CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
151 CVE-2021-38344 79 XSS 2021-10-14 2021-10-18
3.5
None Remote Medium ??? None Partial None
The Brizy Page Builder plugin <= 2.3.11 for WordPress was vulnerable to stored XSS by lower-privileged users such as a subscribers. It was possible to add malicious JavaScript to a page by modifying the request sent to update the page via the brizy_update_item AJAX action and adding JavaScript to the data parameter, which would be executed in the session of any visitor viewing or previewing the post or page.
152 CVE-2021-38199 DoS 2021-08-08 2021-11-12
3.3
None Local Network Low Not required None None Partial
fs/nfs/nfs4client.c in the Linux kernel before 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during trunking detection.
153 CVE-2021-38156 79 XSS 2021-09-15 2021-09-27
3.5
None Remote Medium ??? None Partial None
In Nagios XI before 5.8.6, XSS exists in the dashboard page (/dashboards/#) when administrative users attempt to edit a dashboard.
154 CVE-2021-38152 79 XSS 2021-08-06 2021-09-20
3.5
None Remote Medium ??? None Partial None
index.php/appointment/insert_patient_add_appointment in Chikitsa Patient Management System 2.0.0 allows XSS.
155 CVE-2021-38151 79 XSS 2021-08-06 2021-08-12
3.5
None Remote Medium ??? None Partial None
index.php/appointment/todos in Chikitsa Patient Management System 2.0.0 allows XSS.
156 CVE-2021-38149 79 XSS 2021-08-06 2021-08-09
3.5
None Remote Medium ??? None Partial None
index.php/admin/add_user in Chikitsa Patient Management System 2.0.0 allows XSS.
157 CVE-2021-38144 79 XSS 2021-08-31 2021-09-08
3.5
None Remote Medium ??? None Partial None
An issue was discovered in Form Tools through 3.0.20. A low-privileged user can trigger Reflected XSS when a viewing a form via the submission_id parameter, e.g., clients/forms/edit_submission.php?form_id=1&view_id=1&submission_id=[XSS].
158 CVE-2021-38138 79 XSS 2021-08-05 2021-08-11
3.5
None Remote Medium ??? None Partial None
OneNav beta 0.9.12 allows XSS via the Add Link feature. NOTE: the vendor's position is that there intentionally is not any XSS protection at present, because the attack risk is largely limited to a compromised account; however, XSS protection is planned for a future release.
159 CVE-2021-38113 79 XSS 2021-08-04 2021-08-11
3.5
None Remote Medium ??? None Partial None
In addBouquet in js/bqe.js in OpenWebif (aka e2openplugin-OpenWebif) through 1.4.7, inserting JavaScript into the Add Bouquet feature of the Bouquet Editor (i.e., bouqueteditor/api/addbouquet?name=) leads to Stored XSS.
160 CVE-2021-37805 79 XSS 2021-10-27 2021-11-02
3.5
None Remote Medium ??? None Partial None
A Stored Cross Site Scripting (XSS) vunerability exists in Sourcecodeste Vehicle Parking Management System affected version 1.0 is via the add-vehicle.php endpoint.
161 CVE-2021-37794 79 XSS 2021-08-31 2021-09-08
3.5
None Remote Medium ??? None Partial None
A stored cross-site scripting (XSS) vulnerability exists in FileBrowser < v2.16.0 that allows an authenticated user authorized to upload a malicious .svg file which acts as a stored XSS payload. If this stored XSS payload is triggered by an administrator it will trigger malicious OS commands on the server running the FileBrowser instance.
162 CVE-2021-37743 79 XSS 2021-07-30 2021-08-02
3.5
None Remote Medium ??? None Partial None
app/View/GalaxyElements/ajax/index.ctp in MISP 2.4.147 allows Stored XSS when viewing galaxy cluster elements in JSON format.
163 CVE-2021-37742 79 XSS 2021-07-30 2021-08-02
3.5
None Remote Medium ??? None Partial None
app/View/Elements/GalaxyClusters/view_relation_tree.ctp in MISP 2.4.147 allows Stored XSS when viewing galaxy cluster relationships.
164 CVE-2021-37715 79 XSS 2021-08-26 2021-09-07
3.5
None Remote Medium ??? None Partial None
A remote cross-site scripting (XSS) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.13.0. Aruba has released upgrades for the Aruba AirWave Management Platform that address this security vulnerability.
165 CVE-2021-37710 79 XSS 2021-08-16 2021-08-25
3.5
None Remote Medium ??? None Partial None
Shopware is an open source eCommerce platform. Versions prior to 6.4.3.1 contain a Cross-Site Scripting vulnerability via SVG media files. Version 6.4.3.1 contains a patch. As workarounds for older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin.
