CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In November 2020

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
151 CVE-2020-28247 2020-11-12 2021-01-29
5.0
None Remote Low Not required None Partial None
The lettre library through 0.10.0-alpha for Rust allows arbitrary sendmail option injection via transport/sendmail/mod.rs.
152 CVE-2020-28242 674 2020-11-06 2022-01-01
4.0
None Remote Low ??? None None Partial
An issue was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16.14.1, 17.x before 17.8.1, and 18.x before 18.0.1 and Certified Asterisk before 16.8-cert5. If Asterisk is challenged on an outbound INVITE and the nonce is changed in each response, Asterisk will continually send INVITEs in a loop. This causes Asterisk to consume more and more memory since the transaction will never terminate (even if the call is hung up), ultimately leading to a restart or shutdown of Asterisk. Outbound authentication must be configured on the endpoint for this to occur.
153 CVE-2020-28241 125 2020-11-06 2022-01-06
4.3
None Remote Medium Not required None None Partial
libmaxminddb before 1.4.3 has a heap-based buffer over-read in dump_entry_data_list in maxminddb.c.
154 CVE-2020-28213 494 Exec Code 2020-11-19 2020-12-08
6.5
None Remote Low ??? Partial Partial Partial
A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when sending specially crafted requests over Modbus.
155 CVE-2020-28212 307 Exec Code 2020-11-19 2020-12-08
7.5
None Remote Low Not required Partial Partial Partial
A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when a brute force attack is done over Modbus.
156 CVE-2020-28211 863 Bypass 2020-11-19 2020-12-08
4.6
None Local Low Not required Partial Partial Partial
A CWE-863: Incorrect Authorization vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause bypass of authentication when overwriting memory using a debugger.
157 CVE-2020-28210 79 XSS 2020-11-19 2020-12-01
4.3
None Remote Medium Not required None Partial None
A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability exists in EcoStruxure Building Operation WebStation V2.0 - V3.1 that could cause an attacker to inject HTML and JavaScript code into the user's browser.
158 CVE-2020-28209 428 +Priv 2020-11-19 2020-11-27
4.4
None Local Medium Not required Partial Partial Partial
A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation Enterprise Server installer V1.9 - V3.1 and Enterprise Central installer V2.0 - V3.1 that could cause any local Windows user who has write permission on at least one of the subfolders of the Connect Agent service binary path, being able to gain the privilege of the user who started the service. By default, the Enterprise Server and Enterprise Central is always installed at a location requiring Administrator privileges so the vulnerability is only valid if the application has been installed on a non-secure location.
159 CVE-2020-28196 674 2020-11-06 2021-07-20
5.0
None Remote Low Not required None None Partial
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
160 CVE-2020-28183 89 Sql 2020-11-17 2020-12-01
10.0
None Remote Low Not required Complete Complete Complete
SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the username and password parameters to process.php.
161 CVE-2020-28168 918 Bypass 2020-11-06 2021-01-28
4.3
None Remote Medium Not required Partial None None
Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.
162 CVE-2020-28140 434 2020-11-17 2020-11-23
7.5
None Remote Low Not required Partial Partial Partial
SourceCodester Online Clothing Store 1.0 is affected by an arbitrary file upload via the image upload feature of Products.php.
163 CVE-2020-28139 79 XSS 2020-11-17 2020-11-23
4.3
None Remote Medium Not required None Partial None
SourceCodester Online Clothing Store 1.0 is affected by a cross-site scripting (XSS) vulnerability via a Offer Detail field in offer.php.
164 CVE-2020-28138 89 Sql 2020-11-17 2020-11-23
7.5
None Remote Low Not required Partial Partial Partial
SourceCodester Online Clothing Store 1.0 is affected by a SQL Injection via the txtUserName parameter to login.php.
165 CVE-2020-28136 434 Exec Code 2020-11-17 2020-12-01
6.5
None Remote Low ??? Partial Partial Partial
An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page.
166 CVE-2020-28133 89 +Priv Sql Bypass 2020-11-17 2020-12-01
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in SourceCodester Simple Grocery Store Sales And Inventory System 1.0. There was authentication bypass in web login functionality allows an attacker to gain client privileges via SQL injection in sales_inventory/login.php.
167 CVE-2020-28130 434 Exec Code 2020-11-17 2020-11-23
10.0
None Remote Low Not required Complete Complete Complete
An Arbitrary File Upload in the Upload Image component in SourceCodester Online Library Management System 1.0 allows the user to conduct remote code execution via admin/borrower/index.php?view=add because .php files can be uploaded to admin/borrower/photos (under the web root).
168 CVE-2020-28129 79 XSS 2020-11-17 2020-11-25
4.3
None Remote Medium Not required None Partial None
Stored Cross-site scripting (XSS) vulnerability in SourceCodester Gym Management System 1.0 allows users to inject and store arbitrary JavaScript code in index.php?page=packages via vulnerable fields 'Package Name' and 'Description'.
