OpenCMS up to 11.0.2 Sitemap cross site scripting
A vulnerability classified as problematic has been found in OpenCMS up to 11.0.2. Affected is an unknown function of the
vm2 up to 3.9.3 Prototype sandbox
A vulnerability was found in vm2 up to 3.9.3. It has been declared as critical. Affected by this vulnerability is
LedgerSMB 1.8 missing secure attribute [CVE-2021-3882]
A vulnerability classified as problematic was found in LedgerSMB 1.8. Affected by this vulnerability is an unknown part. Upgrading to
Zulip 4.7 linkifiers resource consumption
A vulnerability was found in Zulip 4.7. It has been classified as problematic. Affected is some unknown functionality of the
DynamicPageList3 Extension up to 3.3.5 on MediaWiki DPL Parser resource consumption
A vulnerability was found in DynamicPageList3 Extension up to 3.3.5 on MediaWiki. It has been declared as problematic. Affected by
Moby up to 20.10.8 /var/lib/docker permissions
A vulnerability has been found in Moby up to 20.10.8 and classified as critical. This vulnerability affects some unknown processing
Redis up to 5.0.13/6.0.15/6.2.5 Lua Stack out-of-bounds write
A vulnerability was found in Redis up to 5.0.13/6.0.15/6.2.5. It has been classified as critical. Affected is an unknown functionality
Shuup up to 2.10.8 Error Page cross site scripting
A vulnerability was found in Shuup up to 2.10.8. It has been declared as problematic. Affected by this vulnerability is
OpenCRX up to 5.1.0 Password Reset cross site scripting
A vulnerability, which was classified as problematic, was found in OpenCRX up to 5.1.0. Affected is an unknown code block
Linux Kernel Timer Tree lib/timerqueue.c timerqueue_add initialization
A vulnerability was found in Linux Kernel (Operating System) (affected version not known). It has been rated as problematic. Affected
Butter JPNS Kernel input validation [CVE-2021-39230]
A vulnerability classified as critical has been found in Butter (the affected version unknown). This affects an unknown functionality of
FFmpeg 4.2.1 vf_fieldorder.c filter_frame buffer overflow
A vulnerability, which was classified as critical, was found in FFmpeg 4.2.1 (Multimedia Processing Software). Affected is the function filter_frame
FFmpeg 4.2.1 vf_lenscorrection.c filter_frame divide by zero
A vulnerability classified as problematic was found in FFmpeg 4.2.1 (Multimedia Processing Software). Affected by this vulnerability is the function
code-server incorrect regex [CVE-2021-3810]
A vulnerability, which was classified as critical, was found in code-server (version unknown). Affected is some unknown functionality. Applying the
adminlte Web Page Generation cross site scripting [CVE-2021-3811]
A vulnerability has been found in adminlte (affected version unknown) and classified as problematic. Affected by this vulnerability is an
adminlte Web Page Generation cross site scripting [CVE-2021-3812]
A vulnerability was found in adminlte (affected version not known) and classified as problematic. Affected by this issue is an
Free Web Application Firewall
Introducing the world’s first Distributed WAF on Multi-Cloud # SaaS Free WAF Prophaze WAF is a Native Cloud Web Application
libsixel up to 1.8.4 PSD File stb_image.h denial of service
A vulnerability was found in libsixel up to 1.8.4 and classified as problematic. This issue affects an unknown functionality in
GPAC 1.0.1 MP4Box Command DumpTrackInfo null pointer dereference
A vulnerability has been found in GPAC 1.0.1 and classified as problematic. Affected by this vulnerability is the function DumpTrackInfo
Dahua IPC-HX3XXX Data Packet improper authentication [CVE-2021-33044]
A vulnerability classified as critical was found in Dahua IPC-HX3XXX, HX5XXX, HUM7XXX, VTO75X95X, VTO65XXX, VTH542XH, SD1A1, SD22, SD49, SD50, SD52C,
The Argo Project is an open source provider of Kubernetes CI/CD workflows, facilitating Infrastructure as Code.
Overview : In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to
Apache HTTP Server 2.4 vulnerabilities
Overview : In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might
NGINX Controller versions prior to 3.2.0,
Overview : In NGINX Controller versions prior to 3.2.0, an unauthenticated attacker with network access to the Controller API can
TMM may crash or stop processing new traffic with the DPDK/ENA driver on AWS systems while sending traffic. This issue does not affect any other platforms,
Overview : On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.1, and 14.1.0-14.1.2.2, under certain conditions, TMM may crash or stop processing new traffic with