Apache Tomcat up to 8.5.65/9.0.45/10.0.5 JNDI Realm improper authentication
A vulnerability was found in Apache Tomcat up to 8.5.65/9.0.45/10.0.5 (Application Server Software). It has been rated as critical. This
MetInfo 7.0.0beta index.php sql injection
A vulnerability classified as critical has been found in MetInfo 7.0.0beta (Content Management System). Affected is an unknown part of
MetInfo 7.0.0beta getpassword.php sql injection
A vulnerability classified as critical was found in MetInfo 7.0.0beta (Content Management System). Affected by this vulnerability is an unknown
Xen Orchestra improper authorization [CVE-2021-36383]
A vulnerability, which was classified as critical, has been found in Xen Orchestra (Virtualization Software) (affected version not known). Affected
Apache Mina SSHD up to 2.6.x SFTP Port Forwarding buffer overflow
A vulnerability, which was classified as critical, was found in Apache Mina SSHD up to 2.6.x (SSH Server Software). This
Kramer AV VIAware sudo access control [CVE-2021-35064]
A vulnerability was found in Kramer AV VIAware (unknown version) and classified as critical. This issue affects an unknown functionality
Halo 0.4.3 remoteAddr/themeName Remote Privilege Escalation
A vulnerability was found in Halo 0.4.3. It has been classified as critical. There is no information about possible countermeasures
DaviewIndy up to 8.98.7.0 Format File integer overflow
A vulnerability was found in DaviewIndy up to 8.98.7.0. It has been declared as critical. Affected by this vulnerability is
Nextcloud Server up to 19.0.12/20.0.10/21.0.2 improper authorization
A vulnerability classified as critical has been found in Nextcloud Server up to 19.0.12/20.0.10/21.0.2 (Cloud Software). This affects an unknown
MetInfo 7.0.0beta sql injection [CVE-2020-21131]
A vulnerability, which was classified as critical, has been found in MetInfo 7.0.0beta (Content Management System). This issue affects an
Fortinet FortiMail up to 6.4.3 path traversal [CVE-2021-24013]
A vulnerability, which was classified as critical, was found in Fortinet FortiMail up to 6.4.3. Affected is an unknown functionality.
Fortinet FortiMail up to 6.4.3 Administrative Interface os command injection
A vulnerability has been found in Fortinet FortiMail up to 6.4.3 and classified as critical. Affected by this vulnerability is
Fortinet FSSO Collector up to 5.0.295 UDP Login Notification Packet improper authentication
A vulnerability was found in Fortinet FSSO Collector up to 5.0.295 and classified as critical. Affected by this issue is
Fortinet FortiClient up to 6.4.3 on Mac Installation symlink
A vulnerability was found in Fortinet FortiClient up to 6.4.3 on Mac. It has been classified as critical. This affects
Nextcloud Server up to 19.0.12/20.0.10/21.0.2 File Extension DownloadResponse escape output
A vulnerability was found in Nextcloud Server up to 19.0.12/20.0.10/21.0.2 (Cloud Software). It has been declared as critical. This vulnerability
Cartadis Gespage up to 8.2.1 gespage/doDownloadData pathname traversal
A vulnerability classified as critical has been found in Cartadis Gespage up to 8.2.1. Affected is an unknown function of
IBM Event Streams 10.0/10.1/10.2/10.3 CA Private Key access control
A vulnerability classified as critical was found in IBM Event Streams 10.0/10.1/10.2/10.3. This vulnerability affects an unknown part of the
total.js up to 3.4.8 U.set/U.get Remote Code Execution
A vulnerability, which was classified as critical, has been found in total.js up to 3.4.8 (JavaScript Library). Upgrading to version
total4 up to 0.0.42 U.set/U.get Remote Code Execution
A vulnerability, which was classified as critical, was found in total4 up to 0.0.42. Upgrading to version 0.0.43 eliminates this
Halo 0.4.3 Article access control
A vulnerability was found in Halo 0.4.3. It has been classified as critical. This affects an unknown functionality of the
Halo up to 1.3.2 SMTP Configuration server-side request forgery
A vulnerability was found in Halo up to 1.3.2. It has been rated as critical. This issue affects an unknown
Dell EMC PowerFlex 3.5.x Presentation Server/WebUI insufficient verification of data authenticity
A vulnerability classified as critical has been found in Dell EMC PowerFlex 3.5.x. Affected is an unknown code of the
Edifecs Transaction Management up to 2021-07-12 Login Screen logon.jsp logon_error injection
A vulnerability classified as critical was found in Edifecs Transaction Management up to 2021-07-12. Affected by this vulnerability is an
Dell EMC Unity/Unity XT/UnityVSA prior 5.1.0.0.5.394 initialization
A vulnerability, which was classified as critical, has been found in Dell EMC Unity, Unity XT and UnityVSA. Upgrading to