fastify-static up to 4.2.3 redirect [CVE-2021-22963]
A vulnerability, which was classified as problematic, was found in fastify-static up to 4.2.3. Affected is an unknown function. Upgrading
Enalean Tuleap Community Edition/Tuleap Enterprise Edition cross site scripting
A vulnerability was found in Enalean Tuleap Community Edition and Tuleap Enterprise Edition (the affected version is unknown). It has
Nagios XI up to 5.8.4 Bulk Modification sql injection
A vulnerability was found in Nagios XI up to 5.8.4 (Log Management Software). It has been rated as critical. This
Nagios XI up to 5.8.5 NagVis path traversal
A vulnerability classified as critical has been found in Nagios XI up to 5.8.5 (Log Management Software). Affected is some
Nagios XI up to 5.8.3 General User Interface cross site scripting
A vulnerability classified as problematic was found in Nagios XI up to 5.8.3 (Log Management Software). Affected by this vulnerability
OMERO.web up to 5.10.x jQuery.html escape output
A vulnerability, which was classified as problematic, was found in OMERO.web up to 5.10.x. This affects some unknown functionality of
Huntflow Enterprise up to 3.10.5 Wildcard Character /account/login email ldap injection
A vulnerability was found in Huntflow Enterprise up to 3.10.5 and classified as critical. This issue affects an unknown code
EmdedThis GoAhead up to 4.x5.1.4 unrestricted upload [CVE-2021-42342]
A vulnerability was found in EmdedThis GoAhead up to 4.x5.1.4. It has been classified as critical. This affects some unknown
OpenRC up to 0.44.6 strlen memory corruption
A vulnerability was found in OpenRC up to 0.44.6. It has been rated as critical. This issue affects the function
AnyDesk up to 6.2.5/6.3.2 Open Chat Log access control
A vulnerability classified as critical has been found in AnyDesk up to 6.2.5/6.3.2. Affected is some unknown functionality of the
LedgerSMB 1.8 missing secure attribute [CVE-2021-3882]
A vulnerability classified as problematic was found in LedgerSMB 1.8. Affected by this vulnerability is an unknown part. Upgrading to
Node.js up to 12.22.6/14.18.0/16.11.0 llhttp request smuggling
A vulnerability was found in Node.js up to 12.22.6/14.18.0/16.11.0 (JavaScript Library) and classified as critical. Affected by this issue is
Zoho ManageEngine up to 125140 Support Diagnostics Module getDataCollectionFailureReason pollingObject sql injection
A vulnerability, which was classified as critical, has been found in Zoho ManageEngine ManageEngine up to 125140. This issue affects
Zoho ManageEngine up to 125454 NetFlow Analyzer sql injection
A vulnerability, which was classified as critical, was found in Zoho ManageEngine ManageEngine up to 125454. Affected is an unknown
Proofpoint Insider Threat Management Server up to 7.11.1 Web Console deserialization
A vulnerability was found in Proofpoint Insider Threat Management Server up to 7.11.1. It has been rated as critical. Affected
Proofpoint Insider Threat Management Server up to 7.11.1/7.12.0 Web Console name sql injection
A vulnerability classified as critical was found in Proofpoint Insider Threat Management Server up to 7.11.1/7.12.0. This vulnerability affects an
Anuko Time Tracker prior 1.19.30.5600 Parameter time.php date cross site scripting
A vulnerability, which was classified as problematic, was found in Anuko Time Tracker. This affects an unknown code of the
VMware vRealize Orchestrator up to 8.5 Path redirect
A vulnerability was found in VMware vRealize Orchestrator up to 8.5 and classified as problematic. This issue affects some unknown
VMware vRealize Operations up to 8.5 server-side request forgery
A vulnerability was found in VMware vRealize Operations up to 8.5. It has been classified as critical. Affected is an
VMware vRealize Log Insight up to 8.5 Interactive Analytics Export csv injection
A vulnerability classified as critical has been found in VMware vRealize Log Insight up to 8.5. This affects an unknown
Palo Alto GlobalProtect App stack-based overflow [CVE-2021-3057]
A vulnerability, which was classified as critical, has been found in Palo Alto GlobalProtect App (unknown version). This issue affects
Minio 2021-10-10T16-53-30Z checkKeyValid improper authorization
A vulnerability, which was classified as critical, was found in Minio 2021-10-10T16-53-30Z. Affected is the function checkKeyValid. Upgrading to version
Proofpoint Spam Engine prior 8.12.0-2106240000 Privilege Escalation
A vulnerability was found in Proofpoint Spam Engine (Anti-Spam Software). It has been declared as problematic. Upgrading to version 8.12.0-2106240000
Proofpoint Enterprise Protection prior 8.12.0-2108090000 Privilege Escalation
A vulnerability was found in Proofpoint Enterprise Protection. It has been rated as problematic. Upgrading to version 8.12.0-2108090000 eliminates this