WP Bannerize Plugin 2.0.0/4.0.2 on WordPress Parameter wpBannerizeAdmin.php id sql injection
A vulnerability has been found in WP Bannerize Plugin 2.0.0/4.0.2 on WordPress (WordPress Plugin) and classified as critical. Affected by
FV Flowplayer Video Player Plugin up to 7.5.2.727 on WordPress Parameter ~/view/stats.php player_id cross site scripting
A vulnerability was found in FV Flowplayer Video Player Plugin up to 7.5.2.727 on WordPress (Multimedia Player Software) and classified
Hiredis RESP calloc integer overflow
A vulnerability was found in Hiredis (affected version unknown). It has been declared as critical. Affected by this vulnerability is
Survey Solutions 21.09.1 Headquarters Application Endpoint /metrics information disclosure
A vulnerability was found in Survey Solutions 21.09.1 (Survey Software). It has been rated as problematic. Affected by this issue
Wire up to 3.69 on iOS exposure of resource [CVE-2021-41094]
A vulnerability, which was classified as problematic, was found in Wire up to 3.69 on iOS (iOS App Software). Affected
Stripe for WooCommerce Plugin up to 3.3.9 on WordPress Capability Check class-wc-stripe-admin-user-edit.php save authorization
A vulnerability classified as critical was found in Stripe for WooCommerce Plugin up to 3.3.9 on WordPress (E-Commerce Management Software).
Calibre-Web up to 0.6.12 Metadata cross site scripting
A vulnerability was found in Calibre-Web up to 0.6.12. It has been rated as problematic. Affected by this issue is
Ecommerce-CodeIgniter-Bootstrap Parameter products.php search_title cross site scripting
A vulnerability was found in Ecommerce-CodeIgniter-Bootstrap (E-Commerce Management Software) (affected version unknown). It has been declared as problematic. Affected by
Linux Kernel up to 5.14.9 eBPF kernel/bpf/stackmap.c prealloc_elems_and_freelist out-of-bounds write
A vulnerability was found in Linux Kernel up to 5.14.9 (Operating System) and classified as critical. Affected by this issue
Shuup up to 2.10.8 Error Page cross site scripting
A vulnerability was found in Shuup up to 2.10.8. It has been declared as problematic. Affected by this vulnerability is
SuiteCRM 7.10.29/7.10.30/7.10.31/7.11.18/7.11.19 Accounts Module csv injection
A vulnerability, which was classified as critical, was found in SuiteCRM 7.10.29/7.10.30/7.10.31/7.11.18/7.11.19. Affected is an unknown functionality of the component
SuiteCRM up to 7.10.31/7.11.20 Password Reset Link password recovery
A vulnerability has been found in SuiteCRM up to 7.10.31/7.11.20 and classified as critical. Affected by this vulnerability is some
Shuup up to 2.10.8 name csv injection
A vulnerability was found in Shuup up to 2.10.8 and classified as critical. Affected by this issue is an unknown
OpenCRX up to 5.1.0 Password Reset cross site scripting
A vulnerability, which was classified as problematic, was found in OpenCRX up to 5.1.0. Affected is an unknown code block
Streama up to 1.10.3 cross-site request forgery [CVE-2021-41764]
A vulnerability was found in Streama up to 1.10.3. It has been classified as problematic. This affects an unknown functionality.
Credova_Financial Plugin up to 1.4.8 on WordPress AJAX Action cleartext transmission
A vulnerability, which was classified as problematic, has been found in Credova_Financial Plugin up to 1.4.8 on WordPress (WordPress Plugin).
WooCommerce Sales Timers Plugin up to 1.5.7 on WordPress coundown_theme_page.php save_theme cross-site request forgery
A vulnerability has been found in WooCommerce Sales Timers Plugin up to 1.5.7 on WordPress (E-Commerce Management Software) and classified
Micro Focus Directory and Resource Administrator up to 10.1 information disclosure
A vulnerability was found in Micro Focus Directory and Resource Administrator up to 10.1. It has been declared as problematic.
Discourse up to 2.7.7/2.8.0.beta6 Error Message cross site scripting
A vulnerability was found in Discourse up to 2.7.7/2.8.0.beta6. It has been declared as problematic. Affected by this vulnerability is
btcpayserver Web Page Generation cross site scripting [CVE-2021-3830]
A vulnerability has been found in btcpayserver (the affected version is unknown) and classified as problematic. This vulnerability affects an
Linux Kernel Timer Tree lib/timerqueue.c timerqueue_add initialization
A vulnerability was found in Linux Kernel (Operating System) (affected version not known). It has been rated as problematic. Affected
MediaTek MT6779/MT6853/MT6873/MT6885 CCU out-of-bounds read [CVE-2021-0660]
A vulnerability, which was classified as problematic, was found in MediaTek MT6779, MT6853, MT6873 and MT6885 (version unknown). Affected is
grav-plugin-admin improper restriction of rendered ui layers
A vulnerability, which was classified as critical, has been found in grav-plugin-admin (affected version not known). Affected by this issue
grav cookie validation [CVE-2021-3818]
A vulnerability, which was classified as critical, was found in grav (the affected version unknown). This affects an unknown functionality.