TIBCO JasperReports Server REST API race condition [CVE-2021-35494]
A vulnerability classified as problematic was found in TIBCO JasperReports Server (Programming Tool Software) (the affected version is unknown). This
Cisco Identity Services Engine REST API privileges assignment
A vulnerability was found in Cisco Identity Services Engine (Policy Management Software) (unknown version). It has been rated as critical.
Zammad up to 4.1.0 REST API information disclosure
A vulnerability was found in Zammad up to 4.1.0. It has been declared as problematic. This vulnerability affects an unknown
Ninja Forms Plugin up to 3.5.7 on WordPress REST API Submissions.php bulk_export_submissions authorization
A vulnerability classified as problematic has been found in Ninja Forms Plugin up to 3.5.7 on WordPress (WordPress Plugin). This
OMGF Plugin up to 4.5.3 on WordPress REST API handle path traversal
A vulnerability was found in OMGF Plugin up to 4.5.3 on WordPress (WordPress Plugin). It has been declared as critical.
Drupal up to 8.9.18/9.1.12/9.2.5 HTTP API unrestricted upload
A vulnerability, which was classified as critical, has been found in Drupal up to 8.9.18/9.1.12/9.2.5 (Content Management System). This issue
GLPI up to 9.5.5 API REST injection
A vulnerability was found in GLPI up to 9.5.5 (Asset Management Software). It has been declared as critical. Affected by
Atlassian JIRA Server/Data Center up to 8.18.x Endpoint /rest/api/1.0/render information disclosure
A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.18.x (Bug Tracking Software). It has been
Eclipse Keti RESTfuls API sandbox [CVE-2021-32835]
A vulnerability was found in Eclipse Keti (version unknown). It has been classified as critical. Affected is some unknown functionality
ZStack up to 3.10.11/4.1.5 REST API code injection
A vulnerability was found in ZStack up to 3.10.11/4.1.5. It has been declared as critical. Affected by this vulnerability is
Eclipse Keti RESTfuls API code injection [CVE-2021-32834]
A vulnerability, which was classified as critical, has been found in Eclipse Keti (unknown version). This issue affects an unknown
Atlassian JIRA Server up to 8.5.12/8.13.4/8.15.0 Search Endpoint /rest/api/2/search information disclosure
A vulnerability was found in Atlassian JIRA Server up to 8.5.12/8.13.4/8.15.0 (Bug Tracking Software) and classified as problematic. This issue
pcapture up to 3.11 REST API access control
A vulnerability classified as critical has been found in pcapture up to 3.11. This affects an unknown part of the
Zoho ManageEngine ADSelfService Plus up to 6113 REST API improper authentication
A vulnerability, which was classified as critical, has been found in Zoho ManageEngine ADSelfService Plus up to 6113. Affected by
Gutenberg Template Library & Redux Framework Plugin REST API Endpoint redux/v1/templates/ authorization
A vulnerability has been found in Gutenberg Template Library & Redux Framework Plugin up to 4.2.11 on WordPress (Software Library)
Zoho ManageEngine ServiceDesk Plus up to 11301 REST-API improper authentication
A vulnerability was found in Zoho ManageEngine ServiceDesk Plus up to 11301. It has been rated as critical. This issue
VMware Workspace ONE UEM Console REST API session denial of service
A vulnerability classified as problematic was found in VMware Workspace ONE UEM Console (affected version unknown). Affected by this vulnerability
B. Braun SpaceCom2 prior 012U000062 Webpage API /tmp unrestricted upload
A vulnerability classified as critical has been found in B. Braun SpaceCom2. Affected is an unknown code of the file
Parse Server up to 4.5.0 REST API improper authentication
A vulnerability, which was classified as critical, was found in Parse Server up to 4.5.0. Affected is an unknown functionality
REST API batch-queries code injection
A vulnerability classified as critical was found in up to 3.8.20/3.10.7. This vulnerability affects an unknown functionality of the file
Planview Spigit 4.5.3 REST API api/v1/users/1 information disclosure
A vulnerability, which was classified as problematic, was found in Planview Spigit 4.5.3. Affected is an unknown code of the
Cisco Evolved Programmable Network Manager REST API information disclosure
A vulnerability was found in Cisco Evolved Programmable Network Manager (affected version unknown). It has been declared as problematic. Affected
Cisco Firepower Device Manager REST API code injection [CVE-2021-1518]
A vulnerability, which was classified as critical, was found in Cisco Firepower Device Manager (Firewall Software) (the affected version unknown).
Orca HCM 10.0 unrestricted upload [CVE-2021-35963]
A vulnerability has been found in Orca HCM 10.0 (Human Capital Management Software) and classified as critical. Affected by this