v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2

Vulnerability Name

CVE

CWE

Severity

YetiForce CRM Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-0269)

CVE-2022-0269

CWE-352

High

Oracle HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-21716)

CVE-2022-21716

CWE-120

High

Python Untrusted Search Path Vulnerability (CVE-2023-41105)

CVE-2023-41105

CWE-426

High

Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-41164)

CVE-2023-41164

CWE-1284

High

MyBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-41362)

CVE-2023-41362

CWE-94

High

Apache Traffic Server CVE-2023-41752 Vulnerability (CVE-2023-41752)

CVE-2023-41752

-

High

GeoServer Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-41877)

CVE-2023-41877

CWE-22

High

Oracle HTTP Server Improper Initialization Vulnerability (CVE-2022-22719)

CVE-2022-22719

CWE-665

High

SharePoint CVE-2022-21837 Vulnerability (CVE-2022-21837)

CVE-2022-21837

-

High

Next.js CVE-2022-21721 Vulnerability (CVE-2022-21721)

CVE-2022-21721

-

High

Twisted Web HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-21716)

CVE-2022-21716

CWE-120

High

Twisted Web HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-21712)

CVE-2022-21712

CWE-200

High

WebLogic CVE-2022-21441 Vulnerability (CVE-2022-21441)

CVE-2022-21441

-

High

Grafana Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-21703)

CVE-2022-21703

CWE-352

High

WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21664)

CVE-2022-21664

CWE-138

High

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2022-21663)

CVE-2022-21663

CWE-502

High

WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21661)

CVE-2022-21661

CWE-138

High

Envoy Proxy Always-Incorrect Control Flow Implementation Vulnerability (CVE-2022-21655)

CVE-2022-21655

CWE-670

High

Artifactory Improper Handling of Exceptional Conditions Vulnerability (CVE-2023-42509)

CVE-2023-42509

CWE-755

High

MySQL CVE-2022-21600 Vulnerability (CVE-2022-21600)

CVE-2022-21600

-

High

Artifactory CVE-2023-42661 Vulnerability (CVE-2023-42661)

CVE-2023-42661

-

High

Oracle HTTP Server CVE-2022-21593 Vulnerability (CVE-2022-21593)

CVE-2022-21593

-

High

Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-43665)

CVE-2023-43665

CWE-1284

High

PleskLin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)

CVE-2023-43784

CWE-668

High

Masa CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-42183)

CVE-2021-42183

CWE-22

High

Apache Tomcat CVE-2023-44487 Vulnerability (CVE-2023-44487)

CVE-2023-44487

-

High

Atlassian Jira CVE-2021-43947 Vulnerability (CVE-2021-43947)

CVE-2021-43947

-

High

Atlassian Jira Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-43944)

CVE-2021-43944

CWE-94

High

Atlassian Confluence Uncontrolled Search Path Element Vulnerability (CVE-2021-43940)

CVE-2021-43940

CWE-427

High

Envoy Proxy Use After Free Vulnerability (CVE-2021-43826)

CVE-2021-43826

CWE-416

High

Envoy Proxy Use After Free Vulnerability (CVE-2021-43825)

CVE-2021-43825

CWE-416

High

Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2021-43824)

CVE-2021-43824

CWE-476

High

Oracle HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-43818)

CVE-2021-43818

CWE-707

High

Next.js CVE-2021-43803 Vulnerability (CVE-2021-43803)

CVE-2021-43803

-

High

Grafana Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-43798)

CVE-2021-43798

CWE-22

High

PostgreSQL Improper Certificate Validation Vulnerability (CVE-2021-43766)

CVE-2021-43766

CWE-295

High

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-44040)

CVE-2021-44040

CWE-20

High

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43559)

CVE-2021-43559

CWE-352

High

ATutor Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-43498)

CVE-2021-43498

CWE-640

High

jQuery Validation Other Vulnerability (CVE-2021-43306)

CVE-2021-43306

-

High

MyBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-43281)

CVE-2021-43281

CWE-94

High

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

CVE-2023-44487

CWE-400

High

Oracle HTTP Server Uncontrolled Recursion Vulnerability (CVE-2021-42717)

CVE-2021-42717

CWE-674

High

Open Resty Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

CVE-2023-44487

CWE-400

High

Apache Tomcat Missing Release of Resource after Effective Lifetime Vulnerability (CVE-2021-42340)

CVE-2021-42340

CWE-772

High

Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

CVE-2023-44487

CWE-400

High

PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)

CVE-2023-43784

CWE-668

High

Resin Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-44138)

CVE-2021-44138

CWE-22

High

YOURLS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-0088)

CVE-2022-0088

CWE-352

High

Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-4034)

CVE-2021-4034

CWE-787

High

OpenVPN AS Other Vulnerability (CVE-2021-4234)

CVE-2021-4234

-

High

UAParser.js Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-4229)

CVE-2021-4229

CWE-829

High

Oracle HTTP Server Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4185)

CVE-2021-4185

CWE-835

High

Oracle HTTP Server Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4184)

CVE-2021-4184

CWE-835

High

Oracle HTTP Server Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4182)

CVE-2021-4182

CWE-835

High

Oracle HTTP Server Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-4181)

CVE-2021-4181

CWE-138

High

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2021-4104)

CVE-2021-4104

CWE-502

High

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2021-4104)

CVE-2021-4104

CWE-502

High

OpenSSL Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4044)

CVE-2021-4044

CWE-835

High

MediaWiki Uncontrolled Resource Consumption Vulnerability (CVE-2021-46149)

CVE-2021-46149

CWE-400

High

Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-44224)

CVE-2021-44224

CWE-476

High

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-46147)

CVE-2021-46147

CWE-352

High

Django Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-45116)

CVE-2021-45116

CWE-668

High

Django Uncontrolled Resource Consumption Vulnerability (CVE-2021-45115)

CVE-2021-45115

CWE-400

High

LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-44967)

CVE-2021-44967

CWE-434

High

MediaWiki Incorrect Default Permissions Vulnerability (CVE-2021-44858)

CVE-2021-44858

CWE-276

High

Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-44759)

CVE-2021-44759

CWE-287

High

ownCloud Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-44537)

CVE-2021-44537

CWE-138

High

Django Improper Authentication Vulnerability (CVE-2021-44420)

CVE-2021-44420

CWE-287

High

Mailman Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-44227)

CVE-2021-44227

CWE-352

High

Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-35940)

CVE-2021-35940

CWE-125

High

WebLogic CVE-2021-35620 Vulnerability (CVE-2021-35620)

CVE-2021-35620

-

High

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2022-23302)

CVE-2022-23302

CWE-502

High

XWiki Cleartext Storage of Sensitive Information Vulnerability (CVE-2023-50719)

CVE-2023-50719

CWE-312

High

Dolibarr Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-25957)

CVE-2021-25957

CWE-640

High

«
1
...
40
41
42
...
196
»