Export limit exceeded: 363308 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 363308 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (363308 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-23680 | 1 Text2pdf Project | 1 Text2pdf | 2024-11-21 | 7.8 High |
| An issue was discovered in function StartPage in text2pdf.c in pdfcorner text2pdf 1.1, allows attackers to cause denial of service or possibly other undisclosed impacts. | ||||
| CVE-2020-23679 | 1 Linux Network Project | 1 Linux Network Project | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in Renleilei1992 Linux_Network_Project 1.0, allows attackers to execute arbitrary code, via the password field. | ||||
| CVE-2020-23660 | 1 Webtareas Project | 1 Webtareas | 2024-11-21 | 5.4 Medium |
| webTareas v2.1 is affected by Cross Site Scripting (XSS) on "Search." | ||||
| CVE-2020-23659 | 1 Webport | 1 Web Port | 2024-11-21 | 5.4 Medium |
| WebPort-v1.19.17121 is affected by Cross Site Scripting (XSS) on the "connections" feature. | ||||
| CVE-2020-23658 | 1 Php-fusion | 1 Php-fusion | 2024-11-21 | 5.4 Medium |
| PHP-Fusion 9.03.60 is affected by Cross Site Scripting (XSS) via infusions/member_poll_panel/poll_admin.php. | ||||
| CVE-2020-23657 | 1 Naviwebs | 1 Navigatecms | 2024-11-21 | 5.4 Medium |
| NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Configuration." | ||||
| CVE-2020-23656 | 1 Naviwebs | 1 Navigatecms | 2024-11-21 | 5.4 Medium |
| NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Content." | ||||
| CVE-2020-23655 | 1 Naviwebs | 1 Navigatecms | 2024-11-21 | 5.4 Medium |
| NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Configuration." | ||||
| CVE-2020-23654 | 1 Naviwebs | 1 Navigatecms | 2024-11-21 | 5.4 Medium |
| NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) via the module "Shop." | ||||
| CVE-2020-23653 | 1 Thinkadmin | 1 Thinkadmin | 2024-11-21 | 9.8 Critical |
| An insecure unserialize vulnerability was discovered in ThinkAdmin versions 4.x through 6.x in app/admin/controller/api/Update.php and app/wechat/controller/api/Push.php, which may lead to arbitrary remote code execution. | ||||
| CVE-2020-23644 | 1 Jizhicms | 1 Jizhicms | 2024-11-21 | 6.1 Medium |
| XSS exists in JIZHICMS 1.7.1 via index.php/Error/index?msg={XSS] to Home/c/ErrorController.php. | ||||
| CVE-2020-23643 | 1 Jizhicms | 1 Jizhicms | 2024-11-21 | 6.1 Medium |
| XSS exists in JIZHICMS 1.7.1 via index.php/Wechat/checkWeixin?signature=1&echostr={XSS] to Home/c/WechatController.php. | ||||
| CVE-2020-23639 | 1 Moxa | 2 Vport 461, Vport 461 Firmware | 2024-11-21 | 9.8 Critical |
| A command injection vulnerability exists in Moxa Inc VPort 461 Series Firmware Version 3.4 or lower that could allow a remote attacker to execute arbitrary commands in Moxa's VPort 461 Series Industrial Video Servers. | ||||
| CVE-2020-23631 | 1 Wdja | 1 Wdja Cms | 2024-11-21 | 6.1 Medium |
| Cross-site request forgery (CSRF) in admin/global/manage.php in WDJA CMS 1.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via the tongji parameter. | ||||
| CVE-2020-23630 | 1 Zzcms | 1 Zzcms | 2024-11-21 | 8.8 High |
| A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection). | ||||
| CVE-2020-23622 | 1 Cling Project | 1 Cling | 2024-11-21 | 7.5 High |
| An issue in the UPnP protocol in 4thline cling 2.0.0 through 2.1.2 allows remote attackers to cause a denial of service via an unchecked CALLBACK parameter in the request header | ||||
| CVE-2020-23621 | 1 Squire-technologies | 1 Svi Ms Management System | 2024-11-21 | 9.8 Critical |
| The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object. | ||||
| CVE-2020-23620 | 1 Orlansoft | 1 Orlansoft Erp | 2024-11-21 | 9.8 Critical |
| The Java Remote Management Interface of all versions of Orlansoft ERP was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object. | ||||
| CVE-2020-23618 | 1 Xtendtech | 1 Voice Logger | 2024-11-21 | 6.1 Medium |
| A reflected cross site scripting (XSS) vulnerability in Xtend Voice Logger 1.0 allows attackers to execute arbitrary web scripts or HTML, via the path of the error page. | ||||
| CVE-2020-23617 | 1 Totolink | 4 N100re, N100re Firmware, N200re and 1 more | 2024-11-21 | 6.1 Medium |
| A cross site scripting (XSS) vulnerability in the error page of Totolink N200RE and N100RE Routers 2.0 allows attackers to execute arbitrary web scripts or HTML via SCRIPT element. | ||||