CVE List - 2020 / September
Showing 1 - 100 of 1592 CVEs for September 2020 (Page 1 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-25067 | 2020-09-01 | NETGEAR R8300 devices before 1.0.2.134 are affected by command injection... |
| CVE-2020-14178 | 2020-09-01 | Affected versions of Atlassian Jira Server and Data Center allow... |
| CVE-2020-12776 | 2020-09-01 | Openfind Mail2000 - Broken Access Control |
| CVE-2020-7713 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7716 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7715 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7714 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7718 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7717 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7719 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7720 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7722 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7721 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7724 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7723 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7727 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7726 | 2020-09-01 | Prototype Pollution |
| CVE-2020-7725 | 2020-09-01 | Prototype Pollution |
| CVE-2020-8023 | 2020-09-01 | Local privilege escalation from ldap to root when using OPENLDAP_CONFIG_BACKEND=ldap in openldap2 |
| CVE-2018-12475 | 2020-09-01 | obs-service-download_files allows downloading from localhost or intranet hosts |
| CVE-2020-24583 | 2020-09-01 | An issue was discovered in Django 2.2 before 2.2.16, 3.0... |
| CVE-2020-24584 | 2020-09-01 | An issue was discovered in Django 2.2 before 2.2.16, 3.0... |
| CVE-2020-6129 | 2020-09-01 | SQL injection vulnerabilities exist in the course_period_id parameters used in... |
| CVE-2020-6130 | 2020-09-01 | SQL injection vulnerabilities exist in the course_period_id parameters used in... |
| CVE-2020-6131 | 2020-09-01 | SQL injection vulnerabilities exist in the course_period_id parameters used in... |
| CVE-2020-24554 | 2020-09-01 | The redirect module in Liferay Portal before 7.3.3 does not... |
| CVE-2020-2238 | 2020-09-01 | Jenkins Git Parameter Plugin 0.9.12 and earlier does not escape... |
| CVE-2020-2239 | 2020-09-01 | Jenkins Parameterized Remote Trigger Plugin 3.1.3 and earlier stores a... |
| CVE-2020-2240 | 2020-09-01 | A cross-site request forgery (CSRF) vulnerability in Jenkins database Plugin... |
| CVE-2020-2241 | 2020-09-01 | A cross-site request forgery (CSRF) vulnerability in Jenkins database Plugin... |
| CVE-2020-2242 | 2020-09-01 | A missing permission check in Jenkins database Plugin 1.6 and... |
| CVE-2020-2243 | 2020-09-01 | Jenkins Cadence vManager Plugin 3.0.4 and earlier does not escape... |
| CVE-2020-2244 | 2020-09-01 | Jenkins Build Failure Analyzer Plugin 1.27.0 and earlier does not... |
| CVE-2020-2245 | 2020-09-01 | Jenkins Valgrind Plugin 0.28 and earlier does not configure its... |
| CVE-2020-2246 | 2020-09-01 | Jenkins Valgrind Plugin 0.28 and earlier does not escape content... |
| CVE-2020-2247 | 2020-09-01 | Jenkins Klocwork Analysis Plugin 2020.2.1 and earlier does not configure... |
| CVE-2020-2248 | 2020-09-01 | Jenkins JSGames Plugin 0.2 and earlier evaluates part of a... |
| CVE-2020-2249 | 2020-09-01 | Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a... |
| CVE-2020-2250 | 2020-09-01 | Jenkins SoapUI Pro Functional Testing Plugin 1.3 and earlier stores... |
| CVE-2020-2251 | 2020-09-01 | Jenkins SoapUI Pro Functional Testing Plugin 1.5 and earlier transmits... |
| CVE-2020-6117 | 2020-09-01 | SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed... |
| CVE-2020-6118 | 2020-09-01 | SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed... |
| CVE-2020-6119 | 2020-09-01 | SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed... |
| CVE-2020-7665 | 2020-09-01 | Arbitrary File Write via Archive Extraction (Zip Slip) |
| CVE-2020-7666 | 2020-09-01 | Arbitrary File Write via Archive Extraction (Zip Slip) |
| CVE-2020-7669 | 2020-09-01 | Arbitrary File Write via Archive Extraction (Zip Slip) |
| CVE-2020-6120 | 2020-09-01 | SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed... |
| CVE-2020-6121 | 2020-09-01 | SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed... |
| CVE-2020-6122 | 2020-09-01 | SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed... |
| CVE-2020-14514 | 2020-09-01 | Trailer Power Line Communications vulnerability |
| CVE-2020-6123 | 2020-09-01 | An exploitable sql injection vulnerability exists in the email parameter... |
| CVE-2020-6124 | 2020-09-01 | An exploitable sql injection vulnerability exists in the email parameter... |
| CVE-2020-6125 | 2020-09-01 | An exploitable SQL injection vulnerability exists in the GetSchool.php functionality... |
| CVE-2020-6126 | 2020-09-01 | SQL injection vulnerability exists in the CoursePeriodModal.php page of OS4Ed... |
