CVE List - 2021 / January
Showing 101 - 200 of 1514 CVEs for January 2021 (Page 2 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-22492 | 2021-01-05 | An issue was discovered on Samsung mobile devices with O(8.x),... |
| CVE-2020-36159 | 2021-01-05 | Veritas Desktop and Laptop Option (DLO) before 9.5 disclosed operational... |
| CVE-2020-29437 | 2021-01-05 | SQL injection in the Buzz module of OrangeHRM through 4.6... |
| CVE-2020-36067 | 2021-01-05 | GJSON <=v1.6.5 allows attackers to cause a denial of service... |
| CVE-2020-36066 | 2021-01-05 | GJSON <1.6.5 allows attackers to cause a denial of service... |
| CVE-2019-20483 | 2021-01-05 | An issue was discovered in Viki Vera 4.9.1.26180. An attacker... |
| CVE-2019-20484 | 2021-01-05 | An issue was discovered in Viki Vera 4.9.1.26180. A user... |
| CVE-2020-36052 | 2021-01-05 | Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote... |
| CVE-2020-36051 | 2021-01-05 | Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote... |
| CVE-2020-26181 | 2021-01-05 | Dell EMC Isilon OneFS versions 8.1 and later and Dell... |
| CVE-2020-26199 | 2021-01-05 | Dell EMC Unity, Unity XT, and UnityVSA versions prior to... |
| CVE-2020-29489 | 2021-01-05 | Dell EMC Unity, Unity XT, and UnityVSA versions prior to... |
| CVE-2020-29490 | 2021-01-05 | Dell EMC Unity, Unity XT, and UnityVSA versions prior to... |
| CVE-2020-29500 | 2021-01-05 | Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text... |
| CVE-2020-29501 | 2021-01-05 | Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text... |
| CVE-2020-29502 | 2021-01-05 | Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text... |
| CVE-2020-35170 | 2021-01-05 | Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell... |
| CVE-2020-23250 | 2021-01-05 | GigaVUE-OS (GVOS) 5.4 - 5.9 uses a weak algorithm for... |
| CVE-2020-23249 | 2021-01-05 | GigaVUE-OS (GVOS) 5.4 - 5.9 stores a Redis database password... |
| CVE-2021-3026 | 2021-01-05 | Invision Community IPS Community Suite before 4.5.4.2 allows XSS during... |
| CVE-2020-7336 | 2021-01-05 | Network Security Management (NSM) - Cross Site Request Forgery vulnerability |
| CVE-2020-8287 | 2021-01-06 | Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two copies... |
| CVE-2020-36169 | 2021-01-06 | An issue was discovered in Veritas NetBackup through 8.3.0.1 and... |
| CVE-2020-36168 | 2021-01-06 | An issue was discovered in Veritas Resiliency Platform 3.4 and... |
| CVE-2020-36167 | 2021-01-06 | An issue was discovered in the server in Veritas Backup... |
| CVE-2020-36166 | 2021-01-06 | An issue was discovered in Veritas InfoScale 7.x through 7.4.2... |
| CVE-2020-36165 | 2021-01-06 | An issue was discovered in Veritas Desktop and Laptop Option... |
| CVE-2020-36164 | 2021-01-06 | An issue was discovered in Veritas Enterprise Vault through 14.0.... |
| CVE-2020-36163 | 2021-01-06 | An issue was discovered in Veritas NetBackup and OpsCenter through... |
| CVE-2020-36162 | 2021-01-06 | An issue was discovered in Veritas CloudPoint before 8.3.0.1+hotfix. The... |
| CVE-2020-36161 | 2021-01-06 | An issue was discovered in Veritas APTARE 10.4 before 10.4P9... |
| CVE-2020-36160 | 2021-01-06 | An issue was discovered in Veritas System Recovery before 21.2.... |
| CVE-2021-21235 | 2021-01-06 | Infinite loop in parsing PNG files in |
| CVE-2020-26759 | 2021-01-06 | clickhouse-driver before 0.1.5 allows a malicious clickhouse server to trigger... |
| CVE-2020-4336 | 2021-01-06 | IBM WebSphere eXtreme Scale 8.6.1 stores sensitive information in URL... |
| CVE-2020-10655 | 2021-01-06 | The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before... |
| CVE-2020-10656 | 2021-01-06 | The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before... |
| CVE-2020-10657 | 2021-01-06 | The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before... |
| CVE-2020-10658 | 2021-01-06 | The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before... |
| CVE-2020-8884 | 2021-01-06 | rcdsvc in the Proofpoint Insider Threat Management Windows Agent (formerly... |
| CVE-2020-36170 | 2021-01-06 | The Ultimate Member plugin before 2.1.13 for WordPress mishandles hidden... |
| CVE-2020-8160 | 2021-01-06 | MendixSSO <= 2.1.1 contains endpoints that make use of the... |
| CVE-2020-36171 | 2021-01-06 | The Elementor Website Builder plugin before 3.0.14 for WordPress does... |
| CVE-2020-36172 | 2021-01-06 | The Advanced Custom Fields plugin before 5.8.12 for WordPress mishandles... |
| CVE-2020-36174 | 2021-01-06 | The Ninja Forms plugin before 3.4.27.1 for WordPress allows CSRF... |
| CVE-2020-36175 | 2021-01-06 | The Ninja Forms plugin before 3.4.27.1 for WordPress allows attackers... |
| CVE-2020-36173 | 2021-01-06 | The Ninja Forms plugin before 3.4.28 for WordPress lacks escaping... |
| CVE-2012-10001 | 2021-01-06 | The Limit Login Attempts plugin before 1.7.1 for WordPress does... |
