CVE List - 2021 / August
Showing 1801 - 1900 of 2087 CVEs for August 2021 (Page 19 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-22245 | 2021-08-25 | Improper validation of commit author in GitLab CE/EE affecting all... |
| CVE-2021-22247 | 2021-08-25 | Improper authorization in GitLab CE/EE affecting all versions since 13.0... |
| CVE-2021-22244 | 2021-08-25 | Improper authorization in the vulnerability report feature in GitLab EE... |
| CVE-2021-22243 | 2021-08-25 | Under specialized conditions, GitLab CE/EE versions starting 7.10 may allow... |
| CVE-2021-22237 | 2021-08-25 | Under specialized conditions, GitLab may allow a user with an... |
| CVE-2021-22242 | 2021-08-25 | Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version... |
| CVE-2021-22236 | 2021-08-25 | Due to improper handling of OAuth client IDs, new subscriptions... |
| CVE-2021-3713 | 2021-08-25 | An out-of-bounds write flaw was found in the UAS (USB... |
| CVE-2021-1523 | 2021-08-25 | Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability |
| CVE-2021-1577 | 2021-08-25 | Cisco Application Policy Infrastructure Controller Arbitrary File Read and Write Vulnerability |
| CVE-2021-1578 | 2021-08-25 | Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability |
| CVE-2021-1579 | 2021-08-25 | Cisco Application Policy Infrastructure Controller App Privilege Escalation Vulnerability |
| CVE-2021-1580 | 2021-08-25 | Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities |
| CVE-2021-1581 | 2021-08-25 | Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities |
| CVE-2021-1582 | 2021-08-25 | Cisco Application Policy Infrastructure Controller Stored Cross-Site Scripting Vulnerability |
| CVE-2021-1583 | 2021-08-25 | Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability |
| CVE-2021-1584 | 2021-08-25 | Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability |
| CVE-2021-1586 | 2021-08-25 | Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability |
| CVE-2021-1587 | 2021-08-25 | Cisco NX-OS Software VXLAN OAM (NGOAM) Denial of Service Vulnerability |
| CVE-2021-1588 | 2021-08-25 | Cisco NX-OS Software MPLS OAM Denial of Service Vulnerability |
| CVE-2021-1590 | 2021-08-25 | Cisco NX-OS Software system login block-for Denial of Service Vulnerability |
| CVE-2021-1591 | 2021-08-25 | Cisco Nexus 9500 Series Switches Access Control List Bypass Vulnerability |
| CVE-2021-1592 | 2021-08-25 | Cisco UCS Manager Software SSH Sessions Denial of Service Vulnerability |
| CVE-2020-18065 | 2021-08-25 | Cross Site Scripting (XSS) vulnerability exists in PopojiCMS 2.0.1 in... |
| CVE-2020-19547 | 2021-08-25 | Directory Traversal vulnerability exists in PopojiCMS 2.0.1 via the id... |
| CVE-2021-28070 | 2021-08-25 | Cross Site Request Forgery (CSRF) vulnerability exist in PopojiCMS 2.0.1... |
| CVE-2021-37154 | 2021-08-25 | In ForgeRock Access Management (AM) before 7.0.2, the SAML2 implementation... |
| CVE-2021-37153 | 2021-08-25 | ForgeRock Access Management (AM) before 7.0.2, when configured with Active... |
| CVE-2021-37334 | 2021-08-25 | Umbraco Forms version 4.0.0 up to and including 8.7.5 and... |
| CVE-2021-40145 | 2021-08-26 | gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD)... |
| CVE-2021-20793 | 2021-08-26 | Untrusted search path vulnerability in the installer of Sony Audio... |
| CVE-2021-20808 | 2021-08-26 | Cross-site scripting vulnerability in Search screen of Movable Type (Movable... |
| CVE-2021-20809 | 2021-08-26 | Cross-site scripting vulnerability in Create screens of Entry, Page, and... |
| CVE-2021-20810 | 2021-08-26 | Cross-site scripting vulnerability in Website Management screen of Movable Type... |
| CVE-2021-20811 | 2021-08-26 | Cross-site scripting vulnerability in List of Assets screen of Movable... |
| CVE-2021-20812 | 2021-08-26 | Cross-site scripting vulnerability in Setting screen of Server Sync of... |
| CVE-2021-20813 | 2021-08-26 | Cross-site scripting vulnerability in Edit screen of Content Data of... |
| CVE-2021-20814 | 2021-08-26 | Cross-site scripting vulnerability in Setting screen of ContentType Information Widget... |
| CVE-2021-20815 | 2021-08-26 | Cross-site scripting vulnerability in Edit Boilerplate screen of Movable Type... |
| CVE-2020-19703 | 2021-08-26 | A cross-site scripting (XSS) vulnerability in the referer parameter of... |
| CVE-2020-19704 | 2021-08-26 | A stored cross-site scripting (XSS) vulnerability via ResourceController.java in spring-boot-admin... |
| CVE-2020-19709 | 2021-08-26 | Insufficient filtering of the tag parameters in feehicms 0.1.3 allows... |
| CVE-2020-19705 | 2021-08-26 | thinkphp-zcms as of 20190715 allows SQL injection via index.php?m=home&c=message&a=add. |
| CVE-2020-19821 | 2021-08-26 | A SQL injection vulnerability in admin.php of DOYOCMS 2.3 allows... |
| CVE-2020-19822 | 2021-08-26 | A remote code execution (RCE) vulnerability in template_user.php of ZZCMS... |
| CVE-2020-14161 | 2021-08-26 | It is possible to inject HTML and/or JavaScript in the... |
