CVE List - 2021 / October
Showing 501 - 600 of 1707 CVEs for October 2021 (Page 6 of 18)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-40887 | 2021-10-11 | Projectsend version r1295 is affected by a directory traversal vulnerability.... |
| CVE-2021-40886 | 2021-10-11 | Projectsend version r1295 is affected by a directory traversal vulnerability.... |
| CVE-2021-24545 | 2021-10-11 | WP HTML Author Bio <= 1.2.0 - Author+ Stored Cross-Site Scripting |
| CVE-2021-24546 | 2021-10-11 | EditorsKit < 1.31.6 - Contributor+ Arbitrary PHP Code Execution |
| CVE-2021-24563 | 2021-10-11 | Frontend Uploader <= 1.3.2 - Unauthenticated Stored Cross-Site Scripting |
| CVE-2021-24576 | 2021-10-11 | Easy Accordion < 2.0.22 - Authenticated Stored XSS |
| CVE-2021-24577 | 2021-10-11 | Coming Soon and Maintenance Mode < 3.5.3 - Authenticated Stored XSS |
| CVE-2021-24651 | 2021-10-11 | Poll Maker < 3.4.2 - Unauthenticated Time Based SQL Injection |
| CVE-2021-24656 | 2021-10-11 | Simple Social Media Share Buttons < 3.2.4 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24681 | 2021-10-11 | Duplicate Page <= 4.4.2 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24683 | 2021-10-11 | Weather Effect < 1.3.4 - CSRF to Stored Cross-Site Scripting |
| CVE-2021-24690 | 2021-10-11 | Chained Quiz < 1.2.7.2 - Authenticated Stored Cross Site Scripting |
| CVE-2021-24691 | 2021-10-11 | Quiz And Survey Master < 7.3.2 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24709 | 2021-10-11 | Weather Effect < 1.3.6 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24711 | 2021-10-11 | Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF |
| CVE-2021-24712 | 2021-10-11 | Appointment Hour Booking – WordPress Booking Plugin < 1.3.17 - Authenticated Stored XSS |
| CVE-2021-24719 | 2021-10-11 | Enfold Theme < 4.8.4 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24720 | 2021-10-11 | GeoDirectory < 2.1.1.3 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24737 | 2021-10-11 | Comments - wpDiscuz <= 7.3.0 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-40884 | 2021-10-11 | Projectsend version r1295 is affected by sensitive information disclosure. Because... |
| CVE-2021-29004 | 2021-10-11 | rConfig 3.9.6 is affected by SQL Injection. A user must... |
| CVE-2021-29006 | 2021-10-11 | rConfig 3.9.6 is affected by a Local File Disclosure vulnerability.... |
| CVE-2021-29005 | 2021-10-11 | Insecure permission of chmod command on rConfig server 3.9.6 exists.... |
| CVE-2021-40543 | 2021-10-11 | Opensis-Classic Version 8.0 is affected by a SQL injection vulnerability... |
| CVE-2021-40542 | 2021-10-11 | Opensis-Classic Version 8.0 is affected by cross-site scripting (XSS). An... |
| CVE-2021-40541 | 2021-10-11 | PHPFusion 9.03.110 is affected by cross-site scripting (XSS) in the... |
| CVE-2021-40191 | 2021-10-11 | Dzzoffice Version 2.02.1 is affected by cross-site scripting (XSS) due... |
| CVE-2021-27664 | 2021-10-11 | exacqVision Web Service |
| CVE-2021-27665 | 2021-10-11 | exacqVision Server 32-bit |
| CVE-2021-39317 | 2021-10-11 | AccessPress Themes - Authenticated Malicious File Upload |
| CVE-2021-0583 | 2021-10-11 | In onCreate of BluetoothPairingDialog, there is a possible way to... |
| CVE-2021-37123 | 2021-10-11 | There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200.... |
| CVE-2021-27002 | 2021-10-11 | NetApp Cloud Manager versions prior to 3.9.10 are susceptible to... |
| CVE-2021-25633 | 2021-10-11 | Content Manipulation with Double Certificate Attack |
| CVE-2021-26588 | 2021-10-11 | A potential security vulnerability has been identified in HPE 3PAR... |
| CVE-2021-22263 | 2021-10-11 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2021-20121 | 2021-10-11 | The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is... |
| CVE-2021-20122 | 2021-10-11 | The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is... |
| CVE-2021-41117 | 2021-10-11 | Insecure random number generation |
| CVE-2020-27372 | 2021-10-11 | A buffer overflow vulnerability exists in Brandy Basic V Interpreter... |
| CVE-2021-40239 | 2021-10-11 | A Buffer Overflow vulnerability exists in the latest version of... |
| CVE-2021-40189 | 2021-10-11 | PHPFusion 9.03.110 is affected by a remote code execution vulnerability.... |
| CVE-2021-40617 | 2021-10-11 | An SQL Injection vulnerability exists in openSIS Community Edition version... |
| CVE-2021-40188 | 2021-10-11 | PHPFusion 9.03.110 is affected by an arbitrary file upload vulnerability.... |
| CVE-2021-42252 | 2021-10-11 | An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the... |
