CVE List - 2021 / October
Showing 501 - 600 of 1706 CVEs for October 2021 (Page 6 of 18)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-40886 | 2021-10-11 | Projectsend version r1295 is affected by a directory traversal vulnerability. A user with Uploader role can add value `2` for `chunks` parameter to bypass `fileName` sanitization. |
| CVE-2021-24545 | 2021-10-11 | WP HTML Author Bio <= 1.2.0 - Author+ Stored Cross-Site Scripting |
| CVE-2021-24546 | 2021-10-11 | EditorsKit < 1.31.6 - Contributor+ Arbitrary PHP Code Execution |
| CVE-2021-24563 | 2021-10-11 | Frontend Uploader <= 1.3.2 - Unauthenticated Stored Cross-Site Scripting |
| CVE-2021-24576 | 2021-10-11 | Easy Accordion < 2.0.22 - Authenticated Stored XSS |
| CVE-2021-24577 | 2021-10-11 | Coming Soon and Maintenance Mode < 3.5.3 - Authenticated Stored XSS |
| CVE-2021-24651 | 2021-10-11 | Poll Maker < 3.4.2 - Unauthenticated Time Based SQL Injection |
| CVE-2021-24656 | 2021-10-11 | Simple Social Media Share Buttons < 3.2.4 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24681 | 2021-10-11 | Duplicate Page <= 4.4.2 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24683 | 2021-10-11 | Weather Effect < 1.3.4 - CSRF to Stored Cross-Site Scripting |
| CVE-2021-24690 | 2021-10-11 | Chained Quiz < 1.2.7.2 - Authenticated Stored Cross Site Scripting |
| CVE-2021-24691 | 2021-10-11 | Quiz And Survey Master < 7.3.2 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24709 | 2021-10-11 | Weather Effect < 1.3.6 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24711 | 2021-10-11 | Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF |
| CVE-2021-24712 | 2021-10-11 | Appointment Hour Booking – WordPress Booking Plugin < 1.3.17 - Authenticated Stored XSS |
| CVE-2021-24719 | 2021-10-11 | Enfold Theme < 4.8.4 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24720 | 2021-10-11 | GeoDirectory < 2.1.1.3 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24737 | 2021-10-11 | Comments - wpDiscuz <= 7.3.0 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-40884 | 2021-10-11 | Projectsend version r1295 is affected by sensitive information disclosure. Because of not checking authorization in ids parameter in files-edit.php and id parameter in process.php function, a user with uploader role... |
| CVE-2021-29004 | 2021-10-11 | rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the... |
| CVE-2021-29006 | 2021-10-11 | rConfig 3.9.6 is affected by a Local File Disclosure vulnerability. An authenticated user may successfully download any file on the server. |
| CVE-2021-29005 | 2021-10-11 | Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege... |
| CVE-2021-40543 | 2021-10-11 | Opensis-Classic Version 8.0 is affected by a SQL injection vulnerability due to a lack of sanitization of input data at two parameters $_GET['usrid'] and $_GET['prof_id'] in the PasswordCheck.php file. |
| CVE-2021-40542 | 2021-10-11 | Opensis-Classic Version 8.0 is affected by cross-site scripting (XSS). An unauthenticated user can inject and execute JavaScript code through the link_url parameter in Ajax_url_encode.php. |
| CVE-2021-40541 | 2021-10-11 | PHPFusion 9.03.110 is affected by cross-site scripting (XSS) in the preg patterns filter html tag without "//" in descript() function An authenticated user can trigger XSS by appending "//" in... |
| CVE-2021-40191 | 2021-10-11 | Dzzoffice Version 2.02.1 is affected by cross-site scripting (XSS) due to a lack of sanitization of input data at all upload functions in webroot/dzz/attach/Uploader.class.php and return a wrong response in... |
| CVE-2021-27664 | 2021-10-11 | exacqVision Web Service |
| CVE-2021-27665 | 2021-10-11 | exacqVision Server 32-bit |
| CVE-2021-39317 | 2021-10-11 | AccessPress Themes - Authenticated Malicious File Upload |
| CVE-2021-0583 | 2021-10-11 | In onCreate of BluetoothPairingDialog, there is a possible way to enable Bluetooth without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User... |
| CVE-2021-37123 | 2021-10-11 | There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200. The vulnerability is due to that when an user wants to do certain operation, the software does not insufficiently validate... |
| CVE-2021-27002 | 2021-10-11 | NetApp Cloud Manager versions prior to 3.9.10 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to retrieve sensitive data via the web proxy. |
| CVE-2021-25633 | 2021-10-11 | Content Manipulation with Double Certificate Attack |
