CVE List - 2021 / June
Showing 1001 - 1100 of 1691 CVEs for June 2021 (Page 11 of 17)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-35760 | 2021-06-16 | bloofoxCMS 0.5.2.1 is infected with Unrestricted File Upload that allows... |
| CVE-2020-35759 | 2021-06-16 | bloofoxCMS 0.5.2.1 is infected with a CSRF Attack that leads... |
| CVE-2021-20483 | 2021-06-16 | IBM Security Identity Manager 6.0.2 is vulnerable to server-side request... |
| CVE-2021-20488 | 2021-06-16 | IBM Security Identity Manager 6.0.2 could allow an authenticated malicious... |
| CVE-2021-20566 | 2021-06-16 | IBM Resilient SOAR V38.0 uses weaker than expected cryptographic algorithms... |
| CVE-2021-20567 | 2021-06-16 | IBM Resilient SOAR V38.0 could allow a local privileged attacker... |
| CVE-2021-29702 | 2021-06-16 | Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)... |
| CVE-2020-22199 | 2021-06-16 | SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via... |
| CVE-2020-22200 | 2021-06-16 | Directory Traversal vulnerability in phpCMS 9.1.13 via the q parameter... |
| CVE-2020-22201 | 2021-06-16 | phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary... |
| CVE-2020-22203 | 2021-06-16 | SQL Injection in phpCMS 2008 sp4 via the genre parameter... |
| CVE-2021-34813 | 2021-06-16 | Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to... |
| CVE-2020-22204 | 2021-06-16 | SQL Injection in ECShop 2.7.6 via the goods_number parameter to... |
| CVE-2020-22205 | 2021-06-16 | SQL Injection in ECShop 3.0 via the id parameter to... |
| CVE-2020-22206 | 2021-06-16 | SQL Injection in ECShop 3.0 via the aid parameter to... |
| CVE-2021-34551 | 2021-06-16 | PHPMailer before 6.5.0 on Windows allows remote code execution if... |
| CVE-2021-1524 | 2021-06-16 | Cisco Meeting Server API Denial of Service Vulnerability |
| CVE-2021-1541 | 2021-06-16 | Cisco Small Business 220 Series Smart Switches Vulnerabilities |
| CVE-2020-22208 | 2021-06-16 | SQL Injection in 74cms 3.2.0 via the x parameter to... |
| CVE-2021-1571 | 2021-06-16 | Cisco Small Business 220 Series Smart Switches Vulnerabilities |
| CVE-2021-1570 | 2021-06-16 | Cisco Jabber Desktop and Mobile Client Software Vulnerabilities |
| CVE-2021-1569 | 2021-06-16 | Cisco Jabber Desktop and Mobile Client Software Vulnerabilities |
| CVE-2021-1568 | 2021-06-16 | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability |
| CVE-2021-1567 | 2021-06-16 | Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability |
| CVE-2021-1566 | 2021-06-16 | Cisco Email Security Appliance and Cisco Web Security Appliance Certificate Validation Vulnerability |
| CVE-2021-1543 | 2021-06-16 | Cisco Small Business 220 Series Smart Switches Vulnerabilities |
| CVE-2021-1542 | 2021-06-16 | Cisco Small Business 220 Series Smart Switches Vulnerabilities |
| CVE-2021-1395 | 2021-06-16 | Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability |
| CVE-2020-22209 | 2021-06-16 | SQL Injection in 74cms 3.2.0 via the query parameter to... |
| CVE-2020-22210 | 2021-06-16 | SQL Injection in 74cms 3.2.0 via the x parameter to... |
| CVE-2020-22211 | 2021-06-16 | SQL Injection in 74cms 3.2.0 via the key parameter to... |
| CVE-2020-22212 | 2021-06-16 | SQL Injection in 74cms 3.2.0 via the id parameter to... |
| CVE-2020-25752 | 2021-06-16 | An issue was discovered on Enphase Envoy R3.x and D4.x... |