| CVE-2020-36176 | 2021-01-06 | The iThemes Security (formerly Better WP Security) plugin before 7.7.0... |
| CVE-2020-13544 | 2021-01-06 | An exploitable sign extension vulnerability exists in the TextMaker document... |
| CVE-2020-13545 | 2021-01-06 | An exploitable signed conversion vulnerability exists in the TextMaker document... |
| CVE-2020-27285 | 2021-01-06 | The default configuration of Crimson 3.1 (Build versions prior to... |
| CVE-2020-27279 | 2021-01-06 | A NULL pointer deference vulnerability has been identified in the... |
| CVE-2020-27283 | 2021-01-06 | An attacker could send a specially crafted message to Crimson... |
| CVE-2020-36177 | 2021-01-06 | RsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds... |
| CVE-2019-16954 | 2021-01-06 | SolarWinds Web Help Desk 12.7.0 allows HTML injection via a... |
| CVE-2019-16962 | 2021-01-06 | Zoho ManageEngine Desktop Central 10.0.430 allows HTML injection via a... |
| CVE-2021-21236 | 2021-01-06 | Regular Expression Denial of Service in CairoSVG |
| CVE-2020-29041 | 2021-01-06 | A misconfiguration in Web-Sesame 2020.1.1.3375 allows an unauthenticated attacker to... |
| CVE-2020-36178 | 2021-01-06 | oal_ipt_addBridgeIsolationRules on TP-Link TL-WR840N 6_EU_0.9.1_4.16 devices allows OS command injection... |
| CVE-2020-8281 | 2021-01-06 | A missing file type check in Nextcloud Contacts 3.3.0 allows... |
| CVE-2020-8275 | 2021-01-06 | Citrix Secure Mail for Android before 20.11.0 suffers from improper... |
| CVE-2020-8274 | 2021-01-06 | Citrix Secure Mail for Android before 20.11.0 suffers from Improper... |
| CVE-2020-8280 | 2021-01-06 | A missing file type check in Nextcloud Contacts 3.4.0 allows... |
| CVE-2020-8265 | 2021-01-06 | Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to... |
| CVE-2020-8264 | 2021-01-06 | In actionpack gem >= 6.0.0, a possible XSS vulnerability exists... |
| CVE-2020-35262 | 2021-01-06 | Cross Site Scripting (XSS) vulnerability in Digisol DG-HR3400 can be... |
| CVE-2020-25498 | 2021-01-06 | Cross Site Scripting (XSS) vulnerability in Beetel router 777VR1 can... |
| CVE-2020-36181 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36189 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36188 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36187 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36186 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36185 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36184 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36183 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36182 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36180 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-36179 | 2021-01-06 | FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization... |
| CVE-2020-26085 | 2021-01-06 | Cisco Jabber Desktop and Mobile Client Software Vulnerabilities |
| CVE-2020-26768 | 2021-01-07 | Formstone <=1.4.16 is vulnerable to a Reflected Cross-Site Scripting (XSS)... |
| CVE-2020-24900 | 2021-01-07 | The default installation of Krpano Panorama Viewer version <=1.20.8 is... |
| CVE-2020-24901 | 2021-01-07 | The default installation of Krpano Panorama Viewer version <=1.20.8 is... |
| CVE-2020-24902 | 2021-01-07 | Quixplorer <=2.4.1 is vulnerable to reflected cross-site scripting (XSS) caused... |
| CVE-2020-24903 | 2021-01-07 | Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site... |
| CVE-2020-35114 | 2021-01-07 | Mozilla developers reported memory safety bugs present in Firefox 83.... |
| CVE-2020-35113 | 2021-01-07 | Mozilla developers reported memory safety bugs present in Firefox 83... |
| CVE-2020-35112 | 2021-01-07 | If a user downloaded a file lacking an extension on... |
| CVE-2020-35111 | 2021-01-07 | When an extension with the proxy permission registered to receive... |
| CVE-2020-26979 | 2021-01-07 | When a user typed a URL in the address bar... |
| CVE-2020-26978 | 2021-01-07 | Using techniques that built on the slipstream research, a malicious... |
| CVE-2020-26977 | 2021-01-07 | By attempting to connect a website using an unresponsive port,... |
| CVE-2020-26976 | 2021-01-07 | When a HTTPS pages was embedded in a HTTP page,... |
| CVE-2020-26975 | 2021-01-07 | When a malicious application installed on the user's device broadcast... |
| CVE-2020-26974 | 2021-01-07 | When flex-basis was used on a table wrapper, a StyleGenericFlexBasis... |
| CVE-2020-26973 | 2021-01-07 | Certain input to the CSS Sanitizer confused it, resulting in... |
| CVE-2020-26972 | 2021-01-07 | The lifecycle of IPC Actors allows managed actors to outlive... |
| CVE-2020-26971 | 2021-01-07 | Certain blit values provided by the user were not properly... |
| CVE-2021-3029 | 2021-01-07 | EVOLUCARE ECSIMAGING (aka ECS Imaging) through 6.21.5 has an OS... |
| CVE-2020-26773 | 2021-01-07 | Restaurant Reservation System 1.0 suffers from an authenticated SQL injection... |