| CVE-2021-26588 | 2021-10-11 | A potential security vulnerability has been identified in HPE 3PAR StoreServ, HPE Primera Storage and HPE Alletra 9000 Storage array firmware. An unauthenticated user could remotely exploit the low complexity... |
| CVE-2021-22263 | 2021-10-11 | An issue has been discovered in GitLab affecting all versions starting from 13.0 before 14.0.9, all versions starting from 14.1 before 14.1.4, all versions starting from 14.2 before 14.2.2. A... |
| CVE-2021-20121 | 2021-10-11 | The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is vulnerable to an authenticated arbitrary file read. An authenticated user with physical access to the device can read arbitrary files... |
| CVE-2021-20122 | 2021-10-11 | The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker connected to the router's... |
| CVE-2021-41117 | 2021-10-11 | Insecure random number generation |
| CVE-2020-27372 | 2021-10-11 | A buffer overflow vulnerability exists in Brandy Basic V Interpreter 1.21 in the run_interpreter function. |
| CVE-2021-40239 | 2021-10-11 | A Buffer Overflow vulnerability exists in the latest version of Miniftpd in the do_retr function in ftpproto.c |
| CVE-2021-40189 | 2021-10-11 | PHPFusion 9.03.110 is affected by a remote code execution vulnerability. The theme function will extract a file to "webroot/themes/{Theme Folder], where an attacker can access and execute arbitrary code. |
| CVE-2021-40617 | 2021-10-11 | An SQL Injection vulnerability exists in openSIS Community Edition version 8.0 via ForgotPassUserName.php. |
| CVE-2021-40188 | 2021-10-11 | PHPFusion 9.03.110 is affected by an arbitrary file upload vulnerability. The File Manager function in admin panel does not filter all PHP extensions such as ".php, .php7, .phtml, .php5, ...".... |
| CVE-2021-42252 | 2021-10-11 | An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel... |
| CVE-2021-25738 | 2021-10-11 | Code exec via yaml parsing |
| CVE-2021-23448 | 2021-10-11 | Prototype Pollution |
| CVE-2021-3671 | 2021-10-12 | A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to... |
| CVE-2021-42009 | 2021-10-12 | Apache Traffic Control Traffic Ops Email Injection Vulnerability |
| CVE-2021-27395 | 2021-10-12 | A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions),... |
| CVE-2021-33722 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system has a Path Traversal vulnerability when exporting a firmware container. With this... |
| CVE-2021-33723 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could change the user profile of any user without proper authorization. With... |
| CVE-2021-33724 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system contains an Arbitrary File Deletion vulnerability that possibly allows to delete an... |
| CVE-2021-33725 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to delete arbitrary files or directories under a user controlled path... |
| CVE-2021-33726 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to download arbitrary files under a user controlled path and does... |
| CVE-2021-33727 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could download the user profile of any user. With this, the attacker... |
| CVE-2021-33728 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to upload JSON objects that are deserialized to JAVA objects. Due... |
| CVE-2021-33729 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker that is able to import firmware containers to an affected system could... |
| CVE-2021-33730 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-33731 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-33732 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-33733 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-33734 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-33735 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-33736 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted... |
| CVE-2021-37199 | 2021-10-12 | A vulnerability has been identified in SINUMERIK 808D (All versions), SINUMERIK 828D (All versions < V4.95). Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which... |
| CVE-2021-41546 | 2021-10-12 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501... |
| CVE-2020-28145 | 2021-10-12 | Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app\attachment\admin\index.php, which allows attackers to access sensitive information. |
| CVE-2021-25634 | 2021-10-12 | Timestamp Manipulation with Signature Wrapping |
| CVE-2021-21940 | 2021-10-12 | A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted network packet can lead to a heap buffer overflow. An attacker... |
