Export limit exceeded: 363527 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (363527 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-23766 | 1 Htmly | 1 Htmly | 2024-11-21 | 6.5 Medium |
| An arbitrary file deletion vulnerability was discovered on htmly v2.7.5 which allows remote attackers to use any absolute path to delete any file in the server should they gain Administrator privileges. | ||||
| CVE-2020-23765 | 1 Bludit | 1 Bludit | 2024-11-21 | 7.2 High |
| A file upload vulnerability was discovered in the file path /bl-plugins/backup/plugin.php on Bludit version 3.12.0. If an attacker is able to gain Administrator rights they will be able to use unsafe plugins to upload a backup file and control the server. | ||||
| CVE-2020-23763 | 1 Online Book Store Project | 1 Online Book Store | 2024-11-21 | 9.8 Critical |
| SQL injection in admin.php in Online Book Store 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication. | ||||
| CVE-2020-23762 | 1 Larsens Calendar Project | 1 Larsens Calendar | 2024-11-21 | 5.4 Medium |
| Cross Site Scripting (XSS) vulnerability in the Larsens Calender plugin Version <= 1.2 for WordPress allows remote attackers to execute arbitrary web script via the "titel" column on the "Eintrage hinzufugen" tab. | ||||
| CVE-2020-23761 | 1 Intelliants | 1 Subrion | 2024-11-21 | 6.1 Medium |
| Cross Site Scripting (XSS) vulnerability in subrion CMS Version <= 4.2.1 allows remote attackers to execute arbitrary web script via the "payment gateway" column on transactions tab. | ||||
| CVE-2020-23754 | 1 Php-fusion | 1 Phpfusion | 2024-11-21 | 9.6 Critical |
| Cross Site Scripting (XSS) vulnerability in infusions/member_poll_panel/poll_admin.php in PHP-Fusion 9.03.50, allows attackers to execute arbitrary code, via the polls feature. | ||||
| CVE-2020-23741 | 1 Amoisoft | 1 Anyview | 2024-11-21 | 5.5 Medium |
| In AnyView (network police) network monitoring software 4.6.0.1, there is a local denial of service vulnerability in AnyView, attackers can use a constructed program to cause a computer crash (BSOD). | ||||
| CVE-2020-23740 | 1 Drivergenius | 1 Drivergenius | 2024-11-21 | 7.8 High |
| In DriverGenius 9.61.5480.28 there is a local privilege escalation vulnerability in the driver wizard, attackers can use constructed programs to increase user privileges. | ||||
| CVE-2020-23738 | 1 Advancedsystemcare | 1 Advanced Systemcare | 2024-11-21 | 5.5 Medium |
| There is a local denial of service vulnerability in Advanced SystemCare 13 PRO 13.5.0.174. Attackers can use a constructed program to cause a computer crash (BSOD) | ||||
| CVE-2020-23736 | 1 Dadajiasu | 1 Dada Accelerator | 2024-11-21 | 5.5 Medium |
| There is a local denial of service vulnerability in DaDa accelerator 5.6.19.816,, attackers can use constructed programs to cause computer crashes (BSOD). | ||||
| CVE-2020-23735 | 1 Saibo | 1 Cyber Game Accelerator | 2024-11-21 | 7.8 High |
| In Saibo Cyber Game Accelerator 3.7.9 there is a local privilege escalation vulnerability. Attackers can use the constructed program to increase user privileges | ||||
| CVE-2020-23727 | 1 Antiy | 1 Antiy Zhijia Terminal Defense System | 2024-11-21 | 5.5 Medium |
| There is a local denial of service vulnerability in the Antiy Zhijia Terminal Defense System 5.0.2.10121559 and an attacker can cause a computer crash (BSOD). | ||||
| CVE-2020-23726 | 1 Wisecleaner | 1 Wise Care 365 | 2024-11-21 | 5.5 Medium |
| There is a local denial of service vulnerability in Wise Care 365 5.5.4, attackers can cause computer crash (BSOD). | ||||
| CVE-2020-23722 | 1 Thedaylightstudio | 1 Fuel Cms | 2024-11-21 | 8.8 High |
| An issue was discovered in FUEL CMS 1.4.7. There is a escalation of privilege vulnerability to obtain super admin privilege via the "id" and "fuel_id" parameters. | ||||
| CVE-2020-23721 | 1 Thedaylightstudio | 1 Fuel Cms | 2024-11-21 | 5.4 Medium |
| An issue was discovered in FUEL CMS V1.4.7. An attacker can use a XSS payload and bypass a filter via /fuelCM/fuel/pages/edit/1?lang=english. | ||||
| CVE-2020-23719 | 1 Zibbs Project | 1 Zibbs | 2024-11-21 | 9.6 Critical |
| Cross site scripting (XSS) vulnerability in application/controllers/AdminController.php in xujinliang zibbs 1.0, allows attackers to execute arbitrary code via the bbsmeta parameter. | ||||
| CVE-2020-23718 | 1 Zibbs Project | 1 Zibbs | 2024-11-21 | 9.6 Critical |
| Cross site scripting (XSS) vulnerability in xujinliang zibbs 1.0, allows attackers to execute arbitrary code via the route parameter to index.php. | ||||
| CVE-2020-23715 | 1 Webport Cms Project | 1 Webport Cms | 2024-11-21 | 8.6 High |
| Directory Traversal vulnerability in Webport CMS 1.19.10.17121 via the file parameter to file/download. | ||||
| CVE-2020-23711 | 1 Naviwebs | 1 Navigate Cms | 2024-11-21 | 9.8 Critical |
| SQL Injection vulnerability in NavigateCMS 2.9 via the URL encoded GET input category in navigate.php. | ||||
| CVE-2020-23710 | 1 Limesurvey | 1 Limesurvey | 2024-11-21 | 5.4 Medium |
| Cross Site Scripting (XSS) vulneraiblity in LimeSurvey 4.2.5 on textbox via the Notifications & data feature. | ||||