Export limit exceeded: 363504 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (363504 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-20902 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | 6.5 Medium |
| A CWE-125: Out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c in FFmpeg 4.2.1 during computation of the denominator of pseudo-normalized correlation R'(0), that could result in disclosure of information. | ||||
| CVE-2020-20898 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | 8.8 High |
| Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||||
| CVE-2020-20896 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | 8.8 High |
| An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a Null pointer dereference. | ||||
| CVE-2020-20892 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | 8.8 High |
| An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero. | ||||
| CVE-2020-20891 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | 8.8 High |
| Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||||
| CVE-2020-20813 | 1 Openvpn | 1 Openvpn | 2024-11-21 | 7.5 High |
| Control Channel in OpenVPN 2.4.7 and earlier allows remote attackers to cause a denial of service via crafted reset packet. | ||||
| CVE-2020-20808 | 1 Qibosoft | 1 Qibosoft | 2024-11-21 | 6.1 Medium |
| Cross Site Scripting vulnerability in Qibosoft qibosoft v.7 and before allows a remote attacker to execute arbitrary code via the eindtijd and starttijd parameters of do/search.php. | ||||
| CVE-2020-20800 | 1 Metinfo | 1 Metinfo | 2024-11-21 | 9.8 Critical |
| An issue was discovered in MetInfo v7.0.0 beta. There is SQL Injection via the install/index.php?action=adminsetup&cndata=yes&endata=yes&showdata=yes URI. | ||||
| CVE-2020-20799 | 1 Jeecms | 1 Jeecms | 2024-11-21 | 5.4 Medium |
| JeeCMS 1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the commentText parameter. | ||||
| CVE-2020-20797 | 1 Flamecms Project | 1 Flamecms | 2024-11-21 | 9.8 Critical |
| FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php. | ||||
| CVE-2020-20796 | 1 Flamecms Project | 1 Flamecms | 2024-11-21 | 9.8 Critical |
| FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter. | ||||
| CVE-2020-20781 | 1 Ucms Project | 1 Ucms | 2024-11-21 | 5.4 Medium |
| A stored cross-site scripting (XSS) vulnerability in /ucms/index.php?do=list_edit of UCMS 1.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the title, key words, description or content text fields. | ||||
| CVE-2020-20746 | 1 Tendacn | 2 Ac9, Ac9 Firmware | 2024-11-21 | 7.2 High |
| A stack-based buffer overflow in the httpd server on Tenda AC9 V15.03.06.60_EN allows remote attackers to execute arbitrary code or cause a denial of service (DoS) via a crafted POST request to /goform/SetStaticRouteCfg. | ||||
| CVE-2020-20741 | 1 Beckhoff | 1 Cx9020 | 2024-11-21 | 9.8 Critical |
| Incorrect Access Control in Beckhoff Automation GmbH & Co. KG CX9020 with firmware version CX9020_CB3011_WEC7_HPS_v602_TC31_B4016.6 allows remote attackers to bypass authentication via the "CE Remote Display Tool" as it does not close the incoming connection on the Windows CE side if the credentials are incorrect. | ||||
| CVE-2020-20740 | 3 Debian, Fedoraproject, Pdfresurrect Project | 3 Debian Linux, Fedora, Pdfresurrect | 2024-11-21 | 7.8 High |
| PDFResurrect before 0.20 lack of header validation checks causes heap-buffer-overflow in pdf_get_version(). | ||||
| CVE-2020-20739 | 3 Debian, Fedoraproject, Libvips | 3 Debian Linux, Fedora, Libvips | 2024-11-21 | 5.3 Medium |
| im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an uninitialized variable which may cause the leakage of remote server path or stack address. | ||||
| CVE-2020-20701 | 1 S-cms | 1 S-cms | 2024-11-21 | 4.8 Medium |
| A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. | ||||
| CVE-2020-20700 | 1 S-cms | 1 S-cms | 2024-11-21 | 4.8 Medium |
| A stored cross site scripting (XSS) vulnerability in /app/form_add/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box. | ||||
| CVE-2020-20699 | 1 S-cms | 1 S-cms | 2024-11-21 | 4.8 Medium |
| A cross site scripting (XSS) vulnerability in S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Copyright text box under Basic Settings. | ||||
| CVE-2020-20698 | 1 S-cms | 1 S-cms | 2024-11-21 | 7.2 High |
| A remote code execution (RCE) vulnerability in /1.com.php of S-CMS PHP v3.0 allows attackers to getshell via modification of a PHP file. | ||||