| CVE-2020-6127 | 2020-09-01 | SQL injection vulnerability exists in the CoursePeriodModal.php page of OS4Ed... |
| CVE-2020-6128 | 2020-09-01 | SQL injection vulnerability exists in the CoursePeriodModal.php page of OS4Ed... |
| CVE-2020-6132 | 2020-09-01 | SQL injection vulnerability exists in the ID parameters of OS4Ed... |
| CVE-2020-6133 | 2020-09-01 | SQL injection vulnerabilities exist in the ID parameters of OS4Ed... |
| CVE-2020-6134 | 2020-09-01 | SQL injection vulnerabilities exist in the ID parameters of OS4Ed... |
| CVE-2019-5645 | 2020-09-01 | Rapid7 Metasploit HTTP Handler Denial of Service |
| CVE-2020-23971 | 2020-09-01 | gmapfp.org Joomla Component GMapFP J3.30pro is affected by Insecure Permissions.... |
| CVE-2020-23450 | 2020-09-01 | Spiceworks Version <= 7.5.00107 is affected by XSS. Any name... |
| CVE-2012-3336 | 2020-09-01 | IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to... |
| CVE-2012-3337 | 2020-09-01 | IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a... |
| CVE-2012-3338 | 2020-09-01 | IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a... |
| CVE-2012-3340 | 2020-09-01 | IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to... |
| CVE-2012-3341 | 2020-09-01 | IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable... |
| CVE-2020-6135 | 2020-09-01 | An exploitable SQL injection vulnerability exists in the Validator.php functionality... |
| CVE-2020-15150 | 2020-09-01 | Remote Code Execution in paginator(hex) |
| CVE-2020-23839 | 2020-09-01 | A Reflected Cross-Site Scripting (XSS) vulnerability in GetSimple CMS v3.3.16,... |
| CVE-2020-23835 | 2020-09-01 | A Reflected Cross-Site Scripting (XSS) vulnerability in the index.php login-portal... |
| CVE-2020-23836 | 2020-09-01 | A Cross-Site Request Forgery (CSRF) vulnerability in edit_user.php in OSWAPP... |
| CVE-2020-23831 | 2020-09-01 | A Reflected Cross-Site Scripting (XSS) vulnerability in the index.php login-portal... |
| CVE-2020-23829 | 2020-09-01 | interface/new/new_comprehensive_save.php in LibreHealth EHR 2.0.0 suffers from an authenticated file... |
| CVE-2020-6136 | 2020-09-01 | An exploitable SQL injection vulnerability exists in the DownloadWindow.php functionality... |
| CVE-2020-24034 | 2020-09-01 | Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure... |
| CVE-2020-6141 | 2020-09-01 | An exploitable SQL injection vulnerability exists in the login functionality... |
| CVE-2020-17405 | 2020-09-01 | This vulnerability allows network-adjacent attackers to execute arbitrary code on... |
| CVE-2020-24556 | 2020-09-01 | A vulnerability in Trend Micro Apex One, OfficeScan XG SP1,... |
| CVE-2020-24558 | 2020-09-01 | A vulnerability in an Trend Micro Apex One, Worry-Free Business... |
| CVE-2020-24559 | 2020-09-01 | A vulnerability in Trend Micro Apex One, Worry-Free Business Security... |
| CVE-2020-24557 | 2020-09-01 | A vulnerability in Trend Micro Apex One and Worry-Free Business... |
| CVE-2020-6137 | 2020-09-01 | SQL injection vulnerability exists in the password reset functionality of... |
| CVE-2020-6138 | 2020-09-01 | SQL injection vulnerability exists in the password reset functionality of... |
| CVE-2020-6139 | 2020-09-01 | SQL injection vulnerability exists in the password reset functionality of... |
| CVE-2020-6140 | 2020-09-01 | SQL injection vulnerability exists in the password reset functionality of... |
| CVE-2020-6142 | 2020-09-01 | A remote code execution vulnerability exists in the Modules.php functionality... |
| CVE-2020-25070 | 2020-09-01 | USVN (aka User-friendly SVN) before 1.0.10 allows CSRF, related to... |
| CVE-2020-25069 | 2020-09-01 | USVN (aka User-friendly SVN) before 1.0.10 allows attackers to execute... |
| CVE-2020-6143 | 2020-09-01 | A remote code execution vulnerability exists in the install functionality... |
| CVE-2020-6144 | 2020-09-01 | A remote code execution vulnerability exists in the install functionality... |
| CVE-2020-6874 | 2020-09-01 | A ZTE product is impacted by the cryptographic issues vulnerability.... |
| CVE-2020-6873 | 2020-09-01 | A ZTE product has a DoS vulnerability. Because the equipment... |
| CVE-2020-5777 | 2020-09-01 | MAGMI versions prior to 0.7.24 are vulnerable to a remote... |
| CVE-2020-5776 | 2020-09-01 | Currently, all versions of MAGMI are vulnerable to CSRF due... |
| CVE-2020-16206 | 2020-09-01 | The affected product is vulnerable to stored cross-site scripting, which... |
| CVE-2020-16208 | 2020-09-01 | The affected product is vulnerable to cross-site request forgery, which... |
| CVE-2020-16210 | 2020-09-01 | The affected product is vulnerable to reflected cross-site scripting, which... |
| CVE-2020-16204 | 2020-09-01 | The affected product is vulnerable due to an undocumented interface... |
| CVE-2020-13946 | 2020-09-01 | In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22,... |