| CVE-2021-25738 | 2021-10-11 | Code exec via yaml parsing |
| CVE-2021-23448 | 2021-10-11 | Prototype Pollution |
| CVE-2021-3671 | 2021-10-12 | A null pointer de-reference was found in the way samba... |
| CVE-2021-42009 | 2021-10-12 | Apache Traffic Control Traffic Ops Email Injection Vulnerability |
| CVE-2021-27395 | 2021-10-12 | A vulnerability has been identified in SIMATIC Process Historian 2013... |
| CVE-2021-33722 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33723 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33724 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33725 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33726 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33727 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33728 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33729 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33730 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33731 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33732 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33733 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33734 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33735 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-33736 | 2021-10-12 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2021-37199 | 2021-10-12 | A vulnerability has been identified in SINUMERIK 808D (All versions),... |
| CVE-2021-41546 | 2021-10-12 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All... |
| CVE-2020-28145 | 2021-10-12 | Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1... |
| CVE-2021-25634 | 2021-10-12 | Timestamp Manipulation with Signature Wrapping |
| CVE-2021-21940 | 2021-10-12 | A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo... |
| CVE-2021-21941 | 2021-10-12 | A use-after-free vulnerability exists in the pushMuxer CreatePushThread functionality of... |
| CVE-2021-38452 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38456 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38454 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38458 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38460 | 2021-10-12 | Moxa MXview Network Management Software |
| CVE-2021-38179 | 2021-10-12 | Debug function of Admin UI of SAP Business One Integration... |
| CVE-2021-38181 | 2021-10-12 | SAP NetWeaver AS ABAP and ABAP Platform - versions 700,... |
| CVE-2021-40495 | 2021-10-12 | There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application... |
| CVE-2021-40497 | 2021-10-12 | SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430,... |
| CVE-2021-38178 | 2021-10-12 | The software logistics system of SAP NetWeaver AS ABAP and... |
| CVE-2021-38180 | 2021-10-12 | SAP Business One - version 10.0, allows an attacker to... |
| CVE-2021-40496 | 2021-10-12 | SAP Internet Communication framework (ICM) - versions 700, 701, 702,... |
| CVE-2021-40499 | 2021-10-12 | Client-side printing services SAP Cloud Print Manager and SAPSprint for... |
| CVE-2021-38183 | 2021-10-12 | SAP NetWeaver - versions 700, 701, 702, 730, does not... |
| CVE-2021-40498 | 2021-10-12 | A vulnerability has been identified in SAP SuccessFactors Mobile Application... |
| CVE-2021-40500 | 2021-10-12 | SAP BusinessObjects Business Intelligence Platform (Crystal Reports) - versions 420,... |
| CVE-2021-37726 | 2021-10-12 | A remote buffer overflow vulnerability was discovered in HPE Aruba... |
| CVE-2021-37730 | 2021-10-12 | A remote arbitrary command execution vulnerability was discovered in HPE... |
| CVE-2021-37727 | 2021-10-12 | A remote arbitrary command execution vulnerability was discovered in HPE... |
| CVE-2021-37732 | 2021-10-12 | A remote arbitrary command execution vulnerability was discovered in HPE... |
| CVE-2021-37735 | 2021-10-12 | A remote denial of service vulnerability was discovered in Aruba... |
| CVE-2021-37734 | 2021-10-12 | A remote unauthorized read access to files vulnerability was discovered... |
| CVE-2021-35214 | 2021-10-12 | Session Management Vulnerability |
| CVE-2021-41136 | 2021-10-12 | Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in puma |
| CVE-2021-40292 | 2021-10-12 | A Stored Cross Site Sripting (XSS) vulnerability exists in DzzOffice... |
| CVE-2021-35494 | 2021-10-12 | TIBCO JasperReports unauthorized access to temporary object |
| CVE-2021-35495 | 2021-10-12 | TIBCO JasperReports FTP Password exposed |
| CVE-2021-35496 | 2021-10-12 | TIBCO JasperReports XML Eternal Entity (XXE) vulnerability |
| CVE-2021-40618 | 2021-10-12 | An SQL Injection vulnerability exists in openSIS Classic 8.0 via... |