CVE-2021-20040
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody'…
Devamını oku
Kategori: NIST-Güvenlik Açıkları
CVE-2021-20038 (sma_200_firmware, sma_210_firmware, sma_400_firmware, sma_410_firmware, sma_500v_firmware)
A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a…
CVE-2021-20039 (sma_200_firmware, sma_210_firmware, sma_400_firmware, sma_410_firmware, sma_500v_firmware)
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a…
CVE-2021-20040 (sma_200_firmware, sma_210_firmware, sma_400_firmware, sma_410_firmware, sma_500v_firmware)
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody'…
CVE-2018-25020
The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions…
CVE-2018-25020 (linux_kernel)
The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions…
CVE-2020-22421
74CMS v6.0.4 was discovered to contain a cross-site scripting (XSS) vulnerability via /index.php?m=&c=help&a=help_list&key. Devamını Oku
CVE-2021-3370
DouPHP v1.6 was discovered to contain a cross-site scripting (XSS) vulnerability via /admin/cloud.php. Devamını Oku
CVE-2020-22421 (74cms)
74CMS v6.0.4 was discovered to contain a cross-site scripting (XSS) vulnerability via /index.php?m=&c=help&a=help_list&key. Devamını Oku