webTareas up to 2.4 Personal Profile Picture /includes/upload.php unrestricted upload
A vulnerability, which was classified as critical, was found in webTareas up to 2.4. Affected is some unknown processing of
Zammad up to 4.1.0 Custom Package command injection
A vulnerability classified as critical was found in Zammad up to 4.1.0. Affected by this vulnerability is an unknown functionality
Node.js up to 12.22.3/14.17.3/16.5.x use after free [CVE-2021-22930]
A vulnerability was found in Node.js up to 12.22.3/14.17.3/16.5.x (JavaScript Library) and classified as critical. This issue affects an unknown
SilverStripe GraphQL Server up to 3.4.1 permission [CVE-2021-28661]
A vulnerability was found in SilverStripe GraphQL Server up to 3.4.1 (Content Management System). It has been classified as critical.
teddy Package up to 0.5.8 type confusion [CVE-2021-23447]
A vulnerability was found in teddy Package up to 0.5.8. It has been declared as critical. Affected by this vulnerability
Zoho ManageEngine ADManager Plus up to 7110 File Copy path traversal
A vulnerability was found in Zoho ManageEngine ADManager Plus up to 7110. It has been rated as critical. Affected by
Concrete5 up to 8.5.4 IP Address server-side request forgery
A vulnerability, which was classified as critical, has been found in Concrete5 up to 8.5.4. This issue affects an unknown
Integria IMS 5.0.92 AsyncUpload unrestricted upload
A vulnerability was found in Integria IMS 5.0.92. It has been rated as critical. This issue affects the function AsyncUpload.
Meross MSG100 up to 3.2.2 Messages authentication replay
A vulnerability classified as critical has been found in Meross MSG100 up to 3.2.2. Affected is an unknown code of
Maianscriptworld Maian Cart 3.8 Elfinder Plugin access control
A vulnerability was found in Maianscriptworld Maian Cart 3.8. It has been declared as critical. Affected by this vulnerability is
Samsung InputManagerService prior SMR Oct-2021 Release 1 Touch Event improper authentication
A vulnerability, which was classified as critical, has been found in Samsung InputManagerService. This issue affects an unknown code block
Samsung Note prior 4.3.02.61 libSPenBase out-of-bounds write
A vulnerability was found in Samsung Note (Smartphone Operating System). It has been declared as critical. This vulnerability affects an
Samsung Galaxy Store prior 4.5.32.4 SamsungAccountSDKSigninActivity improper authorization
A vulnerability classified as critical has been found in Samsung Galaxy Store (Smartphone Operating System). Affected is the function SamsungAccountSDKSigninActivity.
Jenkins up to LTS 2.303.1/2.314 on Windows Dot Character path traversal
A vulnerability classified as critical was found in Jenkins up to LTS 2.303.1/2.314 on Windows (Continuous Integration Software). Affected by
Jenkins up to LTS 2.303.1/2.314 on Windows File Browser path traversal
A vulnerability, which was classified as critical, has been found in Jenkins up to LTS 2.303.1/2.314 on Windows (Continuous Integration
Octopus Server ACL Privilege Escalation [CVE-2021-26556]
A vulnerability, which was classified as critical, was found in Octopus Server (the affected version unknown). This affects an unknown
Octopus Tentacle ACL Privilege Escalation [CVE-2021-26557]
A vulnerability has been found in Octopus Tentacle (the affected version is unknown) and classified as critical. This vulnerability affects
Google Android 8.1/9.0/10.0/11.0 TouchInputMapper.cpp TouchInputMapper::sync out-of-bounds write
A vulnerability was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). It has been rated as critical. Affected by this
Cisco Smart Software Manager On-Prem Web UI privileges management
A vulnerability was found in Cisco Smart Software Manager On-Prem (the affected version is unknown). It has been declared as
Cisco Identity Services Engine REST API privileges assignment
A vulnerability was found in Cisco Identity Services Engine (Policy Management Software) (unknown version). It has been rated as critical.
Myucms 2.2.1 controllerConfig.php add Privilege Escalation
A vulnerability classified as critical has been found in Myucms 2.2.1. Affected is the function add of the file controllerConfig.php.
Myucms 2.2.1 controllerpoint.php add Privilege Escalation
A vulnerability classified as critical was found in Myucms 2.2.1. Affected by this vulnerability is the function add of the
Myucms 2.2.1 controllerConfig.php addqq Privilege Escalation
A vulnerability, which was classified as critical, has been found in Myucms 2.2.1. Affected by this issue is the function
Apache HTTP Server 2.4.49/2.4.50 Incomplete Fix CVE-2021-41773 path traversal
A vulnerability classified as critical was found in Apache HTTP Server 2.4.49/2.4.50 (Web Server). This vulnerability affects an unknown code