169 CVE-2020-28115 89 Exec Code Sql 2020-11-05 2020-11-10
6.5
None Remote Low ??? Partial Partial Partial
SQL Injection vulnerability in "Documents component" found in AudimexEE version 14.1.0 allows an attacker to execute arbitrary SQL commands via the object_path parameter.
170 CVE-2020-28092 79 XSS 2020-11-17 2020-12-01
4.3
None Remote Medium Not required None Partial None
PESCMS Team 2.3.2 has multiple reflected XSS via the id parameter:?g=Team&m=Task&a=my&status=3&id=,?g=Team&m=Task&a=my&status=0&id=,?g=Team&m=Task&a=my&status=1&id=,?g=Team&m=Task&a=my&status=10&id=
171 CVE-2020-28091 89 Sql 2020-11-18 2020-12-01
5.0
None Remote Low Not required Partial None None
cxuucms v3 has a SQL injection vulnerability, which can lead to the leakage of all database data via the keywords parameter via search.php.
172 CVE-2020-28055 732 2020-11-10 2020-12-08
7.2
None Local Low Not required Complete Complete Complete
A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01-LF1 V373 and below by TCL Technology Group Corporation allows a local unprivileged attacker, such as a malicious App, to read & write to the /data/vendor/tcl, /data/vendor/upgrade, and /var/TerminalManager directories within the TV file system. An attacker, such as a malicious APK or local unprivileged user could perform fake system upgrades by writing to the /data/vendor/upgrage folder.
173 CVE-2020-28054 200 Bypass +Info 2020-11-19 2021-07-21
5.0
None Remote Low Not required Partial None None
JamoDat TSMManager Collector version up to 6.5.0.21 is vulnerable to an Authorization Bypass because the Collector component is not properly validating an authenticated session with the Viewer. If the Viewer has been modified (binary patched) and the Bypass Login functionality is being used, an attacker can request every Collector's functionality as if they were a properly logged-in user: administrating connected instances, reviewing logs, editing configurations, accessing the instances' consoles, accessing hardware configurations, etc.Exploiting this vulnerability won't grant an attacker access nor control on remote ISP servers as no credentials is sent with the request.
174 CVE-2020-28053 732 2020-11-23 2021-07-21
4.0
None Remote Low ??? Partial None None
HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6.
175 CVE-2020-28049 362 2020-11-04 2021-01-28
3.3
None Local Medium Not required Partial Partial None
An issue was discovered in SDDM before 0.19.0. It incorrectly starts the X server in a way that - for a short time period - allows local unprivileged users to create a connection to the X server without providing proper authentication. A local attacker can thus access X server display contents and, for example, intercept keystrokes or access the clipboard. This is caused by a race condition during Xauthority file creation.
176 CVE-2020-28047 79 XSS 2020-11-05 2020-11-10
3.5
None Remote Medium ??? None Partial None
AudimexEE before 14.1.1 is vulnerable to Reflected XSS (Cross-Site-Scripting). If the recommended security configuration parameter "unique_error_numbers" is not set, remote attackers can inject arbitrary web script or HTML via 'action, cargo, panel' parameters that can lead to data leakage.
177 CVE-2020-28046 269 Exec Code 2020-11-02 2020-11-17
7.2
None Local Low Not required Complete Complete Complete
An issue was discovered in ProlinOS through 2.4.161.8859R. An attacker with local code execution privileges as a normal user (MAINAPP) can escalate to root privileges by exploiting the setuid installation of the xtables-multi binary and leveraging the ip6tables --modprobe switch.
178 CVE-2020-28045 347 2020-11-02 2020-11-19
7.2
None Local Low Not required Complete Complete Complete
An unsigned-library issue was discovered in ProlinOS through 2.4.161.8859R. This OS requires installed applications and all system binaries to be signed either by the manufacturer or by the Point Of Sale application developer and distributor. The signature is a 2048-byte RSA signature verified in the kernel prior to ELF execution. Shared libraries, however, do not need to be signed, and they are not verified. An attacker may execute a custom binary by compiling it as a shared object and loading it via LD_PRELOAD.
179 CVE-2020-28044 276 2020-11-02 2020-11-17
7.2
None Local Low Not required Complete Complete Complete
An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161.8859R can boot it in management mode, enable the XCB service, and then list, read, create, and overwrite files with MAINAPP permissions.
180 CVE-2020-28043 918 2020-11-02 2020-11-17
5.0
None Remote Low Not required Partial None None
MISP through 2.4.133 allows SSRF in the REST client via the use_full_path parameter with an arbitrary URL.
