CVE List - 2021 / May
Showing 1001 - 1100 of 1494 CVEs for May 2021 (Page 11 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-32630 | 2021-05-20 | Various |
| CVE-2020-21345 | 2021-05-20 | Cross Site Scripting (XSS) vulnerability in Halo 1.1.3 via post... |
| CVE-2021-27956 | 2021-05-20 | Zoho ManageEngine ADSelfService Plus before 6104 allows stored XSS on... |
| CVE-2021-28902 | 2021-05-20 | In function read_yin_container() in libyang <= v1.0.225, it doesn't check... |
| CVE-2021-28903 | 2021-05-20 | A stack overflow in libyang <= v1.0.225 can cause a... |
| CVE-2021-28904 | 2021-05-20 | In function ext_get_plugin() in libyang <= v1.0.225, it doesn't check... |
| CVE-2021-28905 | 2021-05-20 | In function lys_node_free() in libyang <= v1.0.225, it asserts that... |
| CVE-2021-28906 | 2021-05-20 | In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check... |
| CVE-2021-22409 | 2021-05-20 | There is a denial of service vulnerability in some versions... |
| CVE-2021-33477 | 2021-05-20 | rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow... |
| CVE-2021-22339 | 2021-05-20 | There is a denial of service vulnerability in some versions... |
| CVE-2020-18220 | 2021-05-20 | Weak Encoding for Password in DoraCMS v2.1.1 and earlier allows... |
| CVE-2020-27209 | 2021-05-20 | The ECDSA operation of the micro-ecc library 1.0 is vulnerable... |
| CVE-2021-31439 | 2021-05-21 | This vulnerability allows network-adjacent attackers to execute arbitrary code on... |
| CVE-2021-28798 | 2021-05-21 | Relative Path Traversal Vulnerability in QTS and QuTS hero |
| CVE-2021-32032 | 2021-05-21 | In Trusted Firmware-M through 1.3.0, cleaning up the memory allocated... |
| CVE-2020-12061 | 2021-05-21 | An issue was discovered in Nitrokey FIDO U2F firmware through... |
| CVE-2020-27208 | 2021-05-21 | The flash read-out protection (RDP) level is not enforced during... |
| CVE-2021-29415 | 2021-05-21 | The elliptic curve cryptography (ECC) hardware accelerator, part of the... |
| CVE-2021-29414 | 2021-05-21 | STMicroelectronics STM32L4 devices through 2021-03-29 have incorrect physical access control. |
| CVE-2020-27212 | 2021-05-21 | STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The... |
| CVE-2020-27211 | 2021-05-21 | Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against... |
| CVE-2021-32633 | 2021-05-21 | Remote Code Execution via traversal in TAL expressions |
| CVE-2021-31440 | 2021-05-21 | This vulnerability allows local attackers to escalate privileges on affected... |
| CVE-2021-31473 | 2021-05-21 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2021-31474 | 2021-05-21 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2021-31475 | 2021-05-21 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2020-36328 | 2021-05-21 | A flaw was found in libwebp in versions before 1.0.1.... |
| CVE-2020-36329 | 2021-05-21 | A flaw was found in libwebp in versions before 1.0.1.... |
| CVE-2020-36330 | 2021-05-21 | A flaw was found in libwebp in versions before 1.0.1.... |
| CVE-2020-36331 | 2021-05-21 | A flaw was found in libwebp in versions before 1.0.1.... |
| CVE-2020-36332 | 2021-05-21 | A flaw was found in libwebp in versions before 1.0.1.... |
| CVE-2018-25009 | 2021-05-21 | A heap-based buffer overflow was found in libwebp in versions... |
| CVE-2018-25010 | 2021-05-21 | A heap-based buffer overflow was found in libwebp in versions... |
| CVE-2018-25011 | 2021-05-21 | A heap-based buffer overflow was found in libwebp in versions... |
| CVE-2018-25012 | 2021-05-21 | A heap-based buffer overflow was found in libwebp in versions... |
| CVE-2018-25013 | 2021-05-21 | A heap-based buffer overflow was found in libwebp in versions... |
| CVE-2018-25014 | 2021-05-21 | A use of uninitialized value was found in libwebp in... |
| CVE-2020-23765 | 2021-05-21 | A file upload vulnerability was discovered in the file path... |
| CVE-2020-23766 | 2021-05-21 | An arbitrary file deletion vulnerability was discovered on htmly v2.7.5... |
| CVE-2020-23768 | 2021-05-21 | An information disclosure vulnerability was discovered in alipay_function.php in the... |
| CVE-2021-27811 | 2021-05-21 | A code injection vulnerability has been discovered in the Upgrade... |
| CVE-2021-32634 | 2021-05-21 | Deserialization of Untrusted Data in Emissary |
| CVE-2021-29681 | 2021-05-21 | IBM InfoSphere Information Server 11.7 could allow an attacker to... |
| CVE-2008-3280 | 2021-05-21 | It was found that various OpenID Providers (OPs) had TLS... |
| CVE-2021-33500 | 2021-05-21 | PuTTY before 0.75 on Windows allows remote servers to cause... |
| CVE-2021-21549 | 2021-05-21 | Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site... |
| CVE-2021-21552 | 2021-05-21 | Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and... |
| CVE-2021-33513 | 2021-05-21 | Plone through 5.2.4 allows XSS via the inline_diff methods in... |