| CVE-2021-21941 | 2021-10-12 | A use-after-free vulnerability exists in the pushMuxer CreatePushThread functionality of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to remote code execution. |
| CVE-2021-38452 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38456 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38454 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38458 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38460 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38179 | 2021-10-12 | Debug function of Admin UI of SAP Business One Integration is enabled by default. This allows Admin User to see the captured packet contents which may include User credentials. |
| CVE-2021-38181 | 2021-10-12 | SAP NetWeaver AS ABAP and ABAP Platform - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, allows an attacker to prevent legitimate users from... |
| CVE-2021-40495 | 2021-10-12 | There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755. An unauthorized attacker can use... |
| CVE-2021-40497 | 2021-10-12 | SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430, allows an attacker to exploit certain application endpoints to read sensitive data. These endpoints are normally exposed over the network... |
| CVE-2021-38178 | 2021-10-12 | The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a... |
| CVE-2021-38180 | 2021-10-12 | SAP Business One - version 10.0, allows an attacker to inject formulas when exporting data to Excel (CSV injection) due to improper sanitation during the data export. An attacker could... |
| CVE-2021-40496 | 2021-10-12 | SAP Internet Communication framework (ICM) - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 785, allows an attacker with logon functionality, to exploit the... |
| CVE-2021-40499 | 2021-10-12 | Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that... |
| CVE-2021-38183 | 2021-10-12 | SAP NetWeaver - versions 700, 701, 702, 730, does not sufficiently encode user-controlled inputs, allowing an attacker to cause a potential victim to supply a malicious content to a vulnerable... |
| CVE-2021-40498 | 2021-10-12 | A vulnerability has been identified in SAP SuccessFactors Mobile Application for Android - versions older than 2108, which allows an attacker to prevent legitimate users from accessing a service, either... |
| CVE-2021-40500 | 2021-10-12 | SAP BusinessObjects Business Intelligence Platform (Crystal Reports) - versions 420, 430, allows an unauthenticated attacker to exploit missing XML validations at endpoints to read sensitive data. These endpoints are normally... |
| CVE-2021-37726 | 2021-10-12 | A remote buffer overflow vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 8.7.x.x: 8.7.0.0 through 8.7.1.2. Aruba has released patches for Aruba Instant (IAP) that address this... |
| CVE-2021-37730 | 2021-10-12 | A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12... |
| CVE-2021-37727 | 2021-10-12 | A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below;... |
| CVE-2021-37732 | 2021-10-12 | A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.11... |
| CVE-2021-37735 | 2021-10-12 | A remote denial of service vulnerability was discovered in Aruba Instant version(s): Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.10 and below; Aruba Instant 8.6.x.x: 8.6.0.4 and below.... |
| CVE-2021-37734 | 2021-10-12 | A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.19 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below;... |
| CVE-2021-35214 | 2021-10-12 | Session Management Vulnerability |
| CVE-2021-41136 | 2021-10-12 | Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in puma |
| CVE-2021-40292 | 2021-10-12 | A Stored Cross Site Sripting (XSS) vulnerability exists in DzzOffice 2.02.1 via the settingnew parameter. |
| CVE-2021-35494 | 2021-10-12 | TIBCO JasperReports unauthorized access to temporary object |
| CVE-2021-35495 | 2021-10-12 | TIBCO JasperReports FTP Password exposed |
| CVE-2021-35496 | 2021-10-12 | TIBCO JasperReports XML Eternal Entity (XXE) vulnerability |
| CVE-2021-40618 | 2021-10-12 | An SQL Injection vulnerability exists in openSIS Classic 8.0 via the 1) ADDR_CONT_USRN, 2) ADDR_CONT_PSWD, 3) SECN_CONT_USRN or 4) SECN_CONT_PSWD parameters in HoldAddressFields.php. |
| CVE-2021-27003 | 2021-10-12 | Clustered Data ONTAP versions prior to 9.5P18, 9.6P15, 9.7P14, 9.8P5 and 9.9.1 are missing an X-Frame-Options header which could allow a clickjacking attack. |