Export limit exceeded: 363169 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (363169 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-19471 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4 . | ||||
| CVE-2020-19470 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function DCTStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a NULL pointer dereference (invalid read of size 1) . | ||||
| CVE-2020-19469 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function DCTStream::reset in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid write of size 8 . | ||||
| CVE-2020-19468 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function EmbedStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a null pointer derefenrece (invalid read of size 8) . | ||||
| CVE-2020-19467 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Illegal Use After Free . | ||||
| CVE-2020-19466 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 1 . | ||||
| CVE-2020-19465 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function ObjectStream::getObject in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4 . | ||||
| CVE-2020-19464 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a stack overflow . | ||||
| CVE-2020-19463 | 1 Flowpaper | 1 Pdf2json | 2024-11-21 | 5.5 Medium |
| An issue has been found in function vfprintf in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a stack overflow. | ||||
| CVE-2020-19455 | 1 Jdownloads | 1 Jdownloads | 2024-11-21 | 7.5 High |
| SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter. | ||||
| CVE-2020-19451 | 1 Jdownloads | 1 Jdownloads | 2024-11-21 | 7.5 High |
| SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter. | ||||
| CVE-2020-19450 | 1 Jdownloads | 1 Jdownloads | 2024-11-21 | 7.5 High |
| SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter. | ||||
| CVE-2020-19447 | 1 Jdownloads | 1 Jdownloads | 2024-11-21 | 7.5 High |
| SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter. | ||||
| CVE-2020-19419 | 1 Emerson | 2 Smart Wireless Gateway 1420, Smart Wireless Gateway 1420 Firmware | 2024-11-21 | 7.5 High |
| Incorrect Access Control in Emerson Smart Wireless Gateway 1420 4.6.59 allows remote attackers to obtain sensitive device information from the administrator console without authentication. | ||||
| CVE-2020-19417 | 1 Emerson | 2 Wireless 1420 Gateway, Wireless 1420 Gateway Firmware | 2024-11-21 | 8.8 High |
| Emerson Smart Wireless Gateway 1420 4.6.59 allows non-privileged users (such as the default account 'maint') to perform administrative tasks by sending specially crafted HTTP requests to the application. | ||||
| CVE-2020-19364 | 1 Open-emr | 1 Openemr | 2024-11-21 | 8.8 High |
| OpenEMR 5.0.1 allows an authenticated attacker to upload and execute malicious PHP scripts through /controller.php. | ||||
| CVE-2020-19363 | 1 Vtiger | 1 Vtiger Crm | 2024-11-21 | 6.5 Medium |
| Vtiger CRM v7.2.0 allows an attacker to display hidden files, list directories by using /libraries and /layout directories. | ||||
| CVE-2020-19362 | 1 Vtiger | 1 Vtiger Crm | 2024-11-21 | 6.1 Medium |
| Reflected XSS in Vtiger CRM v7.2.0 in vtigercrm/index.php? through the view parameter can result in an attacker performing malicious actions to users who open a maliciously crafted link or third-party web page. | ||||
| CVE-2020-19361 | 1 Medintux | 1 Medintux | 2024-11-21 | 6.1 Medium |
| Reflected XSS in Medintux v2.16.000 CCAM.php by manipulating the mot1 parameter can result in an attacker performing malicious actions to users who open a maliciously crafted link or third-party web page. | ||||
| CVE-2020-19360 | 1 Fhem | 1 Fhem | 2024-11-21 | 7.5 High |
| Local file inclusion in FHEM 6.0 allows in fhem/FileLog_logWrapper file parameter can allow an attacker to include a file, which can lead to sensitive information disclosure. | ||||