CVE List - 2021 / September
Showing 201 - 300 of 1899 CVEs for September 2021 (Page 3 of 19)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-3770 | 2021-09-06 | Heap-based Buffer Overflow in vim/vim |
| CVE-2021-40528 | 2021-09-06 | The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery... |
| CVE-2021-24303 | 2021-09-06 | JiangQie Official Website Mini Program < 1.1.1 - Authenticated SQL Injection |
| CVE-2021-24390 | 2021-09-06 | Alipay <= 3.7.2 - Authenticated SQL Injection |
| CVE-2021-24391 | 2021-09-06 | Cashtomer <= 1.0.0 - Authenticated SQL Injection |
| CVE-2021-24392 | 2021-09-06 | WordPress Membership SwiftCloud.io <= 1.0 - Authenticated SQL Injection |
| CVE-2021-24393 | 2021-09-06 | Comment Highlighter <= 0.13 - Authenticated SQL Injection |
| CVE-2021-24394 | 2021-09-06 | Easy Testimonial Manager <= 1.2.0 - Authenticated SQL Injection |
| CVE-2021-24395 | 2021-09-06 | Embed Youtube Video <= 1.0 - Authenticated SQL Injection |
| CVE-2021-24435 | 2021-09-06 | Titan Framework <= 1.12.1 - Reflected Cross-Site Scripting (XSS) |
| CVE-2021-24513 | 2021-09-06 | Form Builder < 1.9.8.4 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24517 | 2021-09-06 | Stop Spammers Security < 2021.18 - Authenticated Stored XSS |
| CVE-2021-24568 | 2021-09-06 | AddToAny < 1.7.46 - Authenticated Stored XSS |
| CVE-2021-24588 | 2021-09-06 | SMS Alert Order Notifications – WooCommerce < 3.4.7 Authenticated Cross Site Scripting |
| CVE-2021-24590 | 2021-09-06 | Cookie Notice & Consent Banner for GDPR & CCPA Compliance < 1.7.2 - Authenticated Stored XSS |
| CVE-2021-24591 | 2021-09-06 | Highlight < 0.9.3 - Authenticated Stored Cross-Site Scripting |
| CVE-2021-24599 | 2021-09-06 | Email Encoder < 2.1.2 - Reflected Cross Site Scripting |
| CVE-2021-24601 | 2021-09-06 | WPFront Notification Bar < 2.1.0.08087 - Authenticated Stored XSS |
| CVE-2021-24603 | 2021-09-06 | Site Reviews < 5.13.1 - Authenticated Stored XSS |
| CVE-2021-24611 | 2021-09-06 | Keywords & Meta <= 3.0 - CSRF to Stored Cross-Site Scripting (XSS) |
| CVE-2021-32568 | 2021-09-06 | Deserialization of Untrusted Data in zmister2016/mrdoc |
| CVE-2021-3766 | 2021-09-06 | Prototype Pollution in vincit/objection.js |
| CVE-2021-3767 | 2021-09-06 | Cross-site Scripting (XSS) - Stored in bookstackapp/bookstack |
| CVE-2021-3768 | 2021-09-06 | Cross-site Scripting (XSS) - Stored in bookstackapp/bookstack |
| CVE-2021-25735 | 2021-09-06 | Validating Admission Webhook does not observe some previous fields |
| CVE-2021-25737 | 2021-09-06 | Holes in EndpointSlice Validation Enable Host Network Hijack |
| CVE-2021-36744 | 2021-09-06 | Trend Micro Security (Consumer) 2021 and 2020 are vulnerable to... |
| CVE-2021-36093 | 2021-09-06 | DoS attack using PostMaster filters |
| CVE-2021-36094 | 2021-09-06 | XSS attack in appointment edit popup screen |
| CVE-2021-36095 | 2021-09-06 | User enumeration issue using "lost password" feature |
| CVE-2021-36096 | 2021-09-06 | Support Bundle includes S/Mime and PGP secret or PIN |
| CVE-2020-15939 | 2021-09-06 | An improper access control vulnerability (CWE-284) in FortiSandbox versions 3.2.1... |
| CVE-2021-40530 | 2021-09-06 | The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery... |
| CVE-2021-40529 | 2021-09-06 | The ElGamal implementation in Botan through 2.18.1, as used in... |
| CVE-2021-24006 | 2021-09-06 | An improper access control vulnerability in FortiManager versions 6.4.0 to... |
| CVE-2021-40531 | 2021-09-06 | Sketch before 75 allows library feeds to be used to... |
| CVE-2021-40532 | 2021-09-06 | Telegram Web K Alpha before 0.7.2 mishandles the characters in... |
| CVE-2021-33285 | 2021-09-07 | In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS... |
| CVE-2021-33286 | 2021-09-07 | In NTFS-3G versions < 2021.8.22, when a specially crafted unicode... |
| CVE-2021-33287 | 2021-09-07 | In NTFS-3G versions < 2021.8.22, when specially crafted NTFS attributes... |
| CVE-2021-33289 | 2021-09-07 | In NTFS-3G versions < 2021.8.22, when a specially crafted MFT... |
| CVE-2021-35266 | 2021-09-07 | In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS... |
| CVE-2021-35267 | 2021-09-07 | NTFS-3G versions < 2021.8.22, a stack buffer overflow can occur... |
| CVE-2021-35268 | 2021-09-07 | In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS... |
| CVE-2021-35269 | 2021-09-07 | NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute... |
| CVE-2021-39251 | 2021-09-07 | A crafted NTFS image can cause a NULL pointer dereference... |
| CVE-2021-39252 | 2021-09-07 | A crafted NTFS image can cause an out-of-bounds read in... |
| CVE-2021-39253 | 2021-09-07 | A crafted NTFS image can cause an out-of-bounds read in... |
| CVE-2021-39254 | 2021-09-07 | A crafted NTFS image can cause an integer overflow in... |
| CVE-2021-39255 | 2021-09-07 | A crafted NTFS image can trigger an out-of-bounds read, caused... |
| CVE-2021-39256 | 2021-09-07 | A crafted NTFS image can cause a heap-based buffer overflow... |