| CVE-2020-25753 | 2021-06-16 | An issue was discovered on Enphase Envoy R3.x and D4.x... |
| CVE-2020-25754 | 2021-06-16 | An issue was discovered on Enphase Envoy R3.x and D4.x... |
| CVE-2020-25755 | 2021-06-16 | An issue was discovered on Enphase Envoy R3.x and D4.x... |
| CVE-2021-32659 | 2021-06-16 | Automatic room upgrade handling can be used maliciously to bridge a room non-consentually |
| CVE-2021-34202 | 2021-06-16 | There are multiple out-of-bounds vulnerabilities in some processes of D-Link... |
| CVE-2021-34203 | 2021-06-16 | D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router... |
| CVE-2021-34201 | 2021-06-16 | D-Link DIR-2640-US 1.01B04 is vulnerable to Buffer Overflow. There are... |
| CVE-2021-34204 | 2021-06-16 | D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link... |
| CVE-2021-32243 | 2021-06-16 | FOGProject v1.5.9 is affected by a File Upload RCE (Authenticated). |
| CVE-2021-32244 | 2021-06-16 | Cross Site Scripting (XSS) in Moodle 3.10.3 allows remote attackers... |
| CVE-2021-32245 | 2021-06-16 | In PageKit v1.0.18, a user can upload SVG files in... |
| CVE-2021-32691 | 2021-06-16 | Auto-merging Person Records Compromised |
| CVE-2021-32690 | 2021-06-16 | Repository credentials passed to alternate domain |
| CVE-2021-31476 | 2021-06-16 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2021-31477 | 2021-06-16 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2020-36388 | 2021-06-17 | In CiviCRM before 5.21.3 and 5.22.x through 5.24.x before 5.24.3,... |
| CVE-2020-36389 | 2021-06-17 | In CiviCRM before 5.28.1 and CiviCRM ESR before 5.27.5 ESR,... |
| CVE-2021-32936 | 2021-06-17 | An out-of-bounds write issue exists in the DXF file-recovering procedure... |
| CVE-2021-32938 | 2021-06-17 | Drawings SDK (All versions prior to 2022.4) are vulnerable to... |
| CVE-2021-32940 | 2021-06-17 | An out-of-bounds read issue exists in the DWG file-recovering procedure... |
| CVE-2021-32948 | 2021-06-17 | An out-of-bounds write issue exists in the DWG file-reading procedure... |
| CVE-2021-21777 | 2021-06-17 | An information disclosure vulnerability exists in the Ethernet/IP UDP handler... |
| CVE-2021-0143 | 2021-06-17 | Improper permissions in the installer for the Intel(R) Brand Verification... |
| CVE-2021-32582 | 2021-06-17 | An issue was discovered in ConnectWise Automate before 2021.5. A... |
| CVE-2021-31521 | 2021-06-17 | Trend Micro InterScan Web Security Virtual Appliance version 6.5 was... |
| CVE-2021-32946 | 2021-06-17 | An improper check for unusual or exceptional conditions issue exists... |
| CVE-2021-32952 | 2021-06-17 | An out-of-bounds write issue exists in the DGN file-reading procedure... |
| CVE-2021-3603 | 2021-06-17 | Inclusion of Functionality from Untrusted Control Sphere in PHPMailer/PHPMailer |
| CVE-2021-32950 | 2021-06-17 | An out-of-bounds read issue exists within the parsing of DXF... |
| CVE-2021-32944 | 2021-06-17 | A use-after-free issue exists in the DGN file-reading procedure in... |
| CVE-2021-31818 | 2021-06-17 | Affected versions of Octopus Server are prone to an authenticated... |
| CVE-2021-34825 | 2021-06-17 | Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL... |
| CVE-2021-32078 | 2021-06-17 | An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/personal-pci.c in the Linux... |