| CVE-2021-33512 | 2021-05-21 | Plone through 5.2.4 allows stored XSS attacks (by a Contributor)... |
| CVE-2021-33511 | 2021-05-21 | Plone though 5.2.4 allows SSRF via the lxml parser. This... |
| CVE-2021-33510 | 2021-05-21 | Plone through 5.2.4 allows remote authenticated managers to conduct SSRF... |
| CVE-2021-33509 | 2021-05-21 | Plone through 5.2.4 allows remote authenticated managers to perform disk... |
| CVE-2021-33508 | 2021-05-21 | Plone through 5.2.4 allows XSS via a full name that... |
| CVE-2021-33507 | 2021-05-21 | Zope Products.CMFCore before 2.5.1 and Products.PluggableAuthService before 2.6.2, as used... |
| CVE-2021-33514 | 2021-05-21 | Certain NETGEAR devices are affected by command injection by an... |
| CVE-2021-1306 | 2021-05-22 | Cisco ADE-OS Local File Inclusion Vulnerability |
| CVE-2021-1254 | 2021-05-22 | Cisco Finesse Cross-Site Scripting Vulnerabilities |
| CVE-2021-1550 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1551 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1552 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1553 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1554 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1555 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1557 | 2021-05-22 | Cisco DNA Spaces Connector Privilege Escalation Vulnerabilities |
| CVE-2021-1558 | 2021-05-22 | Cisco DNA Spaces Connector Privilege Escalation Vulnerabilities |
| CVE-2021-1559 | 2021-05-22 | Cisco DNA Spaces Connector Command Injection Vulnerabilities |
| CVE-2021-1560 | 2021-05-22 | Cisco DNA Spaces Connector Command Injection Vulnerabilities |
| CVE-2021-1549 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1548 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1547 | 2021-05-22 | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities |
| CVE-2021-1531 | 2021-05-22 | Cisco Modeling Labs Web UI Command Injection Vulnerability |
| CVE-2021-1487 | 2021-05-22 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Command Injection Vulnerability |
| CVE-2021-1358 | 2021-05-22 | Cisco Finesse Open Redirect Vulnerability |
| CVE-2021-20713 | 2021-05-24 | Privilege escalation vulnerability in QND Advance/Premium/Standard Ver.11.0.4i and earlier allows... |
| CVE-2021-20722 | 2021-05-24 | Untrusted search path vulnerability in the installers of ScanSnap Manager... |
| CVE-2021-20723 | 2021-05-24 | Reflected cross-site scripting vulnerability in [MailForm01] free edition (versions which... |
| CVE-2021-20724 | 2021-05-24 | Reflected cross-site scripting vulnerability in the admin page of [Telop01]... |
| CVE-2021-20725 | 2021-05-24 | Reflected cross-site scripting vulnerability in the admin page of [Calendar01]... |
| CVE-2021-20726 | 2021-05-24 | Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n... |
| CVE-2021-33496 | 2021-05-24 | Dutchcoders transfer.sh before 1.2.4 allows XSS via an inline view. |
| CVE-2021-33497 | 2021-05-24 | Dutchcoders transfer.sh before 1.2.4 allows Directory Traversal for deleting files. |
| CVE-2021-25938 | 2021-05-24 | In ArangoDB, versions v2.2.6.2 through v3.7.10 are vulnerable to Cross-Site... |
| CVE-2021-24294 | 2021-05-24 | DSGVO All in one for WP < 4.0 - Unauthenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24296 | 2021-05-24 | WP Customer Reviews < 3.5.6 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24297 | 2021-05-24 | Goto < 2.1 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24298 | 2021-05-24 | Simple Giveaways < 2.36.2 - Unauthenticated Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24300 | 2021-05-24 | PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24301 | 2021-05-24 | Hotjar Connecticator <= 1.1.1 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24302 | 2021-05-24 | Hana Flv Player <= 3.1.3 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24305 | 2021-05-24 | Target First Plugin 2.0 - Unauthenticated Stored XSS via Licence Key |
| CVE-2021-24306 | 2021-05-24 | Ultimate Member < 2.1.20 - Authenticated Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24307 | 2021-05-24 | All in One SEO Pack < 4.1.0.2 - Admin RCE via unserialize |
| CVE-2021-24308 | 2021-05-24 | LifterLMS < 4.21.1 - Authenticated Stored XSS in Edit Profile |
| CVE-2021-24332 | 2021-05-24 | Autoptimize < 2.8.4 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-21000 | 2021-05-24 | WAGO: PFC200 Denial of Service due to the number of connections to the runtime |
| CVE-2021-21001 | 2021-05-24 | WAGO: PFC200 Access to files outside the home directory |
| CVE-2021-21987 | 2021-05-24 | VMware Workstation (16.x prior to 16.1.2) and Horizon Client for... |
| CVE-2021-21988 | 2021-05-24 | VMware Workstation (16.x prior to 16.1.2) and Horizon Client for... |
| CVE-2021-21989 | 2021-05-24 | VMware Workstation (16.x prior to 16.1.2) and Horizon Client for... |