166 CVE-2021-37695 79 XSS 2021-08-13 2021-11-28
3.5
None Remote Medium ??? None Partial None
ckeditor is an open source WYSIWYG HTML editor with rich content support. A potential vulnerability has been discovered in CKEditor 4 [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) package. The vulnerability allowed to inject malformed Fake Objects HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version < 4.16.2. The problem has been recognized and patched. The fix will be available in version 4.16.2.
167 CVE-2021-37682 908 2021-08-12 2021-08-19
3.6
None Local Low Not required None Partial Partial
TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. [For example](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/depthwise_conv.cc#L198-L200). The issue stems from the fact that `quantization.params` is only valid if `quantization.type` is different that `kTfLiteNoQuantization`. However, these checks are missing in large parts of the code. We have patched the issue in GitHub commits 537bc7c723439b9194a358f64d871dd326c18887, 4a91f2069f7145aab6ba2d8cfe41be8a110c18a5 and 8933b8a21280696ab119b63263babdb54c298538. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
168 CVE-2021-37664 125 2021-08-12 2021-08-18
3.6
None Local Low Not required Partial None Partial
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can read from outside of bounds of heap allocated data by sending specially crafted illegal arguments to `BoostedTreesSparseCalculateBestFeatureSplit`. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/boosted_trees/stats_ops.cc) needs to validate that each value in `stats_summary_indices` is in range. We have patched the issue in GitHub commit e84c975313e8e8e38bb2ea118196369c45c51378. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
169 CVE-2021-37654 125 2021-08-12 2021-08-18
3.6
None Local Low Not required Partial None Partial
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a crash via a `CHECK`-fail in debug builds of TensorFlow using `tf.raw_ops.ResourceGather` or a read from outside the bounds of heap allocated data in the same API in a release build. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/resource_variable_ops.cc#L660-L668) does not check that the `batch_dims` value that the user supplies is less than the rank of the input tensor. Since the implementation uses several for loops over the dimensions of `tensor`, this results in reading data from outside the bounds of heap allocated buffer backing the tensor. We have patched the issue in GitHub commit bc9c546ce7015c57c2f15c168b3d9201de679a1d. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
170 CVE-2021-37643 476 2021-08-12 2021-08-18
3.6
None Local Low Not required None Partial Partial
TensorFlow is an end-to-end open source platform for machine learning. If a user does not provide a valid padding value to `tf.raw_ops.MatrixDiagPartOp`, then the code triggers a null pointer dereference (if input is empty) or produces invalid behavior, ignoring all values after the first. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/linalg/matrix_diag_op.cc#L89) reads the first value from a tensor buffer without first checking that the tensor has values to read from. We have patched the issue in GitHub commit 482da92095c4d48f8784b1f00dda4f81c28d2988. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
171 CVE-2021-37641 125 2021-08-12 2021-08-18
3.6
None Local Low Not required Partial None Partial
TensorFlow is an end-to-end open source platform for machine learning. In affected versions if the arguments to `tf.raw_ops.RaggedGather` don't determine a valid ragged tensor code can trigger a read from outside of bounds of heap allocated buffers. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/ragged_gather_op.cc#L70) directly reads the first dimension of a tensor shape before checking that said tensor has rank of at least 1 (i.e., it is not a scalar). Furthermore, the implementation does not check that the list given by `params_nested_splits` is not an empty list of tensors. We have patched the issue in GitHub commit a2b743f6017d7b97af1fe49087ae15f0ac634373. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
172 CVE-2021-37635 125 Overflow 2021-08-12 2021-08-18
3.6
None Local Low Not required Partial None Partial
TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of sparse reduction operations in TensorFlow can trigger accesses outside of bounds of heap allocated data. The [implementation](https://github.com/tensorflow/tensorflow/blob/a1bc56203f21a5a4995311825ffaba7a670d7747/tensorflow/core/kernels/sparse_reduce_op.cc#L217-L228) fails to validate that each reduction group does not overflow and that each corresponding index does not point to outside the bounds of the input tensor. We have patched the issue in GitHub commit 87158f43f05f2720a374f3e6d22a7aaa3a33f750. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
173 CVE-2021-37552 79 XSS 2021-08-06 2021-08-12
3.5
None Remote Medium ??? None Partial None
In JetBrains YouTrack before 2021.2.17925, stored XSS was possible.
174 CVE-2021-37534 79 XSS 2021-07-26 2021-08-03
3.5
None Remote Medium ??? None Partial None
app/View/GalaxyClusters/add.ctp in MISP 2.4.146 allows Stored XSS when forking a galaxy cluster.