| CVE-2020-25414 | 2021-06-17 | A local file inclusion vulnerability was discovered in the captcha... |
| CVE-2013-20002 | 2021-06-17 | Elemin allows remote attackers to upload and execute arbitrary PHP... |
| CVE-2020-19202 | 2021-06-17 | An authenticated Stored XSS (Cross-site Scripting) exists in the "captive.cgi"... |
| CVE-2021-29706 | 2021-06-17 | IBM AIX 7.1 could allow a non-privileged local user to... |
| CVE-2020-35373 | 2021-06-17 | In Fiyo CMS 2.0.6.1, the 'tag' parameter results in an... |
| CVE-2021-23396 | 2021-06-17 | Prototype Pollution |
| CVE-2021-32681 | 2021-06-17 | Improper escaping of HTML ('Cross-site Scripting') in Wagtail StreamField blocks |
| CVE-2021-33557 | 2021-06-17 | An XSS issue was discovered in manage_custom_field_edit_page.php in MantisBT before... |
| CVE-2021-32575 | 2021-06-17 | HashiCorp Nomad and Nomad Enterprise up to version 1.0.4 bridge... |
| CVE-2021-32695 | 2021-06-17 | Malicious Android app could access Shared Preferences of the Nextcloud Android client |
| CVE-2021-32694 | 2021-06-17 | Malicious Android application can crash the Nextcloud Android Client |
| CVE-2021-32424 | 2021-06-17 | In TrendNet TW100-S4W1CA 2.3.32, due to a lack of proper... |
| CVE-2021-32426 | 2021-06-17 | In TrendNet TW100-S4W1CA 2.3.32, it is possible to inject arbitrary... |
| CVE-2021-32693 | 2021-06-17 | Authentication granted with multiple firewalls |
| CVE-2021-34553 | 2021-06-17 | Sonatype Nexus Repository Manager 3.x before 3.31.0 allows a remote... |
| CVE-2021-34812 | 2021-06-18 | Use of hard-coded credentials vulnerability in php component in Synology... |
| CVE-2021-34811 | 2021-06-18 | Server-Side Request Forgery (SSRF) vulnerability in task management component in... |
| CVE-2021-34810 | 2021-06-18 | Improper privilege management vulnerability in cgi component in Synology Download... |
| CVE-2021-34809 | 2021-06-18 | Improper neutralization of special elements used in a command ('Command... |
| CVE-2021-34808 | 2021-06-18 | Server-Side Request Forgery (SSRF) vulnerability in cgi component in Synology... |
| CVE-2021-21669 | 2021-06-18 | Jenkins Generic Webhook Trigger Plugin 1.72 and earlier does not... |
| CVE-2021-32536 | 2021-06-18 | MCU Technologies MCUsystem - Reflected XSS |
| CVE-2021-33347 | 2021-06-18 | An issue was discovered in JPress v3.3.0 and below. There... |
| CVE-2021-33576 | 2021-06-18 | An issue was discovered in Cleo LexiCom 5.5.0.0. Within the... |
| CVE-2021-33577 | 2021-06-18 | An issue was discovered in Cleo LexiCom 5.5.0.0. The requirement... |
| CVE-2021-34815 | 2021-06-18 | CheckSec Canopy before 3.5.2 allows XSS attacks against the login... |
| CVE-2021-26834 | 2021-06-18 | A cross-site scripting (XSS) vulnerability exists in Znote 0.5.2. An... |
| CVE-2021-26835 | 2021-06-18 | No filtering of cross-site scripting (XSS) payloads in the markdown-editor... |
| CVE-2021-21997 | 2021-06-18 | VMware Tools for Windows (11.x.y prior to 11.3.0) contains a... |
| CVE-2021-23845 | 2021-06-18 | B426 Web Configuration Authentication Bypass |
| CVE-2021-23846 | 2021-06-18 | B426 Credential Disclosure |
| CVE-2021-32956 | 2021-06-18 | Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to redirection,... |
| CVE-2021-32954 | 2021-06-18 | Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to a... |
| CVE-2021-3604 | 2021-06-18 | Primion-Digitek Secure 8 SQL injection vulnerability |