Sophos UTM prior 9.706 Quarantined Email Detail View cross site scripting

A vulnerability, which was classified as problematic, was found in Sophos UTM. This affects an unknown code block of the component Quarantined Email Detail View. Upgrading to version 9.706 eliminates this vulnerability. The upgrade is hosted for download at

Common Vulnerabilityies and Exposures

Contact us to get started

star7th showdoc up to 2.10.1 cross site scripting [CVE-2021-4172]

A vulnerability was found in star7th showdoc up to 2.10.1. It has been rated as problematic. Affected by this issue is some unknown processing. Upgrading to version 2.10.2 eliminates this vulnerability. Applying the patch 409c8a1208bbb847046a9496303192980f2e6219 is able to eliminate this problem. The bugfix is ready for download at The […]

SourceCodester Simple College Website 1.0 File Upload /admin/login.php username sql injection

A vulnerability classified as critical was found in SourceCodester Simple College Website 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/login.php of the component File Upload Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an […]

IBM Cognos Controller 10.4.0/10.4.1/10.4.2 access control [CVE-2020-4879]

A vulnerability, which was classified as critical, has been found in IBM Cognos Controller 10.4.0/10.4.1/10.4.2 (Business Process Management Software). Affected by this issue is some unknown functionality. Upgrading eliminates this vulnerability.