175 CVE-2021-37470 79 XSS 2021-07-25 2021-07-30
3.5
None Remote Medium ??? None Partial None
In NCH WebDictate v2.13, persistent Cross Site Scripting (XSS) exists in the Recipient Name field. An authenticated user can add or modify the affected field to inject arbitrary JavaScript.
176 CVE-2021-37467 79 XSS 2021-07-25 2021-07-30
3.5
None Remote Medium ??? None Partial None
In NCH Quorum v2.03 and earlier, XSS exists via /conferencebrowseuploadfile?confid= (reflected).
177 CVE-2021-37466 79 XSS 2021-07-25 2021-07-30
3.5
None Remote Medium ??? None Partial None
In NCH Quorum v2.03 and earlier, XSS exists via /conference?id= (reflected).
178 CVE-2021-37465 79 XSS 2021-07-25 2021-07-30
3.5
None Remote Medium ??? None Partial None
In NCH Quorum v2.03 and earlier, XSS exists via /uploaddoc?id= (reflected).
179 CVE-2021-37464 79 XSS 2021-07-25 2021-07-30
3.5
None Remote Medium ??? None Partial None
In NCH Quorum v2.03 and earlier, XSS exists via Conference Description (stored).
180 CVE-2021-37463 79 XSS 2021-07-25 2021-07-30
3.5
None Remote Medium ??? None Partial None
In NCH Quorum v2.03 and earlier, XSS exists via User Display Name (stored).
181 CVE-2021-37462 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via /ipblacklist?errorip= (reflected).
182 CVE-2021-37461 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via /extensionsinstruction?id= (reflected).
183 CVE-2021-37460 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via /planprop?id= (reflected).
184 CVE-2021-37459 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the customer name field (stored).
185 CVE-2021-37458 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the primary phone field (stored).
186 CVE-2021-37457 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the SipRule field (stored).
187 CVE-2021-37456 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the blacklist IP address (stored).
188 CVE-2021-37455 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the outbound dialing plan (stored).
189 CVE-2021-37454 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the line name (stored).
190 CVE-2021-37453 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the extension name (stored).
191 CVE-2021-37451 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and earlier via /msglist?mbx= (reflected).
192 CVE-2021-37450 79 XSS 2021-07-25 2021-07-28
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and earlier via /ogmprop?id= (reflected).
193 CVE-2021-37449 79 XSS 2021-07-25 2021-08-04
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and earlier via /ogmlist?folder= (reflected).
194 CVE-2021-37448 79 XSS 2021-07-25 2021-08-04
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and earlier via the Mailbox name (stored).
195 CVE-2021-37393 79 XSS 2021-07-26 2021-08-06
3.5
None Remote Medium ??? None Partial None
In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. Attacker can use "update password" function to inject XSS payloads into nickname variable, and achieve stored XSS. Users who view the articles published by the injected user will trigger the XSS.
196 CVE-2021-37392 79 XSS 2021-07-26 2021-08-06
3.5
None Remote Medium ??? None Partial None
In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. When the API functions are enabled, the attacker can use API to update user nickname with XSS payload and achieve stored XSS. Users who view the articles published by the injected user will trigger the XSS.
197 CVE-2021-37391 79 Exec Code XSS 2021-08-10 2021-08-19
3.5
None Remote Medium ??? None Partial None
A user without privileges in Chamilo LMS 1.11.14 can send an invitation message to another user, e.g., the administrator, through main/social/search.php, main/inc/lib/social.lib.php and steal cookies or execute arbitrary code on the administration side via a stored XSS vulnerability via social network the send invitation feature.
198 CVE-2021-37330 79 XSS 2021-10-04 2021-10-12
3.5
None Remote Medium ??? None Partial None
Laravel Booking System Booking Core 2.0 is vulnerable to Cross Site Scripting (XSS). The Avatar upload in the My Profile section could be exploited to upload a malicious SVG file which contains Javascript. Now if another user/admin views the profile and clicks to view his avatar, an XSS will trigger.
199 CVE-2021-37271 79 XSS +Info 2021-09-28 2021-10-01
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) vulnerability exists in UEditor v1.4.3.3, which can be exploited by an attacker to obtain user cookie information.
200 CVE-2021-37211 79 XSS 2021-08-09 2021-08-17
3.5
None Remote Medium ??? None Partial None
The bulletin function of Flygo does not filter special characters while a new announcement is added. Remoter attackers can use the vulnerability with general user’s credential to inject JavaScript and execute stored XSS attacks.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.