| CVE-2020-14160 | 2021-08-26 | An SSRF vulnerability in Gotenberg through 6.2.1 exists in the... |
| CVE-2021-27944 | 2021-08-26 | Several high privileged APIs on the Vizio P65-F1 6.0.31.4-2 and... |
| CVE-2021-38559 | 2021-08-26 | DigitalDruid HotelDruid 3.0.2 has an XSS vulnerability in prenota.php affecting... |
| CVE-2021-3734 | 2021-08-26 | Improper Restriction of Rendered UI Layers or Frames in yourls/yourls |
| CVE-2021-36352 | 2021-08-26 | Stored cross-site scripting (XSS) vulnerability in Care2x Hospital Information Management... |
| CVE-2021-32076 | 2021-08-26 | Access Restriction bypass vulnerability via referrer spoof - Business Logic Bypass |
| CVE-2021-40147 | 2021-08-26 | EmTec ZOC before 8.02.2 allows \e[201~ pastes, a different vulnerability... |
| CVE-2021-30590 | 2021-08-26 | Heap buffer overflow in Bookmarks in Google Chrome prior to... |
| CVE-2021-30591 | 2021-08-26 | Use after free in File System API in Google Chrome... |
| CVE-2021-30592 | 2021-08-26 | Out of bounds write in Tab Groups in Google Chrome... |
| CVE-2021-30593 | 2021-08-26 | Out of bounds read in Tab Strip in Google Chrome... |
| CVE-2021-30594 | 2021-08-26 | Use after free in Page Info UI in Google Chrome... |
| CVE-2021-30596 | 2021-08-26 | Incorrect security UI in Navigation in Google Chrome on Android... |
| CVE-2021-30597 | 2021-08-26 | Use after free in Browser UI in Google Chrome on... |
| CVE-2021-36928 | 2021-08-26 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
| CVE-2021-36929 | 2021-08-26 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
| CVE-2021-36931 | 2021-08-26 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
| CVE-2020-18467 | 2021-08-26 | Cross Site Scripting (XSS) vulnerabilty exists in BigTree-CMS 4.4.3 in... |
| CVE-2020-18468 | 2021-08-26 | Cross Site Scripting (XSS) vulnerability exists in qdPM 9.1 in... |
| CVE-2020-18469 | 2021-08-26 | Stored cross-site scripting (XSS) vulnerability in the Copyright Text field... |
| CVE-2020-18470 | 2021-08-26 | Stored cross-site scripting (XSS) vulnerability in the Name of application... |
| CVE-2020-18475 | 2021-08-26 | Cross Site Scripting (XSS) vulnerabilty exists in Hucart CMS 5.7.4... |
| CVE-2020-18476 | 2021-08-26 | SQL Injection vulnerability in Hucart CMS 5.7.4 via the basic... |
| CVE-2020-18477 | 2021-08-26 | SQL Injection vulnerability in Hucart CMS 5.7.4 via the purchase... |
| CVE-2021-30598 | 2021-08-26 | Type confusion in V8 in Google Chrome prior to 92.0.4515.159... |
| CVE-2021-30599 | 2021-08-26 | Type confusion in V8 in Google Chrome prior to 92.0.4515.159... |
| CVE-2021-30600 | 2021-08-26 | Use after free in Printing in Google Chrome prior to... |
| CVE-2021-30601 | 2021-08-26 | Use after free in Extensions API in Google Chrome prior... |
| CVE-2021-30602 | 2021-08-26 | Use after free in WebRTC in Google Chrome prior to... |
| CVE-2021-30603 | 2021-08-26 | Data race in WebAudio in Google Chrome prior to 92.0.4515.159... |
| CVE-2021-30604 | 2021-08-26 | Use after free in ANGLE in Google Chrome prior to... |
| CVE-2021-32648 | 2021-08-26 | Account Takeover in Octobercms |
| CVE-2021-29487 | 2021-08-26 | Authentication bypass in Octobercms |
| CVE-2021-29715 | 2021-08-26 | IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote... |
| CVE-2021-29727 | 2021-08-26 | IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a... |
| CVE-2021-29772 | 2021-08-26 | IBM API Connect 5.0.0.0 through 5.0.8.11 could allow a user... |
| CVE-2021-29801 | 2021-08-26 | IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a... |
| CVE-2021-29862 | 2021-08-26 | IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a... |
| CVE-2021-37715 | 2021-08-26 | A remote cross-site scripting (XSS) vulnerability was discovered in Aruba... |
| CVE-2021-39161 | 2021-08-26 | Cross-site scripting via category name in Discourse |
| CVE-2021-39165 | 2021-08-26 | Unauthenticated SQL Injection |
| CVE-2020-20675 | 2021-08-26 | Nuishop v2.3 contains a SQL injection vulnerability in /goods/getGoodsListByConditions/. |
| CVE-2021-39168 | 2021-08-26 | TimelockController vulnerability in OpenZeppelin Contracts |
| CVE-2021-39167 | 2021-08-26 | TimelockController vulnerability in OpenZeppelin Contracts |
| CVE-2020-23226 | 2021-08-27 | Multiple Cross Site Scripting (XSS) vulneratiblities exist in Cacti 1.2.12... |
| CVE-2021-40153 | 2021-08-27 | squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in... |
| CVE-2021-40142 | 2021-08-27 | In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, remote... |
| CVE-2021-35342 | 2021-08-27 | The useradm service 1.14.0 (in Northern.tech Mender Enterprise 2.7.x before... |
| CVE-2021-39169 | 2021-08-27 | XSS vulnerability using dialog |
| CVE-2021-29744 | 2021-08-27 | IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to... |
| CVE-2021-36531 | 2021-08-27 | ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70... |
| CVE-2021-36530 | 2021-08-27 | ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108... |
| CVE-2021-23434 | 2021-08-27 | Prototype Pollution |
| CVE-2021-32758 | 2021-08-27 | Layout XML Arbitrary Code Fix |