181 CVE-2020-28042 347 2020-11-02 2020-11-17
5.0
None Remote Low Not required None Partial None
ServiceStack before 5.9.2 mishandles JWT signature verification unless an application has a custom ValidateToken function that establishes a valid minimum length for a signature.
182 CVE-2020-28041 276 2020-11-02 2020-12-16
4.3
None Remote Medium Not required None Partial None
The SIP ALG implementation on NETGEAR Nighthawk R7000 1.0.9.64_10.2.64 devices allows remote attackers to communicate with arbitrary TCP and UDP services on a victim's intranet machine, if the victim visits an attacker-controlled web site with a modern browser, aka NAT Slipstreaming. This occurs because the ALG takes action based on an IP packet with an initial REGISTER substring in the TCP data, and the correct intranet IP address in the subsequent Via header, without properly considering that connection progress and fragmentation affect the meaning of the packet data.
183 CVE-2020-28040 352 CSRF 2020-11-02 2020-11-11
4.3
None Remote Medium Not required None Partial None
WordPress before 5.5.2 allows CSRF attacks that change a theme's background image.
184 CVE-2020-28039 2020-11-02 2020-11-11
6.4
None Remote Low Not required None Partial Partial
is_protected_meta in wp-includes/meta.php in WordPress before 5.5.2 allows arbitrary file deletion because it does not properly determine whether a meta key is considered protected.
185 CVE-2020-28038 79 XSS 2020-11-02 2020-11-11
4.3
None Remote Medium Not required None Partial None
WordPress before 5.5.2 allows stored XSS via post slugs.
186 CVE-2020-28037 20 DoS Exec Code 2020-11-02 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
is_blog_installed in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attacker to perform a new installation, leading to remote code execution (as well as a denial of service for the old installation).
187 CVE-2020-28036 269 +Priv 2020-11-02 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
wp-includes/class-wp-xmlrpc-server.php in WordPress before 5.5.2 allows attackers to gain privileges by using XML-RPC to comment on a post.
188 CVE-2020-28035 269 +Priv 2020-11-02 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
WordPress before 5.5.2 allows attackers to gain privileges via XML-RPC.
189 CVE-2020-28034 79 XSS 2020-11-02 2020-11-11
4.3
None Remote Medium Not required None Partial None
WordPress before 5.5.2 allows XSS associated with global variables.
190 CVE-2020-28033 2020-11-02 2020-11-11
5.0
None Remote Low Not required None Partial None
WordPress before 5.5.2 mishandles embeds from disabled sites on a multisite network, as demonstrated by allowing a spam embed.
191 CVE-2020-28032 502 2020-11-02 2020-11-11
7.5
None Remote Low Not required Partial Partial Partial
WordPress before 5.5.2 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php.
192 CVE-2020-28031 74 2020-11-02 2021-07-21
4.0
None Remote Low ??? None Partial None
eramba through c2.8.1 allows HTTP Host header injection with (for example) resultant wkhtml2pdf PDF printing by authenticated users.
193 CVE-2020-28030 400 2020-11-02 2021-07-21
5.0
None Remote Low Not required None None Partial
In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.
194 CVE-2020-28005 120 DoS Overflow 2020-11-18 2020-12-01
3.5
None Remote Medium ??? None None Partial
httpd on TP-Link TL-WPA4220 devices (hardware versions 2 through 4) allows remote authenticated users to trigger a buffer overflow (causing a denial of service) by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220(EU)_V4_201023
195 CVE-2020-28002 287 Bypass 2020-11-02 2020-11-17
5.0
None Remote Low Not required None Partial None
In SonarQube 8.4.2.36762, an external attacker can achieve authentication bypass through SonarScanner. With an empty value for the -D sonar.login option, anonymous authentication is forced. This allows creating and overwriting public and private projects via the /api/ce/submit endpoint.
196 CVE-2020-27992 428 +Priv 2020-11-02 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users.
197 CVE-2020-27991 79 XSS 2020-11-16 2020-11-17
3.5
None Remote Medium ??? None Partial None
Nagios XI before 5.7.5 is vulnerable to XSS in Account Information (Email field).
198 CVE-2020-27990 79 XSS 2020-11-16 2020-11-17
3.5
None Remote Medium ??? None Partial None
Nagios XI before 5.7.5 is vulnerable to XSS in the Deployment tool (add agent).
199 CVE-2020-27989 79 XSS 2020-11-16 2020-11-17
3.5
None Remote Medium ??? None Partial None
Nagios XI before 5.7.5 is vulnerable to XSS in Dashboard Tools (Edit Dashboard).
200 CVE-2020-27988 79 XSS 2020-11-16 2020-11-17
3.5
None Remote Medium ??? None Partial None
Nagios XI before 5.7.5 is vulnerable to XSS in Manage Users (Username field).
Total number of vulnerabilities : 1271   Page : 1 2 3 4 (This Page)5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.