEC iQ-R (affected version unknown) and classified as critical. Affected by this
KindEditor 4.1.x Google Search uploadbutton.html cross site scripting
A vulnerability was found in KindEditor 4.1.x and classified as problematic. Affected by this issue is some unknown functionality of
KindEditor 4.1.x Google Editor uploadbutton.html cross-site request forgery
A vulnerability was found in KindEditor 4.1.x. It has been classified as problematic. This affects an unknown part of the
Enalean Tuleap Community Edition/Tuleap Enterprise Edition cross site scripting
A vulnerability was found in Enalean Tuleap Community Edition and Tuleap Enterprise Edition (the affected version is unknown). It has
Nagios XI up to 5.8.4 Bulk Modification sql injection
A vulnerability was found in Nagios XI up to 5.8.4 (Log Management Software). It has been rated as critical. This
Nagios XI up to 5.8.5 NagVis path traversal
A vulnerability classified as critical has been found in Nagios XI up to 5.8.5 (Log Management Software). Affected is some