| CVE-2021-39257 | 2021-09-07 | A crafted NTFS image with an unallocated bitmap can lead... |
| CVE-2021-39258 | 2021-09-07 | A crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find... |
| CVE-2021-39259 | 2021-09-07 | A crafted NTFS image can trigger an out-of-bounds access, caused... |
| CVE-2021-39260 | 2021-09-07 | A crafted NTFS image can cause an out-of-bounds access in... |
| CVE-2021-39261 | 2021-09-07 | A crafted NTFS image can cause a heap-based buffer overflow... |
| CVE-2021-39262 | 2021-09-07 | A crafted NTFS image can cause an out-of-bounds access in... |
| CVE-2021-39263 | 2021-09-07 | A crafted NTFS image can trigger a heap-based buffer overflow,... |
| CVE-2021-40540 | 2021-09-07 | ulfius_uri_logger in Ulfius HTTP Framework before 2.7.4 omits con_info initialization... |
| CVE-2021-33483 | 2021-09-07 | An issue was discovered in CommentsService.ashx in OnyakTech Comments Pro... |
| CVE-2021-33484 | 2021-09-07 | An issue was discovered in CommentsService.ashx in OnyakTech Comments Pro... |
| CVE-2021-33831 | 2021-09-07 | api/account/register in the TH Wildau COVID-19 Contact Tracing application through... |
| CVE-2021-38840 | 2021-09-07 | SQL Injection can occur in Simple Water Refilling Station Management... |
| CVE-2021-38841 | 2021-09-07 | Remote Code Execution can occur in Simple Water Refilling Station... |
| CVE-2021-39278 | 2021-09-07 | Certain MOXA devices allow reflected XSS via the Config Import... |
| CVE-2021-39279 | 2021-09-07 | Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. This... |
| CVE-2021-28136 | 2021-09-07 | The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier... |
| CVE-2021-34144 | 2021-09-07 | The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C BT... |
| CVE-2021-28135 | 2021-09-07 | The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier... |
| CVE-2021-28155 | 2021-09-07 | The Bluetooth Classic implementation on JBL TUNE500BT devices does not... |
| CVE-2021-34150 | 2021-09-07 | The Bluetooth Classic implementation on Bluetrum AB5301A devices with unknown... |
| CVE-2021-31613 | 2021-09-07 | The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X... |
| CVE-2021-31611 | 2021-09-07 | The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X... |
| CVE-2021-31786 | 2021-09-07 | The Bluetooth Classic Audio implementation on Actions ATS2815 and ATS2819... |
| CVE-2021-31785 | 2021-09-07 | The Bluetooth Classic implementation on Actions ATS2815 and ATS2819 chipsets... |
| CVE-2021-31610 | 2021-09-07 | The Bluetooth Classic implementation on AB32VG1 devices does not properly... |
| CVE-2021-34149 | 2021-09-07 | The Bluetooth Classic implementation on the Texas Instruments CC256XCQFN-EM does... |
| CVE-2021-34146 | 2021-09-07 | The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not... |
| CVE-2021-34143 | 2021-09-07 | The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C_DEMO_V1.0 does... |
| CVE-2021-34145 | 2021-09-07 | The Bluetooth Classic implementation in the Cypress WICED BT stack... |
| CVE-2021-34148 | 2021-09-07 | The Bluetooth Classic implementation in the Cypress WICED BT stack... |
| CVE-2021-34147 | 2021-09-07 | The Bluetooth Classic implementation in the Cypress WICED BT stack... |
| CVE-2021-28139 | 2021-09-07 | The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier... |
| CVE-2021-31609 | 2021-09-07 | The Bluetooth Classic implementation in Silicon Labs iWRAP 6.3.0 and... |
| CVE-2021-31612 | 2021-09-07 | The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does... |
| CVE-2021-36162 | 2021-09-07 | Unprotected yaml deserialization cause RCE |
| CVE-2021-36163 | 2021-09-07 | Unsafe deserialization in providers using the Hessian protocol |
| CVE-2021-36696 | 2021-09-07 | Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro... |
| CVE-2021-38615 | 2021-09-07 | In Eigen NLP 3.10.1, a lack of access control on... |
| CVE-2021-38617 | 2021-09-07 | In Eigen NLP 3.10.1, a lack of access control on... |
| CVE-2021-38616 | 2021-09-07 | In Eigen NLP 3.10.1, a lack of access control on... |
| CVE-2021-37219 | 2021-09-07 | HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows... |
| CVE-2021-36717 | 2021-09-07 | Synerion TimeNet version 9.21 - Directory Traversal |
| CVE-2021-37218 | 2021-09-07 | HashiCorp Nomad and Nomad Enterprise Raft RPC layer allows non-server... |
| CVE-2020-7877 | 2021-09-07 | ZOOK solution(remote administration tool) buffer overflow vulnerability |
| CVE-2021-38698 | 2021-09-07 | HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services... |
| CVE-2021-37716 | 2021-09-07 | A remote buffer overflow vulnerability was discovered in Aruba SD-WAN... |
| CVE-2019-5318 | 2021-09-07 | A remote cross-site request forgery (csrf) vulnerability was discovered in... |
| CVE-2021-37717 | 2021-09-07 | A remote arbitrary command execution vulnerability was discovered in Aruba... |
| CVE-2021-37719 | 2021-09-07 | A remote arbitrary command execution vulnerability was discovered in Aruba... |